Privacy Policy

The information provided is also based on the guidelines contained in Recommendation no. 2/2001, which was adopted on 17 May 2001 by the European data protection authorities within the Working Party set up under Article 29 of European Directive 95/46/EC in order to lay down minimum requirements for the collection of personal data online – especially with regard to arrangements, timing and contents of the information to be provided by data controllers to users visiting web pages for whatever purpose.
The above Recommendation as well as a summary of its purposes can be found in another section of this site.

• DATA CONTROLLER

  Italian Hospitality Collection Spa
  Sole shareholder IHC Holdco S. à r.l.
  Subject to the direction and coordination of ITA Hotel Investments Holdco 2 S.à r.l.
  Via Emilio Cornalia, 32 | 20124 Milano – Italy
  Share capital € 1.068.045 i.v. | Tax Code and VAT 03212990927
  email: privacy@ihchotels.it

• DPO (Data Protection Officer)

  The Controller has engaged the Data Protection Officer: company Schmidt Consulting Privacy Srl – Benefit Company, with registered office in Via Bagutta 13, Cap 20121 Milano, who can be contacted via email at dpo@schmidtconsulting.it.

• PLACE WHERE DATA IS PROCESSED

  The processing operations related to the web-based services that are made available via this website are carried out at the aforementioned office of the Garante exclusively by technical staff in charge of said processing, or else by persons tasked with such maintenance activities as may be necessary from time to time.
  No data resulting from web-based services is either communicated or disseminated.

• CATEGORIES OF PROCESSED DATA - NAVIGATION DATA

  The information systems and software procedures relied upon to operate this website acquire personal data as part of their standard functioning; the transmission of such data is an inherent feature of internet communication protocols.
  Such information is not collected in order to relate it to identified data subjects, however it might allow user identification per se after being processed and matched with data held by third parties.
  This data category includes IP addresses and/or the domain names of the computers used by any user connecting with this website, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of such requests, the method used for submitting a given request to the server, returned file size, a numerical code relating to server response status (successfully performed, error, etc), and other parameters related to the user’s operating system and computer environment.
  This data is only used to extract anonymous statistical information on website use as well as to check its functioning; it is erased immediately after being processed. The data might be used to establish liability in the event that computer crimes are committed against the website; except for this circumstance, any data on web contacts is currently retained for no longer than seven days.

• DATA PROVIDED VOLUNTARILY BY USERS

  Sending email messages to the addresses mentioned on this website, which is done on the basis of a freely chosen, explicit, and voluntary option, entails acquisition of the sender’s address, which is necessary in order to reply to any request, as well as of such additional personal data as is contained in the message(s).
  Specific summary information notices will be shown and/or displayed on the pages that are used for providing services on demand.

• OPTIONALITY OF DATA SUPPLY

  In addition to the one specified for navigation data, the user is free to provide personal data contained in the request forms present on the sites or indicated in contacts with the structures to request the sending of the newsletter, informative material or other communications.

  Failure to provide such data may make it impossible to obtain what has been requested.

• METHOD OF TREATMENT

  Personal data will be processed with automated tools for the time strictly necessary to achieve the purpose for which it was collected.
  Specific security measures are observed to prevent data loss, illicit or inappropriate use and unauthorized access.

• DATA CONSERVATION PERIOD

  Personal data will be processed with automated tools for the time strictly necessary to achieve the purpose for which it was collected.

• RIGHTS OF INTERESTED PARTIES

  Rights of interested parties pursuant to Article 15 EU 2016/679
  You have the right to be aware of whether or not processing of personal data referring to you is underway, and, if so, information regarding:

  • the purposes of the processing
  • the categories of data in question
  • the recipients or categories of recipients to whom the personal data has been or will be communicated, in particular if recipients are of third countries or international organizations;
  • when possible, the retention period of the personal data provided or, if not possible, the criteria used to determine this period;
  • the existence of your right to request the data controller to rectify or delete personal data or limit the processing of personal data concerning you or to oppose its processing;
  • the right to lodge a complaint with a supervisory authority;
  • if the data is not collected from you, all the information available on its origin;

  the existence of an automated decision-making process, including the profiling referred to in Article 22 (1) and (4) and, at least in such cases, significant information on the logic used, as well as the importance and expected consequences of such processing for the person concerned.

