Your Data, Our Priority: Understanding Hotel Cavallino d’Oro Privacy Practices

Protecting your personal information should be simple, transparent, and dependable—especially when you’re planning a trip. This guide explains Hotel Cavallino d’Oro privacy practices in clear terms so you know what we collect, why we collect it, how we protect it, and the choices you have under GDPR. Whether you’re using our contact form, exploring the website, purchasing gift vouchers, or requesting a Guest Pass, your data is handled with care and lawful purpose.

In this article, you’ll find straightforward answers, practical tips, and quick-reference summaries. If you’re here to plan a stay, you can also explore our Rooms, Activities, Gift vouchers, Location, and Prices.

Who is responsible for your data?

• Data Controller: Nima Demetz GmbH (VAT no. IT00859260218)
• Operational address: Str. Petlin 35, I–39046 Ortisei Val Gardena (BZ)
• Contact: Tel. +39 0471 706337 | Email: info@cavallino.it | Web: www.cavallino.it

We process personal data lawfully and fairly, in line with EU Regulation 2016/679 (GDPR).

What data we collect and why

We collect only what’s necessary to deliver services you request and to provide a smooth website experience. Below is a concise overview.

Website browsing and site features

• Analytics (Google Analytics): Uses cookies to assess site usage. Information (including IP address) may be transmitted to servers in the USA for analysis and reporting. You can prevent this via browser settings or the official opt‑out add‑on: https://tools.google.com/dlpage/gaoptout?hl=gb.
• Advertising & Remarketing (Google AdWords, Google Tag Manager): Cookies may be used to show relevant ads later. You can disable remarketing cookies at https://adssettings.google.com/?hl=gb.
• Maps (Google Maps): Enables interactive maps on our site. Visiting the page can share usage data with Google. If you’re logged in with Google, information may associate with your account.
• Fonts (Google Fonts): Web fonts load for correct display and a better viewing experience. The legal basis is legitimate interest per GDPR art. 6(1)(f).

Contact form

• What we ask: Mandatory fields are clearly marked to process your request. Submitting the form constitutes acceptance of data processing for this purpose.
• Retention: Stored only for the time strictly necessary to handle your inquiry.

Gift vouchers (ADDITIVE+ Vouchers)

• Purpose: To process voucher purchases through integrated software by ADDITIVE s.n.c., 39011 Lana (BZ), Italy.
• Storage: Data is processed and stored within the EU.
• Data sharing: Not transferred to third parties except credit card data to the payment provider and to our tax accountant to fulfil tax obligations.
• Legal basis: GDPR art. 6(1)(a) (consent) and/or 6(1)(b) (contract performance).

Guest Pass

• Purpose: Issuing and enabling use of the Guest Pass and related services.
• Recipient: Mobilitätskonsortium (VAT No. 02735170215), acting as autonomous data controller. For details, contact privacy@moko.bz.it.
• Legal basis: GDPR art. 6(1)(b) (contract performance).

Profiling (for marketing)

• Scope: Automated processing to assess or predict preferences may occur for marketing. For these activities, we have agreements with third parties. You have the right to object and to withdraw consent where applicable (see “Your rights and choices”).

How we protect your data

We apply technical and organizational measures suitable for the services we provide online.

SSL encryption

• What it is: Secure Socket Layer (SSL) encrypts personal data transmitted through our website.
• How to verify: Look for the padlock icon in your browser. Clicking it allows you to confirm the SSL certificate’s validity.

Place of processing and international transfers

• Where processing occurs: Mainly within our working structures in EU/EEC countries.
• Cross‑border transfers: Any contracted services transferred outside the EU/EEC require your approval and must comply with GDPR art. 44 and following provisions.

How long we keep your data

We retain personal data only as long as needed for the stated purposes:

• Enquiries (products/activities): For the time strictly necessary to process your request.
• Website usage: For the time strictly necessary to satisfy navigation‑related activities.
• Internal operations: In line with legal requirements (e.g., invoicing, administration, tax).
• Disputes and litigation: For the time strictly necessary to pursue or defend claims and within applicable limitation periods.

Your rights and choices

You may exercise your rights directly or via a designated representative by sending a written request (with acknowledgement of receipt) or an email to the Data Controller (Nima Demetz GmbH, Str. Petlin 35, I–39046 Ortisei Val Gardena, BZ; info@cavallino.it).

