PRIVACY POLICY

 

REGULATORY REFERENCES

Directive 2002/58/EC – concerning the ‘processing of personal data and the protection of privacy in the electronic communications sector’

Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation).

 

THE DATA CONTROLLER

The consultation of this site may result in the processing of data relating to identified or identifiable persons. The ‘Controller’ of personal information is Tenuta Santi Giacomo e Filippo Srl, via San Giacomo in Foglia 7, località Pantiere, 61029 Urbino (PU), VAT 0293746273 – Italy.

 

PLACE WHERE DATA IS PROCESSED and RETENTION TIME

Data processing connected to the web services of this site takes place at the aforementioned head office of the Data Controller and is carried out only by personnel expressly authorized by the Data Controller, or by any third party suppliers in charge of occasional maintenance operations that have been appointed as Data Processors in accordance with article 28 of the GDPR. The data collected will be kept – for each type of data processed – only for the time necessary to fulfil the specific purposes indicated in the specific summary information displayed on the site pages in relation to particular services.

 

TYPES OF DATA PROCESSED

Browsing data

The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the communication protocols of the Internet.

This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc.) and other parameters regarding the user’s operating system and computer environment.

This data is used only to obtain anonymous statistical information on the use of the site and to check its correct functioning. It is deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

 

Data provided voluntarily by the user

The optional, explicit and voluntary submission of personal data by the user in the registration forms on this site involves the subsequent acquisition of data provided by the sender, necessary for the provision of the requested service. Specific summary information will be progressively reported or displayed in the pages of the site designed for the request of particular services.

 

Anonymous or aggregated data

Anonymisation is defined as the processing of personal data for the purpose of preventing identification of the data subject. Data rendered anonymous does not fall within the scope of data protection legislation. We collect, process and share aggregate data such as statistical or demographic data for different purposes. Aggregate data may be derived from personal information provided by users but is not considered personal data because, as specified, it does not allow either directly or indirectly the identification of the data subject. This information will also be used to improve the quality of our existing products/services, to develop new features, as well as for further general research purposes (e.g., to check how often a particular product or service is used; to calculate the percentage of users accessing a specific function of the website, etc.). Because this data does not allow the identification of an individual and is not considered personal, it will be shared with other third parties, affiliates or partners.

 

COOKIES

Cookies are small text files containing a certain amount of information exchanged between a website and the user’s terminal (usually the browser). They are mainly used for the purpose of making the websites work and operate more efficiently, as well as for providing information to the owners of the website. Cookies can be either session cookies or persistent cookies. Session cookies remain stored in the user’s device for a short period of time and are deleted as soon as the user closes the browser. Their use is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow safe and efficient exploration of the site. Persistent cookies, on the other hand, remain stored in the user’s terminal until a set expiry date. These cookies, not being deleted directly when the browser is closed, allow the site owner to remember the choices made by the user on their site, to collect information about the site pages visited by the user and the frequency with which the site is visited and to identify the navigation path of users, in order to improve the experience on this site. Session cookies or persistent cookies may belong to the website itself or to a third party, depending on who installs the cookies on the user’s device: either the same operator of the website that the user is visiting (thus referred as first party cookies) or a different operator (referred as third party cookies).

 

Cookies used by this site

This website uses cookies both for its own use and for third party use, and it uses the functions of Google Analytics services offered by Google Inc.

Google Analytics uses “cookies” to collect and analyze information about how you use the websites you visit. For more information about Google Analytics cookies and their use by Google Inc. please consult:

the documentation on the use of cookies by Google, which can be found at the website:

http://www.google.com/intl/it/policies/technologies/cookies/

and https://developers.google.com/analytics/devguides/collection/analyticsjs/cookies-usage

the documentation on Google Analytics Privacy Policy at:

http://www.google.com/intl/en/analytics/privacyoverview.html

 

 

Required (3)

Cookies for preferences refer to a website to remember information that influence the way in which the site behaves or presents itself, such as the preferred language or the region that you are

Name Supplier Purpose Deadline Type
 SESS#  tenutasantigiacomoefilippo.it
Preserve user status on the different pages of the site.
 Session  HTTP
 csrftoken  tenutasantigiacomoefilippo.it Helps prevent CSRF (Cross-Site Request Forgery) attacks.  1 year  HTTP
 CookieConsent  tenutasantigiacomoefilippo.it It stores the status of the user’s cookie consent for the current domain  1 year  HTTP

Statistics (6)

Statistical cookies help website owners to understand how visitors interact with sites by collecting and transmitting information in an anonymous form.

Name Supplier Purpose Deadline Type
_gali
tenutasantigiacomoefilippo.it
Not classified  SESSION  HTTP
_ga tenutasantigiacomoefilippo.it

Register a unique ID used to generate statistical data on how the visitor uses the website.

