Privacy Policy
This notice outlines the methods and purposes of the processing of personal data carried out by the Data Controller. It also provides contact information to request access, modification, or deletion of personal data at any time.
This Privacy Policy applies whenever a user browses the website www.dafrancotrattoria.it and to all activities conducted online through the site.
The processing of personal data of website users will take place in Italy and in compliance with the following regulations:
Da Franco Trattoria
Via dell’Accademia 30, 80067 Sorrento (NA) – Italy
Phone: +39 081 8073375
Email: info@dafrancotrattoria.it
VAT 08673881218
The Data Controller undertakes to process personal data strictly when necessary to identify the user, directly or indirectly.
The Controller does not collect or process 'sensitive data' as defined by EU Regulation 679/2016.
User personal data will be processed using appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction.
The website is designed to minimize the use of personal data and prefers the use of anonymous data whenever the intended purpose can be achieved similarly.
Personal data may be voluntarily provided by users or automatically collected during browsing sessions (browsing data).
Additional personal data may be referenced in other sections of this privacy policy or in specific notices presented during data collection.
Users are responsible for the personal data of third parties shared via the site and confirm they have the right to share or disclose such data, thereby releasing the Data Controller from third-party liability.
Examples of such data include: browsing data, name, surname, email address, phone number, physical address, ZIP code, province, country, inquiries, and additional information.
These services may collect traffic data even if users do not actively engage with them.
Examples include:
This site does not store personal data in cookies. Only necessary information to ensure secure and efficient navigation is retained.
Types of cookies used:
Refer to our Cookie Policy for detailed information or to disable cookies.
Processing may involve:
An up-to-date list of data processors is available upon request via the contact details provided.
User data may be transferred to countries outside the user's location, but never outside the EU unless adequate safeguards are ensured.
Data transfers are limited to fulfilling commercial purposes requested by the user.
Users have the right to:
Users acknowledge the Controller may be required to disclose data at the request of public authorities.
We recommend checking this section regularly for the latest version.
This Privacy Policy applies whenever a user browses the website www.dafrancotrattoria.it and to all activities conducted online through the site.
The processing of personal data of website users will take place in Italy and in compliance with the following regulations:
- EU General Data Protection Regulation 2016/679 (GDPR)
- Italian Legislative Decree no. 196 of 30 June 2003 (Personal Data Protection Code)
- Recommendation no. 2/2001 adopted by the EU Data Protection Authorities
Data Controller and Data Processor
Following consultation of this website, data relating to identified or identifiable persons may be processed. The Data Controller is:Da Franco Trattoria
Via dell’Accademia 30, 80067 Sorrento (NA) – Italy
Phone: +39 081 8073375
Email: info@dafrancotrattoria.it
VAT 08673881218
Policy Overview
Every individual has the right to the protection of their personal data. In accordance with this right, this Privacy Policy provides comprehensive information on how user-identifying information is collected and used.The Data Controller undertakes to process personal data strictly when necessary to identify the user, directly or indirectly.
The Controller does not collect or process 'sensitive data' as defined by EU Regulation 679/2016.
User personal data will be processed using appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction.
The website is designed to minimize the use of personal data and prefers the use of anonymous data whenever the intended purpose can be achieved similarly.
Purpose of Data Processing
The Data Controller and any third-party service providers process user data strictly for purposes related to the provision of services, including:- Responding to user inquiries and contact requests
- Collecting statistical data on site usage
- Fulfilling contracts relating to the purchase or reservation of products and services
- Displaying content related to the business through the website and other platforms
- Enabling comments
- Integrating with social networks
- Embedding content from external platforms
- Sending commercial communications via email
- Conducting customer satisfaction surveys
- Performing market research
- Promoting products and services
- Profiling and analyzing user navigation for marketing purposes
Data Collected Through This Website
The types of personal data collected and processed for each purpose are outlined in specific sections of this document.Personal data may be voluntarily provided by users or automatically collected during browsing sessions (browsing data).
Additional personal data may be referenced in other sections of this privacy policy or in specific notices presented during data collection.
