This page describes how to manage the site in relation to the processing of personal data of users who consult it.
This information is also provided within the meaning of EU General Regulations 2016/679 (hereafter "RGDP") regarding personal data protection to those who interact with the Christian Srl web services, accessible by electronic means from the address: www.acquaparkondablu.it
The information is provided only for the Christian Srl website, and not for other websites that may be consulted by the user through links.
The information is also based on Resolution no. 13 of 1 March 2007 "on the Internet and e-mail" of the Privacy Authority, to identify some minimum requirements for the collection of personal data online, and, in particular, the methods, timing and nature of the information that the owners of the processing must provide users when they connect to web pages, whatever the purpose of the link. The Recommendation and a summary description of its purposes are reported on the official website of the Personal Data Protection Authority.
Following consultation of this site, data relating to identified or identifiable persons may be processed.
The Policy and Privacy Standards used by Christian Srl for the protection of personal data are based on the following principles:
The processing of personal data is managed over time by specific responsibilities identified within the Organization.
Personal data are collected and subsequently processed according to the principles expressed by the Privacy Policy adopted by Christian Srl, indicated in this Privacy Policy. At the time of the eventual conferment of the data, the informant is provided with a summary but complete information, according to the provisions of the GDPR.
Personal data are processed in a lawful and correct manner; they are registered for specific, explicit and legitimate purposes; they are relevant and not excessive for the purposes of the processing; they are kept for the time necessary for the purposes of the collection.
The purposes of the processing of personal data are made known to those concerned at the time of collection. Any new data processing, if unrelated to the stated purposes, are activated after new information to the interested party and any request for consent, when requested by the GDPR.
Personal data are accurate and updated over time. They are also organized and stored in such a way that the interested party is given the opportunity to know, if he wishes, what data has been collected and recorded, as well as to check its quality and request its correction, integration, cancellation due to violation of the law or opposition to the processing and to exercise all other rights provided by the GDPR at the addresses indicated in the Information on the site.
Personal data are protected by technical, IT, organizational, logistic and procedural security measures, against the risk of destruction or loss, even accidental, and unauthorized access or unauthorized processing. These measures are updated periodically on the basis of technical progress, the nature of the data and the specific characteristics of the treatment, monitored constantly and verified over time.
The processing operations connected to the web services of this site take place at the registered office of the writer and are only handled by technical staff of the Office in charge of processing, or by persons in charge of occasional maintenance operations.
No data deriving from the web service is communicated or released.
The website hosting servers are located at ARUBA SpA. The company is located in the European Economic Area and acts in accordance with European standards; Privacy Information: http://web-whois.nic.it/privacy(privacy policy https://www.aruba.it/informativa_arubaspa.pdf)
Navigation data
The computer systems and software procedures responsible for the operation of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This is information that is not collected to be associated with identified interested parties, but which by their own nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user's computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site: except for this eventuality, at present the data on web contacts do not persist for more than seven days.
Data provided voluntarily by the user
To use the Services offered by the writer, registration forms may be required, containing fields for the provision of mandatory and optional personal data. The provision of personal data indicated as mandatory is necessary to complete the registration procedure; therefore the failure or partial conferment of such data makes it impossible to subscribe to the Services and to use them. The provision of non-mandatory data is optional; therefore their failure or partial conferment does not prevent registration and use of the Services. The personal data requested by the writer for registration to the Services may differ depending on the registration form used.
The services contained in this section allow the Data Controller to monitor and analyze traffic data and are used to track user behavior through Google Analytics with anonymized IP (Google Inc.)
Google Analytics is a web analytics service provided by Google Inc. ("Google").
Google uses Personal Information collected for the purpose of tracking and evaluating the use of this Website, compiling reports and sharing them with other services developed by Google.
Google may use the Personal Data to contextualise and personalize the advertisements of its advertising network.
This integration of Google Analytics makes your IP address anonymous. Anonymisation works by shortening the IP address of the Users within the borders of the member states of the European Union or in other countries participating in the agreement on the European Economic Area. Only in exceptional cases, the IP address will be sent to Google's servers and shortened within the United States.
Personal Data: Cookies and Usage Data.
Place of processing: United States - Privacy Policy - Opt Out. Person adhering to the Privacy Shield.
Personal Data provided through the Website will be processed by the Company for the following purposes:
a) Purposes aimed at the marketing of products and services available through the Site (eg: contact request through the forms on the website, registration of an account, purchases of products and services, etc.);
b) Purposes of statistical research / analysis on aggregated or anonymous data, without the possibility of identifying the user, aimed at measuring the functioning of the Site and the related operational functions, including the resolution of any technical problem;
c) Purposes aimed at impeding or preventing fraudulent activity or improper use that could damage the site, or compromise the security of operations;
d) Purposes related to the fulfillment of a legal obligation to which we are subject;
e) Purposes necessary to ascertain, exercise or defend a right in court or whenever the jurisdictional authorities exercise their jurisdictional duties.
f) Purposes for sending advertising, information, promotional and periodical updates on initiatives, services, products and events of the writer (so-called marketing)
The processing of personal data for the purposes from point a.) to point e.) above-mentioned, does not require your express consent (Article 24, letters a) and b) of the Code and art. 6 lett. b) and e) of the RGPD) as they are part of a service contract, and the legal basis of the processing is based on the legitimate interest of the Data Controller to perform contractual obligations to the interested parties on the basis of their respective requests.
