INFORMATION ON THE PROCESSING OF PERSONAL DATA UNDER ARTICLES 13-14 OF REGULATION (EU) 2016/679
DATA SUBJECTS: WEBSITE VISITORS
By virtue of the principles of fairness, lawfulness, transparency, protection of confidentiality and of data subjects’ rights with concern to the processing of personal data under Article 13 of Regulation (EU) 2016/679 (hereinafter, “GDPR”), this page provides information on the methods used for processing the personal data of the users accessing the website of AZIENDA PER IL TURISMO DELLA VAL DI FASSA SOCIETÀ COOPERATIVA (hereinafter also “Data Controller” or “APT VAL DI FASSA”) accessible on the Internet at:
The information provided herein does not concern any other website, page, or on-line services reachable through any of the hypertext links featured on the website relating to external resources.
The Data Controller is:
AZIENDA PER IL TURISMO DELLA VAL DI FASSA SOCIETÀ COOPERATIVA,
Streda Roma, 36 - 38032 Canazei (TN)
(Email: firstname.lastname@example.org, Certified E-mail (PEC): email@example.com, telephone +39 0462 609502).
DATA PROTECTION OFFICER
The Data Protection Officer designated under Article 37 of Regulation (EU) 2016/679, is Mr. Giovanni Poletto who can be contacted at the following e-mail address: firstname.lastname@example.org
PURPOSES OF PROCESSING
Your personal data shall be processed:
A) Without your express consent, for the following Service purposes:
- Enable website registration;
- Manage and maintain the website;
- Enable users to subscribe to the newsletter services provided by the Data Controller and to have access to any additional services you may request;
- Comply with the pre-contractual, contractual, and fiscal obligations arising out of any agreement in place with you;
- Comply with obligations of law and regulation, with EU legislation or with orders issued by an Authority;
- Prevent or discover fraudulent practices or actions damaging the website;
- Exercise the Data Controller’s rights, such as its right of defence in legal proceedings.
LEGAL BASIS FOR PROCESSING
The personal data indicated in this page are processed for the sole purpose of providing the service requested.
B) Exclusively with your specific and prior consent, for the following Marketing Purposes:
- sending you newsletters, commercial messages and/or advertisement material on the products or services offered by the Data Controller, to your e-mail address. Please note that if you are already a client, we may send you commercial messages concerning Data Controller’s services and products that are similar to those you have already used, unless you disagree.
- The optional, express, and voluntary sending of messages to APT VAL DI FASSA’s addresses, and the filling out and forwarding of the forms featured on the website entail the acquisition of the sender’s contact details, required to send a reply, and all the personal data included in said communications.
Specific privacy notices will be published in the website’s pages dedicated to providing specific services.
ADDITIONAL PURPOSES OF PROCESSING: NEWSLETTER
If you have expressly subscribed to our newsletter service, we may also process your data for marketing and advertising communication purposes, aimed at providing you information on promotional activities, through automated contact methods (such as e-mails and/or other mass messaging tools, etc.), and traditional contact methods (such as receiving a phone call from one of our operators), or for market and statistical surveys, if you have given your express consent and limited to the scope detailed therein.
LEGAL BASIS FOR PROCESSING
The legal basis for sending electronic and commercial communications and newsletters is your express consent, which the Data Controller asks you to provide in compliance with Article 6, paragraph 1, letter a), of the general Regulation on personal data protection.
With respect to direct marketing purposes, we should note that, by virtue of Article 6, paragraph 1, point f) of the Regulation, the Data Controller may anyway carry out this activity on the basis of its legitimate interest, irrespective of your consent and until you object to such Processing, as detailed in Recital (47) of the Regulation, which states that “the processing of personal data for direct marketing purposes may be regarded as carried out for a legitimate interest.” The User may easily object to receiving additional newsletters via e-mail, including by clicking on the dedicated link to revoke consent, which is included in each promotional e-mails and newsletters.
UNSUBSCRIBING FROM MARKETING SERVICES
You may unsubscribe from our marketing services, at any time, pursuant to and by effect of Article 7 (3) of the GPDR by clicking on the “unsubscribe” link included in such communications, or by sending a request to such effect to: email@example.com
TYPES OF DATA PROCESSED AND PURPOSES OF PROCESSING
The computer systems and software procedures used for the running of this website acquire, over the course of their normal operation, certain data which transmission is implicit to the use of Internet communication protocols.
