Privacy Policy

Privacy Policy of
To obtain information about your personal data collected, the purposes and subjects with which the data are collected
shared, contact the Data Controller.
To get more information and know your rights you can also view the full version of this
privacy policy, via the link in the bottom right.

Data Controller Data Controller

Como Lake Panorama apartments di Sabrina Dell’Oro, P.Iva IT 04044600130, Via Carducci 5 Erba 22036 Como
Owner’s email address:

Types of Data collected

The Data Controller does not provide a list of types of Personal Data collected.

Full details on each type of Personal Data collected are provided in the dedicated sections of this
privacy policy or through specific informative texts displayed before the collection of the Data.
Personal Data may be freely provided by the User or, in the case of Usage Data, collected
automatically during the use of this Application.
Unless otherwise specified, all Data required by this Application is mandatory. If the User
refuse to communicate them, it may be impossible for this Application to provide the Service. In cases where
this Application indicates some Data as optional, Users are free to refrain from communicating such
Data, without affecting the availability of the Service or its operation.
Users who have doubts about which Data is mandatory are encouraged to contact the Owner.
The possible use of Cookies – or other tracking tools – by this Application or
holders of the third-party services used by this Application have the purpose of providing the Service requested by the User,
in addition to the additional purposes described in this document and in the Cookie Policy.

The User assumes responsibility for the Personal Data of third parties obtained, published or shared through
this Application.

Method and place of processing of the collected Data

Method of treatment

The Data Controller takes the appropriate security measures to prevent access, disclosure, modification or
unauthorized destruction of Personal Data.
The processing is carried out by means of computer and/ or telematic tools, with organizational and
strictly related to the purposes indicated. In addition to the Data Controller, in some cases, they may have
access to the Data other parties involved in the organization of this Application (administrative staff,
commercial, marketing, legal, system administrators) or external parties (such as service providers
third party technicians, postal carriers, hosting providers, IT companies, communication agencies) appointed
also, if necessary, Data Processors by the Data Controller. The updated list of
Data Processors may always be requested from the Data Controller.


The Data are processed at the operating offices of the Data Controller and in any other place where the parties involved in the
processing is localized. For further information, contact the Data Controller.
Your Personal Data may be transferred to a country other than the country where you are located.
For further information on the place of processing the User can refer to the section
concerning the details of the processing of Personal Data.

Retention period

Unless otherwise stated in this document, Personal Data is processed and stored for the time
required by the purpose for which they were collected and could be stored for a longer period
due to any legal obligations or based on your consent.

Cookie Policy

This Application makes use of Tracking Tools. To learn more, Users can
consult the Cookie Policy.

More information for users

Legal basis of processing

The Data Controller processes Personal Data relating to the User if one of the following conditions is met:

  • the User has given consent for one or more specific purposes; Note: in some jurisdictions the Owner
    may be authorised to process Personal Data without the User’s consent or
    another of the legal bases specified below, until the User opposes (“opt-out”) to
    such processing. However, this does not apply if the processing of Personal Data is regulated by
    European legislation on the protection of personal data;
  • processing is necessary for the execution of a contract with the User and/or for the execution of measures
  • the processing is necessary to fulfil a legal obligation to which the Data Controller is subject;
  • processing is necessary for the performance of a task in the public interest or for the exercise of
    public powers vested in the Holder;
  • the processing is necessary for the pursuit of the legitimate interest of the Data Controller or third parties.

It is however always possible to ask the Data Controller to clarify the concrete legal basis of each
processing and in particular to specify whether the processing is based on the law, provided for in a contract
or necessary to conclude a contract.

Learn more about storage time

Unless otherwise stated in this document, Personal Data is processed and stored for the time
required by the purpose for which they were collected and could be stored for a longer period
due to any legal obligations or based on your consent.

  • Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User
    shall be retained until the performance of that contract is completed.
  • Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retaineduntil this interest is satisfied. The User can obtain further information aboutthe legitimate interest pursued by the Data Controller in the relevant sections of this document or by contacting theHolder.

When processing is based on the User’s consent, the Data Controller may store Personal Data more at
until said consent is revoked. Moreover, the Data Controller may be obliged to
store Personal Data for a longer period in compliance with a legal obligation or by order of
an authority.

At the end of the retention period, Personal Data will be deleted. Therefore, upon expiry of such
the right of access, cancellation, rectification and the right to the portability of the Data can no longer
be exercised.

User rights

Users can exercise certain rights with regard to the Data processed by the Data Controller.