Access and information

• Right to confirmation: Ask whether we process your personal data.
• Right to information: Receive details about purposes, categories of data, and processing.

Rectification, erasure, and restriction

• Rectification: Request correction of inaccurate data.
• Erasure ("right to be forgotten"): Request deletion under GDPR‑aligned conditions (e.g., data no longer necessary; withdrawal of consent where applicable; unlawful processing; legal obligation to erase; data collected from a minor under specific provisions).
• Restriction: Ask us to limit processing in cases such as contested accuracy or pending objections.

Data portability

• What it means: Receive your personal data in a structured, machine‑readable format and request transmission to another controller where technically feasible (GDPR art. 20).

Objection and profiling

• Right to object: Object at any time to processing for reasons related to your situation; this includes profiling. We will stop processing unless we demonstrate compelling legitimate grounds that do not override your interests, rights, and freedoms, or where necessary for legal claims.

Automated decisions

• Your safeguard: You may object to decisions based solely on automated processing (including profiling) that produce legal or similarly significant effects, except where necessary for a contract and with suitable safeguards in place.

Withdrawing consent

• Any time: Withdraw consent you previously granted. This does not affect lawful processing prior to withdrawal.

Important note on legal retention

In specific cases, certain information may be retained for legal purposes (for example, suspected fraud or breaches of general terms and conditions) as permitted by law.

Quick reference: Services, providers, and your controls

• Analytics (Google Analytics): Manage cookies in your browser; use Google’s opt‑out add‑on (https://tools.google.com/dlpage/gaoptout?hl=gb).
• Advertising & Remarketing (Google AdWords, Google Tag Manager): Disable remarketing at https://adssettings.google.com/?hl=gb.
• Maps (Google Maps): If you prefer not to associate usage with a Google account, log out before interacting with map features.
• Fonts (Google Fonts): Used for correct display; legal basis is legitimate interest (art. 6(1)(f)).
• Contact form: Provide only required fields; data stored only as long as needed to respond.
• Vouchers (ADDITIVE): Processed/stored in the EU; payment data shared only with the payment provider and our tax accountant to meet obligations; legal basis art. 6(1)(a)/(b).
• Guest Pass: Data shared with Mobilitätskonsortium (autonomous controller) to issue and manage the pass; legal basis art. 6(1)(b).

Practical takeaways and tips

• Review our full Privacy Policy before submitting personal data.
• Use secure networks for online transactions and look for the padlock to confirm SSL.
• Adjust your browser’s cookie settings to align with your preferences.
• For analytics and ads control, use the official tools:
  • Google Analytics opt‑out: https://tools.google.com/dlpage/gaoptout?hl=gb
  • Google Ads settings: https://adssettings.google.com/?hl=gb
• Keep a copy of any voucher purchase confirmations for your records.
• If you need a Guest Pass, note that your data is shared with the coordinating body; direct queries to privacy@moko.bz.it.
• Exercise your GDPR rights any time by emailing info@cavallino.it.

Frequently asked questions (fast answers)

• What personal data do you collect via the website?
  We collect only what’s necessary for site functionality (e.g., analytics, maps, fonts), inquiries via contact forms, voucher purchases, and Guest Pass issuance.

• How is my payment information handled for vouchers?
  Credit card data is shared solely with the payment provider for processing and with our tax accountant to meet legal tax obligations.

• Do you use cookies for advertising?
  Yes, for remarketing campaigns. You can disable these cookies at Google’s Ads Settings page.

• Is my connection secure when I submit forms?
  Yes. Personal data on our website is protected with SSL encryption. Check the padlock icon in your browser to verify.

• Where is my data processed?
  Mainly within EU/EEC working structures. Any transfer outside the EU/EEC requires your approval and GDPR‑compliant safeguards.

• How long do you keep my data?
  Only as long as necessary for the stated purpose (e.g., to answer inquiries, meet legal obligations, or handle disputes within limitation periods).

Conclusion

Your trust matters. Hotel Cavallino d’Oro privacy practices are designed to be transparent, GDPR‑compliant, and practical—so you can focus on enjoying your time in the Dolomites. If you have any questions or wish to exercise your rights, contact us at info@cavallino.it or +39 0471 706337. Ready to plan your visit? Start with our Rooms, explore Activities, view the Gallery, or send us a Request.