Cookies&Policy – Terms and conditions

INFORMATION PURSUANT TO THE EU REGULATION 2016/679 (GDPR)

This communication is made pursuant to art. 13 and 14 of the European Regulation 2016/679 on the protection of personal data (hereafter “GDPR”), and subsequent amendments and additions and of the Italian legislation of reference, including Legislative Decree 101 of 10 August 2018, by Cattaneo srl with registered office in Via Vicenza 42, 0085 Rome (hereinafter also “Company”) as the owner of the processing of your personal data, and is aimed at those who interact with the company’s web services accessible electronically from address www.hostelsalessandro.com.

This information is intended to communicate to the user the methods of processing personal data concerning him.

TYPES OF DATA COLLECTED

The website offers informative and sometimes interactive content. While browsing the site www.hostelsalessandro.com can, therefore, acquire information about the visitor, in the following ways:

Navigation data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some data whose transmission is implicit in the use of Internet communication protocols. This is information that CANNOT be associated with identified interested parties or with personal data. This category of data includes only the IP addresses, the addresses in URI (Uniform Resource Identifier) ​​of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing; at present the data on web contacts do not persist for more than seven days.


Data provided voluntarily by the User
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of the sender’s email address, as well as any other personal data entered, necessary to respond to requests. We do not collect or use personal information relating to those who visit the website.

Visitors remain anonymous. The only exception concerns the information for personal identification necessary for the execution of the booking service and for the subsequent provision of hotel hospitality services requested by the user / interested party.

We do not collect or use personal information relating to those who visit the website. However, in case of booking through the site, the user is required to provide name, billing address, e-mail and telephone number. Cattaneo s.r.l. will use this information only for the processing of the booking and to send specific information relevant for the confirmation of the same such as, for example, receipt, booking code and conditions. The information provided will not be used for commercial purposes and will not be sold, transmitted, licensed or otherwise forwarded to third parties. Information on payment methods and credit card data are managed by Cattaneo s.r.l. only for the time necessary to verify the payment; this information will be deleted upon successful completion of the transaction and in any case kept no later than 30 days after the Customer’s stay. The only person who can acquire the reservation data is our online booking service provider hostelworld l.t.d. (to which the customer spontaneously provides the data before giving it to Cattaneo s.r.l.) who is responsible for processing the online reservations together with the credit card issuing companies that can be contacted to verify their validity. In any case, the administrator of the payment site is solely responsible for the aforementioned data and has assured Cattaneo s.r.l. in writing. the adoption of scrupulous procedures to protect navigation data and the use of special care to keep the credit card data provided during online reservations, as well as its adaptation to the GDPR legislation.

 

OPTIONAL DATA SUPPLY
Apart from what has just been specified in relation to navigation data, the user is free to provide the requested personal data – via the collection form or the “contacts” section of the on-line reservations office – to obtain the sending of material explanatory or other communications or information. Their absence, however, may make it impossible to obtain what is requested. Sending data involves the acquisition of the sender’s e-mail address and all other personal references entered, necessary to respond to requests.

 

METHOD OF TREATMENT
Personal data are processed with IT tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are respected to prevent data loss, illicit or incorrect use and unauthorized access.

The treatment is carried out through organizational methods, and with logic, strictly related to the purposes indicated. In addition to the Data Controller, specific categories of Authorized persons involved in the organization of the site may have access to the data (administrative, commercial, legal, system administrators) or external subjects (such as suppliers of third party technical services, hosting providers, IT companies, communication agencies ) appointed by the Data Controller as Data Processors.

The updated list of Managers can always be requested from the Data Controller by sending a specific communication to the Company at the addresses indicated in the “Contact details” section of this information.

PLACE

The data collected by the Company will be kept at the operational headquarters and will be shared and transferred only to the third parties indicated in this Privacy Policy.
In carrying out the business activity and exclusively for the same purposes listed in this Policy, personal data may be transferred to the following categories of recipients:

• Commercial partners of Cattaneo s.r.l. to which the same communicates the data exclusively to fulfill the contractual obligations or services requested;

• People, companies or professional firms that provide assistance and advice to Cattaneo s.r.l. in accounting, administrative, legal, tax and financial matters;

• Subjects whose right to access the data is recognized by legal provisions or by orders from the authorities;

The updated list of data processors is available at the owner’s registered office and will be provided upon written request.

 

PROTECTION OF PERSONAL DATA
Cattaneo s.r.l. conducted a study on “impact assessment” and “risk assessment” in relation to the processing of data according to the GDPR: it has therefore prepared and implemented all the technical and organizational measures necessary to provide an adequate level of security and confidentiality of personal data, in order to avoid destruction, accidental or unlawful alteration, loss, disclosure to third parties, unauthorized access and, in general, any possible data breach.

