Privacy Policy of glamping-soverato.it

This Application collects some Personal Data of its Users.
This document contains a section dedicated to users in the United States and their privacy rights.

This document contains a section dedicated to Users in Switzerland and their privacy rights.
This document can be printed using the print command found in any browser's settings.

 

Data Controller

For more information, please contact:
GBMS S.r.l.
Via Galati, 18 88068 Soverato (CZ)
VAT/C.F.: 03962820795
PEC:amministrazione@pec.gbms.it

Holder's email address: amministrazione@caramante.it

 

Types of Data Collected

Among the Personal Data collected by this Application, either independently or through third parties, are: Usage Data; Tracking Tools; first name; last name; email; various types of Data.

Full details on each type of Personal Data collected are provided in the relevant sections of this privacy policy or by means of specific information texts displayed prior to the collection of such Data.
Personal Data may be freely provided by the User or, in the case of Usage Data, automatically collected during the use of this Application.
Unless otherwise specified, all Data requested by this Application are mandatory. If the User refuses to provide them, it may be impossible for this Application to provide the Service. In cases where this Application indicates some Data as optional, Users are free to refrain from communicating such Data, without this having any consequence on the availability of the Service or its operability.
Users in doubt as to which Data are mandatory are encouraged to contact the Controller.
The possible use of Cookies – or other tracking tools – by this Application or by the owners of third-party services used by this Application is for the purpose of providing the Service requested by the User, in addition to the further purposes described in this document and in the Cookie Policy.

The User assumes responsibility for any third-party Personal Data obtained, published or shared through this Application.

Methods and place of processing of the collected Data

Treatment methods

The Data Controller shall adopt appropriate security measures aimed at preventing unauthorised access, disclosure, alteration or destruction of Personal Data.
The processing is carried out using IT and/or telematic tools, with organisational methods and logic strictly related to the stated purposes. In addition to the Data Controller, in some cases, other subjects involved in the organisation of this Application (administrative, sales, marketing, legal personnel, system administrators) or external subjects (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the Data, also appointed, if necessary, as Data Processors by the Data Controller. The updated list of Data Processors can always be requested from the Data Controller.

Place

The Data are processed at the Controller's premises and at any other place where the parties involved in the processing are located. For further information, please contact the Data Controller.
The User's Personal Data may be transferred to a country other than the one in which the User is located. For further information on the place of processing, the User may refer to the section on the details of the processing of Personal Data.

Retention period

Unless otherwise stated in this document, Personal Data will be processed and retained for the time required for the purpose for which it was collected and may be retained for a longer period due to any legal obligations or based on User consent.

Purpose of the processing of data collected

User Data is collected to allow the Data Controller to provide the Service, comply with legal obligations, respond to requests or enforcement actions, protect its rights and interests (or those of Users or third parties), identify any malicious or fraudulent activities, as well as for the following purposes: Displaying content from external platforms and Contacting the User.

To obtain detailed information on the purposes of processing and the Personal Data processed for each purpose, Users can refer to the “Details on Personal Data Processing” section.

Details of Personal Data Processing

Personal Data is collected for the following purposes and using the following services:

  • Contact the User

    Contact form

    By completing the contact form with your details, the User authorises this Application to use this information to respond to requests (such as quotes and any other enquiries).

    Personal Data Processed: surname; Usage Data; email; name; various types of Data.

    Categories of Personal Information collected pursuant to the CCPA: identifiers; information relating to internet or other network activity.

    Mailing list or newsletter

    When you register for the mailing list or newsletter, your email address will be automatically added to a list of contacts to whom we may send email messages containing information, including commercial and promotional information, relating to this Application. Your email address may also be added to this list as a result of registering for this Application or after making a purchase.

    Personal data processed: Usage Data; email; Tracking Tools.

    Categories of Personal Information collected pursuant to the CCPA: identifiers; information relating to internet or other network activity.

  • Displaying content from external platforms

    This type of service allows content hosted on external platforms to be displayed directly within this Application's pages and for users to interact with it. Such services are often defined as widgets, which are small elements embedded within a website or application. They provide specific information or perform a particular function, and often allow for user interaction.
    This type of service could still collect data on web traffic relating to the pages where the service is installed, even when users are not using it.

    Google Fonts (Google LLC)

    Google Fonts is a font style display service managed by Google LLC which allows this Application to integrate such content within its pages.

