privacy policy

Information Notice Pursuant to Article 13 of EU Regulation 2016/679 – Article 13 of Legislative Decree 196/2003 (Personal Data Protection Code) and Subsequent Amendments.

In accordance with EU Regulation no. 679/2016 and Legislative Decree no. 196/2003 regarding the protection of personal data, please be informed that the Data Controller is Damoi S.r.l., represented by the administrator Zaccheroni Zoran, hereafter referred to as “the Controller.”

Personal data is processed in full compliance with EU Regulation 679/2016 and Legislative Decree 196/2003, as amended.

The data you provide (hereafter referred to as “the Data Subject”) will be used solely to fulfill your requests and may be disclosed to third parties only when necessary or with your explicit consent.

The processing of data will be carried out by personnel authorized by the Controller using appropriate technical and IT procedures and tools to ensure the confidentiality and security of the Data Subject’s information. The processing may include the collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, dissemination, deletion, or destruction of the data, as well as combinations of two or more of these activities.

The data will be retained for the time strictly necessary to provide the services requested by the Data Subject and will be deleted upon the Data Subject’s request, except where further retention is required by law.

The Data Subject’s information will not be disseminated.

As part of its activities and for the purposes outlined above, the Controller may use services provided by third parties acting on behalf of the Controller and according to its instructions, as Data Processors.

These include suppliers, business and production partners, intermediaries, technical consultants, and others who collaborate with our organization to fulfill contractual obligations; entities providing services closely and necessarily connected to the Controller’s activities, such as tax advisors, banks, shipping agents, insurance providers, public and private entities (including for inspections or audits); and entities authorized by law to access the data.

The data may also be disclosed to parties authorized by law to collect it (e.g., provincial health service providers, tax authorities, etc.).

The Data Subject may request a complete and updated list of the parties appointed as Data Processors by contacting the address provided below.

Rights of the Data Subject

  • Right of Access (Article 15 GDPR): The Data Subject has the right to access their personal data and lodge complaints with the supervisory authority.
  • Right to Rectification (Article 16 GDPR): The Data Subject has the right to request the rectification of inaccurate personal data.
  • Right to Erasure (“Right to be Forgotten”) (Article 17 GDPR): The Data Subject has the right to request the erasure of their personal data without undue delay.
  • Right to Restriction of Processing (Article 18 GDPR): The Data Subject has the right to request the restriction of data processing.
  • Notification Obligation (Article 19 GDPR): The Controller is obliged to notify any recipients of personal data of any rectifications, erasures, or restrictions carried out in compliance with Articles 16, 17, and 18.
  • Right to Data Portability (Article 20 GDPR): The Data Subject has the right to receive their personal data and transmit it to another Controller without hindrance.
  • Right to Object (Article 21 GDPR): The Data Subject has the right to object to the processing of their personal data.
  • Profiling (Article 22 GDPR): The Data Subject has the right not to be subject to decisions based solely on automated processing, including profiling, that significantly affects them.

Controller and Data Protection Officer

  • Data Controller: Zaccheroni Zoran, sole partner of Damoi S.r.l.

Data Subject Rights to Personal Data and Other Information

The Data Subject has the right to:

  • Confirm the existence of their personal data, even if not yet recorded, and obtain intelligible communication of such data.
  • Request information regarding:
    a) The origin of the personal data;
     b) The purposes and methods of processing;
     c) The logic applied in case of processing using electronic tools;
     d) The identification details of the Controller, Processors, and representatives designated under Article 5(2);
     e) The entities or categories of entities to whom personal data may be disclosed or who may gain knowledge of the data as designated representatives, Processors, or authorized individuals.

The Data Subject has the right to request:
 a) Updates, corrections, or, when relevant, data integration;
 b) Erasure, anonymization, or blocking of data processed in violation of the law, including data that does not need to be retained for the purposes it was collected for;
 c) Certification that the actions in points a) and b) have been notified to those to whom the data was disclosed or disseminated, except when this proves impossible or involves a disproportionate effort.

The Data Subject has the right to object, in whole or in part:
 a) For legitimate reasons, to the processing of their personal data, even if relevant to the purpose of the collection;
 b) To the processing of their personal data for sending advertising materials, direct sales, market research, or commercial communication.

Data Controller and Data Processor

  • Data Controller: Damoi S.r.l.
  • Data Processor: Zaccheroni Zoran
  • Headquarters: Via Codrignano 4
  • VAT Number: 02791391200
  • Email: info@tosawelcome.it
  • Domain: tosawelcome.it
ROOMS
RESERVE