In order to receive information about your Personal Data, the purposes and the parties the Data is shared with, contact the Owner.
Owner and data controller
Sicilian Sailing Tours
Via Cardinale Dusmet, 2
95121 Catania CT
Contact e-mail of the owner: firstname.lastname@example.org
Types of data collected
The Owner does not provide a list of the types of personal data collected.
Personal data may be provided voluntarily by the user or, in the case of usage data, may be collected automatically when using this application.
Unless otherwise specified, all data requested by this application is mandatory and failure to provide such data may result in this application being unable to provide its services. In cases where this application explicitly states that certain data is not mandatory, users are free not to provide this data without affecting the availability or functioning of the service.
Users who are unsure about which personal data is mandatory are welcome to contact the owner.
Users are responsible for all third party personal data obtained, published or disclosed through this Application and confirm that they have the third party’s consent to provide the data to the Owner.
Method and place of processing of the data
Methods of processing
The Owner shall take appropriate security measures to prevent unauthorised access, disclosure, alteration or destruction of the Data.
Data processing shall be carried out using computers and/or IT-based instruments, following organisational procedures and modalities strictly related to the purposes indicated. In addition to the Holder, the data may in some cases be accessible to certain responsible parties involved in the operation of this application (administration, sales, marketing, legal department, system administration) or external parties (such as external technical service providers, postal service providers, hosting providers, IT companies, communication agencies) designated by the Holder as data processors, where applicable. The updated list of these parties may be requested from the Owner at any time.
Legal basis of processing
The Owner may process personal data of Users where any of the following apply:
Users have given their consent for one or more specific purposes. Note: Under some legislation, the owner may process personal data until the user objects to such processing (“opt-out”) without relying on consent or any other of the following legal bases. However, this does not apply if the processing of the personal data is subject to European data protection law;
the provision of the data is necessary for the performance of a contract with the user and/or for pre-contractual obligations;
the processing is necessary for compliance with a legal obligation to which the owner is subject;
the processing is related to a task carried out in the public interest or in the exercise of official authority vested in the Owner;
the processing is necessary for the purposes of the legitimate interests of the owner or a third party.
In any case, the Owner is happy to assist in clarifying the specific legal basis for the processing, in particular whether the provision of personal data is required by law, by contract or necessary for the conclusion of a contract.
Data will be processed at the Owner’s operational offices and at any other place where the parties involved in the processing are located.
Depending on the user’s location, data transfers may involve the transfer of the user’s data to a country other than their own. To find out more about the location of the processing of such transferred data, users can refer to the personal data processing details section.
Users also have the right to find out about the legal basis for the transfer of data to a country outside the European Union or to an international organisation governed by international law or established by two or more countries, such as the UN, and about the security measures taken by the owner to protect their data.
If such a transfer takes place, users can find out more by reading the relevant sections of this document or contacting the Owner using the information provided in the Contact Us section.
Personal data will be processed and retained for as long as the purpose for which it was collected requires.
Personal data collected in connection with the performance of a contract between the Owner and the User will be retained until that contract has been fully performed.
Personal data collected to protect the legitimate interests of the Owner will be retained for as long as necessary to fulfil those purposes. Users can find specific information about the legitimate interests pursued by the Owner in the relevant sections of this document or by contacting the Owner.
The Owner may be entitled to retain personal data for longer if the User has consented to such processing, as long as such consent is not withdrawn. In addition, the owner may be obliged to retain personal data for a longer period of time if this is necessary to comply with a legal obligation or by order of a public authority.
After the retention period has expired, the personal data must be deleted. Therefore, the right to information, the right to erasure, the right to rectification and the right to data portability can no longer be exercised after the retention period has expired.
The rights of users
Users may exercise certain rights in relation to their data processed by the Owner.
In particular, users have the right to do the following:
Withdraw their consent at any time. Users have the right to withdraw their consent if they have previously given their consent to the processing of their personal data.
Object to the processing of their data. Users have the right to object to the processing of their data if the processing is based on a different
legal basis other than consent. Please see the relevant section below for further details.
