![LOGO 2025 BLC - Copia [Recuperato]-12.png](https://static.wixstatic.com/media/19264e_37bb6e43f8d74ca3914a5bc409acefcd~mv2.png/v1/fill/w_158,h_75,al_c,q_85,usm_0.66_1.00_0.01,enc_avif,quality_auto/LOGO%202025%20BLC%20-%20Copia%20%5BRecuperato%5D-12.png)
PRIVACY POLICY
​
Last updated: 9/12/2025
​
Personal Data Processing Notice pursuant to EU Regulation No. 679/2016 (GDPR – General Data Protection Regulation) and subsequent applicable and implementing legislation, intended to describe the methods for managing the website www.borgolacaccia.it in relation to the processing of personal data of users and visitors.
This notice does not apply to other websites that may be accessed through links on the Data Controller’s website. The Data Controller cannot be held responsible in any way for third-party websites, over which it has no control and whose content it cannot verify. Users are therefore responsible for reviewing the policies of each blog, social network, or website they visit. In particular, the Data Controller has no control over the data collection, processing, and privacy practices of third-party websites.
The hosting service is provided by WIX.COM, which hosts this website.
This notice is addressed to all Users/Data Subjects who visit and interact with this website owned by ENO CACCIA – Social Cooperative, Agricultural Social Enterprise (ONLUS), Loc. Caccia 1, 25010 Pozzolengo (BS), Italy, VAT no. 03065590980, which will process the personal data provided by the User/Data Subject in compliance with EU Regulation 679/2016 (GDPR) and applicable data protection laws.
​
1. Data Controller
The Data Controller pursuant to Articles 4 and 24 of EU Regulation 2016/679 is Mr. Andrea Bonomelli, Tax Code BNMNDR89M29C312W, born in Castiglione delle Stiviere on 29 August 1989 and residing in Bedizzole (BS), Via Monteroseo no. 17, legal representative of ENO CACCIA – Social Cooperative, Agricultural Social Enterprise (ONLUS), Loc. Caccia 1, 25010 Pozzolengo (BS), Italy, VAT no. 03065590980, contactable at the certified email address (PEC) enocaccia@legalmail.it.
Processing operations will be carried out by the Data Controller and by any Data Processors appointed, in compliance with applicable legislation.
​
2. Types of data collected
Data provided voluntarily
The personal data collected through the website www.borgolacaccia.it
include: Identification and contact data (first name, last name, email address, any phone number) Content voluntarily communicated
Browsing data (IP address, browser type, technical data via cookies – see Cookie Policy) With the user’s consent, the website uses third-party tracking tools (such as Meta Pixel and/or Google tags) for analysis, remarketing, and measurement of advertising campaigns.
Such data are collected in connection with:
Purchase of products and services via the website (e-commerce)
Booking of events, activities, and experiences
Communications sent via email or telephone as part of customer support
Registrations and bookings via forms or modules
​
3. Purposes of processing
Personal data are processed for the following purposes:
Website navigation and proper functioning
Management of information requests sent via email
Sending informational communications
Management of purchases, orders, and payments
Management of bookings for events, activities, and experiences
Technical monitoring of website operation
Protection of the Data Controller’s rights
Compliance with legal obligations related to administrative, fiscal, and accounting activities
Data collected through pixels and similar tools may be used for remarketing activities, ad personalization, and performance measurement of advertising campaigns carried out through platforms such as Meta and Google.
​
4. Legal basis
The legal basis for data processing is one or more of the following:
The User has given consent for one or more specific purposes;
Processing is necessary for the performance of a contract with the User and/or pre-contractual measures, or to respond to requests to establish or perform business relationships;
Processing is necessary to comply with a legal obligation to which the Data Controller is subject;
Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller;
Processing is necessary for the pursuit of the legitimate interests of the Data Controller or third parties.
​
5. Methods and place of data processing
Data are processed using IT and telematic tools, lawfully, fairly, and transparently, adopting appropriate technical and organizational measures to ensure data security, confidentiality, and integrity.
Data are processed at the Data Controller’s operational offices and at any other location where the parties involved in processing are located.
​
6. Data recipients
Data may be shared with:
Technical service providers (e.g. hosting, maintenance services, email management)
Affiliated, subsidiary, or parent companies, consultants, or professionals appointed for the installation, maintenance, updating, and overall management of the Data Controller’s hardware and software, including cloud computing service providers
Public authorities or other entities entitled to access the data by law or administrative measures
Public and/or private entities, natural and/or legal persons (legal, administrative, and tax advisory firms), where disclosure is necessary or functional to comply with legal obligations or for the establishment, exercise, or defense of a right
​
7. Transfer abroad
Where necessary, data may be transferred to non-EU countries only to entities that ensure an adequate level of protection (e.g. through standard contractual clauses approved by the European Commission).
Data related to website navigation and interactions may be shared with third-party providers such as Meta Platforms Inc. and Google. Such transfers may involve processing outside the European Economic Area (e.g. the United States).
​
8. Data retention period
Personal data will be retained and stored for the time strictly necessary to achieve the purposes for which they are processed and, in any case, for a maximum of 1 year, except where longer retention is required by law (e.g. for tax purposes, up to 10 years).
​
9. Rights of the data subject and how to exercise them
At any time, the data subject has the right to:
Access personal data (Art. 15 GDPR)
Rectification of data (Art. 16 GDPR)
Erasure of data (Art. 17 GDPR)
Restriction of processing (Art. 18 GDPR)
Obtain notification of updates, rectifications, and/or integrations of personal data communicated to recipients (notification obligation – Art. 19 GDPR)
Data portability, i.e. the right to receive data in a structured, commonly used, and machine-readable format and transmit them to another controller without hindrance (Art. 20 GDPR)
Object to processing (Art. 21 GDPR)
Not be subject to a decision based solely on automated processing, including profiling, producing legal effects (Art. 22 GDPR)
Withdraw consent at any time (Art. 7(3) GDPR)
These rights may be exercised by written request sent by registered mail with return receipt to the Data Controller’s registered office, as indicated in this notice under Article 1, or by certified email (PEC) to enocaccia@legalmail.it.
If the above rights are violated, a complaint may be lodged with the Italian Data Protection Authority (www.garanteprivacy.it).
​
10. Changes to this notice
We reserve the right to update or amend this notice at any time. The User may withdraw consent to the processing of personal data at any time.
Any changes will be published on this page, indicating the date of the last update.
​