Privacy Policy – Ristorante Al Mercante
Privacy Policy
(pursuant to Art. 13 of Regulation (EU) 2016/679 – “GDPR”)
The following describes how personal data is managed in relation to users who interact with the services accessible electronically (hereinafter, the “Services”) from the address https://ristorantealmercante.it/en/ corresponding to the homepage of the official website of Ristorante Al Mercante (hereinafter, the “Website”).
This policy is provided solely for this Website and does not apply to any other websites that the user may access through links.
1. Data Controller
The Data Controller is Ristorante Al Mercante, in the person of its legal representative Simona Romanini, with registered office in Milan, Via Cesare Cantù 7, corner of Piazza Pio XI, email info@ristorantealmercante.it, tel. +39 02 8052198.
2. Types of Data Processed and Purposes of Processing
Browsing data relating to IP addresses, device identifiers used by the user to access the Website, browser characteristics, and access times, processed for the purpose of obtaining aggregate statistical information on the use of the Website and monitoring the correct functioning of the services offered.
Data voluntarily provided by the user through the optional, explicit, and voluntary sending of messages to the Data Controller’s contact addresses listed on the Website pages, as well as the completion and submission of forms on the Website. This entails the acquisition of the sender’s contact data, necessary to respond, as well as all personal data included in the communications.
No special categories of personal data, as defined by Art. 9(1) GDPR, are collected or processed.
Cookies and Other Tracking Technologies
This Website uses cookies issued by the Data Controller or by third parties to ensure proper functioning and to provide the Services. For further information, please refer to the dedicated Cookie Policy available here.
Cookie Policy
This website uses cookies to ensure the proper functioning of its pages and to improve usability. This section provides information on the use of cookies and how to manage them.
What Are Cookies?
Cookies are small text strings sent by a server to a web client (usually a browser) and then sent back by the client to the server (without modification) each time the client accesses the same portion of the same web domain.
They are used to perform automatic authentication, session tracking, and storage of specific information about users accessing the server, such as preferred websites or, in the case of online purchases, the contents of their “shopping carts.”
A cookie typically contains the name of the server that generated it, an expiration date, and a randomly generated identifier. The expiration date depends on the type of cookie. Session cookies are retained until browsing ends with the closure of the browser; persistent cookies are maintained until their expiration date or until deleted by the user.
Cookies Used by the Website
User consent is not required for the use of technical cookies, but is required for profiling cookies. In the case of “third-party” cookies, links to the privacy policies of those third parties must be provided alongside the extended information.
The Website uses only technical cookies, as listed in the following table:
| Cookie Name | Function | Duration | Origin |
|---|---|---|---|
| cluster-clusterBAK | Load balancing across hosting clusters | Session | OVH |
| clusterD | Load balancing across hosting clusters | Session | OVH |
| 1P_JAR | Stores user preferences and information each time pages containing Google Maps are visited | 1 month |
For further information, please refer to the following pages:
- https://www.ovh.it/supporto/documenti_legali/cookies_ovh.xml
- https://policies.google.com/technologies/cookies
How to Disable Cookies
Unless explicitly rejected, cookies necessary for the proper functioning of the website are set. To use this website with all resources configured to enhance browsing, we recommend accepting all cookies.
However, most web browsers allow users to accept or reject cookies. Below you will find links to instructions for changing cookie settings in the most common browsers:
For further information about cookies: www.allaboutcookies.org
3. Legal Basis for Processing and Nature of Data Provision
Data is processed pursuant to Art. 6(1)(b) GDPR, as the “processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.”
Therefore, any refusal to provide such data will make it impossible for the Data Controller to respond to Users’ requests.
Data will be retained for the period strictly necessary to achieve the above-mentioned purpose and in any case for no longer than 1 month.
4. Processing Methods, Data Disclosure, and Retention Period
The processing operations connected to the web services of the Website take place at the premises in Milan, Via Cesare Cantù 7, and are carried out only by personnel authorised to process data. Personal data may also be disclosed, for the purposes set out in Section 2, to external collaborators, freelance professionals to whom tasks or consultancy are entrusted and, in general, to all those parties to whom disclosure is necessary for the proper fulfilment of the aforementioned purposes.
Data will be processed in the following manner:
- collection of data in a dedicated database;
- recording and processing on paper and/or electronic media;
- organisation of archives in a predominantly automated form, implementing technical and organisational measures appropriate to the level of security and confidentiality of the data, in accordance with Art. 25 GDPR, and in any case no lower than the Technical Regulations on minimum security measures, Annex B of the Italian Data Protection Code.
No personal data derived from the web service is disseminated or transferred to countries outside the EU.
No processing by means of automated decision-making (including profiling within the meaning of Art. 22(1) and (4) GDPR) is envisaged.
5. Rights of the Data Subject
Users may exercise their rights as set out in Articles 15, 16, 17, 18, 19, 20, 21, and 22 of Regulation (EU) 2016/679 by contacting the Data Controller at info@ristorantealmercante.it.
In particular, Users have the right, at any time, to request that the Data Controller provide access to their data, rectification, erasure, or restriction of processing. Furthermore, they have the right to object, at any time, to the processing of their data (including any automated processing, e.g. profiling) as well as the right to data portability. Without prejudice to any other administrative or judicial remedy, Users who consider that the processing of their data infringes the provisions of the GDPR have the right, pursuant to Art. 15(f) GDPR, to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali) and, with reference to Art. 6(1)(a) and Art. 9(2)(a), the right to withdraw consent at any time, where consent has been given. In the event of a data portability request, the Data Controller will provide Users with their data in a structured, commonly used, and machine-readable format, subject to Art. 20(3) and (4) GDPR.