2 years HTTP Cookie
_gat tenutasantigiacomoefilippo.it

Used by Google Analytics to limit the frequency of requests

Session HTTP Cookie
_gid tenutasantigiacomoefilippo.it

Register a unique ID used to generate statistical data on how the visitor uses the website.

Session HTTP Cookie
 @@History/@@scroll|#  tenutasantigiacomoefilippo.it Not classified  Persistant HTML Local Storage
 vuid  tenutasantigiacomoefilippo.it

Collects data on user visits to the site, such as which pages have been consulted.

 2 years  HTTP

Marketing (23)

Cookies for marketing are used to monitor visitors on websites. The intent is to display relevant and engaging ads for the individual user and therefore the most valuable ones for publishers and third party advertisers.

Name Supplier Purpose Deadline Type
 GAPS  google.com

Used by Google to identify users when they share content with the Google +1 button.

 2 years  HTTP
 CheckConnectionTempCookie#  youtube.com

Used to check if the user’s browser supports cookies.

 SESSION  HTTP
 fr  facebook.com

Used by Facebook to provide a series of advertising products as real-time offers from third-party advertisers.

 3 month  HTTP
 NID  google.com

Register a unique ID that identifies the user’s device that returns to the site. The ID is used for targeted advertising.

 6 month HTTP
 _hjIncludedInSample  tenutasantigiacomoefilippo.it

Determine if user navigation is to be registered for statistical purposes.

 SESSION  HTTP
 TASession  tripadvisor.com

Used to view TripAdvisor’s integrated content, including payment of referral fees and user tracking on different websites.

SESSION  HTTP
 ServerPool  tripadvisor.com

Used to view TripAdvisor’s integrated content, including payment of referral fees and user tracking on different websites.

SESSION HTTP
 TACds  tripadvisor.com

Used to view TripAdvisor’s integrated content, including payment of referral fees and user tracking on different websites.

 2 month  HTTP
 TAUnique  tripadvisor.com Not classified 179 days  HTTP
 SRT  tripadvisor.com Not classified  SESSION HTTP
 TART  tripadvisor.com Not classified  SESSION  HTTP
TATravelInfo tripadvisor.com

Used to view TripAdvisor’s integrated content, including payment of referral fees and user tracking on different websites.

13 days  HTTP
CM  tripadvisor.com

Used to view TripAdvisor’s integrated content, including payment of referral fees and user tracking on different websites.

10 years  HTTP
TAUD  tripadvisor.com Not classified 13 days  HTTP
ct0 twitter.com  Not classified  SESSION  HTTP
_twitter_sess twitter.com

Collects anonymous data regarding the user’s visits to the website, such as the number of visits, the average time spent on the site and which pages have been uploaded, in order to personalize and improve the Twitter service.

 SESSION  HTTP
personalization_id twitter.com Not classified  2 years  HTTP
guest_id twitter.com

Collects anonymous data regarding the user’s visits to the website, such as the number of visits, the average time spent on the site and which pages have been uploaded, in order to personalize and improve the Twitter service.

2 years  HTTP
external_referer twitter.com

Collects anonymous data regarding the user’s visits to the website, such as the number of visits, the average time spent on the site and which pages have been uploaded, in order to personalize and improve the Twitter service.

 6 days  HTTP
VISITOR_INFO1_LIVE youtube.com

Try to estimate the speed of the user’s connection on pages with integrated YouTube videos.

 179 days  HTTP
youtube.com

Register a unique ID on mobile devices to allow tracking based on GPS geographic location.

 SESSION  HTTP
youtube.com

Register a unique ID on mobile devices to allow tracking based on GPS geographic location.

 SESSION  HTTP
youtube.com

Register a unique ID on mobile devices to allow tracking based on GPS geographic location.

8 month  HTTP

NOT CLASSIFIED (10)

Unclassified cookies are cookies that we are classifying together with the providers of individual cookies.

Name Supplier Purpose Deadline Type
 _pinterest_referrer  pinterest.com

Not classified

 SESSION  HTTP
 _auth   

Not classified

 1 year HTTP
 _pinterest_sess   

Not classified

 SESSION  HTTP
 _pinterest_referrer  pinterest.ie Not classified  SESSION  HTTP
 _auth  pinterest.ie Not classified  1 year  HTTP
G_ENABLED_IDPS pinterest.ie Not classified  95779 mesi  HTTP
 cm_sub  pinterest.ie Not classified 1 year  HTTP
 lastVisitedPinPages  pinterest.ie Not classified  SESSION  HTTP
 _pinterest_sess  pinterest.ie Not classified  1 year  HTTP
 cookie_notice_accepted  tenutasantigiacomoefilippo.it Not classified  68 years  HTTP

 

In addition to the cookies in this table, this site may also use other session cookies, i.e. those cookies that are not permanently stored in the user’s computer and disappear when the browser is closed. Their use is strictly limited.

