{"id":11222,"date":"2023-11-13T15:07:31","date_gmt":"2023-11-13T14:07:31","guid":{"rendered":"https:\/\/www.adrianoresidence.it\/privacy-policy\/"},"modified":"2025-03-05T11:05:16","modified_gmt":"2025-03-05T10:05:16","slug":"privacy-policy","status":"publish","type":"page","link":"https:\/\/www.adrianoresidence.it\/en\/privacy-policy\/","title":{"rendered":"Privacy Policy"},"content":{"rendered":"\n<p>Privacy Policy for Website Users<\/p>\n\n<p>With this document, as required by the applicable regulations (Article 13 of the General Data Protection Regulation, hereinafter also referred to as GDPR), users accessing the website www.adrianoresidence.it are provided with information regarding the processing of their data.<\/p>\n\n<p><strong>WHO IS THE DATA CONTROLLER<\/strong><\/p>\n\n<p>The companies Immobiliare Enea Srl, headquartered at Via Goito 7, 40126, Bologna, VAT number 02062650375 (hereinafter also referred to as &#8220;ENEA&#8221;), and Broccaindosso Srl, headquartered at Via Goito 7, 40126, Bologna, VAT number 02569281203 (hereinafter also referred to as &#8220;BROCCAINDOSSO&#8221;), collectively referred to on the website as \u201cAdriano Group\u201d, act as joint controllers, as they jointly determine the purposes for which the data is collected and the means of its processing. The management of technical aspects is entrusted to ENEA, including through activities carried out on its behalf by consultants and companies with specific expertise, which, in some cases, operate as data processors.<\/p>\n\n<p><strong>WHAT DATA IS PROCESSED<\/strong><\/p>\n\n<p>The data processed includes browsing data and data voluntarily provided by the user.<\/p>\n\n<p><strong>Browsing Data<\/strong><\/p>\n\n<p>The IT systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.<\/p>\n\n<p>This information is not collected to be associated with identified individuals; however, by its very nature, it could allow users to be identified through processing and association with data held by third parties.<\/p>\n\n<p>This category of data includes IP addresses or domain names of the computers used by users connecting to the website, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server\u2019s response (successful, error, etc.), and other parameters related to the user&#8217;s operating system and IT environment.<\/p>\n\n<p><strong>Information Collected Through Cookies and Other Tracking Systems<\/strong><\/p>\n\n<p>The website uses cookies and other similar technologies (such as pixels) to collect information related to the user&#8217;s browsing activity. Specific details are provided in the cookie policy, which can be accessed via the link in the website footer.<\/p>\n\n<p><strong>Data Provided Directly by the User<\/strong><br\/>&#13;\nThis category includes all personal data voluntarily provided by the user, such as when requesting information by calling the phone numbers listed on the website or sending emails to the addresses provided on the site.<\/p>\n\n<p><strong>WHAT ARE THE PURPOSES AND LEGAL BASES OF PROCESSING?<\/strong><\/p>\n\n<p><strong>Browsing Data: Purposes and Legal Bases<\/strong><br\/>&#13;\nBrowsing data is used solely to obtain anonymous statistical information about website usage, ensure website security, and verify its proper functioning. Additionally, such data may be used to determine liability in the event of cybercrimes against the website.<\/p>\n\n<p>The legal basis for processing this data is legitimate interest (which includes analyzing visits, ensuring system security and proper functioning, and defensive needs) and, in the case of requests from authorities, legal obligations.<\/p>\n\n<p><strong>Information Collected Through Cookies and Other Tracking Systems<\/strong><\/p>\n\n<p>The website uses technical cookies (which do not require consent) and non-technical cookies (which are installed only with explicit user consent). For the use of cookies or pixels for specific purposes, please refer to the cookie policy, accessible from the website footer.<\/p>\n\n<p><strong>Data Provided Directly by the User: Purposes and Legal Bases<\/strong><br\/>&#13;\nPersonal data voluntarily provided by the user is used solely to process any requests made and to fulfill legal obligations, pre-contractual obligations, and contractual obligations arising from an established relationship.&#13;\n&#13;\nThe legal bases for processing such data are therefore:&#13;\n&#13;\nLegal obligation&#13;\nExecution of pre-contractual and contractual obligations&#13;\nAdditionally, the data may be used based on the legitimate interest of the data controller to verify the security and proper functioning of IT systems, carry out defensive activities, or assert or defend a legal claim.&#13;\n&#13;\nIn sections of the website dedicated to specific services, specific privacy notices are provided, which users must review before submitting their data. These notices contain detailed information about data processing.<\/p>\n\n<p><strong>HOW IS DATA MANAGED?<\/strong><\/p>\n\n<p>The collected data is processed using electronic tools and only occasionally in paper format. Appropriate security measures are in place to prevent data loss, unlawful or improper use, and unauthorized access.<\/p>\n\n<p><strong>Transfer of Data Abroad<\/strong><\/p>\n\n<p>As stated in the website&#8217;s General Terms of Use, certain services used for data processing related to the website (such as email, visit analytics, and newsletters) involve the transfer of data abroad. This transfer is carried out with the guarantees provided by standard contractual clauses and additional measures to ensure data protection.