Privacy Policy

WEBSITE PRIVACY POLICY

Information pursuant to Art. 13 of Legislative Decree 196/2003 and Articles 13 and 14 of EU Regulation no. 2016/679 (GDPR)

°°°

This page describes the management methods of the website, www.cruisingjournal.com, concerning the processing of personal data of the Users that register to or visit the site.

The information provided is pursuant to current personal data protection legislation and changes to this informative report may be introduced in the future to ensure constant compliance with all applicable law, in the event of any changes and/or updates.

We invite Users to carefully read the regulations that we apply to the collection and processing of personal data and which will enable us to continue to provide a satisfactory service.

Users must provide truthful, accurate, and up-to-date personal data, assume responsibility for any third-party Personal Data collected, published or shared, and confirm that they have the third-party’s consent to disclose or share this information, freeing the Controller from any liability towards third parties.

Users acknowledge that in the event that untruthful, inaccurate or outdated data has been provided, the Controller will be unable to provide its services.

 

DATA CONTROLLER

Following registration to this website, the personal data of an identified or identifiable person may be processed. The “controller” processing their data is cruisingjournal.com, which can be contacted at the following email address info@cruisingjournal.com or by telephone at +393356087554.

 

DATA PROCESSING LOCATION

Data processing will take place at the operating offices of the Data Controller cruisingjournal.com.

 

PROVISION OF DATA AND REFUSAL TO COMPLY WITH THE REQUEST

The provision of data is non-mandatory and the choice to do so is entrusted to the person who wants to register to the portal set up by the CONTROLLER. Failure to provide the data requested when registering with the website implies the impossibility to follow up with the registration and subsequent use of the services.

 

DATA COLLECTION

The personal data of our Users is collected as follows:

Freely provided by our Users when using this application:

– by compiling the registration format on the Website. This includes personal information such as name, surname, and e-mail address, which are necessary in order to use the services offered by the site.

– when creating a Personal Profile, visible to any user registered with Cruisingjournal.com, and where the following data may be present, fully visible and accessible: Date of birth, Sex, Province of residence (should this information be inserted at the time of registration or at a later date), as well as all additional data subsequently inserted. In this way, it is agreed upon that your user name will be made public and visible to all other users, registered or not, as the author of any future content that you choose to submit (reviews, messages, etc.)

– by means of the computer systems and software procedures used to operate the Website during normal operations when following Internet communication protocols. This category of data includes IP addresses or domain names of computers used by persons who log on to the site, the URI (Uniform Resource Identifier) ​​of requested resources, the time of request, the method used to submit the request to the server, the size of the file received in reply, the numerical code indicating the status of the reply provided by the server (successful, error, etc.) and other parameters regarding the user’s operating system and web environment. This data is used solely to compile anonymous statistics on the use of the site and to verify its correct operation. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the Website.

– From the Website by means of cookies, which can include an anonymous unique identifier, which is sent to the browser by a web server and subsequently stored on the hard drive of the User’s computer. Cookies are then reread and recognized by the website that sent them at the time of subsequent visits. Any data obtained from cookies is used directly by the Controller or by third party business partners, in order to ensure a simpler, immediate and quicker access to the Website and use of the Services, and an easier navigation on the Website itself by the User.

– The User can interrupt reception of this Website’s cookies at any time by changing the settings of their browser.

PROCESSING PURPOSES

 

The personal data collected, including any images supplied by the interested party, is considered the subject of the processing and is directly processed and used for the purposes indicated below:

1) manage and allow access to the services offered by the site;

If the interested party provides appropriate and specific consent, the data collected can be processed for purposes of the Newsletter, by third party business partners as well.

2) use of the data for communications via e-mail, telephone or SMS relating to programs and services offered by the website (optional consent);

3) comply with legal obligations or current regulations;

4) collection, storage and processing of data to obtain anonymous and/or aggregated statistical analysis (optional consent);

5) Cruisingjournal.com sends informative and promotional material via email regarding products or services that are similar or comparable to the services or products offered on the Website (optional consent).   

Failure to provide personal data for the purposes referred to in point 1, implies that the User cannot register to the Website and consequently cannot make use of the services offered on the site.

 

PROCESSING METHOD

The Data Controller undertakes to ensure that the personal data in its custody and control will not be disclosed and will be processed in ways that guarantee security and confidentiality, and will also prevent unauthorized access to the data, in compliance with the applicable legislation.

