This Website collects certain Personal Data from its Users.
Contact Information
Data Controller
DATA CONTROLLER COMPANY NAME: IVH HOSPITALITY DEVELOPMENT
DATA CONTROLLER ADDRESS: Via Belfiore, 9 – 20122 Milan (MI), Italy
DATA CONTROLLER EMAIL ADDRESS: info@ivh.site
Types of Data Collected
Among the Personal Data collected by this Website, either independently or through third parties, there are: Cookies; Usage Data; first name; last name; phone number; VAT number; company name; address; country; state; province; email; ZIP/postal code; various types of Data; city.
Full details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information notices displayed before the data is collected.
Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically while using this Website.
Unless otherwise specified, all Data requested by this Website is mandatory. If the User refuses to provide it, it may be impossible for this Website to provide the Service. In cases where this Website specifically states that certain Data is optional, Users are free not to communicate such Data without any consequences on the availability or operation of the Service.
Users who have doubts about which Data is mandatory are encouraged to contact the Controller.
Any use of Cookies – or other tracking tools – by this Website or by the owners of third-party services used by this Website, unless otherwise specified, is intended to provide the Service requested by the User, in addition to the other purposes described in this document and in the Cookie Policy, if available.
The User assumes responsibility for the Personal Data of third parties obtained, published or shared through this Website and guarantees that they have the right to communicate or disclose it, releasing the Controller from any liability toward third parties.
Methods and Place of Processing of the Collected Data
Methods of Processing
The Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.
Processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the stated purposes. In addition to the Controller, in some cases, other parties involved in the organization of this Website (administrative, commercial, marketing, legal staff, system administrators) or external parties (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the Data. These may also be appointed, if necessary, as Data Processors by the Controller. The updated list of Data Processors may always be requested from the Controller.
Legal Basis of Processing
The Controller processes Personal Data relating to the User if one of the following conditions applies:
• the User has given consent for one or more specific purposes;
• processing is necessary for the performance of a contract with the User and/or for the implementation of pre-contractual measures;
• processing is necessary to comply with a legal obligation to which the Controller is subject;
• processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller;
• processing is necessary for the purposes of the legitimate interests pursued by the Controller or by a third party.
It is always possible to request that the Controller clarify the specific legal basis of each processing activity and, in particular, whether the processing is based on law, required by a contract, or necessary to enter into a contract.
Place
The Data is processed at the Controller’s operating offices and in any other place where the parties involved in the processing are located. For further information, please contact the Controller.
Retention Period
Data is processed and stored for as long as required for the purposes for which it was collected.
Therefore:
• Personal Data collected for purposes related to the performance of a contract between the Controller and the User shall be retained until such contract has been fully performed.
• Personal Data collected for purposes related to the legitimate interests of the Controller shall be retained until such interest is satisfied. The User may obtain further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller.
When processing is based on the User’s consent, the Controller may retain Personal Data longer until such consent is withdrawn. Furthermore, the Controller may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or by order of an authority.
At the end of the retention period, Personal Data will be deleted. Therefore, after this period expires, the right of access, erasure, rectification, and data portability can no longer be exercised.
Purposes of Processing the Collected Data
User Data is collected to allow the Controller to provide the Service, comply with legal obligations, respond to requests or enforcement actions, protect its rights and interests (or those of Users or third parties), detect any malicious or fraudulent activity, as well as for the following purposes: Analytics, Contacting the User, SPAM Protection, Displaying content from external platforms, Interaction with social networks and external platforms, Infrastructure monitoring, and Hosting and backend infrastructure.
For detailed information on the purposes of processing and on the Personal Data processed for each purpose, the User may refer to the section “Details on the Processing of Personal Data.”
Details on the Processing of Personal Data
Personal Data is collected for the following purposes and using the following services:
• Contacting the User
Contact Form (this Website)
By filling in the contact form with their Data, the User consents to its use to respond to requests for information, quotes, or any other type of request indicated in the form header.
Personal Data processed: ZIP/postal code; city; last name; date of birth; email; address; country; first name; phone number; VAT number; province; company name; state; various types of Data.
• Analytics
The services contained in this section allow the Controller to monitor and analyze traffic data and are used to track User behavior.
Google Analytics (Google LLC)
Google Analytics is a web analytics service provided by Google LLC (“Google”). Google uses the Personal Data collected to track and examine the use of this Website, compile reports, and share them with other services developed by Google.
Google may use Personal Data to contextualize and personalize ads within its advertising network.
Personal Data processed: Cookies; Usage Data.
Place of processing: United States
User Rights
Users may exercise certain rights regarding the Data processed by the Controller.
In particular, the User has the right to:
• withdraw consent at any time;
• object to the processing of their Data when it occurs on a legal basis other than consent;
• access their Data;
• verify and request rectification;
• obtain restriction of processing;
• obtain erasure of their Personal Data;
• receive their Data or have it transferred to another controller (data portability);
• lodge a complaint with the competent data protection supervisory authority or take legal action.
Additional Information on Data Processing
Legal Defense
The User’s Personal Data may be used by the Controller in court or in preparatory stages leading to possible legal action for defense against abuse in the use of this Website or related Services.
The User declares to be aware that the Controller may be required to disclose Data by order of public authorities.
System Logs and Maintenance
For operation and maintenance purposes, this Website and any third-party services used may collect system logs, which are files that record interactions and may contain Personal Data, such as the User’s IP address.
Changes to This Privacy Policy
The Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, if technically and legally feasible, by sending a notification through any contact information available.
If changes affect processing whose legal basis is consent, the Controller will collect the User’s consent again, where required.
Definitions and Legal References
Personal Data (or Data)
Any information that directly or indirectly identifies or makes identifiable a natural person.
Usage Data
Information collected automatically through this Website (also from third-party applications integrated into this Website), such as IP addresses, URI addresses, request time, method used to submit the request to the server, file size received, response status code, country of origin, browser and operating system features, visit duration, and navigation path details.
User
The individual using this Website.
Data Subject
The natural person to whom the Personal Data refers.
Data Processor
The natural or legal person, public authority, agency, or other body which processes Personal Data on behalf of the Controller.
Data Controller
The natural or legal person, public authority, service, or other body which determines the purposes and means of processing Personal Data.
This Website (or this Application)
The hardware or software tool by which Users’ Personal Data is collected and processed.
Service
The Service provided by this Website as described in its terms.
Cookies
Tracking tools consisting of small portions of data stored within the User’s browser.
Tracking Tool
Any technology – such as Cookies, unique identifiers, web beacons, embedded scripts, e-tags, and fingerprinting – that enables tracking of Users.
________________________________________
Legal References
This privacy policy is drafted on the basis of multiple legislative systems, including Articles 13 and 14 of Regulation (EU) 2016/679 (GDPR).
Unless otherwise specified, this privacy policy applies exclusively to this Website.