<\/p>\n\n<p><strong>Retention Period<\/strong><\/p>\n\n<p>Personal data provided directly by the user is retained only for the time necessary to process their requests and is then deleted, except in the following cases:&#13;\n&#13;\nBooking confirmation: In this case, data may be retained for the duration of the contractual relationship and in compliance with legal obligations.&#13;\nDefensive needs: If necessary, data may be kept for a longer period to assert or defend legal claims.&#13;\nBrowsing data is retained for no more than seven days and is deleted immediately after aggregation, except in cases where it is required to investigate crimes by judicial authorities.&#13;\n&#13;\nFor data collected through cookies and similar technologies, please refer to the cookie policy for specific retention details.<\/p>\n\n<p><strong>WHAT HAPPENS IF DATA IS NOT PROVIDED?<\/strong><\/p>\n\n<p>Except for browsing data, which is necessary for implementing IT and telecommunication protocols, the provision of data by users through the available methods is voluntary and optional.<\/p>\n\n<p>However, failure to provide the requested data will result in the inability to process the submitted or intended requests.<\/p>\n\n<p><strong>WHO CAN ACCESS THE DATA?<\/strong><\/p>\n\n<p>The data will be processed by the employees of the companies and by authorized collaborators. Additionally, the data may be accessed by consultants or companies providing IT support and services for activities carried out on behalf of the data controller, as well as by legal advisors handling disputes or providing legal assistance when necessary.<\/p>\n\n<p>If the user chooses to subscribe to the newsletter or make reservations through the dedicated platform linked to the website, their data will be processed by the service providers, who act as data processors.<\/p>\n\n<p>Specific details regarding the processing of data provided through dedicated forms are outlined in the privacy notices available at the bottom of each form.<\/p>\n\n<p>It should be noted that some of the entities mentioned act as data processors, while communication to those acting as independent data controllers occurs either to comply with legal obligations, fulfill contractual obligations, or pursue the legitimate interest of the data controller, such as maintaining IT system security and carrying out defensive activities through legal consultants.<\/p>\n\n<p>The data subject may request a list of external entities acting as data processors.<\/p>\n\n<p>Data sharing is strictly limited to the categories of data necessary for carrying out the required activities and purposes.<\/p>\n\n<p><strong>WHAT ARE THE DATA SUBJECT&#8217;S RIGHTS?<\/strong><\/p>\n\n<p>The law grants the data subject the right to request from the data controller:&#13;\n&#13;\nAccess to their personal data&#13;\nRectification or erasure of their data&#13;\nRestriction of processing&#13;\nObjection to processing&#13;\nData portability&#13;\nThe data subject may exercise these rights at any time, without formalities, by contacting ENEA or BROCCAINDOSSO via email at privacy@adrianoresidence.it.<\/p>\n\n<p>Below is a detailed list of the rights granted under the applicable data protection regulations.<\/p>\n\n<ul>\n<li>The right of access entitles the data subject to obtain confirmation from the data controller as to whether their personal data is being processed and, if so, to access the following information:&#13;\n&#13;\na) The purposes of the processing.&#13;\nb) The categories of personal data involved.&#13;\nc) The recipients or categories of recipients to whom the data has been or will be disclosed, particularly if they are located in third countries or international organizations.&#13;\nd) When possible, the retention period for personal data or, if not possible, the criteria used to determine that period.&#13;\ne) The right to request rectification, erasure, restriction of processing, or objection to processing.&#13;\nf) The right to lodge a complaint with a supervisory authority.&#13;\ng) If the data was not collected from the data subject, any available information about its source.&#13;\nh) The existence of automated decision-making, including profiling, and\u2014at least in such cases\u2014meaningful information about the logic involved, as well as the significance and consequences of such processing for the data subject.&#13;\n&#13;\nIf personal data is transferred to a third country or an international organization, the data subject has the right to be informed about the appropriate safeguards in place for the transfer.<\/li>\n\n\n\n<li>The right to rectification entitles the data subject to obtain, without undue delay, the correction of inaccurate personal data concerning them from the data controller.&#13;\n&#13;\nConsidering the purposes of the processing, the data subject also has the right to request the completion of incomplete personal data, including by providing a supplementary statement.<\/li>\n\n\n\n<li><strong>Right to Erasure<\/strong>  &#13;\n&#13;\nThe right to obtain from the data controller the erasure of personal data concerning them without undue delay if:  &#13;\n&#13;\n<ul>&#13;\n<li><strong>a)<\/strong> The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.<\/li>  &#13;\n<li><strong>b)<\/strong> The data subject withdraws consent on which the processing is based, and there is no other legal ground for the processing.<\/li>  &#13;\n<li><strong>c)<\/strong> The data subject objects to the processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller, or for the pursuit of legitimate interest, and there are no overriding legitimate grounds for the processing, or the data subject objects to processing for direct marketing purposes.