Information on the Processing of Personal Data and Cookies of the Website
Introduction
In compliance with the obligations under Regulation (EU) No. 2016/679 of the European Parliament and the Council dated April 27, 2016 (hereinafter the “Regulation” or “GDPR”) and the applicable national legislation, including Legislative Decree 196/2003 (Privacy Code, as amended by Legislative Decree 101/2018), Cortina Investimento S.L. respects and protects the personal data of visitors and users (hereinafter, the “Data Subjects”) of the website www.elsolibiza.es (hereinafter, the “Website”). This document provides information about the processing of personal data collected by Cortina Investimento S.L. through the Website and thus constitutes an informative notice to Data Subjects pursuant to the above-mentioned regulations. It does not apply to personal data collected by Cortina Investimento S.L. through channels other than the Website. According to the Regulation, personal data processing is carried out in accordance with principles of fairness, lawfulness, transparency, and confidentiality protection. The Website contains links to other websites: this notice does not apply to these other websites, which may have different privacy policies. Therefore, Cortina Investimento S.L. encourages Data Subjects to carefully read the privacy policies of linked websites before submitting any personal information.
Identity and Contact Details of the Data Controller
The Data Controller is Cortina Investimento S.L. (hereinafter, “Cortina Investimento S.L.” or the “Data Controller”), VAT number B16643983, with registered office at Paseo Ses Pitiuses, Edf Principe 11 ESC. 12 07800 – Eivissa (tel: +39 3401402732; email: giovannirinaldi05@yahoo.com).
Types of Data Processed via the Website
The Data Controller may process the following data through the Website:
Automatically collected data – traffic and navigation data: The IT systems and software procedures operating the Website automatically acquire certain personal data, the transmission of which is inherent to internet communication protocols (IP addresses, browser type, ISP, requested URLs, date and time of visits, request method, numerical response codes from the server, originating and exit pages, user operating system, etc.). The Website does not intentionally collect special categories of data (e.g., health data, religious, political, or trade union beliefs) unless explicit informed consent is given.
Data Voluntarily Communicated by Data Subjects
The voluntary sending of messages or completion of contact forms on the Website leads to the acquisition of the sender’s contact data, necessary to respond to requests, as well as any personal data voluntarily included (such as name, surname, email address). Data Subjects must provide accurate and truthful data and promptly inform the Data Controller of any subsequent changes.
Cookies and Other Tracking Systems
The Website uses cookies and similar technologies. Please refer to our Cookie Policy for detailed information.
Purposes and Legal Basis of Processing
The Data Controller processes data to:
Manage, administer, and improve the Website.
Fulfill legal and judicial obligations.
Prevent fraudulent or harmful activities affecting the Website.
Conduct technical and commercial analyses.
Respond to inquiries and provide support.
Send administrative and technical communications.
Send commercial communications or advertisements (subject to consent).
Consent to the processing of data for these purposes is optional but necessary for fulfilling the specified purposes.
Communication of Data
Personal data may be communicated to supervisory bodies, judicial authorities, and other entities whose communication is legally required or necessary for the described purposes.
Methods of Processing and Retention Period
Data processing may be manual or automated, and data is retained strictly for the period necessary:
Navigation data: up to 12 months.
Voluntarily provided data: up to 10 years (legal or administrative obligations).
Marketing data: until consent is revoked, but no longer than 24 months.
Potential International Transfer of Data
Data management and storage occur on servers located within the European Union (currently Italy). If necessary, transfers outside the EU will be conducted according to appropriate guarantees as required by applicable laws.
Security Measures
The Data Controller employs appropriate technical and organizational measures to protect data against unauthorized access, disclosure, alteration, or destruction, limiting access strictly to authorized personnel.
Rights of Data Subjects
Data Subjects may exercise their GDPR rights at any time (access, rectification, erasure, restriction, portability, objection, automated decision-making) by contacting Cortina Investimento S.L. by mail or email as previously stated.
Right to Lodge Complaints
Data Subjects have the right to lodge a complaint with a data protection authority if they believe the processing violates the Regulation.
Protection of Minors
The Data Controller does not allow individuals under 16 years to use its services and does not intentionally collect their data. Any inadvertently collected data will be deleted promptly.
Periodic Updates to This Policy
This privacy policy may be updated periodically. Any significant changes will be communicated via the Website or email.
AI-Generated Content
Some Website content may be partially created with generative artificial intelligence tools, ensuring transparency, correctness, and reliability, without using personal information or analyzing user behavior for personalized advertising or targeted content.
This information was updated on May 6, 2025.