Browsing Data
During normal browsing, certain personal data is automatically acquired as a result of internet communication protocols, such as:- Device attributes (operating system, hardware version, device settings)
- Connection details (ISP, browser type, language, time zone, IP address)
Data Voluntarily Provided by Users
Voluntary communications (e.g., emails or forms) result in the acquisition of the sender’s address and any other personal data provided.Users are responsible for the personal data of third parties shared via the site and confirm they have the right to share or disclose such data, thereby releasing the Data Controller from third-party liability.
Examples of such data include: browsing data, name, surname, email address, phone number, physical address, ZIP code, province, country, inquiries, and additional information.
Third-Party Services
This website uses third-party services for the purposes specified herein. Data collected is subject to each service’s privacy settings and policies.These services may collect traffic data even if users do not actively engage with them.
Examples include:
- Google Analytics (with IP anonymization): Used to track site usage and compile reports. Anonymizes IP addresses within the EU or EEA.
Location of processing: USA
Privacy Policy - Google Tag Manager: Manages integration of additional scripts on the website.
Data collected: Cookies and usage data
Location of processing: USA
Privacy Policy - Google Maps: Embeds map content and enables location-based services.
Data collected: Cookies and usage data
Location of processing: USA
Privacy Policy - Facebook Plugins: Includes Facebook “Like” buttons. If a user is logged into Facebook while browsing, the activity is linked to their account. Facebook may collect data regardless of whether users interact with the plugin.
Data collected: Usage data and other types as per Facebook’s privacy policy
Location of processing: USA
Privacy Policy
Cookies
Cookies are small data files stored in the browser during website visits. Some cookies may store information that could be used to identify user preferences.This site does not store personal data in cookies. Only necessary information to ensure secure and efficient navigation is retained.
Types of cookies used:
- Session cookies (expire when browser is closed)
- Persistent cookies (expire on a set date)
Refer to our Cookie Policy for detailed information or to disable cookies.
Data Processing, Sharing & Methods
The Data Controller processes personal data using secure systems to prevent unauthorized access, disclosure, modification, or destruction.Processing may involve:
- Internal staff (administration, marketing, legal, IT)
- External providers (hosting, IT services, couriers, communications agencies)
- Competent authorities (law enforcement or regulatory bodies)
An up-to-date list of data processors is available upon request via the contact details provided.
Location & Data Transfers
Data is processed at the operational headquarters of the Data Controller and any other location where the parties involved are based.User data may be transferred to countries outside the user's location, but never outside the EU unless adequate safeguards are ensured.
Data transfers are limited to fulfilling commercial purposes requested by the user.
Data Retention Period
Data is retained only as long as necessary for the purposes it was collected:- For contracts: until the contract is fully executed
- For legitimate interests: until those interests are fulfilled
- With user consent: until consent is withdrawn
- For legal obligations: as long as required by law
User Rights
Users can learn more about their rights and stay informed via the Italian Data Protection Authority website: www.garanteprivacy.itUsers have the right to:
- Withdraw consent at any time
- Object to data processing
- Access their data and obtain a copy in a commonly used, machine-readable format
- Verify and request correction of their data
- Request data processing restrictions
- Request data deletion (right to be forgotten)
- Transfer data to another controller (data portability)
- File a complaint with the data protection authority or pursue legal action
Legal Defense
User data may be used by the Data Controller in legal proceedings or to defend against misuse of the website or its services.Users acknowledge the Controller may be required to disclose data at the request of public authorities.
Legal Obligations
The Controller reserves the right to access, store, and share information with regulatory bodies and law enforcement when:- Responding to lawful requests
- Preventing or investigating unauthorized use of services
- Enforcing contractual obligations
- Detecting harmful or illegal activity
Governing Law
This Privacy Policy is governed by the GDPR and applicable Italian law. These laws ensure the protection of personal data and related rights, including confidentiality, personal identity, and data security.Modifications and Updates
The Data Controller reserves the right to amend this Privacy Policy at any time, including to reflect legal updates. Changes take effect immediately upon publication on this page.We recommend checking this section regularly for the latest version.