IT
Casa Signorile - Visit Campania

Privacy Policy

Your elegant holiday home, just minutes from Pompei, between Vesuvius and the Amalfi Coast.

Privacy Policy

pursuant to Regulation (EU) 2016/679 (“GDPR”)

1. Data Controller

The Data Controller responsible for the processing of personal data is:

Casa Signorile – holiday home
Owner: BARBATO Silveria
Address: [Via Federico Cozzolino, 22 – 84018 Scafati (SA)]
Email: info@casasignorile.com
Phone: +39 3519746208

For any request regarding the processing of your personal data or to exercise the rights described in this notice, you can contact the Data Controller using the contact details above.

2. Types of data processed

Through Casa Signorile’s website, the following categories of personal data may be processed, depending on the services used:

a) Browsing data

The IT systems and software procedures responsible for the operation of this website acquire, during normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes, for example: IP addresses, domain names of the computers used by users who connect to the site, the time of the request, the type of browser used, pages visited and other parameters relating to the user’s operating system and IT environment. These data are used exclusively to obtain anonymous statistical information on the use of the site and to check its correct functioning.

b) Data voluntarily provided by the user

The optional, explicit and voluntary sending of messages through:

  • contact forms on the website,
  • emails sent to the addresses indicated on the site,
  • requests for information or booking enquiries,

entails the subsequent acquisition of the personal data provided by the user (e.g. name, surname, email, telephone number and any additional information entered in the message).

c) Cookies and tracking tools

The website may use technical cookies that are necessary for its proper functioning and, if enabled, analytical and profiling cookies, first-party or third-party (such as statistics services, maps, social integrations). For more details, please refer to the Cookie Policy, where available on the site.

3. Purposes and legal basis of processing

Personal data collected through the website are processed for the following purposes:

3.1 Managing contact requests

Responding to requests sent via the contact form or by email (e.g. information about the property, availability, services).
Legal basis: performance of pre-contractual measures adopted at the request of the data subject (Art. 6(1)(b) GDPR).

3.2 Managing booking requests and stays at Casa Signorile

Handling availability requests, booking enquiries, confirmations and any communications related to the stay.
Legal basis: performance of a contract to which the data subject is party or of pre-contractual measures taken at the data subject’s request (Art. 6(1)(b) GDPR), as well as compliance with legal obligations (e.g. accounting, tax obligations, communication to competent authorities) under Art. 6(1)(c) GDPR.

3.3 Compliance with legal obligations

Fulfilling obligations laid down by laws, regulations, EU legislation, as well as orders from supervisory and control authorities.
Legal basis: compliance with a legal obligation to which the Controller is subject (Art. 6(1)(c) GDPR).

3.4 Protection of the Controller’s rights

If necessary, to ascertain, exercise or defend the Controller’s rights in judicial proceedings.
Legal basis: legitimate interest of the Controller (Art. 6(1)(f) GDPR).

3.5 Direct marketing and communications (optional)

Sending informative or promotional communications regarding Casa Signorile’s services (e.g. special offers, news), only where requested or with the data subject’s consent, where required.
Legal basis: consent of the data subject (Art. 6(1)(a) GDPR). You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
If the website does not carry out any marketing activities, this purpose can be removed from the final version of this notice.

4. Methods of processing and data retention

Personal data are processed using paper and/or electronic tools in accordance with the principles of lawfulness, fairness, transparency and data minimisation. Appropriate technical and organisational measures are adopted to ensure a level of security appropriate to the risk.

Data are kept for the time strictly necessary to achieve the purposes for which they were collected and, in particular:

  • Contact data for information requests: generally kept for up to 24 months from the last contact, unless longer retention is required to protect the Controller’s rights.
  • Data relating to bookings and stays: kept for the duration of the contractual relationship and, thereafter, for the time required by civil, tax and accounting laws (usually up to 10 years).
  • Data processed for marketing purposes: kept until consent is withdrawn or, in the absence of withdrawal, for a maximum period defined by the Controller and in line with the guidelines of the competent Supervisory Authority.
  • Browsing data and system logs: retained in accordance with the technical policies of the hosting and IT security providers.

At the end of the retention periods, personal data will be deleted or irreversibly anonymised.

5. Nature of data provision and consequences of refusal

The provision of data marked as mandatory in the forms on the website is necessary to manage the user’s request (e.g. information, booking enquiry). Failure to provide such data will make it impossible to provide the requested service.

The provision of data for marketing purposes is optional. Failure to provide data or consent for this purpose does not affect the usability of the main services offered by Casa Signorile.

6. Recipients of personal data

Personal data may be disclosed, within the limits strictly related to the purposes described above, to the following categories of recipients:

  • employees and collaborators of the Controller, duly authorised and instructed;
  • subjects providing support services to the Controller (e.g. accounting firm, tax and legal consultants, IT consultants), appointed – where necessary – as Processors;
  • providers of IT and telematic services (e.g. hosting provider, email services, property management / booking platforms), appointed – where required – as Processors;
  • public authorities and supervisory bodies, in fulfilment of legal obligations.

Personal data are not disseminated, unless required by law or with the explicit consent of the data subject.

7. Transfer of data outside the EU

Where, for technical and/or operational reasons, some personal data are transferred to countries outside the European Union, the Controller will ensure that such transfer is carried out in compliance with the conditions set out in Articles 44 et seq. GDPR, adopting adequate safeguards (e.g. adequacy decisions of the European Commission or standard contractual clauses).

8. Rights of the data subject

As a data subject, you may exercise at any time the rights provided for in Articles 15–22 GDPR, including:

  • right of access to personal data;
  • right to rectification of inaccurate data and completion of incomplete data;
  • right to erasure (“right to be forgotten”), where applicable;
  • right to restriction of processing;
  • right to data portability, to receive personal data in a structured, commonly used and machine-readable format and to transmit them to another controller;
  • right to object to processing, in whole or in part, for reasons related to your particular situation;
  • right to withdraw consent where processing is based on consent, without affecting the lawfulness of processing carried out before such withdrawal.

Requests should be addressed to the Controller using the contact details indicated in Section 1.

You also have the right to lodge a complaint with the competent Supervisory Authority (in Italy: the Data Protection Authority – “Garante per la protezione dei dati personali”) if you believe that the processing of your personal data violates the applicable data protection legislation.

9. Cookies

The website may use technical cookies, which do not require the user’s prior consent, and, if enabled, analytical or profiling cookies, including those of third parties. The use of such cookies and their purposes are described in more detail in a specific Cookie Policy, where available on the site.

Where cookies or other tracking tools requiring consent are used, a dedicated banner or consent management mechanism is displayed on the user’s first visit to the site.

10. Changes to this Privacy Policy

The Controller reserves the right to modify or update this Privacy Policy at any time, including as a result of changes in applicable legislation or in the services offered through the website. Any changes will be published on this page; you are therefore invited to consult it regularly.