PRIVACY AND COOKIE POLICY

DATA PROCESSING NOTICE

This Privacy Policy outlines which data is collected and how it is used, disclosed, transferred, and/or stored by the company.

This notice is provided in accordance with Articles 13-14 of Regulation (EU) 2016/679 – hereinafter, GDPR – to those who interact with the web services accessible online from the address: www.hoteldesglaciers.com

This policy is subject to updates, which will be promptly published on the website.

DATA CONTROLLER

The Data Controller of the data collected by this site is Hotel Des Glaciers, located at Via della Vittoria 66, Fraz. Dolonne, 11013 Courmayeur Aosta, Italy, VAT no. 01108440072, email: info@hoteldesglaciers.com

METHODS OF PERSONAL DATA PROCESSING

The Personal Data provided or acquired will be processed based on the principles of fairness, lawfulness, transparency, and protection of confidentiality in accordance with current regulations.

The Controller processes the Users’ Personal Data by adopting appropriate security measures to prevent unauthorized access, disclosure, alteration, or destruction of the Personal Data.

Processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the indicated purposes. Among the Personal Data collected by this Website, independently or through third parties, are: Cookies, Usage Data, Email, and Name. Additional Personal Data may be indicated in other sections of this Privacy Policy or through specific notices displayed at the time of data collection. Personal Data may be entered voluntarily by the User or collected automatically during the use of this Website.

1. DATA DISCLOSURE AND DISSEMINATION

In addition to the Controller, in some cases, the following may have access to the Data:

a) categories of appointees, specifically trained, involved in the organization of the Website (administrative, commercial, marketing staff, legal, system administrators);
b) external subjects (such as third-party technical service providers, hosting providers, IT companies, communication agencies) also appointed as Data Processors by the Controller pursuant to Art. 28 GDPR. The updated list of Processors, if appointed, can always be requested from the Data Controller;
c) public or private entities that may access the Data in compliance with legal obligations;
d) entities performing ancillary and instrumental tasks related to the Controller’s activity;
e) external subjects such as partners in organizing events and initiatives promoted and/or sponsored by the Controller, for which data communication is necessary for organizational purposes;
f) with the data subject’s prior consent, the entities referred to in section 5, letter g) of this Privacy Policy.

2. DATA VOLUNTARILY PROVIDED BY THE USER

The optional, explicit, and voluntary sending of emails, including through the Contact Form or using the addresses listed on this Website, entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other Personal Data included in the email. Consent to the provision of Data by the User is necessary for inclusion in the Controller’s databases and to establish and properly carry out the services offered. Failure to provide data prevents registration in the Controller’s databases, the completion of any contracts, and the execution of services. Therefore, failure to provide certain Personal Data by the User may prevent this Website from delivering its services. The User is responsible for the Personal Data of third parties published or shared through this Website and guarantees to have the right to communicate or disclose them, releasing the Controller from any liability towards third parties.

3. PLACE OF DATA PROCESSING

Data is processed at the operational headquarters of the Controller. For further information, please contact the Data Controller.

4. DATA RETENTION PERIOD

As expressly provided by Art. 5, paragraph 1, letter e) of the GDPR, the Data shall be retained for the time necessary to fulfill the purposes for which they were collected.

Specifically:

– Personal Data collected for the execution of a contract between the Controller and the User will be retained until the contract is fully executed;
– Data collected for purposes related to the legitimate interest of the Controller will be retained until such interest is satisfied. The User may obtain more information on the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller;
– Data collected based on the User’s Consent may be retained until such consent is revoked;
– Data collected for fiscal/administrative obligations will be kept for the time necessary to achieve such purposes and as provided by law, and in any case no longer than the period established by civil law;
– Data may be retained for a longer period in compliance with legal obligations or at the order of an authority.

The User may always request the interruption of the Processing or the deletion of Data not linked to the execution of a contract.

At the end of the retention period, Personal Data will be deleted. Therefore, once this period expires, the right to access, delete, rectify, and the right to data portability can no longer be exercised.

5. PURPOSES OF DATA PROCESSING

User Data is collected to allow the Website to provide its services, as well as for the following purposes: Contacting the User, managing addresses and sending email messages, interaction with external platforms, and statistics. Specifically:

a) to comply with any type of legal, regulatory, or commercial requirement, particularly tax/fiscal obligations;
b) to fulfill specific User requests through the Website and its communication tools (Contact Forms, information request modules, etc.);
c) to send informative communications about the Controller’s services following requests made via email or the Contact Form and other communication tools;
d) for purposes related to or connected to those listed above and still falling within the scope of the Website’s activities;
e) to send promotional and commercial information and offers;
f) for profiling activities for marketing purposes;
g) to transfer Data to companies and/or third parties with whom the Controller collaborates or has agreements, who may use the Data to send information and/or material regarding events or services they provide.

The types of Personal Data used for each purpose are specified in the relevant sections of this document.

Processing for the purposes under point a) is necessary for the execution of a contract or for compliance with legal obligations.

Processing for points b), c), d) is optional, but failure to provide data will make it impossible to respond to requests and provide services.

Processing for points e), f), g) is based on freely given consent by the data subject.

ADDITIONAL INFORMATION ON PROCESSING

LEGAL DEFENSE

The User’s Personal Data may be used by the Controller in legal proceedings or in preparation for possible legal action arising from misuse of this Website or related services. The User declares to be aware that the Controller may be required to disclose Data upon request by public authorities.

