Information pursuant to Art. 13 of the Regulation (EU) 2016/679 of the European Parliament and of the Council ("GDPR")

Dear User,

the following explains how we process personal data collected automatically or provided by you through browsing or using the website [link ] (hereinafter, the "Website"). 

DATA CONTROLLER

The Data Controller is Dotstay S.r.l., in the person of its legal representative, with registered office at Via Dell'Annunciata, 23/4, Milan, Italy (hereinafter "Dotstay," "Company," or "Data Controller").

1. TYPE OF DATA PROCESSED

In order for you to be able to use the Web Site and its services, including the possibility of booking a call with Dotstay, creating your own profile, booking the property search service, making payment for the service offered, requesting the property search service for employees of your company, renting an apartment (hereinafter, the "Services"), the Data Controller needs to know and process some of your personal data. 

Data disclosed voluntarily by the user 

To enable you to book a call with Dotstay, the Company needs to collect. 

Secondly, in order to allow you to create your own profile, the Company needs to collect your first name, last name, email address, phone number, occupation, and how you learned about Dotstay.

Thirdly, to enable you to book the property search service, the following will be required ;

In addition, to make payment for the service offered, Dotstay needs to collect first and last name, email, social security number and payment information.

Besides the above, in order to enable you to apply for a property search service for employees of a company, the Data Controller needs to process the first and last name, email of the contact person.

Finally, in order to allow you to rent an apartment, the Data Controller needs to process first name, last name, email and phone number.

The optional, explicit and voluntary sending of email messages involves the acquisition of your personal data, your email address, as well as any other data included in the message or forms you send. 

Browsing Data

The computer systems and software procedures used to operate the Website acquire, in the course of their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. 

This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) notation of the resources requested, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and computer environment. 

This data, which is necessary for the use of the Website, is processed for the sole purpose of obtaining statistical information on the use of the Services (most visited pages, number of visitors per hour or day, geographical areas of origin, etc.) and to control the proper functioning of the Services offered. 

Browsing data does not persist for a maximum of thirty-five days and is deleted immediately after its aggregation, subject to the possible need for the investigation of crimes by judicial authorities. 

Cookie Policy

The Website uses the following cookie types: 

Technical Cookies

Technical and session cookies are used, i.e., small text files containing a certain amount of information exchanged between your terminal or browser and the Website, which allow it to function properly and be used. 

First- and third-party analytics cookies

This Web Site uses first- and third-party analytical cookies. Analytical cookies are used to collect information on the use of the Web Site, in aggregate form, in particular on the number of users and how they visit the site, also providing, anonymous statistical analysis in order to improve the use of the Website and make the content more interesting and relevant to users.

To view links to the third-party privacy policies, disable all or some of the mentioned cookies, please refer to the following link]. 

Profile cookies Cookie di profilazione 

This Website uses first- and third-party profiling cookies. These cookies are not essential but help to personalise and improve your experience on the Website. For example, they help us to know and remember your preferences and show you relevant and personalised advertisements. They also allow us to limit the number of times each ad is shown, measure the effectiveness of the ad campaign, remember your visit, and share the data collected with third parties such as advertisers.

Therefore, although eliminating these cookies will not affect the general usability of the Website, it may nevertheless result in a limitation of certain features.

To view links to these third-party privacy policies and to disable all or some of the aforementioned cookies, please refer to the following link.

Options concerning the use of website cookies via browser settings

The provision of all cookies can however be deactivated by adjusting your browser settings. It should be noted, however, that changing these settings could render the site unusable if you block cookies that are essential for the provision of our Services. In any case, each browser has different settings for deactivating cookies. Below you will find links to instructions for the most common browsers: Apple Safari, Google Chrome, Microsoft Internet Explorer, Mozilla Firefox, Opera.

2. PURPOSE, LEGAL BASIS OF DATA PROCESSING AND NATURE OF PROVISION OF DATA  Finalità, Base Giuridica del Trattamento e Natura del Conferimento

3. RETENTION PERIOD

Personal navigation data and data acquired through the Website use will not be retained for more than thirty-five days.    trentacinque giorni. 

With regard to the other personal data acquired, and since it is not possible to predetermine their retention period with precision, the Data Controller undertakes as of now to base their processing on the principles of adequacy, relevance and data minimisation, as required by the GDPR, checking the need for their retention annually. This is unless it is necessary to retain such data in order to comply with regulatory obligations, or to ascertain, exercise or defend a right in court.

4. TYPES OF PERSONAL DATA RECIPIENTS

The personal data processed will not be disclosed to third parties, but may nonetheless be communicated in accordance with the purposes of processing set out above to the following entities:

• those who can access the data by virtue of legal provisions laid down by the law of the European Union or by the law of the Member State to which the data controller is subject;
• subjects that carry out purposes auxiliary to the activities and services referred to in paragraph 3, i.e. companies that offer advertising, marketing and communication services, companies that offer IT infrastructures and IT assistance and consultancy services as well as the design and creation of software and websites, companies that offer services useful for customising and optimising our services, companies that offer data analysis and development services (including those relating to users' interactions with our services), service centres, companies or consultants appointed to provide further services to the Data Controller, within the limits of the purposes for which they were collected. 

In addition, your personal data may also be disclosed to our employees, provided that they are previously designated as persons acting under the authority of the Data Controller pursuant to Article 29 of the GDPR or as System Administrators.

5. TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES

The Data Controller may transfer your personal data to third countries outside the European Union, including the United States of America, for the purpose of processing payments through the Website. Such transfer is always subject to appropriate safeguards through the use of EU Standard Contractual Clauses. For more information on the rules for transferring data to countries outside the European Union, including the mechanisms on which we rely, you can consult the European Commission website here. To request a copy of those signed by Dotstay you can send an email to info@dotstay.com. 

6. ANY AUTOMATED DECISION-MAKING PROCESSES

The Data Controller does not intend to use automated decision-making processes, including profiling as referred to in Article 22(1) and (4) of the GDPR.

7. RIGHTS OF THE DATA SUBJECT

In relation to the processing of your personal data you, as the data subject, have the right to revoke your consent at any time and to obtain access to your personal data from the Company. You also have the right to ask the Company to correct or delete your personal data. In addition, you have the right to obtain the restriction of the processing of personal data concerning you, as well as the right to the transfer of such data.

Furthermore, you have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data carried out pursuant to Article 6(1)(e) or (f), including profiling on the basis of these provisions, as provided for in Article 21 of the GDPR.

Lastly, you have the right to refer the matter to a supervisory authority or take appropriate legal action if you believe that the processing concerning you is in breach of the GDPR.

To exercise any of your rights, you may contact the Data Controller, in the person of the legal representative, by sending a communication to the registered office at Via Dell'Annunciata, 23/4, Milan, or by sending an email to the address info@dotstay.com.