fbpx

PRIVACY POLICY


This Notice clearly and completely describes the policies adopted by the Data Controller.
This page describes how to manage the site with reference to the processing of personal data of users who consult it. The processing is always based on principles of lawfulness and correctness in compliance with all current regulations and suitable security measures are adopted to protect data.

This privacy policy is provided as a brief information material to art. 13 GDPR 679/2016 European Regulation on privacy, as well as pursuant to the Provision on cookies n. 229 of 8 May 2014, we wish to inform site visitors about the use of the data entered and the cookies used by the site itself. The information is also provided pursuant to Recommendation no. 2/2001 adopted by the Working Group established by art. 29 of the directive n. 95/46 / EC. to those who interact with the web services of this site, in order to protect personal data, accessible electronically from the address: susafa.com

By using any of our services and / or accepting this information, for example in the context of registering for one of our services, you consent to the collection and use of personal information as described in this information.
We draw your attention to the fact that this Notice does not apply to the processing of personal information of third parties, such as airlines, car rental companies and other service providers, companies that organize or offer travel packages, business partners or corporate customers.

1) PERSONAL INFORMATION WE COLLECT

The personal information we collect includes:

  • Your name and surname, e-mail address, telephone number and home address;
  • Credit card details (type and number of card, name on the card, expiration date and CVC code);
  • Information about your stays, including arrival and departure dates, special requests and your preferences on services (preference on rooms, services or other);
  • Information you provide about your marketing preferences or promotional offers;
  • Collection at the property:
  • we collect additional personal information during registration / check-in at our hotel, including the information required by local laws (purposes related to the fulfillment of legal obligations).

Organization of events at our hotel

If you plan to host an event with us, we will record the specifics of the event or meeting, the date, number of guests, guest room details and, for corporate events, your organization information (name, budget annual, number of sponsored events each year). We also collect information about guests who are part of your group or event. If you visit us within a group, we can request your personal information from the group and we can send you marketing information if you express consent following your stay with a group or participation in an event. If you visit us as part of an event, we can share your personal information with the event organizers. If you are an event organizer, we may also share information about your event with third party service providers who may send you commercial information about event services.

Information we collect from third parties

We may also collect information about you from third parties, including information from our partners (travel agencies, airlines, payment cards) and other partners; from social media services, consistent with your settings on those services.

Information that we collect automatically

When you use our site, we automatically collect information, some of which may be personal data. For example: language settings, IP address, location, device settings, device operating system, log-in information, usage time, requested URL, status report, user agent (such as browser version information), browsing history, type of information viewed. We may also collect data automatically via cookies. The data could also be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

2) PURPOSE OF PROCESSING, LEGAL BASIS AND LAWFULNESS OF TREATMENT

The data processing has the following purposes:

a) management of relations with customers (management of reservations, issuing of invoices, quotes), to perform any contractual obligations;
b) fulfill regulatory obligations, in particular accounting and tax obligations;
c) management of disputes;

2a) Related to the service:

  • sending (with your written consent) promotional offers on our services and updates on rates and offers as well as greetings by ordinary mail or by fax or email;
  • ◦ Regarding the purposes indicated in point 2 lett. a) we rely on the execution of a contract: the use of your data may be necessary in order to implement the contract you have with us. For example, if you use our services to make an online booking, we will use your information to perform our obligation to complete and manage the booking under the contract between us.
  • Regarding the purposes in point 2 lett. b) and c), we rely on legitimate interests: we use your information for our legitimate interests, use your information for administrative, legal or fraud detection purposes. When we use personal data for our legitimate interests, we will always balance your rights and interests regarding the protection of your personal data with our rights and interests.
  • Regarding the purpose in point 2 lett. c), we also rely, where possible, on our obligation to comply with current legislation.
  • Regarding the purposes indicated in point 2a) based on current legislation, we will ask for your consent for the purposes indicated therein before processing your personal information which you can remove at any time by contacting us at the addresses mentioned at the end of this statement.

