Privacy Policy

Privacy Policy

We value your privacy. This policy explains how we collect, use, and protect personal data when you interact with our online platform, make reservations, or use the services provided at Grand Hotel Bellagio.

What Personal Data We Collect

We collect personal data you provide directly to us when you make a reservation, check-in, use our services, or communicate with us. This may include:

• Identification and contact information such as your name, address, phone number, and email address.
• Information necessary for booking and stay, including reservation details, dates of stay, room preferences, and details about any companions.
• Payment information, such as credit card details, used for bookings and services.
• Information from identification documents, such as passport or ID details, where required by local law for guest registration.
• Data related to your use of our services, such as restaurant visits, spa treatments, or other amenities used during your stay.
• Preferences and special requests you communicate to us.
• Information you provide when participating in surveys or promotions.

We may also collect certain information automatically when you visit our site, such as your IP address, browser type, operating system, and information about your site usage.

In some cases, we may receive information about you from third parties, such as online travel agencies or booking platforms through which you made your reservation.

Legal Basis for Processing Your Personal Data

We process your personal data based on several legal grounds as permitted by applicable law, including the General Data Protection Regulation (GDPR):

• Performance of a contract: Processing is necessary to fulfill our obligations related to your booking and to provide the services you request, such as accommodation, dining, and other hotel facilities.
• Legal obligations: Processing is necessary to comply with legal or regulatory requirements, such as guest registration mandates or tax laws.
• Legitimate interests: Processing is necessary for our legitimate business interests, provided these do not override your fundamental rights and freedoms. This includes improving our services, managing our business operations, preventing fraud, ensuring security, and for direct marketing purposes (where permitted by law and with the ability to opt-out).
• Consent: We may process your data based on your explicit consent for specific purposes, such as sending you marketing communications or processing sensitive data like health information relevant to your stay (e.g., dietary restrictions or accessibility needs). You have the right to withdraw your consent at any time.

How We Use Your Personal Data

We use your personal data for the following purposes:

• To process and manage your reservations and stay.
• To provide the services you request, including accommodation, dining, and other hotel amenities.
• To communicate with you regarding your booking, stay, and services.
• To process payments for services rendered.
• To personalize your experience and provide tailored services.
• To improve our services and facilities.
• To comply with legal and regulatory obligations.
• To ensure the security of our premises and guests.
• To send you marketing and promotional communications (where we have a legal basis to do so, such as your consent or our legitimate interests).
• To respond to your inquiries and requests.

Sharing and Disclosure of Your Personal Data

We may share your personal data with third parties in the following circumstances:

• Service Providers: We may share data with trusted third-party service providers who perform services on our behalf, such as payment processors, IT service providers, marketing agencies, and operational support services. These providers are contractually bound to protect your data and use it only for the purposes we specify.
• Booking Platforms: If you booked through a third-party platform, we may share necessary data with them to manage your reservation.
• Business Transfers: In the event of a merger, acquisition, or asset sale, your data may be transferred as part of the transaction.
• Legal Requirements: We may disclose your data if required by law, court order, or government request, or to protect our rights, property, or safety, or the rights, property, or safety of others.
• With Your Consent: We may share your data with other third parties when we have your explicit consent to do so.

We do not sell your personal data to third parties.

Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. The retention period depends on the type of data and the purpose of processing. For example, data related to your stay is kept as long as needed to manage the stay and meet legal obligations for guest registration and financial records. Data processed based on consent for marketing is kept until you withdraw your consent or object.

Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, and destruction. However, no system can be completely secure, and we cannot guarantee the absolute security of your information.

Your Data Protection Rights

Under applicable data protection laws, including the GDPR, you have certain rights regarding your personal data:

• Right of Access: You have the right to request access to the personal data we hold about you and to receive a copy of this data.
• Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
• Right to Erasure (Right to be Forgotten): You have the right to request the deletion of your personal data under certain circumstances.
• Right to Restriction of Processing: You have the right to request that we restrict the processing of your personal data under certain circumstances.
• Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller, where processing is based on consent or contract and carried out by automated means.
• Right to Object: You have the right to object to the processing of your personal data based on legitimate interests or for direct marketing purposes.
• Rights related to Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, except under certain conditions.
• Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw your consent at any time.
• Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if you believe that our processing of your personal data infringes applicable data protection laws.

To exercise any of these rights, please contact us using the details provided below.

Third-Party Links

Our online platform may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have inadvertently collected personal data from a child under 16, we will take steps to delete such information as soon as possible.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. Any changes will be posted on this page, and we will update the date at the top of the policy accordingly. We encourage you to review this policy periodically.

Contact Us

If you have any questions or concerns about this privacy policy or our data protection practices, please contact us by mail at:

Grand Hotel Bellagio
14 Via Garibaldi
Bellagio, Como
22021
Italy

Phone: +39 031 950123

Email: " class="text-primary-dark hover:text-primary-medium font-body inline-flex items-center">info@