helpdesk: 365 days a year
from 8:00am to 8:00pm
This policy has been prepared based on provisions of multiple legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation) and it describes how we use and process your personal data. It also tells you how you can contact us if you have questions about your personal data.
Ericsoft Srl Via Adriatica, 62 47843 Misano Adriatico (Italia) RN
Ericsoft Srl Via Adriatica, 62 47843 Misano Adriatico (Italia) RN
Data Controller (or Data Supervisor)
The natural person, legal person, public administration or any other body, association or organization with the right, also jointly with another Data Controller, to make decisions regarding the purposes, and the methods of processing of Personal Data and the means used, including the security measures concerning the operation and use of this Application. The Data Controller, unless otherwise specified, is the Owner of this Application.
Data Owner (or Owner)
The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data, including the security measures concerning the operation and use of this Application. The Data Controller, unless otherwise specified, is the Owner of this Application.
The individual using this Application, which must coincide with or be authorized by the Data Subject, to whom the Personal Data refer.
The legal or natural person to whom the Personal Data refers.
Personal Data (or Data)
Any information regarding a natural person, a legal person, an institution or an association, which is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.
Information collected automatically from this Application (or third party services employed in this Application), which can include: the IP addresses or domain names of the computers utilized by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User's IT environment.
The hardware or software tool by which the Personal Data of the User is collected.
The service provided by this Application as described in the relative terms (if available) and on this site/application.
Small piece of data stored in the User's device.
Cookies are small pieces of information installed in the browser when you visit a website or use a social network with your PC , tablet or smartphone. Each cookie contains various information that assist the Owner in providing the service according to the purposes described . Cookies can stay in the system for the duration of a session (that ends when the browser is closed ) or for a prolonged period of time. Some of the purposes of installation may require the User consent.
The User has the ability to manage Cookies preferences directly from within their browser and prevent third parties from installing them. It is important to note that disabling all Cookies can alter the correct functioning of this Site.
More information about online advertising
Browser cookie controls
In addition, your browser or device may offer settings that allow you to choose whether browser cookies are set and to delete them. For more information about these controls, visit your browser or device's help material.
Cookies help us provide, protect and improve the Service, such as by personalizing content and providing a safer experience. While the cookies that we use may change from time to time as we improve and update the Service, we use them for the following purposes:
Essential session Cookies
This Application uses session cookies with the only purpose of carrying out tasks that are essential for the Site to operate correctly.
Saving preferences, experience optimization and statistical reports
Site features and services
Personal Data is collected for the following purposes and using the following services.
By registering or authenticating, Users allow this Application to identify them and give them access to dedicated services.
Facebook Authentication (Facebook Inc.)
Facebook Authentication is a registration and authentication service provided by Facebook, Inc. This service allows this Application to connect with the User's account on the Facebook social network.
Google OAuth (Google Inc.)
Google OAuth is a registration and authentication service provided by Google Inc. This service allows this Application to connect with the User's account on the Google network.
Payment processing services enable this Application to process payments by credit card, bank transfer or other means. To ensure greater security, this Application shares only the information necessary to execute the transaction with the financial intermediaries handling the transaction. Some of these services may also enable the sending of timed messages to the User, such as emails containing invoices or notifications concerning the payment.
PayPal is a payment service provided by PayPal Inc. which allows Users to make online payments using their PayPal credentials.
These services allow you to view content hosted on external platforms directly from the pages of this Application and interact with them. If a service of this kind is installed, it may still collect web traffic data for the pages where the service is installed, even when users do not use it.
GoogleFonts (Google Inc.)
Google Fonts is a typeface visualization service provided by Google Inc. that allows this Application to incorporate content of this kind on its pages.
Contact form (This Application)
By filling in the contact form with their Data, the User authorizes this Application to use these details to reply to requests for information, quotes or any other kind of request as indicated by the form’s header.
- Personal data collected: Name, Surname, Telephone number, Address, ZIP code, Province, State, Country and Email
- Place of processing: Europe
These services allow this Application to monitor the use and behavior of its components so its performance, operation, maintenance and troubleshooting can be improved.