3) IDENTITY AND CONTACT DATA

This site is managed by the Data Controller, identified in the person of the owner and legal representative p.t. of the company: Società Agricola Susafa S.R.L. – Via Generale Giuseppe Arimondi, 2 – 90143 Palermo, e-mail: info@susafa.com – Skype info_656351

The Data Controller guarantees the security, confidentiality and protection they are in possession of, at any stage of the processing of the same. The data collected is used in compliance with current legislation on privacy (GDPR 679/2016).

4) PLACE OF TREATMENT

The treatments connected to the web services of this site take place at the headquarters of the Data Controller and are only handled by the personnel authorized to process the data and by the provider in charge of the Internet and hosting / housing services of this site. Furthermore, these treatments are handled exclusively by technical staff of the Office in charge of processing, or by any persons in charge of occasional maintenance operations under the strict control of the Data Controller.

5) NATURE OF DATA CONFERENCE

For the purposes referred to in point 2) in the event of a reservation or confirmation for a hotel stay, the provision of data is mandatory and failure to provide it may make it impossible to obtain what is requested. For the purposes referred to in point 2a) the provision of data is optional and does not prevent the provision of the requested service (hotel stay).

6) REFUSAL TO PROVIDE DATA

The interested party may refuse to give the Data Controller his/ her relative data. To do this, the option must be disabled by following the instructions provided on your browser. Disabling cookies can make navigation and the site’s functionality worse.

7) RECIPIENTS OF THE DATA

The data being processed will not be disclosed, sold or exchanged with third parties without the express consent of the interested party. The scope of data communication is limited exclusively to those competent for the fulfillment of contractual operations and compliance with legal obligations.

They may therefore be disclosed to third parties belonging to the following categories who will process the data as external data processors:

  • subjects that provide services for the management of the information system;
  • firms or companies in the context of assistance and consultancy relationships;
  • Administrations, public bodies and competent authorities, for the fulfillment of legal obligations and / or provisions of public bodies;
  • Group companies and / or the network of companies or private entities directly involved in the performance of the service or entitled to know the data under the law. In any case, only the data necessary and relevant to the purposes of the processing for which they are responsible will be communicated to the aforementioned subjects.

8) OPTIONAL PROVISION

Apart from what is specified for navigation data, the user is free to provide personal data contained in the forms on the website (web forms) or to request the sending of newsletters, information material, commercial offers or other communications. Failure to provide them may make it impossible to obtain what is requested.

9) DATA SHARING

  • Booking.com: We work with Booking.com B.V., based at Herengracht 597, 1017 CE Amsterdam, The Netherlands (www.booking.com) (hereinafter Booking.com) to offer you an online booking service. We provide the contents of the site and bookings are made with us, while the management of the bookings themselves is the responsibility of Booking.com. The information you enter on this site will then be shared with Booking.com and its affiliates and may include your name, contact details, payment details, the name of the guests traveling with you and any preferences expressed during the booking. Booking.com will send you a booking confirmation, an e-mail prior to your arrival and information about the area and our property. Booking.com also provides international customer support from its offices 24/7 in more than 20 languages. Sharing your information with Booking.com’s global customer support will allow it to respond to you if you need help. Booking.com may use your information for technical, analytical and marketing purposes as described in the Booking.com Privacy Policy. For this, your information may also be shared with other companies that are part of Booking Holdings Inc. for analysis purposes, to provide offers regarding the world of travel that may interest you and to provide you with a personalized service. If required by law, Booking.com will ask for your consent. If your data is transferred to a country outside the European Economic Area, Booking.com will enter into contractual arrangements to ensure that your personal information is protected under European law. If you have any questions regarding the processing of your personal data by Booking.com, please contact dataprotectionoffice@booking.com.
  • Other service providers: We use service companies to manage your data on our behalf. This management serves the purposes described in this statement, for example the management of booking payments and the sending of marketing material for analytical support purposes. These service providers are bound by confidentiality agreements and do not have the authorization to use your personal data for other purposes.
  • Competent authorities: We share personal data with law enforcement and other government authorities when required by law or if absolutely necessary for the identification, prevention or conduct of legal proceedings against fraud or crime.

