Company name: Dimora Storica Muratore di Maurizio Muratore, Fiscal Code n° MRTMRZ52L26A662A, e-mail with registered office at 73100 Lecce (LE) Italy, Via L. Scarambone 36, 73100 Lecce, as Data Controller, pursuant to EU Regulation 2016/679 (hereinafter “GDPR”) – considers privacy and the protection of Personal Data as an important part of its business.

Legal framework and purpose of data processing
All personal data provided by the User will be processed lawfully and fairly to provide services or to respond to requests made by the interested party pursuant to art. 6 par. 1 l. a) and b) GDPR. The conferment of Personal Data for these purposes is optional, but failure to provide it would make it impossible to supply the requested services.

Type of processed data
The optional, explicit and voluntary sending of messages to the Company name’s addresses, as well as the compilation and forwarding of the forms on the site itself, involves the acquisition of the sender’s contact data, necessary to reply, as well as of all the personal data included in the relevant communications.

Processing and retention modalities
Data processing will be carried out both manually and with the aid of electronic tools, in compliance with the provisions of art. 32 GDPR on security measures, by persons specifically appointed and in compliance with the provisions of art. 29 GDPR.

The Personal Data processed will be kept for the time strictly necessary and in compliance with the principles of minimization and limitation of conservation ex art. 5 paragraph 1 l.e) GDPR. More information about the data retention period and the criteria used to determine this period can be requested by writing to the Data Controller.

Scope of communication and dissemination of Personal Data
The data collected will never be disclosed and will not be communicated, except for subjects who typically act as Data Processors pursuant to art. 28 GDPR that is: a) persons, companies or professional firms that provide assistance and consultancy in accounting, administrative, legal, tax, financial and credit recovery matters relating to the provision of the Services; b) subjects with whom it is necessary to interact for the provision of the Services (for example hosting providers); c) Subjects, Bodies or Authorities, autonomous data controllers, to whom it is mandatory to communicate the Personal Data by virtue of the provisions of the law or orders of the Authorities.

The list of Data Processors can be requested from the Data Controller.

Transfer of Personal Data
The collected data will not be transferred to Member States of the European Union or to third countries not belonging to the European Union (in the event that this should happen in the future, we will provide a separate prior notice relating to the illustration of the appropriate legal guarantees who must assist such transfer).

User Rights
Pursuant to Articles 15 and following of the GDPR, the User has the right to request access to his/her Personal Data, the correction or cancellation of the same, the limitation of processing in the cases provided for by art. 18 of the GDPR, obtain his/her data in a structured format, commonly used and readable by an automatic device, in the cases provided for by art. 20 of the GDPR. At any time, the User can revoke pursuant to art. 7 of the GDPR the consent given; propose a complaint to the competent supervisory authority (Guarantor for the Protection of Personal Data – pursuant to art. 77 of the Regulation, if you believe that the processing of your data is contrary to the legislation in force.

The User can formulate a request for opposition to the processing of the data pursuant to article 21 of the
GDPR in which give evidence of the reasons justifying the opposition: the Data Controller reserves the right
to evaluate the application, which would not be accepted in the event of the existence of compelling
legitimate reasons to proceed with the processing that prevail over your interests, rights and freedoms.
Requests must be sent in writing to the Data Controller.