Privacy Policy
We wish to inform you that, in accordance with Article 13 of the EU Regulation 2016/679 (General Data Protection Regulation - henceforth "GDPR 2016/679"), laying down provisions for the protection of persons and other subjects with regard to the processing of personal data, the personal data provided will be processed by our Company.
The processing of personal data by the Company will be carried out in compliance with the above regulations, in particular, according to the principles of lawfulness, fairness, transparency and protection of confidentiality and rights, with particular reference to integrity, confidentiality, personal identity and the right to protection of personal data.
1. Data controller and data protection officer
Data controller: Bellagio Village S.r.l.
Registered office: Via Garibaldi 253, 20832 Desio (MB)
Contact e-mail address: info@bellagiovillage.com
2. Type of data processed
The data provided and processed by Bellagio Village concern personal identification data of a common type provided directly by the data subject.
"Personal data means any information concerning an identified or identifiable natural person; an identifiable person is one who can be, directly or indirectly, identified with particular reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more characteristic elements of his or her physical, physiological, genetic, psychic, economic, cultural or social identity."
Among the personal data collected, the following categories are included:
(a) biographical and contact data sent either through the "Contact Us" page or through the "Work with Us," self-application page of the website
(b) professional data, requested within the "Work with Us" section;
(c) cookies and browsing data.
3. Purposes of data processing
User Data are collected to enable the Owner to provide its Services, specifically to contact the User following his/her request for information. In detail:
CONTACT
The User, by voluntarily filling in the contact form provides such data to the Owner and consents to their use in order to communicate and receive the requested information. Types of personal data: first name, last name, e-mail address, telephone number.
CANDIDACY
The User, by filling in the form with his/her Data and attaching any files, provides such Data to the Owner and consents to their use in order to apply by presenting his/her skills. Types of Personal Data: first name, last name, e-mail address, telephone, CV and information related to work experience.
COOKIES AND NAVIGATION DATA
Cookies are small text strings that a website may send, during navigation, to the User's device (PC, Notebook, smartphone, tablet...). The same website that sent them can read and record cookies that are on the same device to obtain various types of information. This is information that is not collected to be associated with identified data subjects, but which by its very nature could, through processing and association with data held by third parties, allow users to be identified. Types of personal data: IP addresses.
4. Methods of data processing and storage
Data processing will be carried out in automated and/or manual form, in compliance with the provisions of Art. 32 of GDPR 2016/679 on security measures, by specially appointed individuals and in compliance with the provisions of Art. 29 GDPR 2016/ 679. Security measures will be employed to ensure the confidentiality of the data subject to whom such data relate and to prevent undue access by third parties and/or unauthorized personnel. The Data Controller shall take appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of personal data.
5. Legal basis of processing
Personal data indicated on these pages are processed on the basis of the User's consent. Specifically, the User gives consent:
a) in the action of optional, explicit and voluntary sending of messages by filling out the contact form;
b) in the action of entering data and uploading files (e.g. CV) voluntarily by filling out the self application page;
c) through the appropriate banner and/or by using the "Advanced Cookie Settings", enabling or disabling specific types of Cookies (browsing data).
6. Place of processing
The Data are processed at the operational headquarters of the Data Controller. For further information, the User may contact the Controller at the above address. The Data Controller reserves the right to transfer such Personal Data of the User to a country other than the country where the User is located, in each case taking the necessary security measures to ensure the confidentiality and integrity of the Personal Data.
7. Retention
We point out that, in compliance with the principles of lawfulness, purpose limitation and data minimization (in accordance with Article 5 of GDPR 2016/679), the retention period of Personal Data is established in a period of time not exceeding the achievement of the purposes for which they are collected and processed, while still respecting the timeframes prescribed by the Law.
When the processing is based on the User's consent, the Controller may retain the Personal Data longer until said consent is revoked. In addition, the Controller may be obliged to retain the Personal Data for a longer period in compliance with an obligation of the Law or by order of an authority.
At the end of the retention period, the Personal Data will be deleted. Therefore, at the expiration of this period the right of access, deletion, rectification and the right to Data portability can no longer be exercised.
8. Scope of communication and dissemination
Your data, subject to processing, will not be disseminated and may be communicated to companies or collaborators contractually linked to Bellagio Village. The data collected will not be disseminated; personal data, in relation to the purposes mentioned above, may be communicated to third parties belonging to the following categories of recipients:
a) public subjects to whom the data must be communicated by Law (social security and welfare institutions, financial offices, etc.);
b) subjects - public or private - if the communication is necessary or functional to the performance of our activities;
c) subjects of our consultants to the extent necessary to carry out their professional duties on behalf of the undersigned company.
The subjects that collaborate with Bellagio Village and have access to personal data provided by customers and collaborators are appointed by the Data Controller with specific appointment as Data Processors, reporting the behavior and security measures that they are obliged to maintain in order to continue the collaboration relationship. If these conditions are lacking or are not deemed sufficient by the Data Controller, the Data Controller retains the option to terminate the current collaboration relationship.
9. Transfer of data to non-EU countries
The Data Controller does not transfer personal data to non-EU countries; however, it reserves the possibility to use cloud services and in this case the service providers will be selected among those who provide adequate guarantees, as provided by Article 46 GDPR 2016/679.
10. Rights of the data subject
At any time, the data subject may exercise, by contacting the controller by sending an email to the address above, pursuant to Article 7 of the Privacy Code and Articles. 15-22 of the GDPR 2016/679, the right to:
- request confirmation of the existence or otherwise of personal data relating to you;
- obtain information about:
o the origin of the data
o the purposes of the processing
o the categories of personal data
o the recipients or categories of recipients to whom the personal data have been or will be communicated
o the storage period;
- obtain:
o the rectification of data
o the deletion of data;
o the restriction of processing;
o the portability of data, i.e. receiving them from the Data Controller, in a structured, commonly used and machine-readable format, and transmitting them to another Data Controller without hindrance;
- object:
o to the processing at any time and also in the case of processing for direct marketing purposes;
o to an automated decision-making process relating to natural persons, including profiling;
- to lodge a complaint with the Supervisory Authority (Privacy Guarantor).
11. Information not contained in this policy
Further information in relation to the processing of Personal Data may be requested at any time from the Data Controller using the contact details.
12. Changes to Privacy Policy
The owner reserves the right to change, update, add or remove portions of this privacy policy at its discretion and at any time. The data subject is required to periodically check for any changes. In order to facilitate such verification, the notice will contain an indication of the date on which the notice was updated. Use of the site, after the posting of changes, will constitute acceptance of those changes.