10) SAFETY

Società Agricola Susafa S.R.L has set up suitable procedures to prevent unauthorized access to data, in addition to their improper use, to safeguard the personal data you provide us. We also rely on security procedures and technical and physical restrictions in order to prevent access and use of personal data contained in our servers. Only authorized personnel can access personal data while carrying out their work.

11) DATA STORAGE

We will keep your personal data for the period of time necessary to provide the service, in accordance with the laws in force, in order to manage any disputes with any third party and in any case for the time necessary to carry out our activities, including the detection and protection of fraud or other illegal activities. All personal information stored will be subject to the provisions of this Privacy Policy. If you have any questions about specific data retention periods, contact us using the contact details indicated in this statement.

12) DATA TRANSFER

The Data Controller does not transfer personal data to third countries or to international organizations.

13) WITHDRAWAL OF CONSENT

With reference to Legislative Decree 101/08 of GDPR 679/16, the interested party can revoke the consent at any time.

14) RIGHTS OF THE INTERESTED PARTIES

We want you to be in control of how we use your personal data. You can do this in the following ways:

  • you can ask us for a copy of your personal data in our possession;
  • you can notify us of any changes to your personal data or you can ask us to correct any of your information in our possession;
  • in specific situations, you can ask us to delete, block or limit the processing of your personal data in our possession, or oppose particular ways in which we are using your personal information;
  • in specific situations, you can also ask us to send your personal information in our possession to a third party.

Where we use your personal information with your consent, you can ask us to withdraw this consent at any time and in the manner prescribed by current legislation. Furthermore, where we process your personal data on the basis of legitimate interests public interest, you have the right to object at any time to the use of your personal information, in the manner prescribed by law. We rely on you to make sure that your personal data is complete, accurate and up to date. Promptly inform us of any changes inaccuracies in your personal information by contacting: info@susafa.com. We will handle your request according to current legislation.

The interested party exercises his rights described above in reference to the GDPR 679/2016 art. 15 “right of access”, art. 16 “right of rectification”, art. 17 “right to cancellation”, art. 18 “right to limitation of treatment”, art. 20 “right to portability”, Article 21 “right to object to the automated decision-making process of the GDPR 679/2016, by writing to the Data Controller at the following address: Società Agricola Susafa S.R.L. – Via Generale Giuseppe Arimondi, 2 – 90143 Palermo: info@susafa.com

15) PROPOSITION OF THE COMPLAINT

The interested party has the right to lodge a complaint with the supervisory authority of the State of Residence.

16) INFORMATION NOT CONTAINED IN THIS POLICY

More information in relation to the processing of Personal Data may be requested at any time from the Data Controller using the contact information.

17) CHANGES TO THIS PRIVACY POLICY

The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to Users on this page. Please therefore consult this page often, referring to the date of the last modification indicated at the bottom. In the event of non-acceptance of the changes made to this privacy policy, the User is required to cease using this Application and may request the Data Controller to remove their Personal Data, unless otherwise specified.

18) INFORMATION ABOUT THIS PRIVACY POLICY

The Data Controller is responsible for this privacy policy.

19) THE PRIVACY OF MINORS

Our website is aimed at a general public and does not offer services aimed at children. If we discover that a minor has provided us with personal data without the permission of their parents or guardian, we will immediately delete this information.
External links. If pages of this website or sections of our applications contain links to other sites, they are not bound by this Privacy Policy. We recommend that you carefully read the privacy policy available on these external sites and examine the procedures for the collection, use and disclosure of the personal information they use.

20) DEFENSE IN COURT

The User’s Personal Data may be used for defense by the Owner in court or in the stages leading to its eventual establishment, from abuses in the use of the same or related services by the User. Following a court summons, judicial order or other legal initiative; in order to establish or exercise the rights recognized to us by law; to defend ourselves in the event of legal action against us or for other purposes dictated by law.
The User declares to be aware that the Data Controller may be asked to disclose the data at the request of the public authorities.

21) LEGAL REFERENCES

This information is prepared in fulfillment of the obligations under Legislative Decree 196/2003 and GDPR 679/16 by art. 10 of the Directive n. 95/46 / EC, as well as the provisions of Directive 2009/136 / EC on the subject of Cookies.