PRIVACY POLICY

INFORMATION ON THE PROCESSING OF PERSONAL DATA PURSUANT TO ART. 13 OF REGULATION (EU) 679/2016

 

Contents

I – INFORMATION RELATING TO THE SITE’S PRIVACY POLICY
II – DATA PROCESSING
1 – Data Controller
2 – Data Processing Manager
3 – Data Processing Location
IIICOOKIES.
1 – Type of Cookies.
2 – Technical Cookies
3 – Third-party Cookies
4 – Profiling Cookies
Comment Likes
WP Multi-Lingual
Contact Form
Google Analytics
Gravatar Hovercards
WooCommerce
IV – DATA PROCESSED
1 – Data processing methods
2 – Purpose of data processing
3 – Data provided by the user
4 – Support in configuring your browser
V – USER RIGHTS
VI – DATA TRANSFER TO NON-EU COUNTRIES
VII. SECURITY OF DATA PROVIDED
VIII. CHANGES TO THIS DOCUMENT

 

I – INFORMATION RELATING TO THE PRIVACY POLICY OF THE SITE

  1. This section contains information relating to the management methods of the Climbing Sardinia https://climbingsardinia.com site about the processing of its users’ data.

This Privacy Policy:

  • is intended for the site https://climbingsardinia.com (hereinafter: “Site”);
  • is provided to those who interact with the web services of the Site, both through simple consultation and through the use of specific services made available through the Site;

The Data Controller can be contacted at the address: privacy@climbingsardinia.com

Before communicating any personal data to the Data Controller, we invite you to carefully read this Privacy Policy because it contains important information on the protection of your personal data.

  1. This information is also valid for art. 13 of Legislative Decree no. 196/2003, Code regarding the protection of personal data, and for article 13 of EU Regulation no. 2016/679, concerning the protection of natural persons concerning the processing of personal data and the free circulation of such data, for subjects who interact with Climbing Sardinia and can be reached at the address corresponding to the home page:

https://climbingsardinia.com/

  1. The information is provided only for Climbing Sardinia and not for other websites that may be consulted by the user via links contained therein.
  2. The purpose of this document is to provide information on the methods, times and nature of the information that data controllers must provide to users when connecting to the Climbing Sardinia web pages, regardless of the purposes of the connection itself, according to Italian and European legislation.
  3. The information may change due to the introduction of new regulations in this regard, therefore the user is invited to periodically check this page.
  4. If the user has less than of 16 years, pursuant to art. 8, c. 1 EU regulation 2016/679, must legitimize his/her consent through the authorization of his/her parents or legal guardians.

II – DATA PROCESSING

1 – Data Controller

  1. The data controller is the natural or legal person, public authority, service or other body which, individually or together with others, determines the purposes and means of the processing of personal data. It also deals with security profiles.
  2. With regard to this website, the data controller is: Ivan Federico Tanda, and for any clarification or exercise of the user’s rights, you can contact him at the following email address: privacy@climbingsardinia.com.

2 – Data Processing Manager

  1. The data controller is the natural or legal person, public authority, service or other body that processes personal data on behalf of the data controller.
  2. According to Article 28 of the Regulation UE 2016/679, the responsible for the storing of the data is the legal owner of Climbing Sardinia.

3 – Data provided by the user

  1. As indicated above, the optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message.
  2. Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.

4 – Support in configuring your browser

  1. The user can also manage cookies through the settings of his browser. However, deleting cookies from your browser may remove the preferences you have set for the site.
  2. For more information and support you can also visit the specific help page of the web browser you are using:

 EU regulation no. 2016/679, upon appointment of the data owner, the data controller of the Climbing Sardinia website is: Ivan Federico Tanda.

3 – Place of data processing

  1. The data processing generated by the use of Climbing Sardinia takes place at M.01 Tomorrow, Blue, Media City UK. Salford M50 2AB, Great Britain.
  2. In case of need, the data connected to the newsletter service can be processed by the data controller or subjects appointed by the data controller for this purpose at the relevant office.

