Privacy Policy App

Pursuant to Regulation (EU) 2016/679 (hereinafter "Regulation") concerning the protection of personal data, this page describes how personal data of users utilizing the informational and promotional service provided by the Data Controller is processed through the use of the dedicated application.

The application, after registration, allows access to the main service and, with explicit consent, access to informational, touristic, and commercial content related to the activities and services offered by the Data Controller.

Data Controller: The Data Controller of the data is the company TRA.VEL.MAR S.r.l., with registered office in Via Largo Scario n.5 - 84011 Amalfi (SA), represented by the CEO Andrea Gambardella.

Data Protection Officer (DPO): The Data Protection Officer (DPO) is Dr. Sonia Tierno, via Giulio Pastore, 32 Salerno (SA), email: soniatierno@gmail.com, certified email (PEC): soniatierno@pec.it.

Legal Basis of the Processing
The processing of the user's personal data, provided during registration, will be carried out to provide, with explicit consent, the informational and promotional services offered by the Data Controller under Art. 6(a), and to comply with legal, regulatory, or EU obligations, as well as cybersecurity obligations incumbent on the Data Controller.

Purpose of the Processing

The purposes of the processing are as follows:

Provide the user with tourist information about the area, either general or based on the user's location (user geolocation) or any travel travel tickes purchased.
Allow the user to access tourist-informational content in augmented reality regarding the main attractions of the Amalfi Coast.
Propose the purchase of additional services from Travelmar and third parties.

Data Processed and Data Transfer

Browsing Data
The IT systems, software procedures, and other devices necessary for the operation of this service acquire, during their normal operation, some personal data whose transmission is implicit in the use of communication protocols and collected with the user's consent.

This information is not collected to identify users but, by its nature, could, through processing and association with data held by third parties, allow user identification, including for security purposes.

This category includes the following data along with other parameters related to the user's operating system and IT environment:

Registration: Date and time of registration and access.
Language: System language (IT).
IP Address: Identifies the unique access point of the device.

Data provided by the user

The data subject to processing includes surname, first name, place and date of birth, gender, email address, residence/domicile address, phone numbers (landline and mobile), and occupation.

Cookies and other tracking systems
Additionally, with explicit consent, the application allows the use of personal data for profiling, direct and indirect marketing, as well as sharing with third parties (such as Google and Meta platforms).

The profiling cookies used—Google GA4—are aimed at creating user profiles and are used to send advertisements aligned with the preferences expressed by the user during web browsing.

PROCESSING METHODS AND DURATION

Personal data is processed using automated tools, for the time necessary to achieve the purposes for which it was collected and, in any case, no longer than 12 months as indicated in the general terms of service available in the dedicated area.

All is regulated by the designation of TIM S.p.A., via Gaetano Negri 1, 20123, Milan, VAT: 00488410010, as Data Processor under Regulation EU 2016/679 and Legislative Decree 101/2018.

RIGHTS OF THE DATA SUBJECT

The GDPR grants several rights to the data subject, specifically the right to access personal data, the right to rectification or erasure of the data, the right to restrict its processing, the right to object to processing, the right to data portability, and the right to withdraw consent, where applicable. Withdrawing your consent will not affect the legality of any processing carried out before the withdrawal. The data subject also has the right to file a complaint with the Privacy Authority.

HOW TO EXERCISE RIGHTS

At any time, the data subject can exercise their rights by sending a written request by traditional mail to the Data Controller's registered office or by email to info@travelmar.it.

The Data Controller also ensures that users can unsubscribe from the services offered through the app via a dedicated function within the app.

The Data Controller reserves the right to update this notice at any time; the user commits to periodically visiting this section to review any changes made.