privacy policy
Because we care
Privacy Policy
Design Your Italy (“we,” “us,” or “our”) is committed to protecting your personal data and ensuring your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal information in compliance with the European General Data Protection Regulation (GDPR).
1. Data Controller
Design Your Italy acts as the Data Controller for the personal data collected through our services. If you have any questions regarding this policy, you can contact us at:
Contact Information:
Design Your Italy
Email: hello@designyouritaly.com
Phone: +39 391 110 7139
2. What Data We Collect
We may collect the following types of personal data to provide our travel consultancy services:
- Identity Data: Full name, date of birth, passport/ID details.
- Contact Data: Email address, phone number, and physical address.
- Travel Preferences: Preferences for accommodations, transport, and activities.
- Booking Data: Details of bookings, including travel dates, destinations, and payment details.
- Payment Information: Bank account details, credit card information (processed securely)
- Technical Data includes details about your devices and browsing activity, such as your operating system, platform, browser type and version, plug-in types and versions, time zone and location settings, internet protocol (IP) address, login information, and other associated technologies.
Special data collection: Health and Mobility Information
When inquiring about a travel booking, you may need to share details of any medical conditions, health concerns, or mobility restrictions. This helps us and our suppliers ensure your safety and well-being during your trip, as required by law. This information is classified as special category data under data protection laws. By providing it, you consent to its use for arranging your travel, including sharing it with relevant suppliers.
If you choose not to provide this information or consent to its use, we may be unable to fulfil your booking request due to our legal safety obligations.
3. Purpose of Data Collection
We collect and process your personal data for the following purposes:
1. Facilitation of Travel Bookings: To provide your information to suppliers such as hotels, and other service providers to fulfill your booking requests.
2. Communication: To contact you regarding your bookings, travel updates, or inquiries.
3. Compliance: To comply with legal and regulatory requirements.
4. Legal Basis for Processing
We process your personal data based on one or more of the following legal grounds:
• Consent: When you provide explicit consent for us to process your data for specific purposes.
• Contractual Necessity: To fulfil our contractual obligations related to your travel bookings.
• Legal Obligations: To comply with applicable laws and regulations.
• Legitimate Interests: To improve our services and ensure a seamless customer experience.
5. Data Sharing
Your personal data may be shared with the following third parties:
• Suppliers and Service Providers: Airlines, hotels, tour operators, and other relevant service providers necessary for fulfilling your bookings.
• Payment Processors: To facilitate secure payment transactions.
• Legal Authorities: When required by law or to protect our rights and interests.
We ensure that all third parties receiving your data adhere to strict confidentiality and GDPR-compliance standards.
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, including legal, accounting, or reporting requirements. After this period, your data will be securely deleted or anonymised.
7. Your Rights Under GDPR
Under the GDPR, you have the following rights:
1. Access: Request access to your personal data and obtain a copy.
2. Rectification: Correct inaccurate or incomplete data.
3. Erasure: Request the deletion of your data (“right to be forgotten”).
4. Restriction: Restrict processing under certain circumstances.
5. Data Portability: Request the transfer of your data to another organization.
6. Objection: Object to data processing based on legitimate interests.
7. Withdraw Consent: Withdraw your consent at any time for processing based on consent.
To exercise these rights, contact us at hello@designyouritaly.com. We will respond to your request within one month as required by GDPR.
8. Data Security
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction. These measures include:
- Secure servers and encryption protocols.
- Regular data security assessments.
- Access controls to limit data access to authorized personnel.
9. Cookies and Tracking Technologies
We may use cookies and similar tracking technologies on our website to enhance your experience. For more information, please refer to our [Cookie Policy].
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The updated version will be available on our website, and we encourage you to review it periodically.
Thank you for trusting Design Your Italy. Your privacy is our priority.