  Requests should be addressed to:
  Italian Hospitality Collection Spa
  Sole shareholder IHC Holdco S. à r.l.
  Subject to the direction and coordination of ITA Hotel Investments Holdco 2 S.à r.l.
  Via Emilio Cornalia, 32 | 20124 Milano – Italy
  Share capital € 1.068.045 i.v. | Tax Code and VAT 03212990927
  email: privacy@ihchotels.it

PRIVACY POLICY STATEMENT

This information is provided pursuant to Article 13 of the Code for the Protection of Personal Data, EU 2016/679 Regulation. The data processed will be those of web users.

• CONTROLLER

  Under the law on the protection of personal data,
  Italian Hospitality Collection Spa
  Via Emilio Cornalia 32, 20124 Milano – Italy
  P.Iva e C.F. 03212990927
  E-mail privacy@ihchotels.it

  as Controller of the processing of your personal data is required to provide you with information about the use of your personal data.

• DPO (DATA PROTECTION OFFICER)

  The Controller has nominated as the Data Protection Officer, pursuant to Art. 37 of the European regulation on the Protection of Personal Data, EU 2016/679, and in particular as foreseen by paragraph 6, Schmidt Consulting Privacy Srl – Benefit Company, with registered office in Via Bagutta 13, 20121 Milano, who can be contacted via email at dpo@schmidtconsulting.it

• NATURE OF DATA PROVISION

  Providing us with your personal data is optional but if you don’t give us your details and your consent to use them, we will not be able to contact you or to send you any promotional offers for the purposes listed below. The provision for marketing purposes is optional and does not prevent being contacted for other purposes.

• PURPOSES OF PROCESSING OF PERSONAL DATA AND LEGAL BASIS

  a) execution of obligations arising from contracts concluded with the Controller and/or obligations, prior to concluding the contract, relating to specific requests of the person concerned;
  b) fulfilment of obligations pursuant to the law, regulations or Community legislation and defence before the courts;
  c) Promotional activities related to marketing, including, by way of example but not limited to, the sending of newsletters; the distribution of educational and informational materials; the transmission of marketing communications via email, newsletters, postal mail, SMS, MMS, and new communication platforms such as, by way of example but not limited to, WhatsApp, X, Facebook, Viber, Telegram, and Skype; as well as the disclosure of personal data to third-party platforms such as Google Ads and Meta Ads for the purpose of carrying out personalized marketing and advertising profiling activities, through the use of tools such as Customer Match or Audience Creation, in order to display personalized advertisements across their networks; as well as the use, within electronic communications sent, of tracking tools (e.g., tracking pixels) capable of collecting data relating to interaction with such communications (such as, by way of example, opening, access and methods of use), including through individual or aggregated processing, for purposes of analysis, service improvement and personalization of marketing activities;

  With regard to purposes in points a) and b), we inform you that the processing and communication of your personal data by the Controller does not require your consent as processing is necessary for the execution of obligations under the contract and/or to perform services requested by you prior to the conclusion of the contract and for compliance with legal obligations.

  With regard to the purposes in point c), you have the right to refuse the Controller, at any time, your consent to processing, without adverse consequences in the contractual relationship and/or in the performance of services you requested prior to the conclusion of the contract.

• LEGITIMATE INTEREST

  The Controller does not make use of legitimate interest for the processing of personal data except for the protection of their own rights, namely, to establish, exercise, or defend a right before the courts.

• METHODS FOR DATA PROCESSING

  The collected data is processed both in paper form and using computer tools. Appropriate security measures are observed to prevent data loss, unlawful or incorrect uses, and unauthorised access.

• WHO PROCESSES WITH YOUR DATA

  The processing of personal data is carried out by authorised personnel or by duly appointed data processors. The updated list of data processors or any autonomous data controllers can be requested from the Data Controller or the Data Protection Officer (DPO).

• DATA TRANSFER

  The data will only be transferred only within the EU. Some data may be transferred to the USA to those companies that are certified under the Data Privacy Framework. No further transfers outside the EU will be made.