<\/li>  &#13;\n<li><strong>d)<\/strong> The personal data have been unlawfully processed.<\/li>  &#13;\n<li><strong>e)<\/strong> The personal data must be erased to comply with a legal obligation under Union or Member State law to which the controller is subject.<\/li>  &#13;\n<li><strong>f)<\/strong> The personal data have been collected in relation to the offer of information society services to minors.<\/li>  &#13;\n<\/ul>  &#13;\n&#13;\n<strong>Exceptions to the Right to Erasure<\/strong>  &#13;\n&#13;\nThe request for erasure cannot be granted if the processing is necessary:  &#13;\n&#13;\n<ul>&#13;\n<li><strong>a)<\/strong> For exercising the right of freedom of expression and information.<\/li>  &#13;\n<li><strong>b)<\/strong> For compliance with a legal obligation that requires processing under Union or Member State law to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.<\/li>  &#13;\n<li><strong>c)<\/strong> For reasons of public interest in the area of public health.<\/li>  &#13;\n<li><strong>d)<\/strong> For archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes, insofar as the erasure would likely render impossible or seriously impair the achievement of the objectives of such processing.<\/li>  &#13;\n<li><strong>e)<\/strong> For the establishment, exercise, or defense of legal claims.<\/li>  &#13;\n<\/ul>&#13;\n<\/li>\n\n\n\n<li>The right to restriction of processing, meaning the right to ensure that data is processed, except for storage, only with the consent of the data subject or for the establishment, exercise, or defense of a legal claim, or to protect the rights of another natural or legal person, or for reasons of significant public interest of the Union or a Member State, in the following cases:&#13;\n&#13;\na) The data subject contests the accuracy of the personal data, for the period necessary for the data controller to verify its accuracy.&#13;\nb) The processing is unlawful, and the data subject opposes the erasure of personal data, requesting instead that its use be restricted.&#13;\nc) The data controller no longer needs the personal data for processing purposes, but they are required by the data subject for the establishment, exercise, or defense of a legal claim.&#13;\nd) The data subject has objected to processing carried out as necessary for the performance of a task in the public interest or related to the exercise of official authority vested in the controller, or for the pursuit of the legitimate interest of the data controller or third parties, pending verification of whether the legitimate grounds of the controller override those of the data subject.<\/li>\n\n\n\n<li>The right to data portability consists of the right to receive personal data provided to the data controller in a structured, commonly used, and machine-readable format. Additionally, the data subject has the right to transmit such data to another controller without hindrance from the initial controller.&#13;\n&#13;\nThe data subject also has the right to obtain the direct transmission of personal data from one controller to another, if technically feasible, provided that the processing is based on consent or a contract and is carried out by automated means.&#13;\n&#13;\nThis right does not prejudice the right to erasure.<\/li>\n\n\n\n<li>The right to object allows the data subject to object at any time, for reasons related to their particular situation, to the processing of their personal data when such processing is carried out for the performance of a task in the public interest, for the exercise of official authority vested in the controller, or for the pursuit of the legitimate interests of the controller or third parties.&#13;\n&#13;\nIf personal data is processed for direct marketing purposes, the data subject has the right to object at any time to such processing, including profiling to the extent that it is related to direct marketing.<\/li>\n<\/ul>\n\n<p>The data subject is informed that the law grants them the possibility to exercise their rights by filing a complaint with the Data Protection Authority or taking legal action before the judicial authority.<\/p>\n\n<p><strong>FURTHER INFORMATION<\/strong><\/p>\n\n<p>Regarding the cookies and similar tools used by the website, please refer to the cookie policy accessible from the website footer.<\/p>\n\n<p>This Privacy Policy was last updated on October 20, 2022.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Privacy Policy for Website Users With this document, as required by the applicable regulations (Article 13 of the General Data Protection Regulation, hereinafter also referred to as GDPR), users accessing the website www.adrianoresidence.it are provided with information regarding the processing [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"footnotes":""},"acf":[],"_links":{"self":[{"href":"https:\/\/www.adrianoresidence.it\/en\/wp-json\/wp\/v2\/pages\/11222"}],"collection":[{"href":"https:\/\/www.adrianoresidence.it\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.adrianoresidence.it\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.adrianoresidence.it\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.adrianoresidence.it\/en\/wp-json\/wp\/v2\/comments?post=11222"}],"version-history":[{"count":3,"href":"https:\/\/www.adrianoresidence.it\/en\/wp-json\/wp\/v2\/pages\/11222\/revisions"}],"predecessor-version":[{"id":11225,"href":"https:\/\/www.adrianoresidence.it\/en\/wp-json\/wp\/v2\/pages\/11222\/revisions\/11225"}],"wp:attachment":[{"href":"https:\/\/www.adrianoresidence.it\/en\/wp-json\/wp\/v2\/media?parent=11222"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}