INFORMATION PURSUANT TO ARTICLES 13-14 OF THE GDPR (GENERAL DATA PROTECTION REGULATION) 2016/679

Blueline Hotel, VAT number: 01415420114, Data Controller, informs you that your data will be processed in the manner and for the purposes outlined below.

The Data Controller is committed to protecting the privacy and confidentiality of Personal Data in compliance with the principles of fairness, lawfulness, transparency, and safeguarding your rights.

1) TYPES OF DATA PROCESSED

We process personal data provided by you (name, email, business name, phone number, etc.) when you submit requests spontaneously, as well as data that is collected automatically by the website.

  • Data provided by you: personal, identifying, and non-sensitive data you provide to make requests via email, through the contact form, or by phone about our products/services.
  • Data we collect automatically: anonymous data collected using cookies or similar technologies: for more information, please refer to the Cookie Policy below.

Note: Users under 16 years old cannot provide personal data without consent from their parents or guardians.

 

2) PURPOSES AND LEGAL BASIS OF PROCESSING

We will process your personal data:

A) to fulfill our contractual obligations; provide responses to your information requests; calculate an estimate you requested; execute product purchase contracts or service provision agreements; ensure necessary assistance regarding purchased products and services.

B) to perform aggregated statistical analyses on an anonymous basis to improve our services;

C) for administrative purposes and to comply with legal obligations, such as accounting, tax, or requests from judicial authorities.

D) if submitting a curriculum vitae, exclusively for recruitment purposes.

 

3) IS PROVIDING DATA MANDATORY?

Providing your data is always optional, but failing to provide it may make it impossible to process certain operations, such as those strictly related to the fulfillment of a contract or the provision of services you have requested.

4) LOCATION, PROCESSING METHODS, AND RETENTION PERIODS

The processing of your personal data is carried out through the operations indicated in Article 4 of the Privacy Code and Article 4(2) of the GDPR, specifically: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation, and destruction of data.

Your personal data is stored at the Data Controller’s location and is subject to both paper and electronic/automated processing with methods strictly related to the purposes stated, ensuring the security and confidentiality of the data. The data you submit is not saved on our website.

The Data Controller will process the personal data for the time necessary to fulfill the purposes outlined above and, in any case, for no longer than 10 years from the termination of the relationship for purposes in point C, and no longer than 38 months from the data collection for purposes in point B.

5) ACCESS TO DATA

Your data may be made accessible for the purposes outlined in point 2:

  • to employees and collaborators of the Data Controller, in their role as internal processing officers and/or system administrators;
  • to third-party companies or other entities (website providers, cloud providers, e-payment service providers, suppliers, technical support staff for hardware and software, couriers, shipping carriers, banks, professional firms, etc.) performing outsourced activities on behalf of the Data Controller, in their role as data processors.

 

6) DATA TRANSFER

The data will not be disclosed, sold, or exchanged with parties other than the data controller, the data processors, and the appointed personnel without your express and explicit consent.

7) YOUR RIGHTS

You have the right to know which of your personal data is being processed. In particular, you are entitled to access, rectify, delete your data, as well as the right to data portability, the right to restrict processing, and the right to object to processing if certain conditions apply.

Below is a brief outline of the rights you have regarding the processing of your personal data.

  • The right of access allows you to obtain confirmation whether or not your personal data is being processed by the Data Controller and, if so, to access those data and the related information;
  • The right of rectification allows you to obtain the correction of inaccurate personal data without undue delay and, considering the purposes of processing, the completion of incomplete personal data;
  • The right of erasure allows you to obtain the deletion of your personal data without undue delay (e.g., when your personal data is no longer necessary in relation to the purposes for which it was collected), subject to exceptions provided by applicable law (e.g., when data retention is necessary for compliance with legal obligations applicable to the data controller). Deletion will be carried out within the technical timelines provided;
  • The right to data portability allows you, under certain circumstances provided by applicable law, to receive your personal data in a structured, commonly used, and machine-readable format. You may transfer this data to another data controller, provided this right is recognized by applicable law, and unless it infringes the rights and freedoms of others;
  • The right to restriction of processing allows you, under certain circumstances provided by applicable law, to obtain the limitation of the processing of your personal data. In such cases, the Data Controller may continue to process your data only in specific situations, such as for the exercise of the right of defense or to protect the rights of another person, physical or legal;
  • The right to object to processing allows you, under certain circumstances provided by applicable law, to object to the processing of your personal data unless there are overriding legitimate grounds, rights, or freedoms that allow the Data Controller to continue processing.

For more information on the processing of your personal data or to exercise your rights, please contact us.

 

8) CHANGES TO THE PRIVACY POLICY

This Privacy Policy may undergo changes. Therefore, we recommend that you regularly check this Policy and refer to the most up-to-date version.

Last updated: February 2025

Back To Top