menu
menu
Privacy Policy 1

Privacy Policy

INFORMATION ON THE PROCESSING OF PERSONAL DATA - HOTEL MARAD

We recognize the importance of the protection of personal data and consider its protection one of the main objectives of our activity. Before communicating any kind of personal data to us, please read carefully this privacy policy, which is intended to:

  • The MARAD hotel website https://www.hotelmarad.it/
  • The Facebook page https://www.facebook.com/HotelMarad
  • The Instagram page https://www.instagram.com/hotel_marad


But not for other external websites that can possibly be consulted by the user through links.

This information is provided, pursuant to Art. 13 of Legislative Decree No. 196/2003 and Art. 13 EU Regulation 2016/679 (hereinafter, “GDPR”) to users who interact with the websites and pages on social networks mentioned above. Additional information may be provided within the different access channels, divided on the basis of the topics covered. Other disclosures may be provided within the Site in relation to specific services (Blastness - room reservations).

Data Controller

The Data Controller of data relating to identified or identifiable persons who have consulted the site www.marad.it, is Hotel Marad S.r.l. with headquarters in Via Benedetto Croce, 20 - 80059 Torre del Greco (NA). It can be contacted at policyprivacy@marad.it.

Regarding the Facebook page https://www.facebook.com/HotelMarad and Instagram https://www.instagram.com/hotel_marad, Hotel Marad is Co-Processor of the statistical data jointly with Facebook Ireland Limited (“Facebook Ireland”).

Lawfulness of Processing

The processing of personal data is carried out on the basis of the principle of lawfulness of the consent expressed by the data subject for one or more specific purposes. (Ref. Art. 6 paragraph a) of the GDPR).

Purposes of the Processing.

Personal data voluntarily provided will be processed for the following purposes:

  • Booking hotel services
  • Administrative-accounting activities in general and for the fulfilment of legal obligations
  • Navigation on the websites and social pages mentioned above.
  • Interaction with social networks;
  • Possible contact request, with sending of requested information;
  • Subject to consent, may be used for Marketing and Advertising purposes. Registration for the newsletter allows registration on a mailing list through which messages of a commercial and promotional nature will also be sent.


Legal basis for processing

The Controller processes Personal Data related to the User in case one of the following conditions exists:

  • The processing is necessary for the performance of a contract with the User and/or the execution of pre-contractual measures;
  • The processing is necessary to fulfill a legal obligation to which the Controller is subject;
  • Processing is necessary for the performance of a task of public interest or the exercise of public authority vested in the Controller;
  • Processing is necessary for the pursuit of the legitimate interest of the Controller or third parties.
  • However, it is always possible to request the Data Controller to clarify the concrete legal basis of each processing and in particular to specify whether the processing is based on law, required by a contract or necessary to conclude a contract.


Optional nature of the Conferment of Data

Apart from what has been specified for navigation data, the provision of personal data by the data subject for the purposes described in the previous paragraph is to be considered optional. Failure to provide them may result in the inability to take advantage of certain services provided by the site.

Methods of Data Processing.

Personal data are processed by automated means for the time strictly necessary to achieve the purposes for which they are collected in accordance with the principles of lawfulness, purpose limitation and data minimization, pursuant to Article 5 of the GDPR and in compliance with the mandatory time limits prescribed by law. Specific security measures are observed to prevent data loss, unlawful or incorrect use and unauthorized access.

Communication and/or Dissemination of Data

Your data, subject to processing, will not be disseminated but may be communicated to companies contractually linked to HOTEL MARAD, in accordance with and within the limits of the GDPR. Personal data may be transferred abroad to non-EU countries within the scope and limits of the GDPR, in order to comply with contracts or related purposes. Data may be disclosed to third parties belonging to the following categories:

Individuals who provide services for the management of the information system used by HOTEL MARAD and telecommunications networks (including e-mail);

  • Studies or companies as part of assistance and consulting relationships;
  • Competent authorities for fulfilment of obligations of laws and/or provisions of public bodies, upon request.

The subjects belonging to the above categories perform the function of Data Processor, or operate completely independently as separate Data Controllers. The list of data processors is constantly updated and available at the HOTEL MARAD head office. Any further communication or dissemination will take place only with your explicit consent.

