Effective Date: March 28, 2025
Last Updated: March 28, 2025
1. Who We Are
Welcome to San Teodoro Beach Villa (www.santeodorobeachvilla.com). We are based in San Teodoro, Sardinia, Italy and operate in full compliance with the EU General Data Protection Regulation (GDPR) and other applicable international data protection laws.
2. What Personal Data We Collect
We collect the following personal data:
- Identity and Contact Data: Name, email address, phone number, country of residence
- Booking Details: Check-in/check-out dates, guest preferences
- Payment Data: Processed via secure third-party providers (we do not store full card numbers)
- Technical Data: IP address, browser type, device, cookies
- Usage Data: Pages viewed, time spent, referring URLs
- Communication Data: Emails, contact form submissions, review content
3. How We Use Your Data
We process your personal data to:
- Confirm and manage your booking
- Communicate with you about your stay
- Respond to inquiries and provide support
- Improve website functionality and user experience
- Comply with legal and tax obligations
- Send occasional marketing emails (only if you consent)
4. Lawful Basis for Processing (GDPR)
We process personal data based on one or more of the following legal grounds:
- Performance of a Contract (e.g. processing your booking)
- Consent (e.g. for newsletters or optional cookies)
- Legal Obligation (e.g. for financial records)
- Legitimate Interest (e.g. to maintain site security and analytics)
You have the right to withdraw your consent at any time.
5. Cookies and Tracking
We use cookies to enhance site performance and gather anonymous statistics. You can:
- Accept or reject non-essential cookies via our cookie banner
- Adjust settings in your browser to block cookies
Full details are provided in our [Cookie Policy] (link to separate page or section).
6. International Data Transfers
If you are accessing the site from outside the EU/EEA, your personal data may be transferred to and processed in jurisdictions with different data protection laws. We ensure appropriate safeguards (e.g., Standard Contractual Clauses) are in place.
7. Data Retention
We retain your personal data only as long as needed for the purposes stated, or as required by EU and Italian law (e.g., 10 years for invoicing records).
8. Sharing Your Data
We may share data with:
- Trusted service providers (e.g. hosting, payment processing)
- Legal authorities when required by law
- Partners only with your explicit consent
We ensure third parties uphold strict confidentiality and data protection standards.
9. Your Rights (GDPR)
As a data subject in the EU, you have the right to:
- Access your data
- Correct inaccurate data
- Erase your data (“right to be forgotten”)
- Restrict or object to processing
- Port your data to another provider
- Withdraw consent at any time
To exercise your rights, email us at: privacy@santeodorobeachvilla.com
You also have the right to lodge a complaint with the Garante per la Protezione dei Dati Personali (Italy’s Data Protection Authority) or your local supervisory authority.
10. Data Security
We implement robust technical and organizational security measures to prevent unauthorized access, disclosure, or alteration of your personal data.
11. Children’s Privacy
Our services are not intended for children under 16. We do not knowingly collect personal data from children without parental consent.
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect legal or operational changes. The latest version will always be available on this page with the date of revision.
13. Contact Us
San Teodoro Beach Villa
San Teodoro, Sardinia, Italy
Email: [privacy@santeodorobeachvilla.com]
Website: www.santeodorobeachvilla.com