The “Site” refers to the BELLA SOTTA website, available in various digital formats accessible via the Internet, containing data of different types, including but not limited to texts, sounds, still or animated images, videos and databases, intended to be consulted and accessible at the following address: www.bellasotta.com.
“Internet” refers to a network of servers located in various places around the world, connected to each other through communication networks and communicating via a specific protocol known as TCP/IP.
“Personal Data”, “Special Categories of Data”, and “Processing” have the same meaning as defined in Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data.
The “Data Controller” is the entity that collects and processes personal data.
“Recipients” refer to any person authorized to receive personal data other than the Data Controller, the Data Processor, and persons who, by virtue of their duties, are responsible for processing such data.
“Authorized Third Parties” refer to legally authorized authorities who, within the scope of a specific mission or the exercise of a right of communication, may request personal data from the Data Controller.
“Data Subject” refers to the natural person to whom the processed data relates.
“Processing of Personal Data” means any operation or set of operations performed on such data, regardless of the process used, including but not limited to collection, recording, organization, storage, adaptation or modification, extraction, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
This personal data protection policy (hereinafter referred to as the “Policy”) aims to inform Data Subjects about how their personal data is collected and processed by BELLA SOTTA.
Personal data is collected by BELLA SOTTA, with a share capital of €100, registered with the Trade and Companies Register of Belfort under number 833 030 042, whose registered office is located at 5 impasse des champs, 25550 DUNG, France.
The Data Controller is Guillaume Dobbels, Managing Director of BELLA SOTTA.
BELLA SOTTA undertakes to ensure that collected data is kept in a form that allows identification of Data Subjects for a period not exceeding that necessary for the purposes for which it is collected and processed, namely the management of past, current and future reservations.
In accordance with the French Data Protection Act of 6 January 1978 as amended, and with Regulation (EU) 2016/679 of 27 April 2016 (GDPR), you have the right to access, modify, rectify and delete personal data concerning you if such data is inaccurate, incomplete, ambiguous or outdated. You also have the right to object, for legitimate reasons, to the processing of your personal data.
You may exercise these rights by sending an email to: dpo (at) the domain name of this website.
BELLA SOTTA is committed to protecting the privacy of its users in compliance with applicable regulations, in particular the French “Data Protection Act”. In the course of operating the website www.bellasotta.com, BELLA SOTTA collects the following personal data:
This data is processed for the following purposes:
Personal data is retained:
BELLA SOTTA reserves the right to transfer the personal data of Data Subjects exclusively to its partner managing the property’s concierge services, in order to fulfill its obligations related to guest reception and assistance.
BELLA SOTTA also reserves the right to disclose personal data where required to comply with legal obligations, including in response to judicial requisitions.
In accordance with Articles 34 and 35 of French Law No. 78-17 of 6 January 1978 as amended, WEB&DESIGN implements all necessary technical and organizational measures to ensure the security and confidentiality of collected and processed personal data, in particular to prevent it from being altered, damaged or disclosed to unauthorized third parties, taking into account the risks involved, the nature of the data and the state of technological development.
Audience measurement and cookies: the legal framework
Audience measurement involves the collection of personal data. Your IP address is considered personal data insofar as it may allow you to be identified. Since 25 May 2018, the GDPR has established a legal framework governing personal data. As a result, websites are generally required to obtain the explicit consent of users before placing cookies on their devices.
Resource: https://www.cnil.fr/fr/comprendre-le-rgpd
CNIL recommendations for exemption from consent
However, the CNIL states that it is possible to dispense with consent provided certain conditions are met, including the following:
Matomo, a privacy-friendly alternative to Google Analytics
Our website uses Matomo, a free and open-source audience analytics tool configured in compliance with the CNIL recommendations mentioned above. This means, for example, that your IP address is anonymized before being stored, making it impossible to associate your visits with your identity.
If you still prefer to refuse cookies
You may refuse the use of cookies at any time and disable their storage on your device by using your browser’s dedicated settings. This feature is available in particular in Microsoft Internet Explorer 11, Google Chrome, Mozilla Firefox, Apple Safari and Opera.
Resource: https://www.cnil.fr/fr/cookies-et-autres-traceurs/comment-se-proteger/maitriser-votre-navigateur