Before communicating any type of personal data to us, we invite you to carefully read this privacy policy.

This privacy policy is intended for:

• The website www.villapavesi.it

but not for other external websites that may be consulted by the user via links.

This information is provided pursuant to Article 13 of EU Regulation No. 2016/679 (hereinafter, “GDPR”) to users who interact with the website.

The data controller for identified or identifiable individuals who visit the website www.villapavesi.it is Francesco Ruschi Noceti, with registered office at Piazza della Repubblica 1, 54027 Pontremoli – MS. He can be contacted at fr.ruschinoceti@gmail.com.

1) Lawfulness of processing

Personal data is processed based on the lawfulness of consent given by the data subject for one or more specific purposes (ref. Art. 6, paragraph a) of the GDPR).

2) Purpose of the processing

The personal data voluntarily provided will be processed for the following purposes:

• Response to a commercial request, to follow up on your requests
• Browsing the websites and social media pages mentioned on this page
• Responding to a request for assistance or information

3) Type of Data Processed and Collection Methods

Browsing data – log files

The Site can be accessed without requiring the user to provide any personal data. The computer systems and applications used to operate this website collect, during their normal operation, certain data (the transmission of which is implicit in the use of Internet communication protocols) that are not associated with directly identifiable users. The data collected includes the IP addresses of users connecting to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, and the numerical code indicating the status of the server response (successful, error, etc.).

This data is processed for the time strictly necessary in accordance with applicable law and could be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

Data provided voluntarily by the user

The voluntary and explicit sending of emails to the addresses indicated in the various access channels of this site entails the subsequent acquisition of the sender/user’s address and data, which are necessary to respond to requests and/or provide the requested service.
We assure you, however, that such processing will be based on the principles of fairness, lawfulness, transparency, and protection of privacy, as indicated in the GDPR.

Specific functions and services

Google fonts

Google Fonts is a service that allows you to upload fonts to improve the appearance of the site through the use of style sheets. The service is operated by Google Inc. The use of Google Fonts does not require authentication.
Personal Data collected: Cookies.
Place of processing: United States – Privacy Policy; Ireland – Privacy Policy.
Privacy Shield participant.

Google Maps

Google Maps is a map visualization service provided by Google Inc. that allows this site to indicate the location of the company.
Personal Data collected: Cookies.
Place of processing: United States – Privacy Policy; Ireland – Privacy Policy.
Privacy Shield participant.

Youtube

YouTube is a video viewing service operated by Google Inc.
Personal Data collected: Cookies.
Place of processing: United States – Privacy Policy; Ireland – Privacy Policy.
Privacy Shield participant.

Google ReCaptcha

Google ReCaptcha is a free service offered by Google to block spam from contact forms on the website.
Personal data collected: Cookies.
Place of processing: United States – Privacy Policy; Ireland – Privacy Policy.
Privacy Shield participant.

Optionality of Data Provision

Except as specified for navigation data, the provision of personal data by the interested party for the purposes described in the previous paragraph is optional. Failure to provide such data may make it impossible to use certain services provided by the site.

Data Processing Methods

Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it is collected, in compliance with the principles of lawfulness, purpose limitation, and data minimization, pursuant to Art. 5 of the GDPR, and in compliance with the mandatory timeframes prescribed by law. Specific security measures are implemented to prevent data loss, unlawful or improper use, and unauthorized access.

Communication and/or Dissemination of Data

Your personal data, subject to processing, will not be disclosed but may be shared with companies contractually associated with Francesco Ruschi Noceti, in accordance with and within the limits of the GDPR.
Personal data may be shared with third parties belonging to the following categories:

• entities that provide services for the management of the information system used by Francesco Ruschi Noceti and the telecommunications networks (including e-mail);
• firms or companies in the context of assistance and consultancy relationships;
• competent authorities for compliance with legal obligations and/or provisions of public bodies, upon request;
• entities that provide services for the performance of shipping services (for example express couriers).

The entities belonging to the above categories act as Data Processors or operate completely independently as separate Data Controllers. The list of data processors is constantly updated and available at the Francesco Ruschi Noceti headquarters. Any further communication or dissemination will only occur with your explicit consent.

Data Retention Period

The retention period for data collected through the contact request form is strictly limited to the time necessary to respond to the user’s needs expressed through their request, and in any case, no longer than 6 months from the user’s last expression of interest.
The data collected through the order form, required to make a purchase on the Site, will be retained for the period necessary to complete the requested service. However, such data may be retained for a longer period to comply with legal obligations and to make it available to the competent authorities.

Rights of the interested parties

The “data subjects,” i.e., natural persons, legal entities, entities, or associations to whom the data refers, have the right, at any time, to obtain confirmation of the existence or otherwise of such data and to know its content and origin, verify its accuracy, or request its integration, updating, or rectification pursuant to EU Regulation 2016/679: Articles 15, 16, 17, 18, 19, 20, 21, 22 – Rights of the Data Subject. Pursuant to the same articles, data subjects also have the right to request the deletion, anonymization, or blocking of data concerning them if it is processed unlawfully, as well as to object, for legitimate reasons, to its processing.
Any communications can be sent to the following email address: fr.ruschinoceti@gmail.com.

• Right to rectification: Contact us directly to have your data modified or corrected.
• Right to erasure: Send us a request to erase all data concerning you and we will process your request within 30 days.
• Right to data portability: If you request it, we will export your data so that it can be transferred to third parties.
• Right to object: You can unsubscribe at any time from all specific uses we make of your data.
• Right of access: We are transparent about the data we collect and how we use it. You can contact us at any time to access the information we hold and request changes.
• Right to restriction: You can ask us to suspend the processing of your data if there are legitimate reasons.

4) Company information

Francesco Ruschi Noceti, Piazza della Repubblica 1, 54027 Pontremoli – MS.
VAT No.: IT00558130456