PERSONAL DATA POLICY
Pursuant to Section 13 of the EU Legislative Decrees 2016/679 and 196/03 and all successive changes
The Data Controller of personal data collection made by Montalcino Wine Tours on this web is Luxury Wild di Mario Bovini e c. S.N.C., with headquarters in Piazza Cavour, 6 – 53024 Montalcino (SI), Fiscal Code – Tax ID no. IT01403070525 (from here on called “the Controller”). Personal information and data may be collected during consultation of our web pages and through voluntary compilation of forms present on them. On this site cookies or similar technologies are used, for which you are advised to see the specific policy.
The collected data will be used only to answer to your requests.
The compulsory data that must be communicated to accept services are indicated specifically; the lack of them implies impossibility to answer your request.
The use of the data by the personnel hired by the Controller will be done with procedures and information technology instruments suitable to protect the privacy and security of personal data and consists of their gathering, registration, organization, conservation, consultation, elaboration, modification, selection, extraction, comparison, use, interconnection, blocking, communication, diffusion, cancellation, destruction including any combination of the above-named activities.
The data will be held for the amount of time strictly necessary to supply the requested services and will be, in any case, eliminated upon request by the interested party, except for further obligation for the conservation foreseen by law. Personal data will not be diffused.
In the realm of his activity and for the above-mentioned finalities the Controller can use services from third parties who work for the Controller and according to his instructions, are responsible for their use. This means suppliers, commercial and productive partners, intermediaries, consultants, technicians and doctors and other similar parties who collaborate with our organization to complete contractual duties taken up with you; parties who supply services strictly and necessarily related to the Controller’s activity such as tax consultants, banks, shippers, insurance companies, private and public institutions, also relating to inspections or verifications; parties that can access the data according to law.
You can ask for a complete up-to-date list of the parties named responsible for use of data by applying to the contact indicated below.
The data can also be communicated to all parties authorized by law for access (for example: sanitary service companies, financial administrations, etc.)
The data can be transferred inside the European Union, where the Controller or his suppliers and collaborators have their headquarters or their own servers. The data can also be transferred outside the European Union.
RIGHTS OF THE DATA SUBJECT:
• Right to access (art. 15 GDPR). Right to have access to one’s own personal data and to submit a complaint to the authority which has control;
• Right to rectification (art. 16 GDPR). The data subject shall have the right to obtain from the controller the rectification of inaccurate personal data concerning him or her;
• Right to erasure (right to be forgotten) (art. 17 GDPR). The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay;
• Right to restriction of processing (art. 18 GDPR). The data subject shall have the right to obtain from the controller restriction of processing;
• Notification obligation (art. 19 GDPR). The controller shall communicate any rectification or erasure of personal data or restriction of processing carried out in accordance with Article 16, Article 17 and Article 18;
• Right to data portability (art. 20 GDPR). The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller and have the right to transmit those data to another controller without hindrance from the controller;
• Right to object (art. 21 GDPR). The data subject shall have the right to object to processing of personal data concerning him or her;
• Profiling (art. 22 GDPR). The data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling or which significantly affects him or her.
To contact and obtain your rights apply to Mr. Bovini Mario at the mail address firstname.lastname@example.org
Policy revised 5/11/2020