NATURE OF PROCESSED DATA AND CONSEQUENCES OF REFUSAL

The provision of browsing data by Users, for the purposes mentioned above, depends on the level of privacy set in the browser. In some cases, disabling it may affect navigation. For certain Website modules, the provision of browsing data and/or technical cookies is mandatory for the site to function correctly. Providing certain personal data is also necessary for the structure and procedures of the Website. For example:

• to send messages via the Contact Form, the minimum required data must be provided;

Otherwise, the process cannot be completed.

The request for optional data will be preceded by a specific approval checkbox. All other data is optional according to the type of information the User wishes to provide.

EXERCISING USER RIGHTS

The User has the right to exercise the powers granted under Articles 7, 15–22 of Regulation (EU) 679/2016.

In particular, the User has the right to revoke consent at any time and, upon simple request to the Controller, may request access to Personal Data, receive the provided Personal Data, and where possible transfer them to another Controller (so-called portability), obtain updates, restrictions of processing, corrections, and deletion of data processed unlawfully. The User also has the right to object to processing for legitimate reasons and for direct marketing purposes. The User may file a complaint with the Data Protection Authority. Rights may be exercised by contacting the Controller via email at: info@hoteldesglaciers.com

CHANGES TO THIS PRIVACY POLICY

The Data Controller reserves the right to make changes to this Privacy Policy at any time by giving notice to Users on this page. Users are therefore advised to check this page frequently, referring to the last modification date at the bottom. If the User does not accept the changes, they must stop using the Website and may request the Controller to remove their Personal Data. Unless otherwise specified, the previous policy will continue to apply to data collected up to that point.

The Data Controller is responsible for this Privacy Policy.

Privacy Notice updated in January 2023

COOKIE POLICY

This cookie policy or extended information notice on cookies and other tracking tools refers to the use of Cookies by the website www.hoteldesglaciers.com

The Data Controller is Hotel Des Glaciers, located at Via della Vittoria 66, Fraz. Dolonne, 11013 Courmayeur Aosta, Italy, VAT no. 01108440072, email: info@hoteldesglaciers.com

Cookies are small text files used by websites to make the User’s browsing experience more efficient, which are sent to the browser and stored for later reuse during future visits.

Cookies serve various purposes. Some improve site functionality and navigation (technical or necessary cookies), while others track users, record data, and analyze habits to customize advertising (profiling cookies). Cookies are used to personalize content, provide social media features, and analyze traffic.

Users can set browser privacy preferences to avoid storing cookies, delete them after each visit, or accept only cookies from www.hoteldesglaciers.com.

Depending on how long they last, cookies are classified as:

**Session cookies**: temporary cookies that remain on the device until the User leaves the site.

**Persistent cookies**: cookies that remain on the device for a longer period until manually deleted.

This site uses several types of Cookies:

Technical Cookies

Technical cookies do not require the User’s consent. They are used solely to transmit communications over an electronic network or to the extent strictly necessary to provide a service explicitly requested. Technical cookies on this site are used to store the User’s decision about cookie usage. Their retention period matches the browsing session duration.

SOCIAL MEDIA BUTTONS AND WIDGETS

To allow website content to be shared on social networks, widgets from the networks themselves may be integrated into the pages. These tools may collect third-party cookies.

The website does not share any data with such widgets and has no access to the data collected and processed independently by social platforms.

For further details on social network cookies used by this website, visit:

– Facebook: https://www.facebook.com/policies/cookies/
– Instagram: https://help.instagram.com/519522125107875
– Telegram: https://telegram.org/privacy
– LinkedIn: https://www.linkedin.com/legal/cookie-policy
– Vimeo: https://vimeo.com/cookie_policy
– YouTube: https://policies.google.com/privacy?hl=it
– Twitter: https://help.twitter.com/it/rules-and-policies/twitter-cookies

DELETING OR DISABLING COOKIES

Except for technical cookies strictly necessary for browsing, the User’s consent is required to install cookies. The User can avoid the installation of cookies by keeping the banner open (refraining from clicking “OK”), deselecting cookie categories, or using their browser’s settings.

Users can manage cookie preferences in their browser to prevent third-party installation.

Disabling all cookies may compromise this Website’s functionality. Each browser has different settings.

To disable third-party cookies, users can use Your Online Choices: http://www.youronlinechoices.com/it/le-tue-scelte

ADDITIONAL INFORMATION ON PROCESSING

**Specific information notices**
Upon request, the Website may provide additional and contextual information about specific services or data processing.

**System logs and maintenance**
For operational and maintenance purposes, this Website and any third-party services may collect system logs (which may include IP addresses).

**Information not in this Cookie Policy**
More information about data processing can be requested at any time from the Data Controller.

EXERCISING USER RIGHTS

Under Articles 15–22 of EU Regulation 679/2016, the data subject has the right to obtain confirmation of the existence of personal data, even if not yet recorded, and to receive them in an intelligible form.

The data subject has the right to obtain information on:

a) the origin of the data;
b) purposes and methods of processing;
c) logic applied in case of electronic processing;
d) identification details of the Controller and Processors;
e) subjects or categories to whom data may be disclosed.

The data subject has the right to obtain:

a) updates, rectification, or integration;
b) erasure, anonymization, or blocking of unlawfully processed data.

The data subject has the right to object, wholly or partly:

a) for legitimate reasons to data processing;
b) to data processing for advertising, direct sales, or market research purposes.

WARNING: The Controller is not responsible for updating all third-party links in this Cookie Policy. If a link is broken or outdated, Users must refer to the relevant documents on the respective third-party websites.