PRIVACY POLICY

INFORMATION NOTICE ON THE PROCESSING OF PERSONAL AND SENSITIVE DATA IN ACCORDANCE WITH ARTICLES 13 AND FOLLOWING OF EU REGULATION 2016/679

Pursuant to Articles 13 and following of EU Regulation 2016/679 and regarding the personal data that Pet Hotel S.r.l. will process upon registration on the website lamaisonsissy.it, we inform the user of the following:

  1. Data Controller
    The Data Controller is Pet Hotel S.r.l., with registered office at Via Sannio, 18 – 20137 Milan, Italy.
    VAT No. 13175500969.
  2. Purpose of Data Processing
    The data processing is carried out to ensure the proper and complete provision of the services requested by the user. Furthermore, the data provided may be used for marketing activities, within the limits permitted by law, and, upon explicit consent, for sending newsletters regarding our news, offers, and updates, including details about our products and services, special offers, discounts or promotions, new products or services, and upcoming events or contests.

Your personal data may be processed, without your consent, in cases where such processing is necessary to comply with obligations arising from legal provisions in civil, tax, anti-money laundering matters, as well as any other EU regulations, codes, or procedures approved by competent authorities and institutions.

Moreover, your personal data may be processed to fulfill requests from the administrative or judicial authorities and, more generally, from public entities in compliance with legal formalities.

Your personal data will also be processed for purposes related and/or connected to the activities carried out by the Data Controller, specifically:

  • For individuals registering on the site or contacting us via the site or email to provide the services they have requested by entering data on the site or sending emails, as well as for data storage for the operational and administrative management of contacts. Please note that during the negotiation phase, consent is not required if the processing is necessary to fulfill specific requests before the conclusion of a contract.
  • For the execution of the contractual relationship and the ancillary and/or related services. In these cases, we inform you that, pursuant to applicable data protection legislation, your consent is not required if the processing is necessary to fulfill obligations arising from a contract.
  • For payment management (with related processing – under legal terms – of payment data, including credit or prepaid card details) for requested services and any associated economic charges, as provided by the contract; or for compliance with legal, accounting, tax, administrative, and contractual obligations related to the provision of requested services.
  • For analysis and improvement of provided services, such as conducting surveys to obtain customer suggestions.
  • For providing technical support to the customer, if included in the contract.
  • Your personal data may also be processed to defend a right in court or whenever necessary to establish, exercise, or defend a right of the Data Controller.
  • For evaluating customer satisfaction regarding the quality of provided services.
  • For extraordinary transactions and leases or transfers of business, in favor of other parties involved in the contracts.

We inform individuals who register on the site or contact us via the site or email that navigation and consultation of the site do not require or allow any profiling activities.

In any case, all data collected during navigation is processed anonymously and may be used without the user’s explicit consent solely for access purposes to the site lamaisonsissy.it and for presenting the services of Pet Hotel S.r.l.

Specifically, regarding navigation data, it is noted that the IT systems and software procedures used for the operation of this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.

These are pieces of information that are not collected to be associated with identified data subjects but, by their very nature, could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the server’s response (successful, error, etc.), and other parameters related to the user’s operating system and IT environment.

These data are used solely to derive anonymous statistical information on site usage and to ensure proper functioning.

Additionally, data may be used to ascertain liability in case of potential IT crimes against the site.

Your personal data may also be processed, upon your optional and explicit separate consent, for the following additional purposes related to the Data Controller’s activities: market research, economic and statistical analysis; commercial promotion of the Data Controller’s services, sending advertising/informative/promotional material, and participation in initiatives and offers aimed at rewarding the Data Controller’s customers.

  1. Data Communication
    Personal data may be accessed by individuals authorized by the Data Controller and may be communicated for the purposes stated in point 2 to third-party providers of consultancy and assistance services, banks, group companies of the Data Controller, the commercial network, and, more generally, to all those public and private entities whose communication is necessary for the proper fulfillment of the purposes indicated in point 2 or for legal obligations.
  2. Data Transfer Abroad
    Personal data may be transferred to countries within the European Union and to third countries outside the European Union.
  3. Data Retention Period
    The personal data provided will be retained for the entire duration of the relationship between Pet Hotel S.r.l. and the user.

DATA SUBJECT RIGHTS

  1. Right of Access
    The data subject has the right to request access to their personal data from the Data Controller. Upon request, the Data Controller provides a copy of the processed personal data. For additional copies requested by the data subject, the Data Controller may charge an administrative cost. If the data subject submits the request electronically, and unless otherwise specified, the information is provided in a commonly used electronic format.
  2. Right to Rectification
    The data subject has the right to obtain from the Data Controller the rectification of inaccurate personal data concerning them without undue delay. Considering the purposes of the processing, the data subject has the right to have incomplete personal data completed, including by providing a supplementary statement.
  3. Right to Erasure (“Right to Be Forgotten”)
    The data subject, except as provided by Article 17(3) of EU Regulation 2016/679, has the right to obtain from the Data Controller the erasure of personal data concerning them without undue delay, and the Data Controller has the obligation to erase such data without undue delay where one of the cases provided in Article 17(1) of EU Regulation 2016/679 applies.
  4. Right to Restriction of Processing
    The data subject has the right to obtain from the Data Controller the restriction of processing under one of the conditions set out in Article 18 of EU Regulation 2016/679.
  5. Right to Object to Processing
    The data subject has the right to object at any time, on grounds relating to their particular situation, to the processing of personal data concerning them pursuant to Article 6(1)(e) or (f) of EU Regulation 2016/679. The Data Controller refrains from further processing personal data unless they demonstrate compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the data subject or for the establishment, exercise, or defense of legal claims.
  6. Right to Data Portability
    The data subject has the right to receive in a structured, commonly used, and machine-readable format the personal data concerning them provided to a Data Controller and has the right to transmit such data to another Data Controller without hindrance from the Data Controller to which the data were provided, in the cases provided by law and without infringing the rights and freedoms of others.
  7. Right to Withdraw Consent
    Where the processing is based on Article 6(1)(a) or Article 9(2)(a) of EU Regulation 2016/679, the data subject has the right to withdraw their consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
  8. Right to Lodge a Complaint
    The data subject has the right to lodge a complaint with the Supervisory Authority.
  9. Refusal to Provide Data
    Any refusal by the data subject to provide personal data will result in the inability to provide the requested services.
  10. Data Communication
    Personal data may be accessed by individuals authorized by the Data Controller and may be communicated for the described purposes to third parties exclusively for purposes related to the provision of requested services.
  11. Data Dissemination
    Personal data will not be subject to dissemination.