Privacy Policy

Privacy Policy
Chaberton Lodge & Spa

This page describes the website’s management methods as concerns the handling of the personal data of users visiting it.This notice is provided pursuant to Art. 13 of Legislative Decree of EU Regulation 2016/679, Privacy Code and succ. mod., this website respects and protects the visitors and users privacy , by ensuring not to infringe their rights.
The information is provided only to this website. It does not apply to other websites the user may visit via links.The purpose of the privacy policy is to provide maximum clarity regarding the information that our site collects and how it use them.

The data controller
Pursuant to the laws in force for Chaberton Lodge & Spa, located in Via del Rio 15 – 10050 Sauze Oulx (TO) the data controller is SDF Society s.r.l. with registered office in Viale Bianca Maria n. 3 – 20122 Milano (MI), VAT number:  10313200965.

Purpose of processing and legal grounds, your personal data are processed:
A)without your express consent art. 6 lett.
B), for the following purposes:
- conclude contracts for the offered services ;
- to fulfil pre-contractual, contractual and tax obligations arising from relations with you in existence;
- exercise the rights of the Data Controller, such as the defence right in court.

Your personal data will be processed:
B)With your specific consent, for the following purposes :send promotional communications, including sending newsletters; please note that the Holder collects a single consent for the described purposes;if you would like to revoke the given consent you can contact the Data Controller to the addresses indicated in this document , at any time . The provision of your Personal Data for the purposes as in letters B) is optional; there will be no consequences if you refuse. This website processes data based on consent. With the use or consultation of this site visitors and users explicitly approve this privacy policy and consent to the processing of their personal data to the purposes described below, including any dissemination to third parties where necessary for the provision of a service. The data provision and the consent to the collection and processing of data is optional, the User can deny consent, and can revoke at any time a consent already given by emailing booking@chabertonlodge.it.
However, denying consent may make impossible to provide certain services and the browsing experience of the site could be affected.

Collected data
Like many other websites also this site makes use of the Google analytics system ( for a reference on the update of the privacy policy according to the GDPR used by Google Analytics open the following link: https://policies.google.com/privacy) in which the information are automatically collected during user visits. The information collected should be the following:
- internet protocol (IP) address;
- browser type and device parameters is used to connect to the website;
- name of the internet service provider  (ISP),
- date and time of visit,
- visitor web page origin and exit
- the country of provenance,
- the number of clicks

The data collection and information takes place for the following purposes:
exclusively aggregated and anonymous in order to verify the proper functioning of the site.
None of this information is related to physical person-User of the site, and do not allow in any way the identification(from 25 May 2018 such information will be processed according to the legitimate interests of controller);
For security purposes (spam filters, firewalls, virus detection), recorded data may possibly include also personal data such as the Ip address,which could be used, in accordance with the laws in force in matter, in order to block attempts to damage site itself or to bear damage to other users, or in any case harmful activities or constituting crime. Data are never used for identification or profiling of the user, nor cross-referenced with other data, not provided to a third party but used only for the protection of the site and its users.
- Communicate the data to third parties that perform necessary, such as the management of reservations. If the site allows specific services requested by the user, the site records some data user identifiers, including email address and nickname. These data are voluntarily provided by the user at the time of providing the service, they are treated according to the consent. By entering any information you expressly agree to the privacy policy. The inserted contents are not viewable by other visitors. The data received will be used exclusively for the provision of the requested service and only for the provision time of the service. The information that the users of the site will consider to make public through the services and the tools made available are voluntarily provided by the user, exempting this site from any responsibility for any violation of the laws. It is up to the user to verify the permission to enter personal data of third parties or protected content by the national and international rules. The data collected by the site during its operation are used exclusively for the purposes indicated above and stored for the strictly necessary time to perform the specified activities.In any case, the personal data collected by the site, for any reason, will not be provided to a third party. Unless it is a legitimate request by the judicial authority and only in the cases provided by law.
Data, however, may be supplied to third parties if this is necessary for the provision of a service required  by the User, security checks or to optimize the website. Data may be collected on the website and more precisely on the dedicated pages to reservations requests, data will be processed as in the following document for the purpose of providing services and/or responding to the received requests. In the event that the negotiations are concluded positively and/or negatively collected data will be destroyed and never disseminated to others.