    Personal data processed: Usage Data; Tracking Tools.

    Place of treatment: United States – Privacy Policy.

    Categories of Personal Information collected under the CCPA: information about internet or other network activity.

    Google Maps Widget (Google LLC)

    Google Maps is a map viewing service operated by Google LLC that allows this Application to integrate such content within its pages.

    Personal data processed: Usage Data; Tracking Tools.

    Place of treatment: United States – Privacy Policy.

    Categories of Personal Information collected under the CCPA: information about internet or other network activity.

This Application makes use of Tracking Tools. To learn more, Users can consult the Cookie Policy.

 

Legal basis for processing

The Data Controller processes Personal Data relating to the User if one of the following conditions is met:

  • The user has given consent for one or more specific purposes.
  • the processing is necessary for the performance of a contract with the User and/or for the performance of pre-contractual measures;
  • the processing is necessary to fulfil a legal obligation to which the Controller is subject;
  • the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
  • the processing is necessary for the pursuit of the legitimate interests of the Controller or of third parties.

It is always possible to ask the Data Controller to clarify the concrete legal basis for each processing activity and, in particular, to specify whether the processing is based on law, is provided for by a contract, or is necessary for the conclusion of a contract.

Further information on storage time

Unless otherwise stated in this document, Personal Data will be processed and retained for the time required for the purpose for which it was collected and may be retained for a longer period due to any legal obligations or based on User consent.

Therefore:

  • Personal Data collected for purposes related to the execution of a contract between the Data Controller and the User will be retained until the execution of such contract is completed.
  • Personal Data collected for purposes attributable to the legitimate interest of the Data Controller will be retained until such interest is satisfied. The User may obtain further information regarding the legitimate interest pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller.

When treatment is based on the User's consent, the Data Controller may retain Personal Data for longer until such consent is withdrawn. Furthermore, the Data Controller may be obliged to retain Personal Data for a longer period to comply with a legal obligation or by order of an authority.

At the end of the retention period, Personal Data will be deleted. Therefore, upon expiry of this period, the right of access, erasure, rectification, and the right to data portability will no longer be exercisable.

User Rights under the General Data Protection Regulation (GDPR)

Users may exercise certain rights with regard to the Data processed by the Data Controller.

In particular, within the limits provided by law, the User has the right to:

  • withdraw consent at any time. The User may withdraw the consent previously given for the processing of their Personal Data.
  • oppose the processing of their Data. The User can object to the processing of their Data when it takes place on a legal basis other than consent.
  • access to their Data. The User is entitled to obtain information about the Data processed by the Controller, about certain aspects of the processing, and to receive a copy of the processed Data.
  • check and request rectification. The User may verify the correctness of their Data and request its updating or correction.
  • obtain restriction of processing. The User may request the restriction of the processing of their Data. In such a case, the Data Controller shall not process the Data for any purpose other than storage.
  • obtain the deletion or removal of their Personal Data. The User may request the deletion of their Data by the Controller.
  • receive their Data or have them transferred to another data controller. The User is entitled to receive their Data in a structured, commonly used and machine-readable format and, where technically feasible, to obtain its uninterrupted transfer to another controller.
  • file a complaint. The User may lodge a complaint with the competent supervisory authority for personal data protection or take legal action.

Users have the right to obtain information regarding the legal basis for transferring Data abroad, including to any international organisation governed by international public law or set up by two or more countries, such as the UN, as well as regarding the security measures adopted by the Controller to protect their Data.

Details on the right to object

When Personal Data is processed in the public interest, in the exercise of a public authority vested in the Data Controller, or to pursue a legitimate interest of the Data Controller, Users have the right to object to the processing, on grounds relating to their particular situation.

Users are hereby informed that, where their Data is processed for direct marketing purposes, they may object to the processing at any time, free of charge and without providing any justification. Should Users object to processing for direct marketing purposes, their Personal Data will no longer be processed for such purposes. To find out if the Data Controller processes Data for direct marketing purposes, Users may refer to the relevant sections of this document.

How to exercise rights

Any requests to exercise the User's rights may be addressed to the Data Controller using the contact details provided in this document. The request is free of charge, and the Data Controller will respond as soon as possible, in any case within one month, providing the User with all the information required by law. Any rectifications, cancellations or limitations of processing will be communicated by the Data Controller to each of the recipients, if they exist, to whom the Personal Data have been transferred, unless this proves impossible or involves a disproportionate effort. The Data Controller will communicate such recipients to the User upon request.