Data Retention Period

At the end of the performance or provision of the service, personal data will be retained exclusively for historical or statistical purposes, in accordance with the law, regulations, EU legislation and codes of ethics and good conduct signed in accordance with Article 40 of EU Reg. 2016/679, for a period as per current legislation, or, if not subject to any law, for a period not exceeding five years. Beyond that period, personal data will be kept anonymously, or will be destroyed.

Possible Existence of an Automated Decision Making Process

The owner informs the data subject that there is no automated decision-making process on this site, so in particular there is no profiling system.

Minor

This Site and the Owner's Services are not intended for minors under the age of 16, and the Owner does not intentionally collect personal information referring to minors. In the event that information about minors is unintentionally recorded, the Owner will delete it in a timely manner upon users' request.

Rights of Data Subjects

The “data subjects”, i.e. natural persons, legal persons, entities or associations, to whom the data refer have the right, at any time, to obtain confirmation of the existence or non-existence of the same data and to know its content and origin, verify its accuracy or request its supplementation or updating, or rectification pursuant to EU Reg. 2016/679: Articles 15, 16, 17, 18, 19, 20, 21, 22 - Rights of the Data Subject. Pursuant to the same articles, data subjects also have the right to request the deletion, transformation into anonymous form or blocking of data concerning them, processed in violation of the law, as well as to oppose in any case, for legitimate reasons, their processing.

Methods of exercising rights

Regarding the exercise of these rights and including a signed request indicating the desired action and a photocopy of an identification document, the Data Subject may contact the DATA CONTROLLER by:

Registered mail with return receipt addressed to:

- Hotel Marad S.r.l.

Via Benedetto Croce n. 20

80059 - TORRE DEL GRECO (NA)

E-mail addressed to: policyprivacy@marad.it

Data security

All sections of the HOTEL MARAD website use the SSL* communication protocol. This means that information traveling through the Internet from your computer to our server is encrypted and made indecipherable to any outsider. This technology ensures and guarantees that your data will not be intercepted, manipulated or stolen in any way. In this way, payment through the Internet is to date as secure as direct purchase. *SSL (Secure Socket Layer) is a standard Internet security technology. It applies a system of encryption (scrambling) that ensures maximum confidentiality of data transmitted to us. This prevents illicit entry or interception into a system while data is circulating on the Internet.

Type of Data Processed and Method of Collection

Navigation data - log files

It is possible to access the Website without the user being asked to provide any personal data. The computer systems and applications dedicated to the operation of this website detect, in the course of their normal operation, certain data (the transmission of which is implicit in the use of Internet communication protocols) not associated with directly identifiable users. The data collected include the IP addresses of users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request and the numerical code indicating the status of the response given by the server (successful, error, etc.).

These data are processed, for the time strictly necessary in accordance with the law in force and could be used to ascertain responsibility in case of hypothetical computer crimes against the site.

Data provided voluntarily by the user

The voluntary and explicit sending of electronic mail to the addresses indicated in the different access channels of this site entails the subsequent acquisition of the address and data of the sender/user, necessary to respond to the instances produced and/or provide the requested service. It is assured, however, that such processing will be based on the principles of fairness, lawfulness and transparency and protection of confidentiality as indicated in the GDPR.

Specific functions and services

BLASTNESS

Web site management; Reservation management; Cookie consent collection and management; Newsletter; Business intelligence

Place of data processing: European Union -

Privacy Policy present in the hotel reservation form.

Google Analytics with anonymized IP (Google Inc.)

Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses the personal data collected for the purpose of tracking and examining the use of this Site, compiling reports and sharing them with other services developed by Google. Place of processing: USA - EU-US Privacy Shield - Privacy Policy

Google Maps (Google Inc.)

Google Maps is a service accessible directly from the website www.marad.it that allows the search and display of maps (in this case the geographical positioning of the hotel and any directions to get there). Place of processing: USA - EU-US Privacy Shield - Privacy Policy

Facebook (Facebook) Widget.

The “Like” button and Facebook social widgets are services for interaction with the social network Facebook, provided by Facebook Inc.

Place of processing: IRELAND - Privacy Policy

Instagram Widgets (Instagram)

The Instagram button and Instagram social widgets are interaction services with the Instagram social network, provided by Instagram Inc.

Place of processing: IRELAND - Privacy Policy

Update

This document was updated on: June 2024