 

DATA RECIPIENTS

Personal data and information provided by users may be disclosed, for the purposes mentioned above, to the following categories of subjects:

– employees and/or collaborators who provide assistance and advice to the Data Controller inherent to Administration, Product, Legal, Customer Care, and IT Systems areas, as well as those in charge of maintenance of the company network , hardware and software currently in use;

– individuals who are authorized both by law and by order of the authorities to access the data;

– subjects delegated and/or appointed by the Controller to carry out the activities related to the provision of the Service.

 

LEGAL BASIS FOR HANDLING PERSONAL DATA

The Data Controller can handle Personal Data pertaining to the User if one of the following conditions has been met:

– the User has given consent for one or more specific purposes; N.B.: in some jurisdictions the Controller may be authorized to process Personal Data without the User’s consent or any other of the legal bases specified below, until the User does not object (“opt-out”) to this handling of personal data. However, this is not applicable if the processing of Personal Data is regulated by European legislation regarding the protection of Personal Data;

– the data  processed is necessary for the execution of a contract with the User and/or the execution of pre-contractual measures;

– data processing is necessary for compliance with a legal obligation which the Controller is subject to;

– data processing is necessary for the execution of a task carried out in the public interest or in the exercise of the official authority by which the Controller is vested;

– data processing is necessary in order to continue the legitimate interests of the Controller or third-parties.

In any case, it is always possible to ask the Controller to clarify the concrete legal basis for each data processing and in particular to specify whether the treatment is based on the law, provided for by a contract, or deemed necessary to conclude a contract.

 

RIGHTS OF THE DATA SUBJECT

At any time, the User can exercise, pursuant to Art. 7 of Legislative Decree 196/2003 and Articles 15 to 22 of EU Regulation no. 2016/679, the right to:

  1. a) request confirmation of the existence or otherwise of one’s own personal data;
  2. b) obtain an indication of processing purposes, the categories of personal data, the recipients or categories of recipients to whom the personal data has been or will be notified and, whenever possible, the retention period of this data;
  3. c) obtain the correction and deletion of data;
  4. d) obtain a limitation on data processing;
  5. e) obtain data portability, that is, receive the personal data concerning oneself from a Data Controller, in a structured, commonly used and machine-readable format and have the right to transmit this data to another Controller without hindrance;
  6. f) object to the processing of one’s data at any time, including any processing for direct marketing purposes;
  7. g) object to an automated decision-making process concerning individuals, including profiling;
  8. h) request from the Data Controller access to and rectification or deletion of one’s own personal data or the restriction of processing the data concerning the data subject or to object to the processing, as well as the right to data portability;
  9. i) withdraw consent at any time without affecting the lawfulness of any processing based on consent given prior to the revocation;
  10. j) make a complaint to a supervisory authority.

 

HOW TO EXERCISE YOUR RIGHTS

 

To exercise User’s rights, Users can direct a request to the operating offices of the Controller or to the following email address info@cruisingjournal.com

The requests are filed for free and processed by the Data Controller as soon as possible, and in any case within one month.

 

 

RETENTION TIME

 

The personal data of the interested parties will be kept for the time necessary for the fulfillment of the relationships between the parties.

Therefore:

– Personal Data collected for purposes related to the performance of a contract between the Data Controller and the data subject will be retained until the performance of such contract is completed;

– Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until such interest is met. The User can obtain further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Data Controller.

When the processing is based on the User’s consent, the Data Controller may retain the Personal Data for a longer period until such consent is revoked (and in any case for a maximum of 10 years). Furthermore, the Data Controller may be obliged to keep Personal Data for a longer period in compliance with a legal obligation or by order of an authority.

At the end of the retention period, Personal Data will be deleted.

Therefore, once the retention period has expired, the right to access, erasure, rectification, and the right to data portability can no longer be exercised.

 

FURTHER INFORMATION REGARDING DATA PROCESSING

Legal defense

The User’s Personal Data may be used by the Data Controller in its defense in Court or in the preparatory stages leading to possible legal action arising from improper use of this Website or the related services.

The User declares to be aware that the Data Controller may be required to reveal personal data upon request of public authorities.

 

 

 

 

Specific information

In addition to the information contained in this privacy policy, this Application may provide Users with additional and contextual information concerning specific services or the collection and processing of Personal Data upon request.

 

System Logs and Maintenance

For operation and maintenance purposes, this Website and any potential third-party services used by it may collect System Logs, that is, files that record interactions with this application and may contain Personal Data, such as User IP address.

Information not contained in this policy

Further information concerning the collection or processing of Personal Data may be requested from the Data Controller at any time using the contact information set out above.