Online Booking
On the website is used the online Booking Engine for reservations, for more information about the service, please write an email to: booking@chabertonlodge.it

Newsletter
Chaberton Lodge & Spa adopts an opt-in opt-out policy for their database of contacts and sending newsletters. For more information or to change the contact details, please write an email to: booking@chabertonlodge.it

Place of treatment
The data collected from the site are processed at the headquarters of the Data Controller and at the Web Hosting datacenter.
Web hosting Blastness with registered office in Milano, Piazza Castello n. 26, 20121 Email:info@blastness.com.
It is responsible for processing of data and it acts in accordance with European standards.

Safety measures
This site treats user data in the respect of the laws, adopting appropriate security measures to prevent unauthorised access, disclosure, unauthorised modification or destruction of data. The software of Site management is constantly updated and regularly scanned in order to verify the presence of dangerous viruses and codes.
In addition to the controller, some persons in charge may have access to the data involved in the organization of the website.

Users rights
The user has the rights referred to in art. 15 GDPR within the limits of what Provided by art. -undecies of Legislative Decree no. 196/2003, introduced by art. 2 of Legislative Decree no. August 10 2018, n. 101 and precisely the rights to:
obtain confirmation of the existence or otherwise of personal data concerning Him, even if not yet registered.
obtain the indication of
a) the source of the personal data;
b) the purpose of their processing;
c) the logic applied in case of processing them with electronic means;
d) the identity details of the controller, processors, and designated representative in the meaning of Article 3, paragraph 1;;
e) the subjects or categories of subjects to whom the personal data may be communicated.

Obtain :
a) updating, rectification or, where appropriate,the integration of data ;
b) the deletion, anonymisation, or blocking of data processed unlawfully, including data that does not need to be retained for the purposes for which it has been collected or subsequently processed;
c) certification that the operations under letters a) and b) have been notified, including as concerns their content, to the persons to whom the data have been communicated or disseminated, except where such performance proves to be impossible or entails an employment of resources obviously out of all proportion to the right protected. In conclusion, the User has the right to object partially or completely: for legitimate reasons to the processing of personal data concerning him, even if pertinent to the purpose of their collection. Where applicable, also has the rights referred to in art. 16-21 GDPR, as well as the right to complain to the Guarantor Authority. Requests should be addressed to the Data Controller.

Data controller
The data controller for Chaberton Lodge & Spa located in Via del Rio n. 15 – 10050 Sauze Oulx (TO) is SDF Society s.r.l. with registered office in Viale Bianca Maria n. 3 – 20122 Milano (MI), VAT number : 10313200965.

Data provided voluntarily by users
Sending an optional, explicit, and voluntary e-mail to the addresses indicated on this website entails the subsequent acquisition of the sender’s address, which is necessary to respond to requests, as well as any other personal data included in the message. Users consent to processing of personal information
The interested party gives his consent to process the personal data for the purposes described in this information statement.
Pursuant to art.  of the GDPR, the Data Subject has the right to deny his consent at any time by sending an email to : booking@chabertonlodge.it
The withdrawal of consent does not affect the lawfulness of processing based on consent before the revocation.In case of withdrawal of consent, the Data Subject will be erased. Information security

All information collected on the website is stored and maintained in facilities secure that limit access only to authorized personnel. The site is regularly checked to avoid security breaches and ensure that the information collected is safe from those who intend to visualize them without authorization.

Updates
This privacy policy is updated regularly.Please take a look.
Last updated in December 2020 according to GDPR.