Privacy Policy - LuMari Rooms

Information provided pursuant to Article 13 of GDPR 2016/679 (European General Data Protection Regulation)

1. Data Controller

The data controller is LuMari Rooms di Daniela Cassarino, with registered office at Via del Salice 116 - 97100 Ragusa, VAT No./Tax Code: 01836800886, email: lumarimarina@gmail.com, tel: +39 3791586274.

2. Personal Data Processed

The data processed includes:

• Data provided voluntarily: name, surname, email, telephone number, payment information sent via contact or booking forms.
• Browsing data (Cookies): IP address, browser type, information provided automatically by the browser.
• Stay data: identity documents, arrival/departure dates, specific needs.

3. Purpose and Legal Basis of Processing

The data is processed for the following purposes:

• Booking and Stay: managing requests, reservations, and related services (legal basis: performance of a contract).
• Legal Obligations (Public Security/Tax): registering and communicating guests with public safety authorities and fulfilling tax obligations (legal basis: fulfillment of a legal obligation).
• Marketing (Optional): sending promotional communications with explicit consent.

4. Processing and Storage Methods

The data is processed using electronic and paper-based tools, in compliance with security regulations. It is retained for the time strictly necessary to manage the contractual relationship and fulfill legal obligations (e.g., 10 years for tax purposes).

5. Data Recipients The data will not be disclosed. It may be disclosed to:

• Public Safety Authorities (Web Hosting).
• External parties for payment management or technical services (website hosting), appointed as data processors.

6. Rights of the Data Subject (Articles 15-22 GDPR)

The user has the right to: access, rectify, erase, limit, object to, and withdraw consent to their data by writing to the Data Controller indicated above.