Thank you for visiting our site, in the following information you will find all the useful information to understand the purposes and methods of treatment of your personal data as a visitor, in addition to any other information required by art. 13 and 14 of the General Data Protection Regulation EU 2016/679 ("GDPR").
The informative report concerns only this site and not other websites, portals, sections/pages/spaces linked by links, of third-party ownership or of Shalai Resort, for which reference should be made to the respective informative reports.
1. Who is the Data Controller?
The Data Controller is Pennisi srl, via Guglielmo Marconi 25, 95015 Linguaglossa (CT) (hereinafter, "Shalai Resort") and can be contacted by email at the address email@example.com.
2. What kind of data do we process and for how long do we keep them?
a) Navigation data. In normal operation and only for the duration of the connection, the computer systems and software procedures used to operate this site acquire some data that are then implicitly transmitted in the use of Internet communication protocols. By their nature, this information is not collected for associating them to users but could allow to identify them through processing and association with data held by third parties. These data are deleted a few hours after processing.
Your personal data will be communicated to third parties only if the communication is necessary to comply with the requests of the same users, as stated in the specific informative reports about individual services, or to simplify - at your request - the registration operations to sites/applications by third parties.
You will not be asked for data on health and, in general, particular categories of personal data referred to in art. 9 of the GDPR (sensitive, biometric, genetic, and criminal).
3. How will your data be processed?
Your data are been processed with the support of IT and electronic means and are protected by appropriate security measures to guarantee confidentiality and integrity.
In particular, Shalai Resort has adopted and adopts organizational measures (distribution of roles and responsibilities in the execution of activities and controls); procedural and technical measures (firewall, antivirus, and other advanced technologies) appropriate to protect your data against loss, theft, and unauthorized use, disclosure or modification.
We want to engage with you in a way that is valuable to you. To unsubscribe, use the link at the bottom of any of our communications to you.
Even if you choose to opt-out of communications, we will continue to send you transactional messages about your reservations or stays, including pre-arrival, confirmation and guest satisfaction surveys.
4. What is the purpose and legal basis of the treatment?
To understand how to improve services and make them evolve, Shalai Resort treats your anonymous browsing data referred to in paragraph 2.a in order to control the technical functioning and performance of the site. These data are necessary to guarantee the delivery of the site.
When the services offered by the site are free and supported by advertising, the legal basis of the processing is the legitimate interest of the Data Controller expressly provided for by the GDPR. (read above point 2.b).
With regard to the data referred to in paragraph 2.c, we invite you to read the specific informative report about individual services.
5. Whom may your data be communicated to?
Shalai Resort can share guest’s Personal Data with companies in partnership in order to allow the guest receive reserved offers and discounts.
The anonymous data referred to in points 2.a and 2.b could be communicated to partners and suppliers who support Shalai Resort in the provision of this site. If Shalai Resort were to disclose your personal data to third parties (for example regarding the services you have registered), they will act as autonomous Data Controller or will be appointed by Shalai Resort as Data Processors. You can request the updated list of these Managers by email at the address firstname.lastname@example.org
Furthermore, your data could be communicated to subjects, bodies, or authorities to whom the communication of data is mandatory by law.
6. What are your rights?
At any time, you can access information about yourself and request its updating, rectification, and integration, as well as the cancellation, transformation into anonymous form or block. You can also oppose all or part of the treatment.
To exercise these and other rights referred to in articles 15-22 of the GDPR, you can write to Pennisi srl, via Guglielmo Marconi 25, 95015 Linguaglossa (CT), or send an email to the address email@example.com.
In addition, you have the right to contact the Guarantor for the protection of personal data or other authority to propose a complaint about the processing of your personal data.
7. Changes and updates
This informative report may change over time - also related to the possible entry into force of new sector regulations, the updating or provision of new services or technological innovations - for which we invite you to consult this page periodically.
We may use third party service providers to process personal data on our behalf, for the above purposes. For example, we may share some information with these third parties so they can contact you directly by e-mail (for example: to ask you to post a review about your stay and your travel experience).