This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.
Privacy Policy
PRIVACY & COOKIE POLICY - EFFECTIVE 26/07/2021
In accordance with our commitment and care for the protection of personal data, we inform you about the manner, purpose and scope of communication and dissemination of your personal data and your rights, in accordance with Article 13 of the GDPR, not only to comply with legal obligations, but also because transparency and fairness are a fundamental part of our business.
The term ‘personal data’ refers to any information concerning an identified or identifiable natural person. For example, personal data are names, an identification number, location data, an online identifier.
USERS ARE INFORMED:
that the data will be processed in accordance with the legal provisions of the aforementioned legislation and the confidentiality obligations provided therein in accordance with the principles of fairness, lawfulness, transparency and protection of your privacy.
LEGAL BASIS
The processing of customer data is based on the consent provided directly by the customer when accessing the portal. The processing is necessary to allow the use or consultation of this site by visitors and users who explicitly approve this privacy policy and consent to the processing of their personal data in the manner and for the purposes described below, including the possible disclosure to third parties if necessary for the provision of a service.
1.The Data Controller and Data Processor
The data controller, pursuant to art. 28 of the Code is the company Magia Srl, with registered office in Alagna, Piazza degli Alberghi – 13021 VC – mail cristallo@mhhotels.it – tel. +39 349 8791362 – P.I. 027326000
2.Types of processed data
2.1Browsing Data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected in order to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment.
This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation. The data could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site only at the request of the relevant supervisory bodies.
2.2Browsing data for profiling purposes
Navigation data for profiling purposes (profiling cookies) provided indirectly through the use of the service itself and obtained and analysed with the user’s consent.
2.3Data voluntarily provided by the user
The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, which is necessary in order to reply to requests, as well as any other personal data included in the message.
Through our site, you can also provide us with data by filling in the contact forms (forms) on the portal; your consent is required for the processing of personal data relating to requests for information sent through the forms, since your contact details (e.g. e-mail, name, surname, etc.) may be used for direct marketing activities, such as sending advertising material and communications with informative and/or promotional content in relation to our activity by e-mail. Failure to consent does not imply any consequence on the possibility of consulting the site, except for the renunciation of receiving advertising and promotional material.
3.Optional supply of data
Apart from what has been specified for navigation data, the user is free to provide the personal data indicated in the request forms to our company or in any case indicated in contacts to request the sending of informative material or other communications. Failure to provide them may make it impossible to obtain what has been requested.
4.Methods of processing
Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent loss of data, unlawful or incorrect use and unauthorised access.
5.DISSEMINATION, COMMUNICATION AND PARTIES ACCESSING THE DATA
Your personal data will not be disclosed, but may be communicated where necessary for the provision of the service to third parties (such as third party technical service providers, hosting providers, IT companies) appointed, if necessary, as Data Processors by our Company for tasks of a technical or organisational nature instrumental to the provision of services.
In this section we provide you with information about circumstances in which your personal data may be disclosed for the provision of the service both within and outside the European Economic Area (EEA). The transfer of data to these third parties is protected by appropriate safeguards. We have gone through all necessary steps to ensure that the third parties involved process the information provided in accordance with the requirements of the GDPR.
Name of third parties, activities processed, location of data, privacy policy of third parties:
Aruba Business, Hosting e Service Provider, Italia (business.aruba.it/informativa.pdf)
Google Inc., Analisi statistica delle visite, Stati Uniti (policies.google.com/privacy)
WordPress.org, Content Management System, Olanda (wordpress.org/about/privacy/)
Facebook.com, Social Network, Stati Uniti (facebook.com/policies/cookies/)
About Web Srl, Società Informatica, Italia (aboutweb.it/cookie-policy-e-privacy/)
6.RIGHTS OF THE DATA SUBJECT
We guarantee that you can exercise your rights under Article 12 of the GDPR at any time. In particular, you have the right
– to know whether the Controller holds and/or processes personal data relating to you and to access them in full, including by obtaining a copy (Art. 15 Right of access)
– to the rectification of inaccurate personal data or the integration of incomplete personal data (Art. 16 Right of rectification);
– to the deletion of personal data held by the Controller if one of the reasons set out in the GDPR applies (Right to Deletion, 17);
– to ask the Controller to limit the processing to only certain personal data, if one of the grounds provided for by the GDPR exists (Art. 18 Right to Limit Processing);
– to request and receive all your personal data processed by the Controller, in a structured, commonly used and machine-readable format or to request transmission to another controller without hindrance (Art. 20, Right to Portability)
– to object in whole or in part to the processing of data for the purpose of sending advertising material and market research (Art. 21, Right to object)
– to object in whole or in part to the processing of data in automatic or semi-automatic mode for profiling purposes (so-called Consent).
You may exercise these rights by notifying the Data Controller by e-mail at cristallo@mhhotels.it .
In addition, you always have the right to lodge a complaint with the Data Protection Authority, which can be contacted at garante@gpdp.it or via the website http://www.gpdp.it.
