Privacy

Privacy – Processing of Personal Data

Pursuant to Regulation (EU) 2016/679 (GDPR) and the Personal Data Protection Code (Legislative Decree 196/2003 and its subsequent amendments), this document describes the processing methods of personal data of users of the website https://keytosardinia.agency.

Data Controller

The Data Controller is RC QUADRO INVESTMENTS SRL, with its registered office at Via Capitano Bellini 5, 07100 Sassari (SS). For any inquiries or to exercise rights related to the processing of personal data, users may contact the Data Controller at the following details:

Types of Data Processed

The personal data collected by the site include:

  1. Browsing data: Automatically collected through cookies and similar technologies (e.g., IP addresses, usage data).
  2. Data provided voluntarily: Such as name, email, and other information provided via contact forms or comments.

Purpose of Data Processing

The collected data will be processed for the following purposes:

  1. Website management: To provide services and technical maintenance.
  2. Contractual obligations: To fulfill user requests.
  3. Statistical analysis: To monitor site usage and improve services.
  4. Sending communications (if applicable in the future): Newsletters or promotional communications, subject to user consent.

Legal Basis for Processing

Data processing is based on:

  1. User consent: When provided voluntarily through the website.
  2. Contractual necessity: To fulfill user requests.
  3. Legitimate interest: To ensure website security and improve services.
  4. Legal obligations: To comply with applicable regulations.

Data Retention

Personal data will be retained for as long as strictly necessary to achieve the purposes for which it was collected. Specifically:

  1. Contact and comment data: Retained until the user requests deletion.
  2. Data collected for statistical purposes: Processed in anonymous form and retained as required by analytics services.

Data Security

Key to Sardinia adopts technical and organizational measures to protect personal data, including periodic backups of collected data, to ensure the integrity and security of information.

User Rights

Under the GDPR, users have the following rights:

  1. Access to their personal data.
  2. Correction of inaccurate or incomplete data.
  3. Deletion of data (“right to be forgotten”).
  4. Restriction of processing, in cases provided by law.
  5. Data portability, where applicable.
  6. Objection to processing for legitimate reasons.

To exercise one or more of these rights, users may send a request to info@keytosardinia.agency. Additionally, users have the right to file a complaint with the Data Protection Authority.

Analytics Services

The website uses Google Analytics to collect anonymous browsing data and generate statistics on website usage. These data do not allow direct user identification and are processed in aggregate form to improve the services offered.
Users can disable Google Analytics via their browser settings or by visiting the Google Analytics Opt-out page.

Cookies

The website uses cookies to enhance the user experience and collect statistical data in anonymous form. Users can manage their cookie preferences directly through their browser settings. Below are links to cookie management instructions for major browsers:

  • Apple Safari
  • Google Chrome
  • Microsoft Edge
  • Mozilla Firefox

Embedded Content from Other Sites

Articles published on the site may include embedded content (such as videos or images) from other websites. These contents behave as if the user had visited the other site and may collect data about the user through cookies. We encourage users to consult the privacy policies of the respective sites.

Data Breach Management

Key to Sardinia adopts all necessary measures to protect personal data, but in the event of a data breach, the following procedures will be implemented:

  1. Identification and containment: Immediate measures will be taken to mitigate damage.
  2. Risk assessment: The severity of the breach will be evaluated to determine if notification is required.
  3. Notification to the Data Protection Authority: If the breach poses risks to users’ rights, it will be notified within 72 hours to the Data Protection Authority.
  4. User notification: If the breach poses a high risk to users, they will be promptly informed.
  5. Breach log: All breaches will be documented and managed in compliance with regulations.
Key to Sardinia Agency
Powered by  GDPR Cookie Compliance
Privacy Overview

Privacy Policy

Pursuant to Regulation (EU) 2016/679 (GDPR) and the Personal Data Protection Code (Legislative Decree 196/2003 and its subsequent amendments), this document describes the methods of processing personal data of users of the website https://www.keytosardinia.agency/.

Data Controller
The data controller is RCquadro Investments SRL, with its registered office at Via Capitano Bellini 5, 07100 Sassari (SS). For any requests or to exercise rights related to personal data processing, users can contact the data controller at the following contact details:
Phone: 079 4812289
Email: info@keytosardinia.agency
VAT Number: 02394980904

Types of Data Processed
The personal data collected include:

  • Browsing data: automatically collected through cookies and similar technologies.
  • Voluntarily provided data: such as name, email, and other information sent via contact forms or comments.

Purpose of Data Processing
The collected data will be processed for the following purposes:

  • Website management: to provide services requested by users and for technical maintenance of the website.
  • Fulfillment of contractual obligations: to ensure the execution of requests made through the website.
  • Statistical analysis: to monitor website traffic anonymously and improve the user experience.
  • Sending communications (if applicable): with consent, the sending of newsletters or other promotional communications.

Legal Basis for Processing
The processing of personal data is based on:

  • User consent, freely provided when submitting data through the website.
  • Contractual necessity, to fulfill user requests.
  • Legitimate interest, to ensure the website’s security and improve the services offered.
  • Legal obligations, to comply with applicable laws.

Data Retention
Personal data will be retained for the time strictly necessary to achieve the purposes for which they were collected. For example:

  • Contact data and comments are retained until a deletion request is made.
  • Data for statistical purposes is processed anonymously.

User Rights
Users have the right to:

  • Access their personal data.
  • Request the correction of inaccurate data.
  • Request the deletion of personal data ("right to be forgotten").
  • Restrict processing in cases provided for by the GDPR.
  • Request the portability of their data.
  • Object to data processing for legitimate reasons.

To exercise these rights, users can send a request via email to info@keytosardinia.agency. Users can also file a complaint with the Data Protection Authority.

Cookies
The site uses cookies to enhance the user experience and to collect anonymous statistical data. Users can manage or disable cookies through their browser settings. Here are the links to manage cookies on major browsers:

  • Apple Safari
  • Google Chrome
  • Microsoft Edge
  • Mozilla Firefox

Analytics Services
The site uses Google Analytics and Histats to collect anonymous browsing data and generate site usage statistics. This data is processed in an aggregated and anonymous form and does not allow user identification.
Users can disable Google Analytics cookies using their browser settings or by visiting Google Analytics Opt-out.

Embedded Content from Other Sites
Articles on this site may include embedded content (e.g., videos, images, articles) from other websites. These contents behave as if the user had visited the third-party website, and such sites may collect data, use cookies, and monitor interactions with the embedded content.

Data Breach Management
In the event of a personal data breach, the following procedures will be adopted:

  • Identification and containment of the breach.
  • Notification to the Data Protection Authority within 72 hours if the breach poses a high risk to users' rights.
  • Notification to affected users if the breach presents a high risk to them.
  • Documentation of breaches to ensure GDPR compliance.

Where Your Data is Sent
User comments may be checked through automatic spam detection services. Data will not be transferred to third parties beyond what is necessary for this purpose.