Osteria della Tonnara

  • English
  • Italiano

Privacy Policy

 

PRIVACY POLICY of www.ristorantedaandrea.it
 

I - INFORMATIONS RELATING TO THE PRIVACY POLICY OF THE SITE

Dear User, this page describes the methods, times and purposes of the processing of personal data of users who consult it, as well as the type of data collected and other informations that the data controllers must provide to users at the time of viewing the web pages of this site according to Italian and European legislation.

To learn how the site uses and manages cookies, the cookies used, and how the user can manage cookies even through the settings of his browser, you can refer to the cookie policy of the site at www.ristorantedaandrea.it/en/content/cookie-policy

This privacy policy has been prepared in compliance with the requirements of  Article 13 of Legislative Decree no. 196 of 30 June 2003 ("Code regarding the protection of personal data"), and for the purposes of Article 13 of EU Regulation no. 2016/679 (GDPR), concerning the protection of individuals with regard to the processing of personal data and the free movement of such data, for subject who interact with this site and can be reached on all pages of it under the menu item  "Privacy Policy" in the menu at the bottom of all pages and also directly accessible at http://www.ristorantedaandrea.it/content/en/privacy-policy.

The privacy policy is provided only for this site and not for other websites that may be consulted by the user through links contained therein.

If the user is under the age of 16 year, in compliance to article 8, c.1 of the EU regulation 2016/679, he/she must legitimize his/her consent through the authorization of his/her parents.

II - PERSONAL DATA PROCESSING

  1. Data controller
    1. The data controller is the natural or legal person, public authority, service or other body that, individually or together with others, determines the purposes and means of processing personal data. He also deals with safety profiles.
    2. With regards to this website,  the data controller is Andrea Rosso, legal representative of MARINE SERVICE YACHT and for any clarification or exercise of the rights of the user can be contacted using the following information:
  2. Personal Data Processor
    1. The Data Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
    2. Pursuant to Article 28 of EU Regulation no. 2016/679,  the personal Data Processor for this site is: Rosso Andrea.
       
  3. Place of data processing
    1. The processing of data generated by the use of the site takes place in Via Cavallera 21 - 09014 Carloforte (SU)
    2. In case of necessity, the data related to any communication of service through email can be processed by the person in charge of the treatment or subjects who will be responsible for this purpose at the relevant office. Currently, Nicola Caredda is the only subject that processes data.
       

III - PROCESSED DATA

  1. Legal basis for the processing
    The data processor processes Personal Data relating to the User in the event one of the following conditions exists:
    • The user has given consent to the processing of his/her personal data for one or more specific purposes; Note: in some jurisdictions the Data Processor may be authorized to process Personal Data without the User's consent or another of the legal bases specified below, as long as the User does not object ("opt-out") to this treatment. However, this is not applicable if the processing of Personal Data is regulated by European legislation regarding the protection of Personal Data;
    • Processing is necessary for the performance of a contract to which the user is party or in order to take steps at the request of the user prior to entering into a contract;
    • Processing is necessary for compliance with a legal obligation to which the data controller is subject;
    • Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller;
    • Processing is necessary for the purposes of the legitimate interests pursued by the data controller or by a third party.
      In any case, it is always possible to ask the Data Controller to clarify the concrete legal basis of each treatment and in particular to specify whether the treatment is based on the law, foreseen by a contract or necessary to conclude a contract.
       
  2. Categories of personal data
    1. Currently the site registrations and comments are closed, the site does not use newsletters. 
    2. Full details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data are collected.
      Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of this website.
      Unless otherwise specified, all data requested by this website are mandatory. If the User refuses to communicate them, it may be impossible for this website to provide the Service. In cases where this website indicates some Data as optional, Users are free to refrain from communicating such Data, without this having any consequence on the availability of the Service or on its operation.
      Users who have doubts about which data are mandatory, are encouraged to contact the Data Controller.
      Any use of cookies, or other tracking tools, by this website or by third party service providers used by this website, unless otherwise specified, is intended to provide the Service requested by the User, in addition to the further purposes described in this document and in the Cookie Policy at www.ristorantedaandrea.it/en/content/cookie-policy
      The User assumes the responsibility of the Personal Data of third parties obtained, published or shared through this website and guarantees to have the right to communicate or disseminate them, freeing the Data Controller from any liability to third parties.
       
  3. Methods of data processing
    1. The Data Controller takes appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data.
      Processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the organization of this website (eg: technicians and system administrators) or external subjects (such as third party technical service providers, hosting providers, IT companies) may have access to the Data. Also appointed, if necessary, as Data Processors by the Data Controller. The updated list of Data Processors can always be requested to the Data Controller.
       