 

Managing Cookies

Normally, browsers allow most cookies to be controlled through your browser settings. However, please note that the total or partial disabling of technical cookies may compromise the use of the site’s functions. In any case, if the user does not wish to receive any type of cookie on his computer, neither from this site nor from others, they may raise the level of privacy protection by changing the security settings of their browser:

Mozilla Firefox:                https://support.mozilla.org/it/kb/Gestione%20dei%20cookie

Google Chrome:               https://support.google.com/chrome/answer/95647?hl=it

Internet Explorer:           http://windows.microsoft.com/it-it/windows-vista/block-or-allow-cookies

Safari 6/7 Mavericks:     https://support.apple.com/kb/PH17191?viewlocale=it_IT&locale=it_IT

Safari 8 Yosemite:           https://support.apple.com/kb/PH19214?viewlocale=it_IT&locale=it_IT

Safari on iPhone, iPad, or iPod touch:       https://support.apple.com/it-it/HT201265

 

LINKS TO OTHER WEBSITES

This site may contain links or references to other sites, such as social networks like Facebook, Instagram, Google+, Twitter, and Pinterest. By clicking on the links, you can share our content. We inform you that the Data Controller does not control the usage of cookies or other monitoring technologies of such websites to which this Policy does not apply.

 

OPTIONALITY OF THE PROVISION OF DATA

Apart from what is specified for navigation data, the user is free to provide personal details. However, failure to provide them may make it impossible to complete the request.

 

HOW THE DATA IS TREATED

Personal data may also be processed through the use of automated tools. Specific security measures are observed to prevent loss of data, illicit or incorrect use and unauthorized access. The Data Controller has adopted all the minimum-security measures required by law and, guided by the main international standards, has also adopted additional security measures to minimize the risks related to the confidentiality, availability and integrity of personal data as it is collected and processed.

 

SHARING, COMMUNICATION AND PROPAGATION OF DATA

The data collected may be transferred or communicated to other companies for activities strictly connected and instrumental to the operation of the service, such as the management of the computer system. The personal data provided by users who request the dispatching of information material (brochures etc.) is used only to perform the service or provision requested and is disclosed to third parties only if this is necessary for that purpose (companies that provide mailing services, labelling, shipping). Apart from these cases, personal data will not be communicated unless requested for by contract or law, or unless specific consent from the person concerned.

In this sense, personal data may be transmitted to third parties, but only and exclusively in the event that:

(a) there is an explicit consent to share the data with third parties;

(b) there is a need to share the information with third parties in order to provide the requested service;

(c) this is necessary to comply with requests from the Judicial or Public Security Authorities.

No data from the web service is disseminated.

 

RIGHTS OF DATA SUBJECTS

The legislation for the protection of personal data expressly provides for certain rights of the subjects to whom the data refers (the so-called data subject) In particular, pursuant to Articles 15 et seq. of Regulation (EU) 2016/679, every interested party has the right to obtain confirmation of the existence or otherwise of data concerning them, to obtain indication of the origin, purposes and methods of processing, updating, rectification, integration of the data as well as their cancellation if processed in violation of the law or if there is one of the reasons specified in Article 17 of Regulation (EU) 2016/679.

 

Transfer of personal data outside the EU

In cases where it is necessary to transfer, process or access personal data by persons established outside the European Union, the Data Controller obtains the necessary guarantees that the transfer of data will be carried out in accordance with the provisions of Chapter V of the GDPR (for example, verifying the adequacy decision prescribed by the Guarantor for the protection of personal data, verifying whether the third party is Privacy Shield certified or, alternatively, stipulating specific standard contractual clauses for data protection).

 

CHANGES TO THESE PRIVACY POLICIES.

The Data Controller periodically verifies its privacy and security policy and, if necessary, revises it in relation to changes in regulations, organisation or technological developments. In case of policy changes, the new version will be published on this page of the website.

 

QUESTIONS, COMPLAINTS, SUGGESTIONS AND THE EXERCISE OF RIGHTS

Anyone interested in further information, in contributing with their own suggestions or making complaints or objections regarding our privacy policies, the way in which our Company processes personal data, or to assert their rights under the legislation on the protection of personal data, may contact the Data Controller by writing to Tenuta Santi Giacomo e Filippo Srl, via San Giacomo in Foglia 7, Pantiere, 61029 Urbino (PU), VAT 0293746273 – Italy.

 

LAW AND JURISDICTION

The interpretation and execution of these conditions are governed by Italian law. The Court of Urbino (Italy), will be exclusively competent for any dispute related to these conditions. The Data Controller reserves the right to obtain urgent remedies from any national or foreign Court to protect his interests and enforce his rights.