IIICOOKIES

1 – Type of Cookies

  1. The Climbing Sardinia website uses cookies to make the user’s browsing experience easier and more intuitive: cookies are small strings of text used to store some information that may concern the user, his preferences or the device used to access the Internet (computer, tablet or mobile phone) and are mainly used to adapt the functioning of the website to the user’s expectations, offering a more personalized browsing experience and memorizing the choices made previously.
  2. A cookie consists of a small set of data transferred to the user’s browser by a web server and can only be read by the server that made the transfer. It is not executable code and does not transmit viruses.
  3. Cookies do not record any personal information and any identifiable data will not be stored. If you wish, you can prevent the saving of some or all cookies. However, in this case the use of the website and the services offered could be compromised. To proceed without changing the options relating to cookies, simply continue browsing.

The types of cookies used by the site are as follows:

2 – Technical cookies

  1. There are numerous technologies used to store information on the user’s computer, which are then collected by the sites. Among these, the best known and most used is HTML cookies. They are used for navigation and to facilitate access and use of the site by the user. They are necessary for the transmission of communications on the electronic network or for the supplier to provide the service requested by the customer.
  2. The settings to manage or deactivate cookies may vary depending on the internet browser used. In any case, the user can manage or request the general deactivation or deletion of cookies by changing the settings of their internet browser. This deactivation may slow down or prevent access to some parts of the site.
  3. The use of technical cookies allows the safe and efficient use of the site.
  4. Cookies that are inserted into the browser and retransmitted via Google Analytics or via the statistics service of bloggers or similar are technical only if used for the purpose of optimizing the site directly by the owner of the site itself, who may collect information in aggregate form on the number of users and how they visit the site. Under these conditions, the same rules regarding information and consent apply to analytics cookies as for technical cookies.
  5. From the point of view of duration, we can distinguish temporary session cookies that are automatically deleted at the end of the browsing session and are used to identify the user and therefore avoid logging in to each page visited, and permanent cookies that remain active on the PC until they expire or are deleted by the user.
  6. Session cookies may be installed in order to allow access and permanence in the reserved area of the portal as an authenticated user.
  7. They are not stored persistently but exclusively for the duration of browsing until the browser is closed and disappear when the browser is closed. Their use is strictly limited to the transmission of session identifiers consisting of random numbers generated by the server necessary to allow safe and efficient exploration of the site.

3 – Third-party cookies

  1. In relation to the source, a distinction is made between cookies sent to the browser directly from the site you are visiting and third-party cookies sent to the computer from other sites and not from the one you are visiting.
  2. Permanent cookies are often third-party cookies.
  3. Most third-party cookies are tracking cookies used to identify online behaviour, understand interests and therefore customize advertising proposals for users.
  4. Cookies may be installed by third-party analytics. They are sent from the domains of the aforementioned third parties external to the site.
  5. Third-party analytics cookies are used to detect information on user behaviour on Climbing Sardinia. The detection occurs anonymously, to monitor performance and improve the usability of the site. Third-party profiling cookies are used to create profiles relating to users, to propose advertising messages in line with the choices expressed by the users themselves.
  6. The use of these cookies is governed by the rules established by the third parties themselves, therefore, users are invited to read the privacy policies and instructions for managing or disabling cookies published on the relevant web pages.

4 – Profiling cookies

  1. Profiling cookies are those that create profiles relating to the user and are used in order to send advertising messages in line with the preferences expressed by the user while browsing the internet.
  2. When these types of cookies are used, the user must give explicit consent.
  3. Article 22 of EU Regulation 2016/679 and Article 122 of the Data Protection Code.

These are the data used by the plugins of the site https://climbingsardinia.com :

Comment Likes

This is only accessible to users registered on WordPress.com

Data Used: to put a “Like” on a previous comment the following information is used: WordPress.com user ID/username (you must be logged in), the site-specific user ID of Climbing Sardinia, and the true/false data that informs whether the user has Liked the comment. If these actions are performed from a WordPress app on a smartphone or tablet, other information will also be requested to track the activity: IP address, user agent, event timestamp, blog ID, browser language, country code and device information.