  4. Purposes of the processing
    1. Like all websites, this site also makes use of log files in which informations collected in an automated manner are kept during user visits. The informations collected could be the following:
      • internet protocol address (IP);
      • type of browser and device parameters used to connect to the site;
      • name of the internet service provider (ISP);
      • date and time of visit;
      • web page of origin of the visitor (referral) and exit;
      • eventually the number of click.
    2. The above informations are processed in an automated manner and collected in an exclusively aggregated form in order to verify the correct functioning of the site and for security reasons. This informations will be processed according to the legitimate interests of the Data Controller.
    3. For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may possibly also include personal data such as IP address, which could be used, in accordance with applicable laws, in order to block attempts at damage to the site itself or to cause damage to other users, or in any case harmful activities or constituting a crime. Such data are never used for the identification or profiling of the user, but only for the purposes of protection of the site and its users, such information will be treated according to the legitimate interests of the Data Controller.
    4. In the case of specific services requested by the user, including the possibility to send requests for information by email, we will collect the informations you provide, such as, in certain cases, your first and last name, the email address, the subject of your request and any optional personal data included in the message body. These data are voluntarily provided by the user at the time of requesting service delivery. By entering such data or other informations, the user expressly accepts the privacy policy, and in particular agrees that the contents inserted are used for the fulfillment of the request. The data received will be used exclusively for the provision of the requested service and only for the time needed to provide the service.
    5. To obtain further detailed information on the purposes of the processing and on the Personal Data concretely relevant to each purpose, the User can refer to the relevant sections of this document.
       
  5. Period of data retention
    1. The data collected by the site during its operation are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the activities specified, and in any case no later than 1 year.
    2. The data used for security purposes (block attempts to damage the site) are kept for the time strictly necessary to achieve the previously indicated purpose.
    3. At the end of the retention period the Personal Data will be deleted. Therefore, at the end of this term the right of access, cancellation, rectification and the right to data portability can no longer be exercised.
       
  6. Cookie
    1. Cookies are small text files that are released from the website on the hard disk of the user's device. The use of cookies by this website or by third party services used by this site, unless otherwise specified, has the purpose of identifying the User and/or registering the related preferences for purposes strictly related to the performance of the service required.
    2. Failure to provide certain personal and navigation data by the user, through the deactivation of cookies in the program used for navigation, or your web browser, may make it impossible to provide certain services or the navigation itself.
      To find out in detail how the site uses and manages cookies, the cookies used, and how the user can manage cookies even through the settings of his browser we refer you to read the site's cookie policy at http://www.ristorantedaandrea.it/en/cookie-policy;
       
  7. Plugin Social Network
    1. This site also incorporates plugins and / or buttons for social networks, in order to allow easy sharing of content on your favorite social networks. These plugins are programmed so as not to set any cookies when accessing the page, to safeguard the privacy of users. Possibly cookies are set, if so provided by social networks, only when the user makes effective and voluntary use of the plugin. Please note that if the user browses being logged into the social network then he has already consented to the use of cookies conveyed through this site at the time of registration to the social network
    2. The collection and use of the information obtained by means of the plugin are governed by the respective privacy policies of the social networks, to which reference is made. they are contained in the "Details on the processing of personal data" section of this policy

IV - DETAILS ON THE PROCESSING OF PERSONAL DATA

  1. Personal Data is collected for the following purposes and using the following services:
    1. TO CONTACT USER
      • Contact by email
        the User, sending an email using the mail boxes specified on the pages of the site voluntarily provides data, consents to their use to respond to requests for information, quote, or any other nature indicated in the email.
        Personal data collected:  those present in the email sent.
         
      • Contact by Phone
        Users who provided their telephone number could be contacted to provide more information on the requested service or, as a result of consent, for commercial or promotional purposes related to this activity, as well as to satisfy requests for support.
        Personal data collected: Telephone number.
         
    2. For viewing content from external platforms
      This type of service allows you to view content hosted on external platforms directly from the pages of this site and to interact with them. N.B.: most of the services are activated only if the user consents to the use of cookies
      • Widget Google Maps (Google Inc.)
        Google Maps is a map visualization service managed by Google Inc. that allows this site to integrate such contents within its pages.
        Personal data collected: Cookie and Usage data.
        Place of processing: USA – Privacy Policy
         
    3. Interaction with social networks
      These services allow you to make interactions with social networks, or other external platforms, directly from the pages of this site.
      The interactions and information acquired from this Site are in any case subject to the User's privacy settings relating to any social network.
      N.B.: most of the services are activated only if the user consents to the use of cookies.
       
      • Google+ button (Google Inc.)
        Allows the service of interaction with the social network Google+, provided by Google Inc.
        Personal data collected: Cookie and Usage data.
        Place of processing: USA – Privacy Policy
         
      • Linkedin social button and widget (LinkedIn Corporation)
        The button and social widgets of Linkedin are services of interaction with the social network Linkedin, provided by LinkedIn Corporation.
        Personal data collected: Cookie and Usage data.
        Place of processing: USA – Privacy Policy
         
      • Like button and Facebook social widgets (Facebook, Inc.)
        The "Like" button and Facebook social widgets are services of interaction with the social network Facebook, provided by Facebook, Inc.
        Personal data collected: Cookie and Usage data.
        Place of processing: USA – Privacy Policy
         
      • Tweet button and Twitter social widgets (Twitter, Inc.)
        The Tweet button and Twitter social widgets are services of interaction with the Twitter social network, provided by Twitter, Inc.
        Personal data collected: Cookie and Usage data.
        Place of processing: USA – Privacy Policy
         
    4. Content from external platforms
      These services allow you to view content hosted on external platforms directly from the pages of this Site and interact with them.
      If a service of this kind is installed, it may still collect web traffic data for the pages where the service is installed, even when users do not use it.
      N.B.: most of the services are activated only if the user consents to the use of cookies.
      • Vimeo Video (Vimeo, LLC)

        Vimeo is a video content visualization service provided by Vimeo, LLC that allows this Application to incorporate content of this kind on its pages.