COOKIE POLICY
Required Cookies:
Technical cookies for which consent is not required
This website may use, also in combination with each other, the following types of cookies classified according to the indications of the Privacy Guarantor and the Opinions issued at European level by the Working Group ex art. 29 of the GDPR:
– Session, these are the cookies that are not stored persistently on the user’s computer and are deleted when the browser is closed, they are strictly limited to the transmission of session identifiers necessary to allow the safe and efficient exploration of the site, avoiding the use of other IT techniques potentially prejudicial to the confidentiality of users’ browsing.- Persistent, are cookies that remain stored on the computer’s hard drive until they expire or are deleted by users/visitors. Through persistent cookies, visitors accessing the site (or any other users using the same computer) are automatically recognised each time they visit. Visitors can set their computer’s browser to accept/reject all cookies or to display a warning each time a cookie is proposed, so that they can decide whether or not to accept it. Users may, however, change the default configuration and disable cookies (i.e. block them permanently) by setting the highest level of protection.
– Technical, these are cookies used for authentication, to use multimedia content such as flash players or to allow the choice of navigation language. It is therefore generally not necessary to obtain the user’s prior and informed consent. This also includes cookies used to statistically analyse access/visits to the site only if they are used exclusively for statistical purposes and through the collection of information in aggregate form.
– Non-technical, are all cookies used for profiling and marketing purposes. Their use on users’ terminals is forbidden if they have not been adequately informed beforehand and have not given valid opt-in consent. These types of cookies are, in turn, grouped according to the functions they perform in:
✓ Analitycs. are cookies used to collect and analyse statistical information on access/visits to the website. In some cases, associated with other information such as the credentials entered to access restricted areas (one’s e-mail address and password), they can be used to profile the user (personal habits, sites visited, content downloaded, types of interactions carried out, etc.).
✓ Widgets, this category includes all those graphic components of a programme’s user interface, the purpose of which is to facilitate the user’s interaction with the programme itself. Examples of widgets are facebook, google+, twitter.
✓ Advertsing, cookies used to advertise within a site fall into this category. Google, Tradedoubler fall into this category.
✓ Web beacons, this category includes code snippets that enable a website to transfer or collect information by requesting a graphical image. Web sites may use them for various fields, such as analysing the use of websites, monitoring and reporting on advertisements and personalising advertisements and content.
Cookie Preferences/ Statistical/ Marketing
Facebook
Facebook, if you give your consent, may process your personal data in order to provide you with an enhanced browsing experience with social network features and services facebook.com/policies/cookies/
Twitter
Twitter, if you give your consent, may process your personal data in order to provide you with a browsing experience enriched by social networking features and services https://
support.twitter.com/articles/20170519-use-of-cookies-and-other-similar-technologies-by-twitter
Google+
If you give your consent, Google may process your personal data in order to provide you with an enhanced browsing experience through social networking features and services
www.google.com/policies/privacy/
Linkedin
Linkedin, if you give your consent, may process your personal data in order to provide you with a browsing experience enriched with social networking features and services http://it.linkedin.com/legal/cookiePolicy.
Pinterest
Pinterest, if you give your consent, may process your personal data in order to provide you with a browsing experience enriched by social networking features and services help.pinterest.com/
Google AdSense (Google Inc.)
Google AdSense is an advertising service provided by Google Inc. This service uses the “Doubleclick” cookie, which tracks the use of this online space and the user’s behaviour in relation to the advertisements, products and services offered. The User can decide at any time not to use the Doubleclick cookie by deactivating it: google.com/settings/ads/onweb/optout?hl=en.
Google Analytics
Activated Google Analytics advertising functions, the implemented advertising functions are: Google Analytics demographic and interest data reports. Activating these advertising functions enables Google Analytics to collect traffic data via Google advertising cookies and anonymous identifiers, in addition to the data collected via a standard implementation of Google Analytics.
The Site collects and uses data from Google’s interest-based advertising or third party audience data (e.g. age, gender and interests) from Google Analytics and Google Analytics features implemented based on display advertising (e.g. remarketing, demographics and interest reports from Google Analytics) for statistical and audience analysis purposes only. Data is collected and aggregated anonymously using proprietary or third-party software (e.g. Google Analytics).Third-party vendors, including Google, use both proprietary cookies (such as the Google Analytics cookie) and third-party cookies (such as the DoubleClick cookie) to inform, optimise and serve ads based on users’ previous visits to the sites.
You can disable Google Analytics for display advertising and customise Google Display Network ads in the following ways:
– Using the Ads Settings: https://www.google.it/settings/ads
– Through the currently available components for deactivating Google Analytics for the Web: https://tools.google.com/dlpage/gaoptout/
COOKIE MANAGEMENT
If you have any doubts or concerns about the use of cookies, you can always take action to prevent cookies from being set and read, e.g. by changing the privacy settings in your browser to block certain types of cookies. As each browser – and often different versions of the same browser – also differ considerably from one another, if you prefer to do this yourself via your browser preferences, you can find detailed information on the necessary procedure in your browser’s help file. For an overview of how to take action for the most common browsers, please visit http://www.cookiepedia.co.uk/index.php?title=How_to_Manage_Cookies.
Types of cookies used by the Site
Cookies
Domain
Expiry date
Third-party cookies
Permanent cookie
Session cookies