Activities Tracked: Comment likes.

WP Multilingual

Data Used: To establish the language of the site, the Climbing Sardinia site identifies the language of the browser used by the user and synchronizes the available translations accordingly. The WPML Plugin obtains the language of the browser and stores the cookie for 24 hours.

Synchronized Data: Pages, tours, products, articles, posts and post meta-data associated with the user’s language are synchronized.

Contact Form

Data Used: To avoid SPAM, Climbing Sardinia uses the Akismet plugin on the contact form, which receives and controls the IP address, user agent, name, email address, website and message. This data is sent to the Akismet server (owned by Automattic) with the sole purpose of spam control. The data sent is inserted into the Climbing Sardinia database and sent via email directly to our email address. This email contains the IP address, timestamp, name, email address, website, and message.

Data Synced: Post and post meta-data associated with the message sent by the user, their IP address, and user agent originally sent with the comment are synchronized.

Google Analytics

Data Used: Climbing Sardinia uses simultaneously the Plugins WooCommerce (property of Automattic) and Google Analytics. Every purchase sends the following information to Google Analytics: order number, product ID and name, product category, total cost and quantity of the order placed. All data sent to Google Analytics is anonymized before sending.

Activities Tracked: sends page view events (potentially also video views) to Google Analytics. In conjunction with WooCommerce some additional data is sent such as products added and removed from the cart, views and clicks on product lists, views of product details and finally purchases.

Gravatar Hovercards

Data used: If the user is logged in to WordPress.com, or if they have sent a comment using an email address linked to the Gravatar profile, a hash will be sent to the Gravatar service (owned by Automattic) to track the profile image.

WooCommerce

Data used: for payments made via PayPal or Stripe: purchase total, currency, billing information. They are not requested or sent by the relevant Taxes and Shipping.

Synchronized data: for each payment we send the purchase total, currency and customer billing information to the respective payment service. For more details, please refer to the Privacy Policies of Stripe and PayPal.

Retention of personal data:

  • Inactive accounts: 1 year
  • Pending orders: 1 week
  • Incorrect orders: 1 week
  • Cancelled orders: 1 year
  • Completed orders: 5 years
  • Data on the Stripe system: 5 years

You can purchase by creating an account on which you can control your data, by logging into an existing account or directly without an account. When you delete your account, all personal data relating to orders will be removed.

 

IV – DATA PROCESSED

1 – Data processing methods

  1. Like all websites, this site also uses log files in which information collected automatically during user visits is stored. The information collected could be the following:

– internet protocol (IP) address;
– type of browser and parameters of the device used to connect to the site;
– name of the internet service provider (ISP);
– date and time of visit;
– web page of origin of the visitor (referral) and exit;
– possibly the number of clicks.

  1. The above information is processed automatically and collected in an exclusively aggregated form in order to verify the correct functioning of the site, and for security reasons. Such information will be processed based on the legitimate interests of the owner.
  2. For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may also include personal data such as the IP address, which could be used, in accordance with the laws in force on the matter, in order to block attempts to damage the site itself or to cause damage to other users, or in any case harmful or criminal activities. Such data is never used for the identification or profiling of the user, but only for the purposes of protecting the site and its users, such information will be processed based on the legitimate interests of the owner.
  3. If the site allows the insertion of comments, or in the case of specific services requested by the user, including the possibility of sending the Curriculum Vitae for a possible working relationship, the site automatically detects and records some identifying data of the user, including the email address. Such data is intended to be voluntarily provided by the user at the time of requesting the provision of the service. By entering a comment or other information, the user expressly accepts the privacy policy, and in particular agrees that the contents entered may be freely disseminated to third parties. The data received will be used exclusively for the provision of the requested service and only for the time necessary to provide the service.
  4. The information that users of the site will deem to make public through the services and tools made available to them, are provided by the user knowingly and voluntarily, exempting this site from any liability regarding any violations of the laws. It is up to the user to verify that they have permission to enter personal data of third parties or content protected by national and international regulations.

