PRIVACY POLICY

Il Grottino Holiday Home Rome San Saba

Pursuant to Article 13 of EU Regulation 2016/679 (GDPR)

1. Data Controller

The Data Controller is: Michele Capone
Tax Code: CPNMHL87C06B354S
Residence address: Via Lombardia 14, 09170 Oristano (OR)
Email: romeside.2026@gmail.com
Phone: +39 379 33 85 024

Accommodation activity: il Grottino Holiday Home Rome San Saba

Property address: Via Federico Zuccari 4, Rome, Italy

The property is a non-business holiday home managed under Italian law with SCIA registered in the name of the Data Controller. The CIR code will be published once issued.

2. Authorized Person

Personal data may also be processed, under the authority of the Data Controller, by:

Marco Zecchini, authorized person for data processing.

3. Types of Data Collected

The following personal data may be collected:

Identification data (name, surname, date of birth)
Contact details (email, phone number)
Identity document details
Stay-related information (dates, number of guests, special requests)
Fiscal data required by law
Navigation data (IP address, logs, cookies)

4. Purpose of Processing

Personal data are processed for the following purposes:

Managing information requests
Managing bookings and stays
Compliance with legal obligations (Police Authorities – Alloggiati Web, ISTAT statistics, tax regulations)
Operational communications via email or WhatsApp Business
Protection of the Data Controller’s legal rights

No newsletters or automated marketing activities are carried out.

5. Booking Methods

Bookings may be made through:

Direct website (Lodgify booking engine)
Booking.com
Airbnb
WhatsApp
Email
Social networks (Instagram / Facebook)

When bookings are made through external platforms (OTAs), data processing is also subject to the respective privacy policies of those platforms.

6. Check-in and Identity Documents

Online check-in via Vikey platform may be available on an optional basis.

Identity documents:

may be uploaded digitally, where applicable
are normally collected physically upon arrival

Guest data are transmitted to the Italian Police Authorities through the official “Alloggiati Web” portal, as required by public security laws.

7. Legal Basis for Processing

Data processing is based on:

Performance of a contract or pre-contractual measures
Compliance with legal obligations
Legitimate interest of the Data Controller

8. Data Disclosure

Personal data may be communicated to:

Public Security Authorities (Alloggiati Web)
ISTAT / Regione Lazio
Tax consultant (if applicable)
Technical service providers (Aruba hosting, Lodgify, Vikey)

Data are not publicly disclosed.

9. Data Transfers Outside the EU

Some service providers (e.g., booking platforms or digital services) may transfer data to countries outside the European Union. Such transfers are carried out in accordance with the GDPR, based on Standard Contractual Clauses approved by the European Commission or other appropriate safeguards.

10. Data Retention

Personal data are stored:

For the duration necessary to manage the stay
For 10 years for tax and administrative purposes
For the period required by public security regulations

Data may be stored in digital format (email, cloud services, management software) and in paper format.

11. Cookies

The website uses technical cookies necessary for proper functioning.

A cookie banner is active and allows users to accept or refuse non-essential cookies.

Third-party services (such as the booking engine) may install their own cookies in accordance with their respective privacy policies.

12. Data Subject Rights

Under Articles 15–22 of the GDPR, data subjects have the right to:

Access their personal data
Request rectification
Request erasure
Restrict processing
Object to processing
Request data portability

Requests may be sent to: romeside.2026@gmail.com

È inoltre possibile proporre reclamo al Garante per la Protezione dei Dati Personali.