Grand Hotel Miramare *****
Experience menu thumbnail

The Grand Miramare
Experience

Explore

Book your stay

Book on this website for exclusive rates, 5% to 10% discount, WIFI included, complimentary minibar.

Check In - Check Out Arrival - Departure Check-in Check-out
Clear dates
Guests 0 Adults , 0 Children
Add room

Book now

Advantages for direct website reservations

- Exclusive rates, available only on our website
- From 5% to 10% discount on the best available rates
(based on the period requested)
- WIFI included
- Complimentary minibar (non alcoholic drinks)

Privacy Notice

pursuant to Article 13 of EU Regulation 2016/679

Dear User,
Grand Hotel Miramare S.p.A. (hereinafter, the “Data Controller”) hereby provides the information pursuant to Article 13 of EU Regulation 2016/679 (GDPR) regarding the processing of the personal data you provided through the “information request” email.

Data Controller
The Data Controller is Grand Hotel Miramare S.p.A., VAT No. 00165480997, with registered office in Santa Margherita Ligure (GE), postcode 16038, Via Milite Ignoto 30, in the person of its pro tempore legal representative.

Data Protection Officer Contact Details
The Data Protection Officer (DPO) can be contacted at [email protected] or by ordinary mail at Grand Hotel Miramare S.p.A., Santa Margherita Ligure (GE), Via Milite Ignoto 30, postcode 16038, for the attention of the DPO.

Categories of Data Processed
The Data Controller will process various categories of your personal data, including, by way of example and not limitation:

  • identification data (first name and surname);
  • contact details (email address);
  • the subject matter of your request.

Purpose of Processing
The personal data you provided when sending the “information request” email, and subsequently acquired during the handling of your request, will be processed by the Data Controller, including by means of IT and electronic tools, for the purpose of responding to your request for information.

Legal Basis for Processing
The legal basis that makes the processing lawful for the above purpose is the Data Controller’s legitimate interest in providing the information you requested, balanced against your interest in receiving it, since you contacted the Data Controller for that purpose.

Consequences of Failure to Provide Personal Data
Failure to provide your personal data will make it impossible for the Data Controller to respond to your request for information.

Retention Period for Personal Data
Your personal data processed for the above purpose will be retained for the period necessary to handle your request for information.

Recipients of the Data
The company entrusted with assistance and maintenance of the Data Controller’s IT systems, appointed by the Data Controller as processor pursuant to Article 28 of EU Regulation 2016/679, may have access to your personal data, limited to this purpose.
The complete list of appointed processors, which is by nature subject to change, is available in an always updated version upon request to the Data Controller by writing to [email protected] or by ordinary mail to Grand Hotel Miramare S.p.A., Santa Margherita Ligure (GE), Via Milite Ignoto 30, postcode 16038.
Your personal data may also be disclosed to other third parties where necessary for the protection of the Data Controller’s rights (e.g. lawyers, consultants, judicial authorities).
The Data Controller’s employees, designated as persons authorized to process data, may also access your personal data where required by their duties. Each authorized person is specifically identified, authorized and trained, and acts on the basis of specific instructions provided by the Data Controller regarding the purposes and methods of processing and the security measures to be adopted to protect personal data.

Data Subject Rights
The Data Controller informs you that, within the limits set by Regulation 2016/679, you have the right to:

  • obtain data and information about the processing, in particular in relation to the categories of personal data processed, the purposes for which the personal data are processed, the retention period and the parties to whom the data are disclosed (the so-called right of access);
  • obtain the rectification or completion of inaccurate personal data concerning you (the so-called right to rectification);
  • obtain the erasure of personal data concerning you in the following cases: (i) the personal data are no longer necessary for the purposes for which they were collected; (ii) you have withdrawn your consent to the processing of personal data, where such data are processed on the basis of that consent; (iii) you have objected to the processing of personal data concerning you where such data are not processed for a legitimate interest of the Data Controller; (iv) the processing of personal data is not compliant with the law. However, the retention of your personal data by the Data Controller is lawful where necessary to enable it to comply with a legal obligation or to establish, exercise or defend a right in court (the so-called right to erasure);
  • obtain the restriction of processing so that personal data concerning you are only stored and no other use is made of them in the following cases: (i) you contest the accuracy of the personal data, for the period necessary to allow the Data Controller to verify the accuracy of such personal data; (ii) the processing of personal data is unlawful and you nevertheless oppose the erasure of the personal data by the Data Controller; (iii) the personal data are necessary for the establishment, exercise or defence of a right in court; (iv) you have objected to the processing and are awaiting verification as to whether the legitimate grounds of the Data Controller override your own (the so-called right to restriction);
  • object at any time to the processing of data (the so-called right to object);
  • receive the personal data concerning you in a commonly used, machine-readable and interoperable format, where such data are processed on the basis of a contract or your consent, and/or request the transmission of such data to another data controller, where feasible (the so-called right to data portability);
  • not be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
    The above rights may be exercised by sending a request to the dedicated email address [email protected] or by writing by post to Grand Hotel Miramare S.p.A., Santa Margherita Ligure (GE), Via Milite Ignoto 30, postcode 16038.

Right to Lodge a Complaint
If you believe that the processing of your personal data carried out by the Data Controller is in breach of EU Regulation 2016/679, you have the right to lodge a complaint with the Italian Data Protection Authority, as provided for by Article 77 of EU Regulation 2016/679 (by email at [email protected], or by post to the Italian Data Protection Authority, based in Rome, Italy, Piazza Venezia 11 Scala B, postcode 00187), or to bring proceedings before the competent courts, as provided for by Article 79 of EU Regulation 2016/679.


The Data Controller 
Grand Hotel Miramare S.p.A.