Access to their data. Users have the right to know whether data is being processed by the owner, to obtain information about certain aspects of the processing and to obtain a copy of the data processed.
To request verification and rectification. Users have the right to verify the accuracy of their data and to request that it be updated or rectified.
Restrict the processing of their data. Users have the right to restrict the processing of their data in certain circumstances. In this case, the Owner will not process the data for purposes other than storing it.
To have their personal data erased or otherwise removed. Users have the right, in certain circumstances, to request that the Owner erase their data.
To receive their data and transfer it to another data controller. Users have the right to receive their data in a structured, commonly used and machine-readable format and, where technically feasible, to have it freely transferred to another controller. This provision applies on condition that the data are processed by automated means and the processing is based on the user’s consent, on a contract to which the user is party or on pre-contractual obligations.
File a complaint. Users have the right to lodge a complaint with the data protection authority responsible for them.
Details of the right to object to processing.
Where personal data are processed in the public interest, in the exercise of official authority vested in the owner or for the purposes of the owner’s legitimate interests, users may object to such processing by providing a ground relating to their particular situation to justify the objection.
Users must know that if their personal data is processed for direct marketing purposes, they may object to such processing at any time without giving any reason. To find out whether the Owner processes personal data for direct marketing purposes, users can read the relevant sections of this document.
How to exercise these rights
Any requests to exercise user rights may be made to the Owner using the contact details provided in this document. These requests can be exercised free of charge and will be dealt with by the Owner as soon as possible and always within one month.
Additional information on data collection and processing
The user’s personal data may be used by the Owner for legal purposes in court or in the stages leading to possible legal action arising from the misuse of this application or related services.
The User declares that he/she is aware that the Owner may be obliged to disclose personal data at the request of public authorities.
Additional information about the User’s personal data
System logs and maintenance
For operational and maintenance purposes, this application and any third-party services may collect files that record interaction with this application (system logs) and use other personal information (such as IP address) for this purpose.
Information not included in this policy
Further details about the collection or processing of personal data can be obtained from the owner at any time. Please see the contact information at the beginning of this document.
How “Do Not Track” requests are handled
This application does not support “Do Not Track” requests.
To determine whether the third-party services it uses recognise “Do Not Track” requests, please read their privacy policies.
If the changes affect processing activities carried out on the basis of the user’s consent, the owner will obtain a new consent from the user if necessary.
Definitions and legal information
Personal data (or data)
Any information which, directly, indirectly or in combination with other information – including a personal identification number – enables the identification or identifiability of a natural person.
Information collected automatically by this application (or by third party services used in this application), such as: the IP addresses or domain names of the computers used by the users using this application, the URI (Uniform Resource Identifier) addresses, the time of the request, the method used to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s response (successful result, error, etc. ), the country of origin, the characteristics of the browser and the operating system used by the user, the different times per visit (e.g. ), the country of origin, the characteristics of the browser and the operating system used by the user, the different times per visit (e.g., the time spent on each page within the application) and the details of the path followed within the application, with particular reference to the order of the pages visited, as well as other parameters about the operating system of the device and/or the IT environment of the user.
The person using this application who is the same as the data subject unless otherwise stated.
The natural person to whom the personal data relates.
Data Processor (or Data Controller)
The natural or legal person, public authority, agency or other body that processes personal data on behalf of the Data Controller as described in this Data Protection Policy.
Data Controller (or Owner)
The natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data, including the security measures for the operation and use of this application. The data controller is the owner of this application, unless otherwise specified.
The manner in which the user’s personal data is collected and processed.
The service offered by this Application as described in the relevant terms and conditions (if available) and on this website/application.
European Union (or EU).
Unless otherwise stated, all references in this document to the European Union include all current Member States of the European Union and the European Economic Area.
This privacy statement has been prepared on the basis of provisions of several legislations, including Article 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation).
This privacy statement relates solely to this application, unless otherwise stated in this document.
Last updated: July 01, 2020