Further information for users in Switzerland

This section applies to Users in Switzerland and, for such Users, supersedes any other information contained in the privacy notice that may differ or conflict.

Further details concerning the categories of Data processed, the purposes of processing, the categories of recipients of personal data, if any, the retention period, and other information on personal Data can be found in the section titled “Detailed information on the processing of Personal Data” within this document.

Users' rights under the Federal Data Protection Act

Users may exercise certain rights concerning their data within the limits of the law, including the following:

  • Right of access to personal data;
  • the right to object to the processing of one's Personal Data (which also allows Users to request the restriction of the processing of Personal Data, the deletion or destruction of Personal Data, the prohibition of disclosure of Personal Data to third parties);
  • the right to receive one's Personal Data and to transfer it to another controller (data portability);
  • Right to request rectification of incorrect Personal Data.

How to exercise these rights

Any requests to exercise the User's rights may be addressed to the Data Controller using the contact details provided in this document. Such requests are free of charge and the Data Controller will respond as quickly as possible, providing Users with the information required by law.

Further information for Users in the United States

This section of the document complements and adds to the information within the rest of the privacy policy, and is provided by the business operating this Application and, where applicable, its parent company, subsidiaries, and affiliates (referred to collectively as “we”, “us”, or “our” for the purposes of this section).

The information contained in this section applies to all Users (Users are referred to below, simply as “you”, “your”, “yours”), who are residents in the following states: California, Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Nevada, Delaware, Iowa, New Hampshire, New Jersey, Nebraska, Tennessee, Minnesota, Maryland, Indiana, Kentucky, Rhode Island and Montana.

For such Users, this information supersedes any other possibly divergent or conflicting provisions contained in the privacy policy.

This part of the document uses the term Personal Information.

Notice at collection

The following Notice at collection provides you with timely notice about the categories of Personal Information collected or disclosed in the past 12 months so that you can exercise meaningful control over our use of that information.

While such categorisation of Personal Information is mainly based on California privacy laws, it can also be helpful for anyone who is not a California resident to get a general idea of what types of Personal Information are collected.

  • Internet or other electronic network activity information

    Personal Information collected or disclosed: Usage Data, Tracking Tools, first name, last name, email, various types of Data

    Purposes:

    • Displaying content from external platforms
    • Contact the User

    Retention period: for the time necessary to fulfil the purpose

    Sold or Shared ℹ️ No

    Targeted Advertising: ℹ️: No

    Third-parties: Google LLC

  • Identifiers

    Personal Information collected or disclosed: first name, surname, email, various types of Data, Usage Data, Tracking Tools

    Purposes:

    • Contact the User

    Retention period: for the time necessary to fulfil the purpose

    Sold or Shared ℹ️ No

    Targeted Advertising: ℹ️: No

ℹ️ You can read the definitions of these concepts inside the “Definitions and legal references section”of the privacy policy.

To know more about your rights you can refer to the “Your privacy rights under US state laws” section of our privacy policy.

For more details on the collection of Personal Information, please read the section “Detailed information on the processing of Personal Data”of our privacy policy.

We will not process your Information for unexpected purposes, or for purposes that are not reasonably necessary and compatible with the purposes originally disclosed, without your consent.

What are the sources of the Personal Information we collect?

We collect the above-mentioned categories of Personal Information, either directly or indirectly, from you when you use this Application.

For example, you directly provide your Personal Information when you submit requests via any forms on this Application. You also provide Personal Information indirectly when you navigate this Application, as Personal Information about you is automatically observed and collected.

Finally, we may collect your Personal Information from third parties that work with us in connection with the Service or with the functioning of this Application and features thereof.

Your privacy rights under US state laws

You may exercise certain rights regarding your Personal Information. In particular, to the extent permitted by applicable law, you have:

  • the right to access Personal Information: the right to know. You have the right to request that we confirm whether or not we are processing your Personal Information. You also have the right to access such Personal Information;
  • the right to correct inaccurate Personal Information. You have the right to request that we correct any inaccurate Personal Information we maintain about you;
  • the right to request the deletion of your Personal Information. You have the right to request that we delete any of your Personal Information;
  • the right to obtain a copy of your Personal Information. We will provide your Personal Information in a portable and usable format that allows you to transfer data easily to another entity – provided that this is technically feasible.;
  • the right to opt out from the Sale of your Personal Information; We will not discriminate against you for exercising your privacy rights.
  • the right to non-discrimination.

