IT | EN | DE

Cavallino Bianco Family Spa Grand Hotel

Cavallino Bianco Family Spa Grand Hotel

Privacy Policy


1. INTRODUCTION
We respect your privacy in accordance with Regulation (EU) 2016/679 (of the European Parliament and of the Council regarding the protection of individuals with regard to the processing of personal data and on the free movement of such data). This privacy policy is drafted in compliance with the obligations laid down in Art. 13 and Art. 14 of Regulation (EU) 2016/679 and concerns exclusively this site.

N.B. Our services are intended for users who have reached the legal age (18 years).

2. WHO WE ARE?
- Data Controller: 

  • Obletter & Riffeser | Via Rezia 2239046 Ortisei - Val Gardena | VAT: IT00633280219 | Legal Representative: Ralph Anton Riffeser.

- Data Processor:

  • QUOVAI S.r.l. | Via Custoza, 13 - Monteverdi Marittimo - Pisa | VAT: IT01871320493

3. WHAT INFORMATION DO WE COLLECT, USE, AND SHARE?
We do not collect your personal data during anonymous browsing on our booking engine and shop, which is installed on the hotel's website.

  • If you make an inquiry to the hotel through the booking engine, the message is transmitted directly to the hotel, and we, as QUOVAI S.r.l., do not collect your personal data.
  • If you make a reservation using our booking engine, we collect your name, email address, and phone number for the purpose of fulfilling the reservation service.
  • If you purchase a product from the shop, we collect your name, email address, and phone number to fulfill the purchase service.
  • For purposes related to the operation and maintenance of our booking engine/shop, this platform may collect system logs, which are files that record interactions and may also contain personal data, such as the IP address. From an IP check, the user's geographic location can be understood. We do not store geolocation data.
  • The details of your credit card (name and surname, card number, and expiration date) are collected through the Stripe payment gateway and are stored encrypted until the service is provided by the hotel.

4. ON WHAT LEGAL BASIS DO WE PROCESS YOUR PERSONAL DATA?
We collect, use, and share the data in our possession as described based on the following legal bases:

  •  Performance of a contract. This includes the service we provide to the hotel for managing bookings and purchases. To complete the reservation or purchase, we transmit the necessary data regarding the reservation/purchase to the hotel. The legal basis is based on Article 6(1)(b) of Regulation (EU) 2016/679.
  • Consent to the processing of your personal data for one or more specific purposes (for example, sending promotional material by email from the hotel or requesting information from the hotel). For this purpose, you must give your consent, which can be revoked at any time by contacting the hotel. The legal basis is based on Article 6(1)(a) of Regulation (EU) 2016/679.

5. LOCATION OF DATA PROCESSING
The processing related to the services provided by QUOVAI takes place at Hetzner's Data Centres located in Germany. There is no data transfer outside the European Union.

6. WHAT KIND OF PERSONAL INFORMATION DO WE DISCLOSE TO THIRD PARTIES?
We do NOT disclose, transfer, or sell your personal data to companies or third parties not directly involved in the main purposes of our business.

7. COOKIES
For information regarding Cookies, we refer you to our specific Cookie Policy.

8. HOW LONG DO WE RETAIN YOUR PERSONAL DATA?
We retain your personal data for the time necessary to carry out the operations related to our business in accordance with Regulation (EU) 2016/679.

9. HOW DO WE PROTECT YOUR PERSONAL DATA?
To prevent unauthorised access to your personal data and to maintain its accuracy, we are committed to implementing appropriate security measures to protect its confidentiality, integrity, and security. It is important to note, however, that no Internet transmission can ever be 100% secure. We use Secure Socket Layer (SSL) technology, which ensures that all communications between the user's computer and the booking engine cannot be intercepted or deciphered. By convention, Internet addresses (URLs) that imply an SSL connection begin with https:// instead of http://. Additionally, in most common browsers, a green padlock icon is shown to the left of the URL to indicate that a full SSL connection has been established between the user's browser and our site. If your browser does not support SSL technology, you should update it to the latest version.

10. HOW TO CONTACT US?
In accordance with current legislation, you have the right to obtain from the Data Controller or Data Processor confirmation as to whether or not personal data concerning you is being processed. You can also, free of charge,

  •  request access to personal data stored about you;
  •  request that it be updated, corrected, deleted;
  •  ask us to limit the processing of your personal data;
  •  ask us to provide you with a copy of certain personal data about you (referred to as the right to "data portability").

For any request regarding the processing of your personal data, you can:

  • send an email to the hotel info@cavallino-bianco.com as the Data Controller
  • send an email to hello@quovai.com as the Data Processor
  • call the hotel at +39 0471 7833 33 as the Data Controller
  • call +39 02 87198048 as the Data Processor

If you believe that the processing of your data violates privacy laws or that your rights have been otherwise violated, you can contact the supervisory authority:

  • Italian Data Protection Authority: Piazza di Monte Citorio n. 121, Rome, 00186, Italy | Phone number: +39 06 696773785 | Website: www.garanteprivacy.it/

11. CHANGES TO THE PRIVACY POLICY
It is possible that this privacy policy may require changes. The most up-to-date version can be consulted in this text.

Privacy Policy - 2024.03

Newsletter