The processing of personal data for the purposes in point f) above-mentioned requires its express consent (Article 23 of the Code and Article 7 of the RGPD). This consent concerns both the automated and the traditional methods of communication described above.
You will always have the right to easily and freely oppose, in whole or in part, to the processing of your data for said purposes, for example by excluding the automated methods of contact and expressing your desire to receive commercial and promotional communications exclusively through traditional ways of contact.
The legal basis of the processing is based both on the consent of the interested party and on the legitimate interest of the Data Controller to inform interested parties about scheduled events based on their respective interests.
Apart from that specified for navigation data, the user is free to provide personal data contained in the application forms or indicated in contacts with the Office to request the sending of orders, materials, information or other communications.
Therefore your eventual refusal, even partial, to provide such data would make it impossible to establish and manage the relationship itself and provide the requested service.
The processing of data takes place / will occur through the use of electronic tools through our computer system, and in this case will be recorded on protected computer storage media, or manually and the relative paper documentation will be correctly maintained and protected for as long as necessary for processing through procedures that guarantee security and confidentiality to prevent loss of data in compliance with the security measures pursuant to art. 32 of the GDPR 2016/679, from illicit or incorrect use and unauthorized access and may be carried out either by paper means, or through the use of automated electronic tools for the time strictly necessary to achieve the purposes for which they were collected.
Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.
The data collected are processed for the time necessary for the purposes for which they were collected, and in any case not later than the time prescribed by law. The data necessary for tax purposes are kept until the assessments relating to the corresponding fiscal period are established, therefore for at least 10 years and more if the relative annuity is not yet prescribed for tax purposes. Upon expiry of this deadline, the data will be deleted or anonymised, unless there are additional purposes for the storage of the same (e.g. warranty delivery obligations, tax obligations).
Personal data that is no longer needed, or for which there is no longer a legal requirement for its preservation, is irreversibly anonymised (and thus can be stored) or destroyed securely.
Below we report the storage times in relation to the different purposes listed above:
This site also incorporates plugins and / or buttons for social networks, in order to allow easy sharing of content on your favorite social networks. These plugins are programmed so as not to set any cookies when accessing the page, to safeguard the privacy of users. Possibly cookies are set, if so provided by social networks, only when the user makes effective and voluntary use of the plugin. Please note that if the user browses being logged into the social network then he has already consented to the use of cookies conveyed through this site at the time of registration to the social network. The collection and use of the information obtained by means of the plugin are governed by the respective privacy policies of the social networks, to which is asked to make reference.
We inform you that in your capacity as an interested party, you have under Articles 15 to 23 of the RGDP 2016/679, the rights listed below that you can assert by asking a specific request to the Data Controller and / or to the responsible for processing, in addition the right to lodge a complaint with a supervisory authority:
Article 15 - Right of access
The interested party has the right to obtain from the data controller confirmation that it is or is not undergoing treatment of personal data concerning him and in this case, to obtain access to personal data and information concerning the treatment.
Article 16 - Right of rectification
The data subject has the right to obtain from the data controller the correction of inaccurate personal data concerning him without undue delay. Taking into account the purposes of the processing, the data subject has the right to obtain the integration of incomplete personal data, also by providing an additional declaration.
Art. 17 - Right to cancellation (right to be forgotten)
The data subject has the right to obtain from the data controller the deletion of personal data concerning him without undue delay and the data controller is obliged to cancel the personal data without undue delay.
Article 18 - Right to limit processing
The interested party has the right to obtain from the data controller the limitation of processing when one of the following hypotheses occurs:
Art. 20 - Right to data portability
The data subject has the right to receive, in a structured, commonly used and automatically readable form, the personal data concerning him / her provided to a data controller and has the right to transmit such data to another data controller without impediments from part of the data controller who supplied them.
In exercising its rights relating to the portability of data in accordance with paragraph 1, the data subject shall have the right to obtain direct transmission of personal data from one controller to another, if technically feasible.
Art. 21 - Opposition right
The interested party has the right to oppose at any time, for reasons connected with his particular situation, the processing of his personal data pursuant to Article 6, paragraph 1, letters e) of), including profiling on the basis of these provisions.
Art. 22 - Right not to be subjected to automated decision-making process, including profiling
The data subject has the right not to be subjected to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or which in a similar way significantly affects his person.
You may at any time exercise your rights or withdraw your consent by sending a notice to the addresses and in the manner indicated at the bottom.
Please note that the Data Controller is Christian Srl, in the person of the Legal Representative pro-tempore, with registered office in Tortoreto (Te), S.P. 8 Km. 0.700, electively domiciled, at the registered office of the writer, to which must be forwarded the communications for the exercise of the rights recognized to the interested party of which articles 15 to 23 of the RGDP by registered letter, PEC or e-mail where the complete list of subjects to whom the data can be communicated is also available.
Requests should be addressed to:
This privacy statement can be consulted automatically by the most recent browsers implementing the P3P standard ("Platform for Privacy Preferences Project") proposed by the World Wide Web Consortium (www.w3c.org). Every effort will be made to make the functionality of this site as interoperable as possible with the automatic privacy control mechanisms available in some products used by users. Considering that the state of improvement of the automatic control mechanisms does not make them free from errors and malfunctions, it should be noted that this document constitutes the "Privacy Policy" of this site which will be subject to updates (the various versions remain available at the same address ).
This privacy policy is updated as of 20/06/2018