Privacy Policy

Effective date: October 7, 2025

1. Data Controller

Pursuant to Regulation (EU) 2016/679 (“GDPR”), this Privacy Policy is provided to users who visit the website https://borgolelanterne.com.

The Data Controller is:
Michela Scudeler
Tax Code: SCDMHL90M45C957G
Address: Via Carniei, 20 – 31051 Follina (TV), Italy
Email: info@borgolelanterne.com
Telephone: +39 345 8872630

The Controller personally manages all information requests and communications related to personal data collected through the website.

2. Types of data processed

  • Data voluntarily provided by the user: name, surname, email address, and any other information entered in the contact form message.
  • Browsing data: IP address, date and time of visit, browser type, operating system, and other technical data automatically collected by the server or analytics tools (e.g., Google Analytics).

3. Purposes of processing

Personal data are processed for the following purposes:

  1. Managing information requests sent via the contact form on the website;
  2. Anonymous statistical analysis of website traffic and functionality using Google Analytics or similar tools.

4. Legal basis for processing

  • User consent (Art. 6, para. 1, lett. a GDPR), for data provided through the contact form;
  • Legitimate interest of the Controller (Art. 6, para. 1, lett. f GDPR), for website security, maintenance, and anonymous traffic analytics.

5. Processing methods

Data are processed lawfully, fairly, and transparently using electronic and telematic tools strictly related to the stated purposes. Appropriate technical and organizational security measures are applied to prevent loss, unlawful or improper use, and unauthorized access.

6. Nature of data provision

Providing data through the contact form is optional but necessary in order to receive a response to your request. Failure to provide the required data will make it impossible to process your inquiry.

7. Data communication and recipients

Personal data will not be disseminated. They may be communicated exclusively to:

  • the Website Owner, who directly manages them;
  • technical providers responsible for website hosting and maintenance, who may be appointed as Data Processors pursuant to Art. 28 GDPR;
  • competent authorities, where required by law or to protect the Controller’s rights.

8. Location of processing and data transfers

The website is hosted on servers located in Spain, within the European Union, by the provider The Option.

Some third-party tools (e.g., Google Analytics) may involve data transfers to countries outside the EU (e.g., the United States). Such transfers are carried out in compliance with Articles 44 and following of the GDPR, based on the Standard Contractual Clauses (SCC) adopted by the European Commission.

9. Data retention period

  • Contact form data: retained for the time necessary to respond to the request and, in any case, no longer than the stay period or 12 months from the last contact.
  • Browsing data and server logs: retained for up to 6 months for security and maintenance purposes.
  • Analytical data: stored in aggregated and anonymous form for a maximum of 24 months.

10. Cookies and tracking tools

This website uses technical, functional, and analytical cookies (such as Google Analytics and Sourcebuster). For detailed information on the cookies used and to manage consent preferences, please refer to the Cookie Policy.

11. Data subject rights

In accordance with Articles 15–22 of the GDPR, users (data subjects) have the right to:

  • obtain confirmation as to whether or not personal data concerning them are being processed and access such data (right of access);
  • request the correction of inaccurate data or completion of incomplete data (right to rectification);
  • request the deletion of data (“right to be forgotten”);
  • request restriction of processing in certain circumstances (right to restriction);
  • object to processing for legitimate reasons (right to object);
  • request data portability, where applicable (right to data portability);
  • withdraw consent at any time, without affecting the lawfulness of processing based on consent before withdrawal;
  • lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali).

12. Exercising your rights

To exercise the above rights, you may send a request via email to:
info@borgolelanterne.com

13. Security measures

The website uses HTTPS protocol to ensure secure data transmission. Daily backups are performed, and adequate technical and organizational security measures are applied to prevent data loss, unauthorized access, or misuse.

14. Updates and amendments

This Privacy Policy may be updated at any time to comply with regulatory changes or new processing activities. Updates will be published on this page, indicating the date of the latest revision.

Last updated: October 7, 2025