Additional rights for users residing in California

In addition to the rights listed above common to all Users in the United States, as a User residing in California, you have:

  • The right to opt out of the Sharing of your Personal Information for cross-context behavioural advertising;
  • The right to request to limit our use or disclosure of your Sensitive Personal Information to only that which is necessary to perform the services or provide the goods, as is reasonably expected by an average consumer. Please note that certain exceptions outlined in the law may apply, such as, when the collection and processing of Sensitive Personal Information is necessary to verify or maintain the quality or safety of our service.

Additional rights for Users residing in Virginia, Colorado, Connecticut, Texas, Oregon, Nevada, Delaware, Iowa, New Hampshire, New Jersey, Nebraska, Tennessee, Minnesota, Maryland, Indiana, Kentucky, Rhode Island and Montana

In addition to the rights listed above common to all Users in the United States, as a User residing in Virginia, Colorado, Connecticut, Texas, Oregon, Nevada, Delaware, Iowa, New Hampshire, New Jersey, Nebraska, Tennessee, Minnesota, Maryland, Indiana, Kentucky, Rhode Island and Montana you have

  • The right to opt out of the processing of your personal information for Targeted Advertising or profiling in furtherance of decisions that produce legal or similarly significant effects concerning you;
  • The right to freely give, deny or withdraw your consent for the processing of your Sensitive Personal Information. Please note that certain exceptions outlined in the law may apply, such as, but not limited to, when the collection and processing of Sensitive Personal Information is necessary for the provision of a product or service specifically requested by the consumer. In Maryland, your Sensitive Personal Information will be collected or processed only if strictly necessary to provide or maintain a specific product or service requested by you.

In Minnesota and Maryland, users also have the right to obtain a list of the specific third parties to which the controller has disclosed the consumer's personal data.

* Note that in some states like Minnesota you have the following specific rights connected to profiling:

  • The right to question the results of the profiling;
  • The right to be informed of the reason that the profiling resulted in the decision; if feasible
  • The right to be informed of what actions the consumer might have taken to secure a different decision and the actions that the consumer might take to secure a different decision in the future;
  • The right to review personal data used in profiling;
  • If inaccurate, the right to have the data corrected and the profiling decision reevaluated based on the corrected data;

Additional rights for users residing in Utah and Iowa

In addition to the rights listed above common to all Users in the United States, as a User residing in Utah and Iowa, you have:

  • The right to opt out of the processing of your Personal Information for Targeted Advertising;
  • The right to opt out of the processing of your Sensitive Personal Information. Please note that certain exceptions outlined in the law may apply, such as, but not limited to, when the collection and processing of Sensitive Personal Information is necessary for the provision of a product or service specifically requested by the consumer.

How to exercise your privacy rights under US state laws

To exercise the rights described above, you need to submit your request to us by contacting us via the contact details provided in this document.

For us to respond to your request, we must know who you are. We will not respond to any request if we are unable to verify your identity and therefore confirm the Personal Information in our possession relates to you. You are not required to create an account with us to submit your request. We will use any Personal Information collected from you in connection with the verification of your request solely for verification and shall not further disclose the Personal Information, retain it longer than necessary for purposes of verification, or use it for unrelated purposes.

If you are an adult, you can make a request on behalf of a child under your parental authority.

How to exercise your rights to opt out

In addition to what is stated above, to exercise your right to opt-out of Sale or Sharing and Targeted Advertising you can also use the privacy choices link provided on this Application.

If you want to submit requests to opt out of Sale or Sharing and Targeted Advertising activities via a user-enabled global privacy control, such as for example the Global Privacy Control (“CPT”)“GPC”), you are free to do so and we will abide by such request without any fuss.

How and when we are expected to handle your request

We will respond to your request without undue delay, but in all cases within the timeframe required by applicable law. Should we need more time, we will explain to you the reasons why, and how much more time we need.

Should we deny your request, we will explain to you the reasons behind our denial (where envisaged by applicable law you may then contact the relevant authority to submit a complaint).

