Privacy Policy

Who we are

Our website address is: https://lakecomogolfdestination.com.

Information on the processing of personal data.

With this notice, in accordance with EU Regulation No.679/2016 (hereinafter GDPR) and the specific compatible national legislation, Lake Como Golf Destination, based in Via Località Golf, 1 – 22010 Grandola ed Uniti (CO), C.F. & P.IVA IT04124820137 as “Data Controller” (hereinafter “Owner”), informs about the ways and circumstances under which it will process personal data and information provided by accessing the website lakecomogolfdestination.com , which Lake Como Golf Destination owns.

Type of data being processed

Personal data processed by the Data Controller are as follows: first name, last name, date of birth, sex, telephone number, residential address, zip code, telephone number, e-mail address and Tax_ID. Please refer to the specific section of this policy for complete details.
Browsing Data: This is information collected automatically by the Owner, through the Site, newsletters, or third-party applications. These include: date and time, IP addresses, addresses in Uniform Resource Identifier (URI) notation, the time of the request, the method used in submitting the request to the server, the size of the response, the status code in numeric form, as well as browser and operating system, language, country.
Cookies are small text files sent from the site to the data subject’s terminal (usually the browser), where they are stored and then transmitted back to the site the next time the same user visits. A cookie cannot retrieve any other data from the user’s hard drive or transmit computer viruses or acquire email addresses. Each cookie is unique to the user’s web browser. Some of the functions of cookies may be delegated to other technologies. In this document, the term ‘cookies’ is intended to refer both to cookies proper and to all similar technologies. For more information on the use of cookies, see the Cookie Privacy document on this Site.

Active forms on the site

The site has one or more information request forms, which the User can use to request information from the Owner. The data provided are used with the sole purpose of providing the service to the User. In some inquiry forms, there may be an option to be able to use the data for commercial, marketing, etc. purposes. The User will have the option to accept or not accept this feature, not affecting the operation of the contact form.

Legal Basis and Purpose of Processing

  • Data essential for contractual execution: Provided consent is obtained from the User, the data will be processed for the purposes solely related to the provision of the specific service. For example, in the case of an information request, the data will be used only to respond to the User by providing the requested information. For the performance of contractually required services, these data are indispensable.
  • Promotional, commercial and marketing purposes: Provided explicit consent is obtained from the User, data processing will take place for the purposes of sending by the Owner, on a periodic basis, commercial communications, initiatives, discounts and offers from the Owner or third parties. May be the subject of data processing, those entered by the “Data Owner” on the Site, if obtained directly from the “Data Owner” or from third parties in any case with compliance with current regulations. In any case, the User’s data will not be disclosed and/or transferred to third parties under any circumstances.

Owner, appointees and data processors

  1. Data controller: The data controller of the data provided by users is the Data Controller, as defined in the introduction, in the person of its legal representative pro tempore.
  2. Persons in charge of the processing:The persons in charge of the Data Controller may become aware of your data as they are in charge of carrying out certain processing operations connected with and instrumental to the provision of the service and/or the additional purposes permitted by the User.
  3. Data Processors In order to be able to technically manage the above, the Data Controller has appointed the following individuals as external data processors: Lake Como Golf Destination, Via Località Golf 1, 22010 Grandola ed Uniti (CO)

Mode of treatment

Personal data will be processed by manual or electronic means, in a manner strictly related to the above purposes and in any case, so as to ensure the security, protection and confidentiality of the data. In addition, it is further clarified that the processing of personal data is carried out in a manner that minimizes the risks of destruction or loss, even accidental, of such data, unauthorized access or processing that is not permitted and not in accordance with the purposes of collection. In particular, in the processing of data, the Data Controller and the individuals identified as data processors will use appropriate organizational, physical and logical measures to ensure the security and confidentiality of the data, with the use of any most appropriate measures to ensure the classification, storage and confidentiality of the data. Personal data may be processed by employees, collaborators and consultants of the Data Controller, specifically appointed as data processors, for the performance of specific operations necessary for the pursuit of the aforementioned purposes, under the direct authority and responsibility of the Data Controller and in accordance with the instructions that will be given by the same.

