Privacy & Cookies policy


As required by the art. 13 of Regulation (EU) 2016/679 (hereinafter „Regulation“), this web page (privacy policy) describes the methods of processing the personal data of users of this website of the company GEST HOTEL Srl c/o Resort Grande Baia (hereinafter „Resort Grande Baia“) accessed electronically at the address: https://www.grandebaia.com/ and is intended for those who use the web services of the Grande Baia Resort.
This information and the information reported here do not concern other sites, pages or online services that can be consulted by the user on the web but exclusively the website www.grandebaia.com.
Following navigation on this site, information collected relating to identified or identifiable persons may be processed.



The data controller is the Grande Baia Resort & Spa c/o GEST HOTEL, Loc . Mount Petrosu . 07052, San Teodoro (SS), VAT number. 01437500919 (E-mail: amministrazione@grandebaia.com, Tel.+39 0784 836900).



The Data Protection Officer (RPD/DPO) – Avv. Arrigo Delaria – contact – e-mail: privacy@grandebaia.com



The personal data indicated on this page are processed by the Data Controller for the execution of its pre-contractual and contractual obligations (e.g. reservations) and for legal obligations (e.g. invoicing), with regard to risks, regulations and guarantees. and rights in relation to processing and, also, to promote the awareness of data controllers regarding the obligations imposed on them by the European Regulation.



Browsing data
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes the IP addresses or domain names of the computers and terminals used by users, the addresses in URI/URL ( Uniform Resource Identifier /Locator) notation of the requested resources, the time of the request, the method used in submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment /user.
Such data, necessary to use the web services offered, which are also processed for the purpose of:
– Obtain statistical information on the use of services (most visited pages, number of visitors per time slot or day, geographical areas of origin, etc.);
– Check the correct functioning of the services offered.
Browsing data is not kept for more than seven days (except for any need to ascertain crimes by the judicial authority).

Data communicated by the user
The optional, explicit and voluntary sending of messages to Grande Baia’s contact addresses, private messages sent by users to company profiles/pages on social media (where this possibility is provided), as well as the insertion of data into the booking system of this site (name, surname and email ), involve the acquisition of the sender’s contact data, necessary to respond, as well as all the personal data included in the communications.

Cookies and other tracking systems
Cookies are not used for user profiling.
The only processing carried out concerns the production of statistics, with pseudonymized data , about navigation on this website.
The configuration adopted, in order to exclude processing of identifying data, collects the following information:
• The IP address, which is masked by clearing the last 2 bytes (xxx.xxx.0.0)
• The operating system used
• Your browser type
• The type of device (PC, smartphone, etc.)
Technical session cookies (non-persistent) are used, strictly limited to what is necessary for safe and efficient navigation of the sites.
Information regarding the processing of personal data carried out through the Social Media and booking platforms used by the Grande Baia Resort is available on the respective sites.
With regard to the processing of personal data carried out by the managers of the Social Media platforms (e.g. Facebook) used by the company, please refer to the information communicated with them through their respective privacy policies.
The Grande Baia Resort processes the personal data provided by its users through its web pages and social media platforms managed by the company, as part of its corporate purposes, exclusively to manage reservations and interactions with users (and -mails, telephone conversations, comments, public posts, etc.) always in compliance with current legislation.



Interested parties have the right to obtain from the company, in the cases provided for, access to their personal data and the rectification or cancellation of the same or the limitation of the processing that concerns them or to oppose the processing (articles 15 et seq. of the Regulation).
The specific request for access to personal data can be proposed to the company and must be presented by contacting the Data Protection Officer (DPO) via e-mail: privacy@grandebaia.com



Interested parties who believe that the processing of personal data relating to them carried out through this site occurs in violation of the provisions of the Regulation have the right to lodge a complaint with the company, as provided for by the Regulation itself, with a complaint to the Data Protection Guarantor personal data (https://www.garanteprivacy.it/diritti/come-agire-per-tutelare-i-tuoi-dati-personali/reclamo) or to appeal to the Judicial Authority.