These measures take into account:
– the state of the art of technology;
– the costs of its implementation;
– the nature of the data;
– the risk of treatment.

For the management of your personal data, the Cattaneo:
– collects and processes only those that are appropriate and pertinent to the contractual purposes or to the information or services requested and, in any case, not excessively according to the regulatory provisions
– ensures that personal data remain updated and accurate and adequately deleted

TIMES
Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.
The billing data will be kept only for the fiscal time required by law; the data of the user who requests an online quote but does not make purchases will be immediately deleted.
The User can always request the interruption of the Treatment or the cancellation of the Data from the Data Controller by sending a specific communication to the Company at the addresses indicated in the “Contact details” section of this information.

PURPOSE OF THE PROCESSING OF THE DATA COLLECTED
The User Data are collected to allow the Owner to provide the contractual performance or services requested and, further, for the following purposes: contact the User for any problems relating to the booking; interact with social networks and external platforms; Registration; Access to accounts on third party booking services; Payment management; Monitoring of third-party online booking sites; Address management and sending of email messages upon User request (quotes, etc … no marketing); Statistics; Displaying content from external platforms; Commercial affiliation; Interaction with support and feedback platforms; User database management; Management of support and contact requests and Hosting and backend infrastructure.
The types of Personal Data used for each purpose are indicated in the specific sections of this document.

RIGHTS OF THE INTERESTED PARTIES
The rights related to personal data that Cattaneo s.r.l. treats are:
Right to rectification: you can obtain the rectification of your personal data or communicate it to us. Cattaneo s.r.l. makes reasonable efforts to ensure that the personal data acquired is accurate, complete, updated and relevant, based on the most recent information available;

Right to limitation: you can obtain a limitation on the processing of your personal data if:

You contest the accuracy of your personal data in the period in which the Company must verify its accuracy;

The treatment is illegal and you request a limitation of the treatment or the cancellation of your personal data;

There is no longer any part of Cattaneo s.r.l. the need to keep your personal data but you need it to ascertain, exercise or defend your rights in court or

You object to the treatment while Cattaneo s.r.l. check if its legitimate motivations prevail over yours.

Right to access. You can ask the Company for information on the personal data stored about you, including information on which categories of personal data Cattaneo s.r.l. owns or controls, for what purpose they are used, where they were collected (if not directly by you), and to whom they were eventually communicated;

Right to portability. Following your request, Cattaneo s.r.l. will transfer your Personal Data to another Data Controller, if technically possible, provided that the treatment is based on your consent or is necessary for the execution of a contract;

Right to cancellation. You may obtain the cancellation of your personal data from the Company if:

Personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
You have the right to object to further processing of your personal data and exercise this right to object;

Personal data have been unlawfully processed.

Unless the processing is necessary by virtue of legal or fiscal obligations in order to establish, exercise or defend a right in court.

Right to object. You can object to the processing of your personal data at any time, on the condition that the processing is not based on your consent but on the legitimate interests of companies or third parties. In such cases Cattaneo s.r.l. it will no longer retain your Personal Data unless it is possible to demonstrate to you the binding and legitimate reasons, a prevailing interest in the processing or assessment, or the exercise or defense of a right in court. If you object to the treatment, please specify whether you intend to delete your personal data or limit its treatment;

Right to file a complaint. In the event of a supposed violation of the current privacy law, you can lodge a complaint with the competent authorities of your country or the place where the alleged violation would have occurred.

INFORMATION ON COOKIES

Cookies are used on our website to allow users a better browsing service and experience. Cookies are small files recorded on your hard drive. This allows for easier navigation and greater ease of use of the site itself.

In accordance with EU regulation No. 679/2016, no explicit consent will be required for the use of cookies because only session cookies will be used, i.e. cookies that are instrumental to the correct functioning of the website. No use will therefore be made of cookies for the transmission of personal information, nor will c.d. persistent cookies of any kind, or systems for tracking users. The cookies used on the www.hostelsalessandro.com site are not intended to store specific information regarding users who access the site and do not store personal data, but are necessary to allow safe and efficient exploration of the site.

If you disable cookies there are no consequences; however, if the user blocks or deletes a cookie, it may be impossible to restore the preferences or personalized settings previously specified and our ability to make browsing faster.

 

CHANGES TO THIS PRIVACY POLICY
Any future changes or additions to the processing of personal data as described in this Privacy Policy will be published on this site (hostelsalessandro.com/privacy-policy/)

DATA CONTROLLER, DATA PROTECTION REFERENCES and CONTACT DATA
To exercise the rights referred to in articles 15 and following of EU Regulation 2016/679, you can contact the Data Controller: Cattaneo s.r.l. with registered office in Via Vicenza 42, 0085 ROME, or by email to info@hostelsalessandro.com