Mediterranean Hospitality Management & Consulting Srls is committed to the protection of the Personal Data entrusted to it. Considering privacy as a fundamental value, we constantly strive to treat information about you with fairness, lawfulness, and transparency, always protecting your confidentiality and rights in accordance with EU Regulation 2016/679, Legislative Decree 196/2003, and other applicable provisions on the protection of personal data. We, therefore, inform you of the following information:
Purpose, processing methods, and nature of the data
The collection and processing of data are carried out for:
- the proper navigation on the Owner’s website (common data);
- the management, analysis, and evaluation of the Owner’s site (common data);
- the legitimate interest of the Owner (common data);
- responses to any communications/requests (common data);
- job applications (common and/or special data – see specific disclosure)
- security purposes: e.g. spam filters, firewalls, virus detection, automatically recorded data may possibly also include data such as the Ip address, which could be used in order to block attempts to damage the site itself or to harm other users, or otherwise harmful or criminal activities. This data is used for the purpose of protecting the site and its users and is otherwise in accordance with the legitimate interests of the Owner.
The Information obtained through browsing is processed in an automated form and collected in aggregate form only. The Owner processes the data collected by adhering to the principles of fairness, lawfulness, relevance, proportionality, transparency, and in full compliance with applicable regulations.
Legal basis for processing
To respond to your inquiry(s) via email and/or telephone, the legal basis for processing is the legitimate interest of the Owner. To respond to your job application(s) the legal basis of the processing is consent.
Providing data, in any case, is optional. You may deny consent and you may revoke consent already provided at any time. However, denying consent may result in the inability to browse the site and/or respond to your inquiries/communications/job applications.
The Data Controller may also use your data in connection with the fulfillment of obligations under State laws, EU regulations and legislation, provisions issued by authorities empowered to do so by law, and by control or supervisory bodies. The relevant processing does not require the consent of the data subject.
Data provided voluntarily by the user
If you voluntarily and explicitly send electronic mail to the addresses indicated in the different access channels of the site, and if you fill in the “forms” (masks) specifically prepared, we will acquire your email address and other data necessary to respond to your requests and/or provide the service you requested. Specific summary information may be shown or displayed on the pages of the site set up for particular services on request.
Period of data retention
The data collected by the site during its operation is used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the specified activities.
Method of processing
The processing of your data is carried out through the use of appropriate tools and procedures to ensure a high level of security and confidentiality, and may be carried out both through our website and through other electronic means, and sometimes also by telephone or with the aid of paper.
Obligation or option to provide data and consequences of refusal
We are obliged to know the data in order to fulfill the obligations provided by national laws and regulations, EU regulations, or provisions issued by Authorities legitimized by law and by supervisory and control bodies. Failure on your part to provide the data will result in the impossibility of establishing or continuing the relationship to the extent that such data is necessary for the same performance. On the other hand, regarding the data that we are not obliged to know, failure to obtain it will be evaluated by us from time to time and will determine the consequent decisions related to the importance of the data not provided to us.
Types of data processed
The Processing pertains to your personal data provided for the purposes and in the manner already specified. In addition, navigation data may be processed: during their normal operation, the computer systems and software procedures used to operate this website acquire some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the user’s operating system and computer environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation. This data is kept for the time periods defined by the relevant regulations. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.
Communication and dissemination
The data we collect is not “disseminated” by us indiscriminately, that term meaning to give knowledge of the data to undetermined parties in any way.
On the other hand, your personal data may be “communicated” by us, that term meaning the giving of knowledge of the data to one or more determined subjects, in the following terms: (a) to authorized subjects within our structure; (b) to subjects who can access the data by virtue of regulations or legal provisions, always within the limits provided for by these; (c) to subjects who need access to the data for purposes auxiliary to the intercurrent relationship, within the limits strictly necessary to carry out the auxiliary tasks entrusted to them; (d) to subjects of our consultants, within the limits necessary to carry out their assignment with the duty of confidentiality and security; (e) to other subjects inside or outside the company organization who are required to know it in their capacity as organizers and partners in institutional activities.
The rights of the data subject
As a data subject you can exercise the following rights towards us: (a) to obtain confirmation of the existence of personal data concerning you, even if not yet registered, and communication in an intelligible form of the same data and its origin, as well as the purposes and methods of processing and the logic applied in case of processing carried out by electronic means; b) obtain the deletion, transformation into anonymous form, or blocking of data whose storage is not necessary in relation to the purposes for which the data were collected and processed; c) obtain the updating, rectification, and integration of their data; d) oppose, in whole or in part, for legitimate reasons, the processing of data concerning you, even if relevant to the purpose of collection. Although we are always at your disposal to examine your requests and resolve any problems that may affect the processing of your personal data, we also remind you that in any case you are always entitled to lodge a complaint with the Italian Supervisory Authority, i.e. the Italian Data Protection Authority.
Data Controller and Data Protection Officer
The Data Controller of your personal data is Mediterranean Hospitality Management & Consulting Srls, in the person of its pro-tempore legal representative. If you wish to have more information on the processing of your personal data or to exercise your rights under Art. 15 et seq, you may contact the Data Controller by writing to Mediterranean Hospitality Management & Consulting Srls, Viale Giuseppe Berto snc 89866 Ricadi (VV) Italy, or by emailing: [email protected] or by contacting + 39 0963 663302.
To exercise your rights, you can contact the Data Controller or the Data Protection Officer designated by us Nicola Viscomi at any time, who can be reached c/o Mediterranean Hospitality Management & Consulting Srls, Viale Giuseppe Berto snc 89866 Ricadi (VV) Italy – [email protected]
Last Update:: 01/07/2022