In particular, within the limits provided by law, the User has the right to:

  • revoke your consent at any time. You may revoke your consent to the processing of your
    Personal Data previously expressed.
  • object to the processing of your Data. You may object to the processing of your Data when
    it shall be based on a legal basis other than consent.
  • access your Data. You have the right to obtain information on the Data processed by the Data Controller, on
    certain aspects of the processing and to receive a copy of the Data processed.
  • verify and request rectification. The User can verify the correctness of their Data and
    request its update or correction.
  • obtain the limitation of the processing. The User may request the limitation of the processing of
    own Data. In this case, the Data Controller will not process the Data for any other purpose than their storage.
  • obtain the deletion or removal of your Personal Data. You may request the
    cancellation of your Data by the Data Controller.
  • receive your Data or have it transferred to another data controller. You have the right to receive your Data
    in a structured, commonly used and machine-readable format and, where technically
    The Court of First Instance held that the Court of First Instance had jurisdiction in the matter.
  • make a complaint. You may lodge a complaint with the data protection supervisory authority
    competent personnel or take legal action.

Users have the right to obtain information about the legal basis for the transfer of Data
including abroad to any international organization governed by international law or constituted
by two or more countries, such as the UN, as well as on the security measures adopted by the Holder
to protect their Data.

Details of the right to object

When the Personal Data are processed in the public interest, in the exercise of public
invested by the Owner or to pursue a legitimate interest of the Owner, the Users
are entitled to object to processing on grounds relating to their particular situation.
Users are reminded that, if their Data were processed for direct marketing purposes,
may object to the processing at any time, free of charge and without providing any
motivation. If the Users oppose the processing for direct marketing purposes, the
Personal Data are no longer processed for these purposes. To find out if the Data Controller
Data processing with direct marketing purposes Users can refer to their respective
sections of this document.

How to exercise the rights

To exercise their rights, Users can address a request to the contact details of the Data Controller indicated in
this document. The request can be filed free of charge and the Data Controller will reply as soon as possible
time possible, in any case within one month, providing the User with all the information required by law.
Any corrections, cancellations or limitations of processing will be communicated by the Data Controller to each
the recipients, if any, to whom the Personal Data has been transmitted, unless this proves impossible or
involves a disproportionate effort. The Data Controller informs the User of such recipients if he so requests.

Further information on the processing


The User’s Personal Data may be used by the Data Controller in court or in the preparatory stages
its possible establishment for the defense against abuse in the use of this Application or the Services
connected by the User.
The User declares to be aware that the Data Controller may be obliged to reveal the Data by order
of public authorities.

Specific information

At your request, in addition to the information contained in this privacy policy, this Application
may provide the User with additional and contextual information regarding specific Services, or
collection and processing of Personal Data.

Log of system and maintenance

For requirements related to operation and maintenance, this Application and any third party services
could collect system logs, that is, files that record interactions and that can
also contain Personal Data, such as your IP address.

Information not contained in this policy

Further information regarding the processing of Personal Data may be requested in any
to the Data Controller using the contact details.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy in any
notifying it to the Users on this page and, if possible, on this Application and, if
technically and legally feasible, by sending a notification to Users through one of the contact details
of which you have. Please consult this page frequently, referring to the
date of last amendment indicated at the bottom.

If the changes affect processing operations whose legal basis is consent, the Data Controller will
collect your consent again, if necessary.

Definitions and legal references

Personal Data (or Data)

Personal data are any information which, directly or indirectly, even in
link with any other information, including a personal identification number, makes
identified or identifiable a natural person.

Usage Data

Is the information collected automatically through this Application (also by applications of parties
third integrated in this Application), including: the IP addresses or domain names of the computers used
by the User connecting with this Application, the addresses in URI notation (Uniform Resource
Identifier), the time of the request, the method used to forward the request to the server, the size of the
file obtained in response, the numeric code indicating the status of the response from the server (good end, error, etc.)
the country of origin, the characteristics of the browser and the operating system used by the visitor, the various
temporal connotations of the visit (for example the time of stay on each page) and details
relating to the route followed within the Application, with particular reference to the sequence of
pages consulted, the parameters related to the operating system and the computer environment of the User.


The individual using this Application who, unless otherwise specified, coincides with
the Concerned.


The natural person to whom the Personal Data refers.

Data Processor (or Processor)

The natural person, legal entity, public administration and any other entity that processes personal data for
account of the Data Controller, as set out in this privacy policy.

Data Controller (or Data Controller)

The natural or legal person, the public authority, the department or other body which, individually or together with
determine the purposes and means of the processing of personal data and the instruments adopted, including
security measures relating to the operation and use of this Application. The Holder of
Processing, unless otherwise specified, is the holder of this Application.

This Application

The hardware or software tool by which Personal Data of Users is collected and processed.


The Service provided by this Application as defined in its terms (if any) on this

European Union (or EU)

Unless otherwise stated, any reference to the European Union in this document shall be
intends extended to all current member states of the European Union and the European Economic Area.

Legal references

Unless otherwise specified, this privacy policy applies exclusively to this Application.
Last modified: 23 October 2023