PRIVACY & COOKIE POLICY

Last updated: May 2026

Welcome to the website of Piazza del Duomo. Your privacy is fundamental to us and we are committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This document explains how we collect, use, communicate, and safeguard your information when you visit our website or use our services.

PART 1: PRIVACY NOTICE

Data Controller

The Data Controller is:

• Company Name Piazza del Duomo
• Address Piazza Di San Giovanni in Laterano 26, 00184 Rome RM, Italy
• Telephone +39 392 951 3889
• Email: segreteria.basilicasquare@gmail.com
• VAT registration number 08061631001
• CIN code: IT058091B4TISS56KN

2. Types of Data Collected and Purposes

We process different types of personal data depending on how you interact with our website:

• Contact Form When you fill in the contact form, we collect your Name, Phone Number, Email Address and Message text.
  • Purpose: To answer your requests for information or assistance.
  • Legal Basis Performance of pre-contractual measures or explicit consent of the data subject (Art. 6(1)(b) and (a) of the GDPR).
• Widget / Link di reindirizzamento al Booking Engine di Smartness: Our site includes a date selection widget and links that redirect to the third-party platform Smartness Booking Engine to complete the booking.
  • Purpose: Facilitate booking your stay at our property.
  • Legal Basis Performance of a contract to which the data subject is party (Article 6(1)(b) of the GDPR).
  • Note: Once redirected to Smartness's website, the specific privacy policy of that provider will apply.
• Navigation and Technical Data IP addresses, browser type, and interaction data collected automatically for the correct functioning of the site.
  • Purpose: Ensure the security, stability, and correct display of the website.
  • Legal Basis Legitimate interest of the Data Controller (Art. 6(1)(f) GDPR).

3. Data Recipients and Hosting

Your personal data will not be sold or disclosed to third parties for marketing purposes. It may only be shared with authorised service providers (Data Processors) acting on our behalf:

• Hosting Provider Our website is hosted by Hostinger. The data is stored on secure servers located in France (European Union), ensuring full compliance with the EU's data protection standards.
• IT and Web Maintenance: Authorised technical personnel managing our WordPress site.
• Competent Authorities Only in cases where required by Italian or European law.

4. Transfer of Data Outside SACE (EEA)

Some third-party services integrated into this website (e.g. Google services) are provided by companies based outside the European Economic Area (EEA), mainly in the United States. Transfers to Google LLC are protected by the’EU-U.S. Data Privacy Framework o of the Standard Contractual Clauses (SCCs) approved by the European Commission, which ensure an adequate level of data protection.

5. Data Retention Period

• Contact Form Details: Retained for the time strictly necessary to manage and respond to your request, and in any case no longer than 12 months since the last contact, unless a contractual relationship is established.
• Booking Details: Managed according to the Smartness policy and retained for 10 years in compliance with fiscal and administrative obligations provided for by Italian law.
• Technical Data Automatically deleted at the end of the browsing session or within a few days, unless required for the investigation of cybercrimes.

6. Subject Rights (GDPR)

As data subjects, you have the following rights under GDPR:

• Article 15 GDPR (Right of Access): To know what personal data we are processing.
• Article 16 GDPR (Right to Rectification): Correct inaccurate or incomplete data.
• Art. 17 GDPR (Right to Erasure / “Right to be Forgotten”): Request the deletion of your data.
• Article 18 GDPR (Right to Restriction of Processing): To request to limit processing in the presence of specific hypotheses.
• Article 20 GDPR (Right to Data Portability): Receive data in a structured and machine-readable format.
• Art. 21 GDPR (Right to Object) Object to processing based on legitimate interest.
• Right to Withdraw Consent Withdraw consent at any time for treatments based on it, without prejudice to the lawfulness of the previous treatment.

To exercise these rights, you can send a written request to: segreteria.basilicasquare@gmail.com.

You also have the right to lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it).

PART 2: COOKIE POLICY

1. What are Cookies?

Cookies are small text files that websites visited by users send to their terminals (computers or mobile devices), where they are stored to be then retransmitted to the same websites on the next visit. They are used to make websites work efficiently, improve their performance and provide information to the website owners.

2. Consent and Cookie Management (Complianz)

This website uses the plugin Complianz Cookie Banner to manage cookie preferences and consents. Upon your first visit, a banner will appear allowing you to accept or block specific categories of non-essential cookies. You may change your preferences or withdraw your consent at any time by clicking on the privacy widget/icon, which is always visible on the page.

3. Cookies and Third-Party Services Used on This Site

A. Technical and Strictly Necessary Cookies (Always Active)

These cookies are essential for the proper functioning of the site and cannot be deactivated in our systems.

• Complianz: Used to store your cookie consent preferences. Does not track personal information.
• WordPress Session Cookies: Used to manage the user's session and language settings.

B. Functional and Third-Party Integration Cookies

These services improve the website's user experience, but they may track certain data (such as the IP address) when loaded.

• Google Fonts: We use Google Fonts to display typefaces consistently. Wherever possible, fonts are loaded locally from our Hostinger server in the EU to avoid tracking. However, should external calls occur, Google Ireland Limited may process the user's IP address to provide the font file.
• Google Maps: We have integrated a Google Maps map to help you locate Piazza del Duomo A visit to Rome. Google Maps may release cookies and process the user's location data and IP address if you interact with the map.
  • Supplier Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).
  • Privacy Policy Google Privacy Policy
• Widget Smartness Booking Engine The link and date selection widget connect the user to the external booking platform managed by Smartness. Interaction with this element may activate technical or analytical cookies from the third-party provider necessary to manage the transition to the booking process.

4. How to Disable Cookies via Browser

Besides using the Complianz banner, you can configure your internet browser to limit, block or delete cookies. Please note that disabling technical cookies may affect the proper use of the site.

• Cookie settings in Google Chrome
• Cookie settings in Mozilla Firefox
• Cookie settings in Safari (Apple)
• Cookie settings in Microsoft Edge