Garden Flowers Ostuni is strongly committed to providing excellent service to all its clients and visitors of its website, including respect for privacy concerns. We understand that you may have questions about how we collect and use the information you provide to us. We have prepared this statement to inform you of the privacy principles that govern our use of the information we obtain from our clients, including the information we collect through this website.
This page describes how we will manage the site in relation to the processing of personal data of users who visit it. This information is provided in accordance with Regulation (EU) 2016/679 (GDPR, Articles 13 and 14) to those who interact with the web services accessible via the website: gardenflowersostuni.it. This information is provided solely for the gardenflowersostuni.it website and not for other websites accessible via links.
Data Controllers
The data controller is GARDEN FLOWERS OSTUNI DI SASSO MARIELLA, located at Via Papa Giovanni XXIII, 26, 72017 Ostuni (BR).
You can contact the Data Protection Officer at the email address: weddingflorist@gardenflowersostuni.it.
Purpose, Legal Basis, and Retention Period
The personal data provided by users requesting informational materials or registering to receive newsletters are used solely to provide the requested service. These data may be used by the company to perform its ordinary activities and achieve its purposes, which we list below: a) Management of the user/client relationship; b) Conduct of its ordinary activities; c) Other purposes related to the company’s activities and associated with those activities, such as, for example but not limited to: improving the offering of products and services, even if not strictly related to the services requested by the concerned person; market analysis on customer satisfaction, directly or through marketing agencies, via phone, questionnaires, or personal appointments.
If it is necessary to collect data that allows the identification of the user in order to provide a specific service, we ask the user to voluntarily provide the necessary data. For example, if the user wishes to make a reservation at our hotel, we ask for information such as name, address, phone number, email address, credit card number, and room preferences in order to process the user’s booking request. We use the email address to send the booking confirmation and, if necessary, to use the other information to contact the user to obtain their collaboration in processing their reservation.
To:
- Communicate special offers and promotions to the user as outlined in this Privacy Policy;
- Send the user periodic surveys regarding satisfaction or market research; we use contact details only with explicit consent from the customer.
The user can withdraw their consent at any time for marketing communications. The user can also withdraw consent for participating in surveys related to research.
If data is transmitted to third parties (e.g., for financial transactions), the data controller must be informed, and consent for data transmission must be obtained. In this case, the user will be transferred to a secure SSL (Secured Sockets Layer) connection, provided that a compatible browser is used. This ensures that all information is encrypted while traveling over the Internet.
However, we may transmit data to recipients located in countries for which the European Commission has made an adequacy decision (generally in the United States, in accordance with the European Commission’s Implementing Decision 2016/1250 / EU of July 12, 2016).
In the case of data transmission to third countries, technical measures must be adopted to inform you about the specific safeguards (including obtaining a copy of the data) and to obtain your consent.
Direct Marketing
As mentioned above, we would like to provide you with information about new products, promotions, special offers, and other information we believe may be of interest to you. If you have expressly authorized us to do so, we may send this information by mail and phone, unless you have specified otherwise during check-in. If you purchase a product from us, we may retain your email and postal address for future communications. If at any time you wish for your data to not be used for direct marketing purposes, you can contact our customer service via email at: weddingflorist@gardenflowersostuni.it, and we will cease sending you commercial communications.
Browsing Data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. These are information that is not collected to be associated with identified individuals, but which, by their nature, could, through processing and associations with data held by third parties, allow the identification of users. This category of data includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response from the server (successful, error, etc.), and other parameters related to the user’s operating system and computer environment. These data are used solely to derive anonymous statistical information about the use of the site and to check its correct functioning, and are deleted immediately after processing.
The data may be used for the detection of responsibility in case of hypothetical computer crimes against the site. The legal basis for the processing of the above data is the legitimate interest of the data controller.
Data Provided Voluntarily by the User
The optional, explicit, and voluntary sending of emails to the addresses provided on this site involves the subsequent acquisition of the data necessary to respond to requests, and any other personal data included in the message.
Provision of Data
Apart from the data specified for browsing, the user is free to provide personal data in the request forms or otherwise indicated in specific sections of the site to request informational material or other communications. Failure to provide this data may result in the inability to obtain the requested items.
Processing Method
Your personal data will be processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected. The duration of data processing is therefore linked to the user/client relationship and the economic and financial purposes of the data controller, as well as the exercise by the client of their rights of opposition, cancellation, correction, or portability of data.
You have the right, at any time, to obtain confirmation of whether or not your data is stored, to request its content and origin, to verify its accuracy, or to request its integration, updating, or correction.
In accordance with Regulation (EU) No. 2016/679, Articles 15-21, you have the right to request the data controller access to and rectification, portability, or deletion of personal data, or the limitation of processing, or blocking of data processed in violation of the law, as well as to oppose the processing of data for legitimate reasons and to file a complaint with a supervisory authority whenever an improper use is identified.
This Privacy Policy may be periodically revised, and the use of the information collected is subject to the privacy policy in effect at the time of use. This document published on the gardenflowersostuni.it website constitutes the “Privacy Policy” of this site and is subject to change.
Data of Minors under 16 Years of Age
The processing of data of minors under the age of 16 must be managed and authorized by the holder of parental responsibility. Specific security measures are observed to verify the age of those accessing the website. If we inadvertently acquire personal information or other data from users under the age of 16, we will not disclose it to third parties without reason.
Categories of Recipients
Data related to services provided by this site are managed solely by the technical staff of the company who is responsible for processing, or by those responsible for occasional maintenance operations. No data acquired via the web will ever be disclosed.
The data may be communicated to parties acting as independent data controllers, such as:
- Authorities and supervisory bodies and, in general, public or private entities entitled to request data;
- Lawyers, accountants, auditors.
The data may also be processed on behalf of the company by external parties appointed as data processors, to whom appropriate operational instructions will be provided, such as companies providing services for system maintenance.
The list of recipients is constantly updated and is available upon request by contacting the address above or by sending an email to: weddingflorist@gardenflowersostuni.it.
User Rights
At any time, you may request the following: information about the existence of personal data processing and its characteristics, rectification and deletion of data, or limited processing. You may also challenge the processing and/or request that the data be sent to another data controller (data portability if the processing is based on consent or a contract and is carried out using automated tools), or oppose being subject to a decision based on automated processing. The data controllers must respond to requests within the timeframes set by data protection law; they must also correct incorrect data, ensure incomplete data is completed, and update outdated data; finally, if requested, they must delete data and limit and/or prevent its processing, or ensure that data is, where technically possible, sent to another data controller.
In the exercise of the rights listed above, as provided by privacy laws, or in order to obtain information about them and/or report any misunderstandings or issues, the concerned party is invited to send an email to: weddingflorist@gardenflowersostuni.it or to send a letter to the Data Controller.
If the response is not considered satisfactory, the concerned party may contact the relevant Supervisory Authority for further remedies available under applicable law.
Every electronic communication sent must contain a specific section explaining the methods for contesting data processing and how clients can stop receiving promotional material and information.
12/02/2025