2 – Purpose of data processing

  1. The data collected by the site during its operation are used exclusively for the purposes indicated above and stored for the time strictly necessary to carry out the specified activities, and in any case no longer than 5 years.
  2. The data used for security purposes (blocking attempts to damage the site) are stored for the time strictly necessary to achieve the purpose previously indicated.

3 – Data provided by the user

  1. As indicated above, the optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message.
  2. Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.

4 – Support in configuring your browser

  1. The user can also manage cookies through the settings of his browser. However, deleting cookies from your browser may remove the preferences you have set for the site.
  2. For more information and support you can also visit the specific help page of the web browser you are using:

 
V – USER RIGHTS

Article 13, paragraph 2 of EU Regulation 2016/679 lists the user’s rights.
The Climbing Sardinia website therefore intends to inform the user of the existence of:
– the right of the interested party to ask the owner for access to personal data (art. 15 EU Regulation), their updating (art. 7, co. 3, lett. a) Legislative Decree 196/2003), rectification (art. 16 EU Regulation), integration (art. 7, co. 3, lett. a) Legislative Decree 196/2003) or the limitation of the processing that concerns him (art. 18 EU Regulation) or to oppose, for legitimate reasons, to their processing (art. 21 EU Regulation), in addition to the right to data portability (art. 20 EU Regulation);

– the right to request the cancellation (art. 17 EU Regulation), the transformation into an anonymous form or the blocking of data processed in violation of the law, including data whose retention is not necessary about the purposes for which the data were collected or subsequently processed (art. 7, co. 3, lett. b) Legislative Decree 196/2003);

– the right to obtain certification that the operations of updating, rectification, integration of data, cancellation, blocking of data, and transformation have been brought to the attention, also regarding their content, of those to whom the data have been communicated or disseminated, except in the case in which such fulfilment proves impossible or involves the use of means manifestly disproportionate to the protected right (art. 7, co. 3, lett. c) Legislative Decree 196/2003);

  1. Requests can be addressed to the data controller, without formalities or, alternatively, using the form provided by the Guarantor for the Protection of Personal Data, or by sending an email to the address: privacy@climbingsardinia.com
  2. If the processing is based on art. 6, paragraph 1, letter a) – express consent to use – or on art. 9, paragraph 2, letter a) – express consent to the use of genetic, biometric, health-related data, data revealing religious or philosophical beliefs or trade union membership, data revealing racial or ethnic origin, political opinions – the user has the right to withdraw consent at any time without prejudice to the lawfulness of the processing based on the consent given before the withdrawal.
  3. Similarly, in the event of violation of the law, the user has the right to lodge a complaint with the Guarantor for the Protection of Personal Data, as the authority responsible for monitoring the processing in the Italian State.
  4. For a more in-depth examination of the rights that are yours, see articles 15 and following of EU Regulation 2016/679 and art. 7 of Legislative Decree 196/2003.

VI – DATA TRANSFER TO NON-EU COUNTRIES

  1. This site may share some of the data collected with services located outside the European Union area. In particular with Google through the Google Analytics service. The transfer is authorized and strictly regulated by Article 45, paragraph 1 of EU Regulation 2016/679, so no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.
  2. Data will never be transferred to third countries that do not comply with the conditions set out in Article 45 et seq. of the EU Regulation.

VII. SECURITY OF DATA PROVIDED

  1. This site processes user data lawfully and correctly, adopting appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of data. Processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the purposes indicated.
  2. In addition to the owner, in some cases, categories of persons involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external parties (such as logistics service providers, catering, hosting providers) may have access to the data.

VIII. CHANGES TO THIS DOCUMENT

  1. This document, published at: https://climbingsardinia.com/privacy-policy/ constitutes the privacy policy of this site.
  2. It may be subject to changes or updates. Users are invited to periodically consult this page to always be updated on the latest legislative news.
  3. Previous versions of the document will still be available on this page.
  4. The document was updated on 01/11/2024 to comply with the relevant regulatory provisions, and in particular in accordance with EU Regulation 2016/679.