        Personal data collected: Cookie and Usage data.
        Place of processing: USA – Privacy Policy

      • Widget Youtube Video (Google Inc.)
        Youtube is a video content visualization service provided by Google Inc. that allows this Site to incorporate content of this kind on its pages..

        Personal data collected: Cookie and Usage data.
        Place of processing: USA – Privacy Policy

      • Google Maps (Google Inc.)
        Google Maps is a map visualization service managed by Google Inc. that allows this site to integrate such contents within its pages.

        Personal data collected: Cookie and Usage data.
        Place of processing: USA - Privacy Policy

V - DATA SUBJECT RIGHTS

  1. The art. 13, c. 2 of EU Regulation 2016/679 lists the user’s rights.
  2. In particular, the User has the right at any time to obtain from the Data Controller confirmation of the existence or not of personal data concerning him, even if not yet registered, and their communication in intelligible form.
    In relation to the treatments described in this privacy policy, the interested party may, under the conditions established by the GDPR, exercise the rights set out in articles 15 to 21 of the GDPR and, in particular, the following rights:
    1.  the right of the interested party to ask the holder for access to personal data (Article 15 of the EU Regulation), their updating (Article 7, paragraph 3, letter a) of the Legislative Decree 196/2003), the rectification (Article 16 of the EU Regulation), integration (Article 7, paragraph 3, letter a) of the Legislative Decree 196/2003) or the limitation of processing that concerns it (Article 18 of the EU Regulation) or to oppose, for legitimate reasons, to their treatment (Article 21 EU Regulation), in addition to the right to data portability (Article 20 EU Regulation);
    2. the right to request cancellation (Article 17 of the EU Regulation), the transformation into anonymous form or blocking of data processed in violation of the law, including those whose retention is unnecessary for the purposes for which the data are been collected or subsequently processed (Article 7, paragraph 3, letter b) of Legislative Decree 196/2003);
    3. the right to obtain the attestation that the operations of updating, rectification, integration of data, cancellation, blocking of data, transformation have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except in the case where such fulfillment proves impossible or involves a use of means manifestly disproportionate to the protected right (Article 7, paragraph 3, letter c) of Legislative Decree no. 196/2003);
  3. To exercise their rights, Users can direct a request to the contact details of the Owner indicated in this document..
    1. The requests are deposited free of charge and processed by the data controller as soon as possible, in any case within a month.
    2. Requests can be addressed to the data controller at the contact details indicated in this document, without formalities or, alternatively, using the model provided by the Guarantor for the Protection of Personal Data.
       

VI - DATA TRANSFER TO EXTRA EU COUNTRIES

  1. This site may share some of the data collected with services located outside the European Union area. In particular with Google, through google maps. The transfer is authorized and strictly regulated by Article 45, paragraph 1 of EU Regulation 2016/679, for which no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield
  2. Data will never be transferred to third countries that do not comply with the conditions set out in Article 45 and following of the EU Regulation.

VII - SECURITY OF PERSONAL DATA PROVIDED

  1. This site processes the data of users in a lawful and correct manner, adopting the appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of data. Processing is carried out using Information Technologies  and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated..
     

VIII - APPLICABILITY OF THE UPPER PROTECTION LEVEL

While most of the provisions of this document apply to all Users, some are expressly subject to the applicability of a higher level of protection to the processing of Personal Data. This higher level of protection is always guaranteed when the treatment:

  1. is performed by a Holder located in the EU; or.
  2. concerns Personal Data of Users located in the EU and is functional to the supply of goods or services for consideration or free of charge to such Users; or::
  3. concerns Personal Data of Users located in the EU and allows the Owner to monitor the behavior of such Users to the extent that such behavior takes place within the Union;
     

IX - INFORMATION NOT CONTAINED IN THIS PRIVACY POLICY

  1. Further information in relation to the processing of Personal Data may be requested at any time to the Data Controller using the contact details
     

X - CHANGES TO THIS DOCUMENT

  1. This document, published at: http://www.ristorantedaandrea.it/en/content/privacy-policy constitutes the privacy policy of this web site.
  2. It may be subject to changes or updates. Users are invited to periodically consult this page to keep up-to-date with these changes and possibly latest legislative changes

 

Latest update: 11/08/2018

Latest news

The new website of the Ristorante da Andrea -  Osteria della tonnara is online, with Magdalena Rosso's blog, a lot of photos, the newsletter and more.

1

Recent comments

No comments available.

User login

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Enter the characters shown in the image.

Seguici su Facebook

Seguici su FacebookIl Ristorante Da Andrea è su Facebook