PRIVACY AND COOKIE POLICY

Information Notice pursuant to Article 13 of EU Regulation 679/2016

Pursuant to Article 13 of the European Regulation (EU) 2016/679 (hereinafter referred to as the GDPR), and in relation to the personal data made available to Masseria Paradiso through completion of the “Contact” form on the website masseriaparadiso.it/contatti, or via email sent to the addresses listed on the same website, the following information is provided.

Data Controller and Data Protection Officer

The Data Controller is Masseria Paradiso S.r.l. (hereinafter referred to as the “Data Controller”), with its registered office at Contrada Paradiso snc – 72017 Ostuni (BR), Italy.

For any request concerning the management or processing of personal data, the Data Controller may be contacted at the following email address: info@masseriaparadiso.it.

Masseria Paradiso has not appointed a Data Protection Officer (DPO), as it does not fall within the categories of entities that are legally required to do so under Article 37 of the GDPR.

Purpose of Data Processing

The processing of personal data collected through the aforementioned means is aimed at providing information regarding the services and activities of Masseria Paradiso, such as the services offered, and to allow Masseria Paradiso to respond to requests for information received.

Personal data may be processed using paper-based and/or electronic systems, employing methods strictly necessary to achieve the purposes described above.

Legal Basis for Processing

Masseria Paradiso lawfully processes personal data where such processing is based on the data subject’s explicit consent to receive information regarding the services and activities of Masseria Paradiso, or where it is necessary to respond to information requests and fulfil contractual or pre-contractual obligations in accordance with applicable law.

Consequences of Failure to Provide Personal Data

Failure to provide the requested personal data will prevent Masseria Paradiso from sending information — using the methods indicated — relating to its services and activities.

Data Retention Period

Personal data subject to processing will be retained for no longer than is necessary to fulfil the purposes for which they were collected and/or subsequently processed, or for the period required by law to meet statutory retention obligations.

Disclosure of Data

Personal data may be disclosed to:

Judicial or administrative authorities, in compliance with legal obligations.

Entities that process data in fulfilment of specific legal obligations.

Categories of authorised personnel involved in the organisation of the website (administrative, commercial, marketing, legal, or IT staff, system administrators) or external parties (such as third-party technical service providers, hosting providers, IT companies, communication agencies).

Data Dissemination, Automated Decision-Making and Profiling

Personal data are not subject to dissemination, nor to any fully automated decision-making process, including profiling, defined as any form of automated processing of personal data aimed at evaluating certain personal aspects of an individual or group, including for advertising or marketing purposes.

Data Subject Rights

Under the GDPR, the data subject has the right to:

– request access to their personal data and related information from the Data Controller; request the rectification of inaccurate data or the completion of incomplete data; request the erasure of personal data (right to be forgotten) when one of the conditions set out in Article 17(1) of the GDPR applies, subject to the exceptions set out in Article 17(3); request restriction of processing of previously provided data where one of the conditions listed in Article 18(1) applies;
– request and obtain from the Data Controller — in cases where processing is based on consent and carried out by automated means — a copy of the personal data provided and those generated during the contractual relationship, in a commonly used and machine-readable format, for the purpose of transmitting such data to another controller (data portability right). Exercising this right does not automatically entail erasure of the data, which must be specifically requested. The Data Controller will not release copies of data that have been deleted or whose retention period has expired;
– object at any time to the processing of personal data in specific circumstances;
– withdraw consent at any time, limited to cases where processing is based on consent for one or more specific purposes and concerns common personal data (e.g. residence address, date of birth) or special categories of data (e.g. health data, racial origin, political opinions, religious beliefs, sexual life, etc.). Processing carried out prior to withdrawal remains lawful.

To exercise these rights, please use the dedicated form available at masseriaparadiso.it/contatti
or send a written request via email to info@masseriaparadiso.it.

You also have the right to lodge a complaint with a Supervisory Authority (Italian Data Protection Authority – www.garanteprivacy.it).

Cookies

Our website may store or retrieve information on your browser in the form of cookies.
Cookies are necessary for the correct functioning of the website and to improve the user’s browsing experience by storing certain information (e.g. preferences, device details, etc.) for future visits.

Types of Cookies Used

Technical Cookies
These enable functions essential for the website to operate properly.
Examples include:
icl_current_language
cc_cookie
PHPSESSID

Analytical Cookies
These are used to understand how visitors interact with the website.
Examples include:
_ga
ga*

Cookie Management

Pursuant to Article 24 of the GDPR, users may freely and at any time choose whether to accept or reject cookies, and may modify their preferences later.

If cookies are accepted (by clicking the appropriate button in the brief information notice), they will be temporarily stored on your device and accessible only to the entity that issued them.
Through the brief information notice, you can also customise your cookie settings, choosing which ones to accept or reject.

If you refuse cookies or remove existing ones, certain website functionalities may not be available.

For more details on how to configure cookie preferences in your browser, please refer to the following links:

Internet Explorer™

Safari™

Chrome™

Firefox™

Opera™

Resources

For further information regarding privacy and cookies, please consult the Italian Data Protection Authority website: https://www.garanteprivacy.it/home.

Amendments to This Privacy Policy

The Data Controller reserves the right to amend this Privacy Policy at any time by publishing the updated version on this page. Users are therefore advised to check this page frequently, referring to the date of the last modification indicated below.

If a user does not accept the changes made to this Privacy Policy, they must cease using the website and may request that the Data Controller delete their personal data. Unless otherwise specified, the previous version of the Privacy Policy shall continue to apply to data collected prior to such amendments.

Functional Technical Cookies

These enable core functionalities necessary for the website to function properly.

ACCOUNT_CHOOSER
AEC
AMP_*
APISID
cc_cookie
DV
FPAU
FPID
hide-newsletter-popup
HSID
LSID
NID
OGP
OGPC
OTZ
PHPSESSID
Prestashop-*
SAPISID
SEARCH_SAMESITE
SID
SIDCC
SSID
UULE
_Host-*
_Secure-*
_shopify_y
kdld

Analytical and Monitoring Cookies

These collect information on how visitors use the website.
In our case, these are third-party cookies (Google Analytics — see Google’s documentation for more details).

_ga
ga*

Marketing Cookies

This type of cookie displays advertisements to visitors of this website that are consistent with their interests.

fbp

Last update of this Privacy Policy: October 2025