Data recipients

At any time the User may object to the processing of personal data by sending an e-mail to the address indicated in the “Holder’s Contact Information” section of this policy. In the case of newsletters, the User will also have the option to unsubscribe independently from the list in question by using the link at the bottom of any email message received from that list. Even after deletion, some data may be retained. For example, data related to consents, data that may be subject to request by the Authority to combat illegal activities, billing data i.e., invoices issued. In case the sending of communications is established on the basis of the exercise of a contract with the Holder, it will not be possible to delete the User’s data until it is concluded and/or until the parties have exercised withdrawal, in accordance with current regulations.

Transfer of data to non-EU countries

The Data Controller may use services offered by third-party companies, which will process your data as data controllers and in accordance with the instructions given to them by the Data Controller. It is possible that some of the processing carried out by controllers may take place outside the territory of the European Union, such as in the USA. In these cases, the Controller resorts to legal instruments in order to ensure adequate protection for your personal data (e.g., by requiring such counterparties to sign Standard Contractual Clauses or by complying with other specific protection standards proposed or suggested by the European Union and the Data Protection Authority).

User Rights

As a data subject, you are granted the following rights over the personal data collected and processed by the Data Controller as part of the processing outlined above:

  • Right of Access Art 15: You have the right to obtain confirmation from the Data Controller whether or not personal data is being processed concerning you and if so, to obtain access to the personal data and the following information: (i) the purposes of processing; (ii) the categories of personal data involved; (iii) the recipients or categories of recipients to whom your personal data have been or will be disclosed, particularly if recipients in third countries or international organizations; (iv) when possible, the intended retention period of personal data or, if not possible, the criteria used to determine this period; (v) the right to file a complaint with a supervisory authority.
  • Right to Rectification, Opposition and Deletion Art 16: You are granted the right to obtain the rectification of inaccurate personal data concerning you as well as, taking into account the purposes of the processing, the right to obtain the integration of incomplete personal data, including by providing a supplementary statement. In addition, you have the right to have personal data about you deleted if any of the following reasons exist: (i) personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; (ii) the data are processed unlawfully; (iii) you have withdrawn the consent under which the Controller had the right to process your data and there is no other legal basis for the Controller to process it; (iv) you objected to the processing activity and there is no overriding legitimate reason; (v) personal data must be deleted to fulfill a legal obligation. However, the Holder has the right to disregard the exercise of the aforementioned cancellation rights if the right to freedom of expression and information prevails or for the exercise of a legal obligation or to defend its own right in court. At any time, you can object to processing for even one of the above processing purposes.
  • Right to erasure (“right to be forgotten”) Art. 17: The User has the right to obtain from the Controller the deletion of personal data concerning him/her without undue delay, and the Controller has the obligation to delete without undue delay the personal data, if any of the grounds referred to in Art. 17 par.1 lett. a,b,c,d,e,f, par.2, par. 3 lett. a,b,c,d,e.
  • Right to restriction of processing Art 18: The User has the right to obtain from the Controller the restriction of processing: (i) for as long as is necessary for the Controller to verify the accuracy of such personal data about you that you have disputed; (ii) In case of unlawful processing of your personal data; (iii) when it needs your data to be processed for the establishment, exercise or defense of a legal claim; (iv) for the period necessary to verify whether the Controller’s legitimate reasons prevail over its request to object to the processing.
  • Right to data portability Art 20: You have the right to receive in a structured, commonly used and readable format your personal data provided to the Data Controller and processed by it on the basis of consent, as well as the right to transmit such data to another Data Controller designated by it without any hindrance.
  • Right to object Art.21: The User has the right to object at any time, on grounds relating to his or her particular situation, to the processing of personal data concerning him or her pursuant to Article 6(1)(e) or (f), including profiling on the basis of these provisions. Where personal data are processed for direct marketing purposes, the User has the right to object at any time to the processing of personal data concerning him or her carried out for such purposes, including profiling insofar as it is related to such direct marketing. If you object to processing for direct marketing purposes, your personal information is no longer processed for such purposes.

Holder’s contact information

Users may exercise their rights at any time by making a request to be sent to the Controller as data controller by e-mail to info@lakecomogolfdestination.com.