Azure Applications Insights (Microsoft Inc.)
Azure Applications insight is a monitoring service provided by New Microsoft Inc. The way it is integrated means that it filters all traffic of this Application, i.e., communication between the Application and the User's browser or device, while also allowing analytical data on this Application to be collected.
- Personal data collected: Cookie and Usage data
- Place of processing: USA
The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.
Google Analytics (Google Inc.)
Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the Data collected to track and examine the use of this Application, to prepare reports on its activities and share them with other Google services. Google may use the Data collected to contextualize and personalize the ads of its own advertising network.AdWords Conversion Tracking (Google Inc.)
Google AdWords conversion tracking is a statistics service provided by Google Inc. that connects data from the network of Google AdWords ads with the actions within this Application.
These services allow this Application and its partners to inform, optimize and serve advertising based on past use of this Application by the User. This activity is performed by tracking Usage Data and by using Cookies, information that is transferred to the partners that manage the remarketing and behavioral targeting activity.
AdWords Remarketing (Google Inc.)
AdWords Remarketing is a Remarketing and Behavioral Targeting service provided by Google Inc. that connects the activity of this Application with the Adwords advertising network and the Doubleclick Cookie.
Google Maps (Google Inc.)
Google Maps is a maps visualization service provided by Google Inc. that allows this Application to incorporate content of this kind on its pages.
- Personal data collected: Cookie and Usage data
- Place of processing: 1600 Amphitheatre Parkway Mountain View - CA94043 USA
The interested party has the right to obtain from the Data Owner or Data Controller the confirmation that the processing of his or her personal data is in progress and, in this case, have access to his personal data and the following information:
If personal data is transferred to another country or to an international organization, the interested party has the right to be informed on the existence of adequate guarantees in accordance with current regulations on the matter, related to data transfer.
The Data Owner or Data Controller provides a copy of the personal data being processed. In case further copies are requested by the interested party, the Data Controller or Data Processor may charge a reasonable contribution fee based on administrative costs. If the interested party submits the request by electronic means, and unless otherwise stated by the interested party, the information will be provided in a commonly used electronic format. The right to obtain a copy of the personal data being processed must not damage the rights and freedom of others.
Last updated: May, 24th 2018
We have been creating complete and highly specialized technological solutions for the hospitality industry since 1995.
Having an exclusive focus on a single industry, our investments have always been entirely dedicated to the development of our software and innovative applications for hotel and restaurant management.
The experience gained over the years, together with what we acquire on a daily basis by being in contact with hospitality professionals, allows us to understand the real needs of the sector and to develop, based on new market trends and regulations, flexible and scalable solutions that can be customized according to the needs of each property, from independent ones to chains.
INFORMATION about the processing of personal data
Arts. 12 et seq of Regulation (EU) 2016/679 (GDPR)
Subject: information about the processing of personal data pursuant to arts. 12 et seq of Regulation (EU)
Introduction - Regulation (EU) 2016/679 («General Data Protection Regulation»), hereinafter GDPR) provides safeguards for natural persons with regard to the processing of their personal data. In accordance with the above legislation, the processing of personal data that refers to an identified or identifiable natural person, being the “data subject”, is based on the principles of correctness, legality and transparency, as well as the protection of confidentiality and the rights of the data subject.
This information is provided in compliance with the above Regulation to inform you that, with regard to your customer relationship with our organization, we hold certain data about you that was acquired, verbally or in writing, either directly or via third parties that carry out operations concerning you or that, in response to your requests, acquire information and provide it to us.
Pursuant to the GDPR, this information must be treated as “personal data” since it relates to you and must therefore benefit from the protection provided by the above Regulation. More specifically, in accordance with the Regulation, you are the data subject who benefits from the rights that safeguard your personal data.
Pursuant to arts. 12 et seq of the GDPR, as the Controller, our organization will process the personal data provided by you with the utmost care in compliance with the Regulation, implementing effective operational procedures and processes in order to guarantee the safeguards that protect the processing of your personal data. For this purpose, using material and operational procedures to safeguard the collected data, we undertake to protect the information provided, in order to avoid unauthorized access and disclosure, maintain the accuracy of the data and guarantee its appropriate use.
