Privacy Statement


Pursuant to EU Regulation No. 679/2016 (GDPR) of Legislative Decree No. 196 of 30 June 2003, (Code regarding the protection of personal data) and any subsequent amendments and/or additions, we inform you of the following:

Data Controller and Data Processor:

the Hotel’s data controller is Otello Brunelli, located at 1 via Cadorna, Cervia-Milano Marittima (RA), representing himself, tel. 0544 992383, e-mail,

The hotel’s data processor is Paola Brunelli, tel. 0544 992383, e-mail;

Purpose of data processing: personal data is requested, collected and processed for the following purposes:


in order to provide services related to your stay at our facility and in order to:

  • fulfil the obligations set out in Article 109 of Royal Decree No. 773 of 18 June 1931 and any subsequent amendments, which imposes an obligation on the operator to inform the police station of the personal details of guests staying at his or her facility;

  • to comply with current administrative, accounting and tax requirements;

The processing of personal data will be based on principles of correctness, lawfulness and transparency and may be carried out using manual, computerised or internet-connected tools by the data controller, data processor or other data assistants, who will follow appropriate security and confidentiality measures while agreeing not to send or communicate data to third parties.

Legal basis for processing: the legal basis for data processing for the purposes referred to in paragraph (A) is related to the legal obligations that pertain to the accommodation facility’s provision of services. Given the fact, we cannot accommodate you at our facility if you do not provide this information.

The legal basis for data processing is the consent to the processing itself for the purposes referred to in paragraph (B) above; the provision of consent in this case is optional, in case of failure to provide consent for the purposes referred to in paragraph (B) it will not be possible to provide the services listed therein. There will be no consequences in the case of non-consent.

Personal data recipients/categories of recipients: personal data may be communicated, exclusively for the purposes mentioned above, to the following individuals:

  • people, companies, associations or professional firms that provide assistance and advice to Paola Brunelli – with particular but not exclusive reference to matters concerning accounting, administration, legal issues, labour law, social security, tax and finance – who may need access to data for auxiliary services in order to perform the duties strictly necessary for their services;

  • any public administration office to which acts are physiologically addressed and/or where they expressly and justifiably require it.

These individuals act as autonomous data controllers or data processors who are appropriately appointed and instructed by the data controller. The list of persons to whom the data subject’s data might be communicated is at your disposal, is stored at the company/body/entity in the header and can easily be obtained by sending a specific written request to the data controller.

The interested party’s personal data will not in any case be disseminated.

Duration of data retention: The data in question will be stored for the period strictly necessary for the purposes for which consent was given by the interested party or, if not necessary in the cases provided by law, until the completion of their stay at the accommodation facility and until the deadlines imposed by legal obligations for storage of consent given in paragraph (A) have elapsed; or until a revocation of consent given for the purposes referred to in paragraph (B)

Rights of the interested party: At any time, the interested party may exercise his or her rights towards the data controller pursuant to Articles 15 to 22 of the GDPR.

These rights can be exercised with a request made without a formal procedure to the data controller, or via a person in charge, and will result in an appropriate reply without delay. Requests addressed to the data controller or processor can be sent to the following e-mail address:

In particular:

Access to data and transferability: It is the data subject’s right for the entire duration of the relationship, until data is deleted, to ask the data controller to access personal data, correct or delete it and to limit or oppose data processing, in addition to the right to data transferability. By complying with the legal requirements, the data subject is entitled to receive, in a structured format and in a computer-readable form, personal data concerning him or her that has been provided to the data controller and to transfer this data to another data controller.

Withdrawal of consent: The interested party has a guaranteed right to revoke their consent at any time without prejudice to the lawfulness of the processing, possibly based on consent given prior to the revocation. In order to withdraw consent to data processing, send an email to the following email address:

Appeal to the guarantor for the protection of personal data: In the event of a violation of the regulations concerning the processing of personal data, it’s the interested party’s right to appeal to the guarantor for the protection of personal data as per the manner and terms listed on the website of the Italian supervisory authority for the protection of personal data.