Privacy Policy

OspitaTech S.r.l. is committed to protecting the privacy of visitors to our site and users of our services. This policy outlines how we collect, use, disclose, and protect the personal information we obtain through our online platform and related services.

Data Controller

The data controller responsible for the processing of your personal information is:
OspitaTech S.r.l.
14 Via Ghibellina, Florence, Tuscany, 50122, Italy

Information We Collect

We collect information to operate our online platform and provide our services. The types of information we collect depend on how you interact with us and the services you use.

• Information you provide directly: This includes information you provide when you register for an account, use our services, request support, fill out forms, or communicate with us. This may include business contact details (such as name, job title, company name, business address, business email, and business phone number), account login credentials, and information related to your hospitality business operations necessary to use our software.
• Information collected automatically: When you visit our site or use our services, we may automatically collect certain information about your device and usage. This can include IP addresses, browser type, operating system, referring URLs, pages viewed, access times, and usage data related to our platform features. This information is collected through cookies and similar tracking technologies.
• Information from other sources: We may obtain information from third-party sources, such as business partners, public databases, or analytics providers, to supplement the information we collect directly.

How We Use Your Information

We use the information we collect for various purposes, including:

• To provide, operate, and maintain our services, including our Cloud Hotel Management Software, Channel Management Solutions, Direct Booking Engine Development, Online Reservation Systems, and Revenue Management Tools.
• To process transactions and manage your account.
• To communicate with you, respond to inquiries, and provide customer support.
• To send administrative information, such as service updates, security alerts, and policy changes.
• To send marketing and promotional communications that may be of interest to you, in accordance with your preferences.
• To improve and optimize our services, develop new features, and understand how our platform is used.
• To monitor and analyze trends, usage, and activities in connection with our services.
• To detect, prevent, and address technical issues, fraud, and security concerns.
• To comply with legal obligations and enforce our terms, conditions, and policies.
• To perform IT consulting services as requested.

Legal Basis for Processing

Our legal basis for collecting and using your personal information will depend on the specific context in which we collect it. We will normally collect personal information from you only:

• Where we need the personal information to perform a contract with you (e.g., to provide the services you have requested).
• Where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms (e.g., for improving our services, marketing, or detecting illegal activities).
• Where we have your consent to do so (e.g., for certain marketing activities).
• Where we have a legal obligation to collect personal information from you.

Data Sharing and Disclosure

We may share your personal information with third parties in the following circumstances:

• Service Providers: We may share information with third-party vendors, service providers, contractors, or agents who perform services for us or on our behalf (e.g., hosting providers, analytics providers, customer support services) to carry out their work.
• Clients: If you are an end-user making a reservation or inquiry through a system we provide to a hotel or other hospitality business (our client), your information will be shared with that client to process your booking or request. Our clients are independent data controllers responsible for their own processing of such data.
• Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
• Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court order or government request).
• Protection of Rights: We may disclose your information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person, and as evidence in litigation in which we are involved.
• With Your Consent: We may disclose your personal information for any other purpose with your consent.

Data Retention

We retain personal information for as long as necessary to provide the services you have requested and for legitimate and essential business purposes, such as maintaining the performance of our services, making data-driven business decisions about new features, complying with our legal obligations, and resolving disputes.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it, or, if this is not possible (e.g., because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

Data Security

We implement technical and organizational measures designed to protect the security of your personal information. While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse.

Your Data Protection Rights

In accordance with applicable data protection laws, including the GDPR, you have certain rights regarding your personal information. These rights may include:

• The right to access: You have the right to request copies of your personal information.
• The right to rectification: You have the right to request that we correct any information you believe is inaccurate or incomplete.
• The right to erasure: You have the right to request that we erase your personal information under certain conditions.
• The right to restrict processing: You have the right to request that we restrict the processing of your personal information under certain conditions.
• The right to object to processing: You have the right to object to our processing of your personal information under certain conditions.
• The right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• The right to withdraw consent: Where we have processed your data based on your consent, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
• The right to lodge a complaint: You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your habitual residence, place of work, or where an alleged infringement occurred.

To exercise any of these rights, please contact us using the physical address provided below.

Third-Party Links

Our site or services may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices or content of these third-party sites. We encourage you to review the privacy policies of any third-party sites you visit.

Changes to This Privacy Policy

We may update this privacy policy from time to time. The updated version will be indicated by a revised policy. We encourage you to review this privacy policy frequently to be informed of how we are protecting your information.

Contact Us

If you have questions or comments about this privacy policy, or if you wish to exercise your data protection rights, please contact us at:

OspitaTech S.r.l.
14 Via Ghibellina, Florence, Tuscany, 50122, Italy