Gardastays

Privacy Policy 🛡️

Your Privacy Matters to Us

With this notice, provided in light of privacy regulations, and in particular European Regulation 2016/679 (hereinafter "GDPR"), we wish to inform you about the characteristics and methods of processing the personal data you provide as a data subject (hereinafter also "User") while consulting the website gardastays.com.

This policy refers exclusively to this website and not to third-party websites that may be accessed by the User via links within it.

Data Controller

The Data Controller (hereinafter also "Controller"), defined by the GDPR as "the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data" is:

Gardastays by Michele Cobelli

📍 Address: Via Prati 12, Calvagese della Riviera (BS) - ITALY

📝 VAT: 04652330988

📧 Email: [email protected]

We intend to be comprehensive, but we wish to specify that you may contact the Data Controller at any time to request information regarding the processing of your data by sending an email to the address above.

Your Rights Under GDPR

In accordance with the provisions of the GDPR, you have the right to exercise the rights listed below. For a better understanding, please refer to Arts. 15 et seq. of the GDPR.

  • Right of access (Art. 15 GDPR): You may request confirmation as to whether or not data concerning you is being processed and, if so, obtain access to the personal data and further information on the processing.
  • Right to rectification (Art. 16 GDPR): You may request the rectification or completion of data provided to or held by the Controller if inaccurate or incomplete.
  • Right to erasure ("Right to be forgotten") (Art. 17 GDPR): You may request that data acquired or processed by the Controller be deleted without undue delay if legal conditions are met (e.g., data no longer necessary, consent revoked).
  • Right to restriction of processing (Art. 18 GDPR): You may request the restriction of processing in specific hypotheses provided by law.
  • Right to data portability (Art. 20 GDPR): You have the right to receive your data in a structured format and to transmit those data to another controller.
  • Right to object (Art. 21 GDPR): You have the right to object at any time to the processing of personal data concerning you based on legitimate interest or for direct marketing purposes.

You may revoke your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. To exercise these rights, please contact: [email protected].

Types of Data We Process

  • Navigation Data: During navigation, the website collects certain personal data implicitly transmitted via Internet protocols (e.g., IP addresses). These are used solely for anonymous statistical information and ensuring the site functions correctly.
  • Cookies: The site uses cookies to improve the browsing experience. Please refer to our Cookie Policy for details.
  • Data provided by you (Booking & Contact): As a User, you provide personal data such as Name, Surname, Address, Phone, Email, and Payment Data when booking or contacting us.
  • Check-in Online Data: To facilitate your arrival, we may ask you to complete an online check-in form, collecting ID Document data. Note: These sensitive data are collected strictly for legal compliance (registration with authorities) and are never disclosed to third parties for commercial purposes.

Purposes, Legal Basis & Retention

PURPOSE A: Service Provision & Booking Management

To manage activities related to purchasing a service (bookings, payments, quotes).

  • Legal Basis: Performance of a contract.
  • Retention: Duration of contract + 10 years (for administrative/tax purposes).

PURPOSE B: Legal Obligations & Public Security (Check-in)

Reporting guest data to Public Security Authorities (e.g., "Alloggiati Web") as required by law.

  • Legal Basis: Compliance with a legal obligation.
  • Retention: Data kept only as long as necessary to transmit to authorities and comply with security laws.

PURPOSE C: Internal Marketing (Soft Spam) & Newsletter

Sending communications about our services or offers.

  • Legal Basis: Legitimate Interest (Soft Spam) or Consent (New users).
  • Retention: Until you opt-out or unsubscribe.

PURPOSE D: Security & Defense

Preventing fraud and defending the Controller's rights in court.

Security & Recipients

Gardastays protects your personal information from unauthorized access. Data is stored in secure environments. We only share data when strictly necessary with authorized personnel, service providers (e.g., cleaning, IT support), consultants, and Public Authorities.

Transfer: Personal data is stored on servers within the European Union.

Contact Us

📧 Email: [email protected]

Last Update: 15/12/2025

+39 3772535134

Gardastays, P. Iva: 04652330988, Calvagese della Riviera, Italy 25080.
[email protected]
©2025 Gardastays All rights reserved - Powered byLodgify