Itinere

Legal notices

Information notice on the processing of personal data

This page contains information on the methods for managing this website with reference to the processing of the personal data of users who visit it. This information notice is provided in accordance with the current legislation on personal data for users who interact with the services of this website within the framework of EU Regulation 2016/679. This notice applies solely to this website and not to other websites that the user may visit through links accessible from our website.

Types of data processed

Navigation data

The computer systems and software procedures used to run this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. This information is not collected to be associated with identified parties, but by its very nature, could allow identifying users, through processing and association with data held by third parties. This category includes IP addresses or domain names of computers used by Users who connect to the site, URI (Uniform Resource Identifier) addresses, the time of the request, the method used to submit the request to the server, the size of the file received in response, the numerical code indicating the reply status given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment. These data are used only to obtain anonymous statistical information on site usage and to check its correct functioning and are deleted immediately after processing. The data could be used to verify responsibility in case of hypothetical computer crimes against the site.

Data provided voluntarily by the user

The optional, explicit and voluntary sending of an email to the addresses indicated on this site entails subsequent acquisition of the sender's address, which is necessary to reply to requests, as well as any other personal data included in the message. Specific summary information will be progressively reported or displayed on pages of the site dedicated to particular services on request.

Cookies

With regard to the use of cookies, please refer to the Cookie Policy in the appropriate section of the Site.

Purpose and legal basis of the processing

Personal data will be processed, within the normal activity of Elior, for the following purposes:

  • to respond to requests or provide the services requested by the user;
  • to technically manage the Site: for example, security and control of the proper functioning of the Site itself;
  • processing of aggregate statistical data on the use of the Site.

The legal basis for the processing of such data is the need to respond to the requests of data subjects and to pursue the legitimate interest of the Data Controller within the limits provided by law.

Notwithstanding these cases, the navigation data of Users are kept for the time strictly necessary to manage the processing activities within the limits provided by law.

Optional nature of data provision

Apart from what is specified for navigation data, the User is free to provide personal data to request the services offered by the Data Controller. The failure to provide this data may lead to the impossibility to fulfil the request.

Processing method and data retention period

Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are taken to prevent loss, illegal or improper use and unauthorised access of data.
Data are kept for the time strictly necessary to pursue the purposes indicated in this privacy policy and will be deleted at the end of this period, unless the data itself must be kept for legal obligations or to enforce a right in court.

Category of persons who process personal data and communication

Personal data may be disclosed to any persons Elior uses to manage the Site, designated as data processors or people authorised to process data. Personal data may be disclosed, for the same purposes as above, to competent public authorities in order to fulfil specific legal obligations, and also to other companies of the Elior Group within the European Union.
Your personal data will not be disseminated.

Rights of Data Subjects

In accordance with the current legislation on personal data, data subjects have the right, at any time, to obtain confirmation of the existence of their personal data, to know the content and origin of said data, to check their accuracy or request them to be supplemented, cancelled, updated or corrected, to request the transformation into anonymous form or blocking of any personal data processed unlawfully, to oppose the processing of data for legitimate reasons, even limited to a single method used for the processing. The data subject may also request the restriction of the processing and exercise the right of data portability. In addition, the data subject may lodge a complaint with the Authority for the protection of personal data.

Requests should be sent to the Data Controller at privacy@elior.it.

Data Controller

The Data Controller is Elior Ristorazione S.p.A. with registered office in Via Venezia Giulia 5/A - 20157 Milan.
The Data Protection Officer of the Elior Group can be contacted at privacy@elior.it.