PrivacyPolicy

Information on the processing of personal data pursuant to Art. 13 of EU Regulation 2016/679 (hereinafter GDPR)

JESOLO TURISMO S.P.A., as the data controller pursuant to Articles 13 and 14 of EU Regulation 679/2016 – General Data Protection Regulation (“GDPR”), in compliance with the privacy protection obligations set by the legislator, hereby wishes to inform you in advance about the use of your personal data and your rights, as follows:
  1. DATA CONTROLLER AND OTHER RESPONSIBLE PARTIES

The data controller is JESOLO TURISMO S.P.A., VAT ID 01805470273, located at PIAZZA BRESCIA 5 INT.6 – 30016 – Jesolo (VE) – Italy. The updated list of responsible parties, with their areas of expertise, is:

  • Data Controller – JESOLO TURISMO S.P.A.
  • Data Protection Officer (DPO) – RIZZATO BARBARA, Tax Code: RZZBBR72R45G224K with office at VIA ALTINATE 72 – 35121 – PADOVA (PD) – Italy.
  1. PERSONAL DATA SUBJECT TO PROCESSING
  • Non-sensitive personal data (identification, accounting, financial, derived from the use of the Controller’s apps, geolocation data, and data derived from the use of web services, etc.)
  • Contact personal data (including email addresses)
  • Data will be processed for the period necessary to provide the requested service, as well as for the longer period needed to inform the interested party of initiatives related to the provision of tourism services.
  1. PURPOSES, LEGAL BASIS, AND MANDATORY OR OPTIONAL NATURE OF PROCESSING
  2. The data referred to in point b are provided by the interested party.

Main Purposes:

  • Provide the requested services and information
  • Fulfill legal obligations related to any contract entered into
  • Carry out informational activities regarding the services offered by the Controller, including promotional activities
  • Legal Basis and Mandatory or Optional Nature of Processing:
  • Processing is necessary for the performance of contractual or pre-contractual measures adopted at the request of the data subject, the provision of personal data is not legally required but is essential to access the requested services and performances
  • If processing is aimed at fulfilling legal obligations, consent from the data subject is not required
  • The data subject is required to provide consent for the processing of their contact personal data for specific purposes related to informational and promotional activities as described above. This consent is optional
  1. RECIPIENTS
  2. Exclusively for the purposes indicated above, the data will be disclosed, in addition to the internal personnel competent in this regard, to external collaborators responsible for processing whose list is available at the data controller’s office. Each of these subjects has been specifically appointed as an external data processing manager or processor in compliance with GDPR provisions.
  3. TRANSFERS

There are no transfers of Personal Data to recipients outside the European Union

  1. DATA RETENTION

All personal data provided will be processed in compliance with the principles of lawfulness, fairness, relevance, and proportionality, only in ways, including IT and telematic, strictly necessary to achieve the purposes described above. In any case, personal data will be kept for a period not exceeding that strictly necessary to achieve the stated purposes, subject to any further retention required by current legislation (Art. 2946 of the Civil Code regarding ordinary limitation and/or further special sector provisions requiring a longer retention period by law). Personal data that does not need to be retained or for which retention is not required by current legislation, in relation to the stated purposes, will be deleted or anonymized. It is emphasized that the information systems used for managing the collected information are configured from the outset to minimize data usage.

  1. YOUR RIGHTS
  2. Please note that the data subject has the right to access their data at any time by contacting our designated data protection officer for a response, using the following contact details:

You may also exercise, with respect to the processing in question, the following rights: Information, Data Access, Data Rectification, Data Deletion, Processing Limitation, Data Portability, Filing a complaint with the supervisory authority (Data Protection Authority), Withdrawal of consent (The withdrawal of consent does not affect the lawfulness of processing based on consent given before the withdrawal).