This category of data include IP addresses or domain names of the computers used by the users connecting to the Website, the URI (Uniform Resource Identifiers) of the queries made, the time of queries, the method used to submit a query to a web server, the size of the file obtained in reply, the numeric code indicating the status of the reply from the server (successful, error, etc.) and other parameters regarding the operating system and computer environment of the user. These data are used for the exclusive purpose of checking that the Website is running properly.
Said data, required for the utilisation of web services, are also processed for the purpose of:
- obtaining statistical information on the use of the services (web pages visited, number of visitors per time interval or day, geographical area of origin, etc.);
- check that the services offered run properly.
Navigation data are stored for no longer than seven days and are deleted immediately after they are aggregated (except where the data is required for the judicial Authority to conduct investigations on criminal offences).
SHARING YOUR DATA WITH THIRD PARTIES
In order to follow up on your requests, your data may be communicated to third parties (for instance, when checking on availability and/or booking accommodation). The data shall be stored for the time strictly necessary to provide data subjects the services they requested, and in any case for no longer than 10 years. The data shall be deleted upon your request, without prejudice to the storage obligations provided by law. Your data shall not be disclosed.
The optional, express, and voluntary sending of e-mails to the addresses indicated in the Website or in the forms featured therein entails the acquisition of the sender’s address, required to reply to requests, and of any other additional data entered in the communication. Specific summary privacy notices may be featured or visualised in the Website’s sections dedicated to special services, on request, and may be submitted to the approval of data subjects.
The processing of data functional to performing said obligations is required to properly manage the agreement in place and their provision is mandatory to attain the above purposes. The Data Controller further informs you that any failure to provide mandatory data, or incorrect data being entered in one of the mandatory categories may make it impossible for the data controller to guarantee processing consistency.
The recipients of the data collected as a result of accessing the above websites shall be the following parties, designated by the Data Controller, under Article 28 of the Regulation, as Processors.
iVision s.r.l. for the websites www.isite.it, in the capacity as provider of platform development and maintenance services and operating management of the technological platforms used.
The personal data collected are also processed by the members of staff of APT DELLA VAL DI FASSA, who acts based on specific instructions provided with respect to the purposes and methods of processing.
DISCLOSURE OF DATA AND PLACE OF PROCESSING
Your personal data shall not be disclosed in any manner whatsoever.
The computer files onto which the data are processed as detailed above are located within the European Union. The personal data shall not be transferred outside the European Union.
In case of necessity, however, the Data Controller shall have the right to move the location of its computer files in Countries outside the European Union. In this case, the Data Controller guarantees henceforth that the transfer of data to non-EU countries shall be in compliance with the applicable provisions of law, stipulating, where necessary, agreements aimed at guaranteeing an appropriate level of protection and/or adopting the standard contractual clauses provided by the European Commission.
This website and the Data Controller’s services are not intended to be used by persons under the age of 18, and the Data Controller does not intentionally collect personal information regarding minors. Should such information regarding minors be accidentally recorded, the Data Controller shall delete such information without delay on request by the users.
RIGHTS OF DATA SUBJECTS REGARDING PERSONAL DATA PROCESSING
Pursuant to Articles 15, 16, 17, 18, 19, 20, 21, and 77 of Regulation EU 2016/679, we wish to remind Data Subjects that:
- they have the right to request access to their personal data, to have their personal data rectified or deleted, to restrict or object to the processing of the personal data, and to have their personal data transferred to a different data controller when the conditions apply;
- the rectification or deletion of personal data or the restriction of the processing thereof in compliance with the data subjects’ request shall be communicated by the Data Controller to each of the Processors to whom the personal data are transmitted - unless it is impossible or where it entails a disproportionate effort.
- have the right to lodge a complaint with the Privacy Supervisory Authority, following the procedures and instructions published on the Supervisory Authority’s website at garanteprivacy.it.
The above rights are not subject to any formal restrictions and can exercised free of charge.
Privacy information updated as of 21/12/2018. The Information is updated as part of a policy of constant policy information review.
The legal basis for sending commercial communications and newsletters is your express consent, which the Data Controller asks you to provide on every page of the website where you can subscribe to said services, in compliance with Article 6, paragraph 1, letter a), of the general Regulation on personal data protection.
MANDATORY OR OPTIONAL PROVISION OF DATA
The provision of data is optional; however a refusal to provide data will prevent the Data Controller to comply with newsletter subscription requests.
VISUALIZING CONTENT FROM EXTERNAL PLATFORMS
Services enabling to visualise content hosted on platforms external to the pages of this website and enabling interaction with them. In case this kind of service is installed, it may be possible, even when users do not make any use thereof, for such platforms to collect traffic data relating to the pages on which the service is installed.
