Starting from May 25, 2018, Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the “GDPR Regulation”, has become applicable.

1. Definitions:

• Controller = The controller responsible for the processing of personal data under the GDPR Regulation is ROMANTIC VENICE, e-mail: reservations@romantic-venice.com
• Data Subject = A natural person who is identified or identifiable (who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person). The data subject may be a service applicant offered by the Controller, as well as any other natural person whose personal data is transmitted to the Controller (e.g., a client or potential client, a candidate for a job opening, a user of the Controller’s website, etc.).
• Categories of processed data = Personal data (first name, last name, date of birth, address, phone number, e-mail address, etc.) is processed by us only if you enter such data in a field on the website or send it to us via e-mail.
• Processing of personal data = means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

2. Purpose of personal data processing:
3. Website access:

Each time a user accesses a page from our offering and each time a file is opened, access data is saved by us and partially by third parties in the form of protocol files. Each data set includes: the web page from which you accessed our page, your IP address, date and time of access, the client’s request, the http response code, the amount of data transferred, information about the browser and operating system you use.

1. Geolocation

Through geolocation using the IP address, it is technically possible to estimate the location of the internet user.

Certain traffic data (such as IP addresses or other identifiers of the devices you use to access our site) may, under certain circumstances, be considered personal data, and we will treat them as such.

1. Making an online reservation:

By completing the data fields available on the site for the purpose of using the services offered by romantic-venice.com.

3. Legal Basis

It represents the legitimate interest of the Controller to prevent online fraud and ensure the general functionality of the website, the visitor’s ability to benefit from the services offered by romantic-venice.com, communication with the client for the provision of services, and the data subject’s consent, where applicable.

1. Data Subject’s Rights Regarding the Processing of Personal Data
2. Right to information and access to personal data: the right to obtain confirmation as to whether or not personal data concerning you is being processed, and, if so, access to that personal data.
3. Right to rectification: the right to request and obtain from the Controller, without undue delay, the rectification of inaccurate personal data concerning you and/or to have incomplete personal data completed. Please note that if you have an online account, these changes can be made directly in the account data editing section.
4. Right to erasure (“right to be forgotten”): the right to obtain the erasure of personal data concerning you, without undue delay, where certain grounds mentioned in the GDPR apply.
5. Right to restriction of processing: the right to obtain restriction of processing in certain circumstances.
6. Right to data portability: the right to receive the personal data concerning you and to transmit it to another controller.
7. Right to object: the right to object at any time to the processing of your personal data, under the conditions set out in the GDPR.
8. Right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
9. Right to lodge a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP) if you believe your data has not been processed in accordance with legal provisions.
10. Exercising Your Rights

To exercise the above-mentioned rights, please send a written, dated, and signed request to the following e-mail address: reservations@romantic-venice.com.

Within no more than one month from the date of receipt of your request, you will be provided with information regarding the actions taken or, where applicable, the reasons why the requested measures could not be taken.

To respond to a personal data access request, we will take all reasonable steps to verify the identity of the data subject.

According to the GDPR, the above response time may be extended by up to two additional months, where necessary, taking into account the complexity and number of requests. You will be informed accordingly if such an extension is required.

6. Transfer of Personal Data to Public Institutions, Courts of Law, and Authorities Competent to Investigate Criminal Offenses

In special cases, when required by law, the Controller may provide competent institutions with information regarding personal data.

7. GOOGLE ADWORDS/ANALYTICS Web Analysis Service

Our website uses the web analysis service “Google Adwords/Analytics” provided by Google Inc., for statistical purposes.

This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”), which in turn uses cookies. The information generated by the cookie about your use of the website will be transmitted to and stored by Google on servers in the United States.

If IP anonymization is activated, your IP address will be truncated within the territory of the Member States of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. IP anonymization is enabled for this website.

Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity for website operators, and to provide other services related to website activity and internet usage.

The IP address transmitted by your browser will not be associated with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser; however, in this case, you may not be able to use the full functionality of the website.

You can also opt out of future tracking by Google Analytics by downloading and installing the Google Analytics Opt-out Browser Add-on for your browser: https://tools.google.com/dlpage/gaoptout?hl=en.

Additional information is available at: Google Analytics Terms of Service and Google Analytics Privacy Policy.

8. Legal Basis

Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation – GDPR) (available at http://dataprotection.ro/?page=Regulamentul_nr_679_2016).

Top management is committed to ensuring that this privacy policy is respected by all employees through the implementation of specific internal procedures/rules regarding the protection of personal data, in accordance with the legal basis for processing.

Document last updated on 24.07.2025.