Consistent with this introduction, the following information is provided:
Collected personal data - Our organization, as the Controller, uses your personal data to carry on our business activities in the best possible manner.
You may be requested to provided some or all of the following data:
Length of time that your data will be retained - The collected data will be retained for the entire duration of the relationship or collaboration with our organization, and for 10 years after the end of the relationship. If during the contract period, data is processed that is not relevant to the administrative-accounting obligations arising under the contract, such data will be retained for the time necessary to achieve the purposes for which it was collected, and then deleted. You will be given specific information about the length of time that your data will be retained when the data is collected.
Mandatory or optional nature of providing data and consequences of refusal – The essential data needed to execute the contract must be provided to us, together with the data required to fulfill legal, regulatory and EU legislation obligations, as well as instructions from competent authorities and supervisory and control bodies.
Non-essential data, not required for execution of the contractual relationship, must be identified and considered additional information whose provision, if requested, is optional. Your refusal to provide such data would however mean that our organization will be less efficient when dealing with third parties.
Should "data that is sensitive or whose processing is subject to specific risks” be needed in order to carry out the contract, provide specific services or fulfill legal obligations, the provision of such data will be mandatory and, since it can only be processed following written consent from the data subject, you will have to give consent for its processing.
Methods of processing – Pursuant and consequent to arts. 12 et seq GDPR, the personal data that you provide will be recorded, processed and retained in our hard-copy and electronic files, in compliance with the adequate technical and organizational measures specified in art. 32 GDPR. The processing of your personal data may consist in any operation or series of operations described in art. 4, para. 1, point 2 GDPR. Personal data will be processed using suitable tools and procedures that guarantee security and confidentiality. Such processing may be carried out directly and/or via delegated third parties, both manually using hard-copy support and electronically using IT equipment and other instruments. In order to manage properly the relationship and fulfill legal obligations, personal data may be included in the internal documentation of the Controller and, if necessary, in the documents and registers required by law.
Activities which may be entrusted to external parties - When carrying out our activities as the Data Controller, we may occasionally request other operators to perform certain services on our behalf, such as processing or other services; services needed in order to carry out requested operations or activities; shipments and deliveries; accounting registrations; administrative activities. If the operator appointed by the Controller to carry out certain activities is a company that provides payment, tax collection and treasury management, banking and financial brokerage services, the following services may also be supplied: mass processing of payments, notes, checks and other securities; sending, placing in envelopes, transportation and sorting of communications; filing of documents; identification of financial risks; control of fraud; credit collection. The above operators will only be given the information needed to provide the requested services. They will be required to maintain confidentiality and forbidden to use the data provided for purposes other than those agreed. Operators that are not persons in our organization tasked with processing personal data will be appointed as Data Processors (pursuant to art. 28 GDPR) and will process the data to the extent strictly necessary in order to provide the requested service and solely for that purpose, guaranteeing that their persons tasked with processing have signed a confidentiality agreement. For any matters not indicated herein, these operators must provide specific information about the processing of personal data carried out by them.
Transfer abroad of personal data - The data provided by you will only be processed in Italy. If during the contractual relationship your data is processed in a non-EU State, your rights under EU legislation will be guaranteed and you will be informed on a timely basis.
Purposes of processing your personal data - The main purpose for which our organization will process your personal data is to enable the relationship described in the introduction to become established and/or develop, as well as to ensure that it is administered correctly.
In particular, the following purposes of processing are identified:
Personal data will be processed to fulfill legal obligations, as well as the administrative, insurance and tax obligations envisaged under current legislation, to satisfy accounting and commercial needs, and to fulfill in a timely manner the contractual and legal obligations deriving from the contractual relationship with the data subject. The data provided may also be used to contact the data subject in the context of market research relating to the products or services, or in the context of commercial campaigns or offers. The data subject is free, in all cases, to refuse consent for such purposes and also to specify the manner in which to be contacted or to receive commercial information.