LINKS TO OTHER WEBSITES
The websites we redirect users to, including (but not only) secondary websites and providers of third-party services, might have different privacy policies to the one featured here. We take no responsibility whatsoever for the privacy policies adopted by linked websites, and we encourage you to learn more about said policies.
RESTRICTIONS TO THE TRANSMISSION AND DISCLOSURE OF PERSONAL DATA
The data acquired through cookies are handled:
- by the members of staff and collaborators of this Company, appointed for processing;
- by companies appointed to carry out technical and organisational tasks on our behalf (such as providers of web services).
These companies are our direct partners and are assigned to process data. The list of the above companies is kept updated at all times and you can request it by writing us to firstname.lastname@example.org.
The data acquired using cookies may be transferred abroad, but they cannot be sold, transmitted, or disclosed to any third parties.
Privacy notice updated as of 23/08/2019. The Information is updated as part of a policy of constant policy information review.
The user of the website www.fassa.com must be informed about the following using rules that could anyway be changed by the Tourist Board Val di Fassa at any time without notice.
All the informative materials (texts and pictures) of the official website www.fassa.com are protected by copyright, if not differently specified, by quoting other sources.
The reproduction of this website contents, both by means of analog or digital devices, is not allowed without the written authorization of the Tourist Board Val di Fassa, Strèda Roma 36 - 38032 Canazei (Italy) - email address: email@example.com .
USE OF CONTENTS
Printing and using of contents are allowed solely for personal non-commercial use. The Tourist Board Val di Fassa authorizes links to the website www.fassa.com, both by means of "framing" and "deep linking".
Quoting for the purposes of criticism, study or review or to provide news is allowed only where the source "Tourist Board Val di Fassa Official Website" and the web address www.fassa.com is quoted. The copyright of texts belongs to the author himself.
Links from other websites are permitted only when specified that the link is an official one to the institutional Tourist Board Val di Fassa website www.fassa.com .
Cooperation with other websites are welcomed. To ask for the authorization please send an email to the Management of the Tourist Board Val di Fassa at the address firstname.lastname@example.org .
Part of this site contains materials submitted directly by third parties and website users who take total responsibility for what they upload. The Tourist Board Val di Fassa limits its role to the control and moderation of the contents with respect to the ruling laws, public order and decency. The Tourist Board Val di Fassa cannot be held responsible for the contents of advertisements and information obtained by using its own research systems. The portal Fassa.com could contain links to websites not directly managed and controlled by the Tourist Board Val di Fassa, but only linked to provide information, whose contents the Tourist Board cannot be considered liable for. Users who decide to visit these websites, do it at their own risk. The Tourist Board Val di Fassa cannot be considered liable for damages caused by surfing in advertisers’ websites connected by means of a link, being the Tourist Board Val di Fassa not duty bound to control the contents of index-linked websites. Nevertheless, according to the article 17 of the Legislative Decree of 9 April 2003 no. 70, the company that manages the website is duty bound: a) to inform the judicial or the administrative authority as supervisory agencies, in case it is privy to illegal activities or information related to one of its user; b) to provide, if asked by the competent authority, all the information to identify the user, eventually registered in the website, so to prevent any illegal activities.
LIABILITY RELIEF AND LIMITATIONS
The Tourist Board Val di Fassa makes all the efforts possible to carefully analyse the on-line informative materials and contents and to examine if they are constantly updated. The company anyway disclaims any responsibility for error, omission, inaccuracy or misinterpretation of the information contained within the site. Users can anyway contact the Tourist Board Val di Fassa at any time to evaluate the accuracy of the information needed.
TOURIST BOARD VAL DI FASSA
The Tourist Board Val di Fassa disclaims any responsibility for malfunctioning of the website www.fassa.com or for materials submitted for inclusion in the site by third parties whose websites can be directly linked from Fassa.com.
The Tourist Board Val di Fassa cannot be held liable for the contents published in its website or for the use made of these contents by third parties, or for external contamination due to access, interconnection, informative materials downloads or due to the software used in this website. Therefore the Tourist Board Val di Fassa will not answer for damages, losses, prejudices suffered by third parties due to their access to this website, due to the use of contents taken from this website or due to the software used in it.
Any dispute between the user and the controller of the website or operators working to implement and administrate it, relating to or arising from the access, the downloads or the use of this website or of the informative materials sent to satisfy a request, shall be determined by the Italian State and according to the Italian Law, independently from the users’ nationality or legal residence.