Privacy Policy for Villa Nocetta Rome
1. Introduction
At Villa Nocetta Rome, accessible via villanocetta-rome.com, we are fully committed to safeguarding the privacy and personal data of our users. We recognize the importance of protecting your information and ensuring that your data is handled with the highest standards of confidentiality, transparency, and security. Whether you are a visitor to our website, a prospective guest, or an existing customer, your trust is paramount. This Privacy Policy outlines how we collect, use, store, and protect your personal data in accordance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.
2. Scope of the Policy and Data Controller Role
This Privacy Policy applies to all information collected through your use of villanocetta-rome.com (the “Site”) and any related services. The data controller responsible for the processing of your personal data is Villa Nocetta Rome. If you have any questions or concerns regarding this Policy or your personal data, please contact our privacy team at [email protected].
3. Categories of Data Processed
We may process the following categories of personal data as part of our legitimate operations and service delivery:
a. Usage Data
Information such as your IP address, browser type, device type, operating system, date/time of access, pages visited, session duration, and referring URLs. This data helps us understand how visitors interact with villanocetta-rome.com.
b. Account Data
Your name, billing and shipping addresses, email address, phone number, and other contact details you provide when creating an account or making bookings.
c. Profile Data
Details about your preferences, historical purchases, and behavioral trends, including your interactions with our services.
d. Communication Data
Records of your interactions with our customer support team, contact form submissions, and other correspondence.
e. Technical Data
Information regarding your system configuration, device model, screen resolution, language settings, and other technical diagnostics used to optimize your experience on our Site.
f. Transaction Data
Information linked to bookings and purchases, including payment confirmation data, method of payment, transaction date, booking history, and associated delivery or fulfilment details.
g. Preference Data
Your marketing preferences and consents, areas of interest, and any responses provided in surveys or promotional campaigns.
4. Legal Bases for Processing
We rely on several lawful bases for processing your personal data:
– Legitimate Interests: To enhance user experience, improve security, and optimize website performance.
– Contractual Necessity: To fulfil bookings or provide services as requested by you.
– Legal Obligations: For compliance with legal duties such as record-keeping or fraud prevention.
– Consent: For optional services such as email marketing or analytics where you have provided clear permission.
Where consent is used as the legal basis, you may withdraw your consent at any time by contacting [email protected].
5. Your Rights
Under applicable data protection laws, you have the following rights:
– Right of Access: To request a copy of personal data we hold about you.
– Right to Rectification: To correct inaccurate or incomplete data.
– Right to Erasure: To request deletion of your personal data where there is no overriding lawful reason for its retention.
– Right to Restrict Processing: To limit the processing of your data in certain circumstances.
– Right to Data Portability: To request transmission of your data to another provider in a structured, commonly used format.
You can exercise these rights by contacting us at [email protected].
6. Security Measures
We take data security seriously and implement a variety of physical, administrative, and technical safeguards to ensure your data is protected. These include:
– Encryption of data during transmission and storage.
– Multi-level access controls and authentication protocols.
– Regular data backups and redundancy systems.
– Ongoing training for personnel on data privacy and security best practices.
7. International Transfers
Where personal data is transferred outside the European Economic Area (EEA) or California, we ensure that adequate safeguards are in place. We rely on approved Standard Contractual Clauses and other legally recognized transfer mechanisms to ensure data protection equivalent to EU and U.S. standards.
8. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected:
– Account and Transaction Data: Retained for up to 7 years for compliance, financial auditing, and service records.
– Communication and Support Data: Retained for 3 years after the last contact.
– Marketing Data: Retained until consent is withdrawn or after 2 years of inactivity.
– Usage, Technical, and Preference Data: Retention limited to 12 months for analytics and service improvement purposes.
Once the applicable retention periods have lapsed, personal data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies to enhance your browsing experience on villanocetta-rome.com. Cookies are small files stored on your device that help the website function and gather analytical information.
Types of cookies we use:
– Essential Cookies: Required for site functionality and security, such as session management and login validation.
– Functional Cookies: Enable enhanced features such as remembering your preferences and language choices.
– Analytics Cookies: Collect anonymous data to help us understand site traffic and usage patterns.
– Performance Cookies: Measure the performance of our pages and content delivery metrics.
10. Cookie Management and Compliance
Upon visiting our Site, you are presented with a cookie consent banner that allows you to manage your preferences. You may:
– Accept all cookies
– Customize preferences
– Reject non-essential cookies
You can also clear or block cookies using your browser settings. We honor Do Not Track signals in compliance with CCPA and GDPR requirements.
11. Children’s Privacy
We do not knowingly collect or process personal data from children under the age of 13. If we become aware that we have unintentionally collected such data, we will take steps to delete it promptly. Parents or guardians who believe their child has submitted personal data via villanocetta-rome.com should contact us at [email protected].
12. Policy Updates and User Notifications
We may update this Privacy Policy from time to time to reflect changes in legal obligations, technologies, or our business practices. Any substantial modifications will be communicated transparently on villanocetta-rome.com and, where appropriate, via direct notice. Continued use of the Site constitutes acknowledgment of the most current version of this Policy.
13. Contact Information
If you have any questions, concerns, or requests related to this Privacy Policy or the way we handle your personal data, please contact us:
Email: [email protected]
We are committed to full compliance with applicable data protection laws and dedicated to protecting your rights and personal information. Please do not hesitate to reach out for further information or to exercise your data privacy rights.