Extent of knowledge of your data - The following categories of data processors or persons tasked with processing by our organization may become aware of your data:
Personal data may also become known by parties that have agreements with us, as indicated in the section entitled “Methods of processing”. We may delegate the fulfillment of certain obligations or deeds to such parties, for the purpose of executing the contractual relationship with the data subject.
Communication and dissemination - Our organization may communicate your data externally, i.e. make it known to one or more specific parties, in order to fulfill all required legal and/or contractual obligations. In particular, your data may be communicated to:
We may communicate your data:
In all cases, your data will only be communicated to operators in order to contribute to fulfillment of the contractual relations that may arise with the data subjects concerned.
Dissemination - We will not disseminate your data indiscriminately, i.e. we will not make it known to unspecified subjects, or make it available for use or consultation.
Trust and confidentiality - We recognize the importance of the trust shown by data subjects who consent to the processing of their personal data and, therefore, we undertake not to sell, hire or rent such personal information to others.
Any debt collection activities and/or communication of omitted payments – Following the signing of the contract for the provision of services, our organization may use the contact details you provide (in particular phone number and email address) in order to undertake reminder activities with reference to debt collection and omitted payments. These communications can be made via email, certified mail, phone call, SMS and WhatsApp. The contact data collected for the purpose of this paragraph will be kept for the entire duration of the relationship or collabration with our organization and in any case until the balance of all payments due on the aforementioned contract.
Rights pursuant to arts. 15 et seq GDPR - Pursuant to art. 15 GDPR, you are entitled to obtain confirmation of whether or not your personal data has been processed, even if the results have not yet been recorded. Exercise of this right depends on verification of the identity of the data subject, by presentation of an identity document that will not be retained by our organization, but merely checked to verify the legitimacy of the request.
You are entitled to access to your personal data and the following information:
If the data is transferred to another country or to an international organization, you are entitled to be informed about the existence of adequate guarantees pursuant to art. 46 GDPR.
You are entitled to request the controller to amend or delete your personal data, in whole or in part, or to restrict the processing of your personal data or to object, in whole or in part, to its processing.
To exercise these rights, contact the “Data Controller” for our organization at via Adriatica n.62 – 47843 Misano Adriatico or call +390541604894 or write to the email@example.com. The Controller will respond within 30 days of receiving your formal request.
If your rights concerning your personal data are infringed, you may complain to the competent authority:
“Guarantor for the protection of personal data - Garante”.
Identification details of the Data Controller and, if appointed, the Representative in the territory of the State and the Data Processor.
Controller - This organization is the Controller of processing: ERICSOFT ITALIA SRL with registered offices at via Adriatica n.62 – 47843 Misano Adriatico; Tel: +39 0541604894; fax: 0541604862; certified e-mail address: firstname.lastname@example.org; e-mail: email@example.com.
Data Protection Manager – The Data Protection Manager is Mario Brocca, who can be contacted at +39
0371/5943191 - firstname.lastname@example.org – email@example.com
Data Processors - The Data Processors are external firms with which contractual relations have been established, and which need your personal data in order to fulfill those agreements.
Each data subject may send a letter to the Data Controller, at the above address, requesting information about any Data Processors that have been appointed and to be informed about any persons appointed to perform that function in future.
Please note that the above Data Processors are not responsible for fulfilling requests from data subjects to exercise their rights pursuant to arts. 15 et seq GDPR. That activity is carried out exclusively by this organization as the Data Controller.
Representative in the territory of the State - Pursuant to art. 4, para. 1, point 17 GDPR, it is confirmed that none of the related circumstances envisaged in the Regulation are applicable and that, accordingly, our organization has not appointed any Representatives in the territory of the State for the purpose of applying the regulations that govern the processing of personal data.
Processing without need for consent from the data subject - Even without your consent, this organization is entitled to process your personal data should it be necessary in order to:
Furthermore, your express consent is not required when the processing:
Il TITOLARE del Trattamento
ERICSOFT ITALIA SRL
helpdesk: 365 days a year
from 8:00am to 8:00pm
Offices: from Monday to Friday
from 09:00am to 01:00pm and from 02:30pm to 06:00pm
Address: S.S. Adriatica 62, Misano Adriatico (RN)