• PERIOD OF DATA RETENTION

  Personal data processed for contractual or economic purposes, such as invoicing, will be processed for the mandatory periods required by relevant laws, such as administrative accounting data for 10 years. Data related to marketing activities will be retained for a maximum period of 24 months from the last active interaction with the user. The user is guaranteed the right to request the deletion of their data at any time, and in such case, it will be deleted immediately.

• DATA SUBJECTS' RIGHTS PURSUANT TO ART. 15 EU 2016/679

  Data subjects have the right to obtain from the Controller, where applicable, access to their personal data, as well as the rectification or erasure of such data, or the restriction of processing concerning them, or to object to processing (Articles 15 and following of the GDPR). Opposition for marketing purposes is always possible and free of charge. Requests should be addressed to the Data Controller at the contact details provided at the beginning of this notice.

• COMPLAINTS

  Data subjects who believe that the processing of their personal data through this website is in violation of the provisions of the Regulation have the right to lodge a complaint with the Supervisory Authority as provided for in Article 77 of the Regulation, or to take appropriate legal action (Article 79 of the Regulation).

• ICONS

  In preparing these privacy notices, we have decided to use icons to “make privacy notices simpler, clearer, and immediately understandable, using symbols and icons”. The icons were created by Sara Vagni and are covered by CC BY License.”

PRIVACY POLICY STATEMENT (CAREERS)

• CONTROLLER

  Under the law on protection of personal data
  Italian Hospitality Collection Spa
  Sole shareholder IHC Holdco S. à r.l.
  Subject to the direction and coordination of ITA Hotel Investments Holdco 2 S.à r.l.
  Via Emilio Cornalia, 32 | 20124 Milano – Italy
  Share capital € 1.068.045 i.v. | Tax Code and VAT 03212990927
  email: privacy@ihchotels.it

   

  as Controller of the processing of your personal data, is required to provide you with information about the use of your personal data.

• SOURCE OF PERSONAL DATA

  The provision of data is optional. The refusal to provide data implies the impossibility of being contacted for the purposes indicated below.

• OBJECTIVES OF PROCESSING OF PERSONAL DATA

  Personal data are processed for the following purposes:
  a)The collection of data contained in a curriculum vitae, during the selection process for new resources to be included in the company. These, data might contain sensitive data;
  b)fulfilment of obligations under the law, regulations or the communitarian legislation;

  With regards to paragraph a) and b), we inform you that the processing and communication of personal data by the Controller don’t needs your consent because processing is regulated by Privacy Regulation.

• METHODS FOR DATA PROCESSING

  The collected data will be processed using computer tools.
  Appropriate security measures are observed to prevent data loss, illicit or inappropriate use and unauthorized access.

• WHO DEALS WITH YOUR DATA

  The processing of personal data takes place at the aforementioned office and is carried out by appointed personnel.

• RETENTION PERIOD OF YOUR DATA

  The personal data contained in the curricula will be processed for the time necessary to contact the candidate and start the selection processes. Curricula deemed to be irrelevant or uninteresting will be immediately canceled or destroyed.

• COMPLAINTS

  You right to lodge a complaint with the supervisory authority is reserved.

  Rights of interested parties pursuant to Article 15 EU 2016/679
  You have the right to be aware of whether or not the processing of personal data referring to you is underway, and, if so, to have information regarding:

  • the purposes for processing the data
  • the categories of data in question
  • the recipients or categories of recipients to whom the personal data has been or will be communicated, in particular if the recipients are of third countries or international organizations
  • when possible, the retention period of the personal data provided or, if not possible, the criteria used to determine this period
  • the existence of your right to request the data controller to rectify or delete your personal data or limit the processing of personal data concerning you or to oppose its processing
  • the right to lodge a complaint with a supervisory authority
  • if the data is not provided by you, all the information available on its origin
  • the existence of an automated decision-making process, including the profiling referred to in Article 22 (1) and (4) and, at least in such cases, significant information on the logic used, as well as the importance and expected consequences of such processing for the person concerned.

  Requests should be sent via email to the address: privacy@ihchotels.it