Last updated: 23 October 2025

This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you visit this website or submit a booking request.

1) Data Controller

Name: Ivana Cipriano (Planet Garda)
Email:  ivanacipriano@pecmail.me

2) What We Collect

  • Identification and contact data: name, email, phone/WhatsApp.

  • Booking details: apartment selected, check-in/check-out dates, number of guests, special requests.

  • Technical data (limited): IP address, device/browser info, pages visited (for security and basic analytics).

3) Why We Use Your Data (Legal Bases)

  • Respond to inquiries / manage bookings (Art. 6(1)(b) GDPR – contract/steps prior to contract).

  • Legal obligations (tax, public safety/hospitality rules) (Art. 6(1)(c) GDPR).

  • Legitimate interests such as site security and service improvement (Art. 6(1)(f) GDPR).

  • Consent for optional fields and cookies/analytics where required (Art. 6(1)(a) GDPR).

4) How Long We Keep It

  • Booking requests and related emails: up to 24 months from last contact, unless a longer period is required by law.

  • Invoices/records: as required by tax law (generally 10 years in Italy).

  • Analytics data: as configured by the analytics tool (usually 14–26 months).

5) Who Receives Your Data

We do not sell your data. We may share it with:

  • Hosting/email/IT providers and analytics vendors (as data processors under written agreements).

  • Booking platforms you use (e.g., Airbnb/Booking.com) to manage reservations.

  • Professional advisers (e.g., accountant) and public authorities when legally required.
    Transfers outside the EEA (if any) are protected by appropriate safeguards (e.g., Standard Contractual Clauses).

6) Cookies & Analytics

This website may use essential cookies for functionality and limited analytics (e.g., Google Analytics or Matomo). Where required, we obtain your consent via a cookie banner. You can disable non-essential cookies at any time through the banner or your browser settings.

7) Data Security

We apply technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or loss.

8) Your Rights (GDPR)

You can request: access, rectification, erasure, restriction, portability, and objection (including withdrawal of consent where processing is based on consent).
To exercise your rights, contact us at [insert your contact email].
You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali).

9) Children

Our services are not intended for children under 16. We do not knowingly collect their data.

10) External Links

Links to third-party sites (e.g., maps, booking platforms) are governed by their own privacy policies.

11) Changes

We may update this Policy from time to time. The latest version will always be published on this page.

Scroll to Top