We do not charge a fee to process or respond to your request unless such request is manifestly unfounded or excessive and in all other cases where it is permitted by the applicable law. In such cases, we may charge a reasonable fee or refuse to act on the request. In either case, we will communicate our choices and explain the reasons behind them.

Further information on treatment

Defence in court

The User's Personal Data may be used by the Data Controller in legal proceedings or in the preparatory stages for any legal action, to defend against abuses in the use of this Application or the related Services by the User.
The User declares to be aware that the Controller may be obliged to disclose the Data by order of public authorities.

Specific information

At the User's request, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information regarding specific Services, or the collection and processing of Personal Data.

System logs and maintenance

For operational and maintenance requirements, this Application and any third-party services used by it may collect system logs, which are files that record interactions and may also contain Personal Data, such as the User's IP address.

Information not contained in this policy

Further information in connection with the processing of Personal Data may be requested at any time from the Data Controller using the contact details.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, where possible, within this Application, as well as, where technically and legally feasible, by sending a notification to Users via one of the contact details held by the Data Controller. Please therefore check this page frequently, referring to the date of the last update indicated at the bottom.

Where the changes concern processing operations based on consent, the Data Controller will re-collect the User's consent, if necessary.

Personal Data (or Data) / Personal Information (or Information)

Personal data is any information that, directly or indirectly, even in conjunction with any other information, including a personal identification number, makes a natural person identified or identifiable.

Sensitive Personal Information

Sensitive Personal Information means all Personal Information that is not publicly available and that reveals information that is considered sensitive under applicable privacy legislation.

Usage Data

The information automatically collected through this Application (including from third-party applications integrated into this Application), including: the IP addresses or domain names of the computers used by the User connecting to this Application, the addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the server's response status (success, error, etc.), the country of origin, the characteristics of the browser and operating system used by the visitor, the various temporal aspects of the visit (e.g., time spent on each page), and details concerning the path followed within the Application, with particular reference to the sequence of pages viewed, to the parameters relating to the User's operating system and IT environment.

User

The individual using this Application who, unless otherwise specified, is the Data Subject.

Interested

The natural person to whom the Personal Data refer.

Processor (or Manager)

The natural person, legal entity, public administration and any other entity that processes personal data on behalf of the Controller, as set out in this privacy policy.

Data Controller (or Owner)

The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data and the tools used, including security measures relating to the operation and use of this Application. The Data Controller, unless otherwise specified, is the owner of this Application.

This Application

The hardware or software tool by which Users' Personal Data are collected and processed.

Service

The Service provided by this Application as defined in the relevant terms (if any) on this site/application.

For sale

Sale means any exchange of Personal Information by the Owner to a third party, in exchange for money or other consideration, as defined by applicable U.S. state privacy laws. Please note that the exchange of Personal Information with a service provider pursuant to a written agreement that meets the requirements of applicable law does not constitute a Sale of your Personal Information.

Sharing

Sharing means any sharing, rental, release, disclosure, dissemination, making available, transfer or other communication, verbal, in writing or by electronic or other means, of a consumer's Personal Information by the Company to a third for cross-context behavioural advertising, whether in exchange for money or other valuable consideration, including transactions between a business and a third party for cross-context behavioural advertising for the benefit of a business in which no money is exchanged, as defined by California privacy laws. Please note that exchanging Personal Information with a service provider pursuant to a written contract that meets the requirements established by California privacy laws does not constitute a sharing of the user's Personal Information.

Targeted advertising

Targeted advertising means showing advertisements to a consumer for whom the advertisement is selected based on Personal Information obtained from such consumer's activities over time and across non-affiliated online websites or applications to predict such consumer's preferences or interests, as defined by applicable US state privacy law.

European Union (or EU)

Unless otherwise specified, any reference to the European Union contained in this document shall be understood to extend to all current member states of the European Union and the European Economic Area.

Cookies

Cookies are tracking tools that consist of small pieces of data stored within the User's browser.

Tracking Tool

By Tracking Tool, we mean any technology, e.g., Cookies, unique identifiers, web beacons, embedded scripts, e-tags and fingerprinting, that allows Users to be tracked, for instance by collecting or saving information on the User's device.

Legal references

This privacy notice is drafted on the basis of multiple legislative enactments.

Unless otherwise specified, this privacy policy relates exclusively to this Application.

Last modified: 29 October 2025

 

iubenda hosts this content and only collects strictly necessary Personal Data to its supply.