PRIVACY NOTICE PURSUANT TO ARTICLE 13 OF REGULATION (EU) 2016/679 (GDPR)
This information is provided pursuant to Article 13 of Regulation (EU) 2016/679 ("GDPR") to users who access and use the Save My Room digital platform, accessible at https://www.savemyroom.it.
The Save My Room website uses the user's geolocation to display the nearest accommodations, offering the option to create a personal account to improve the booking experience.
Last updated: November 1, 2025
1. Identity and contact details of the data controller
Data controller: Save My Room
Address: Via Capitano Fiorillo, Marina di Carrara, 54033
Email: info@savemyrooms.com
Telephone:
Data controller representative (if applicable): Bernadett Deac
2. Contact details of the Data Protection Officer (DPO)
[Insert contact details of the DPO, if appointed]
3. Purpose and legal basis of the processing
When a user accesses the portal, SaveMyRoom uses geolocation technologies to determine the user's current location. This allows it to show the nearest accommodations. Geolocation occurs only with the explicit consent provided via the device connected to the portal. The portal collects information about the user's interactions with SaveMyRoom, including log data, IP addresses, browser type, and pages visited. This data is used to improve the service and ensure the security of the platform.
A user's location is used to show nearby accommodations and to notify the accommodation of their location (for example, to notify them that they are 30 minutes away from the accommodation so they can prepare the room). Their location is not stored for other purposes. Browsing data is used to analyze the use of SaveMyRoom, improve our services, and prevent fraud. User profile information is used to remember their previous bookings and preferences, and to send you personalized offers for new bookings.
This data is retained only as long as the user decides to keep their personal account active. If they choose to delete their account, the data will be deleted within [maximum deletion time] business days. Booking data is used to analyze trends and improve our services. This data may include analysis of user nationality, booking device origin, number of people and rooms booked, and room category.
Users' personal data is processed for the following purposes:
• Allow registration and access to the Save My Room platform;
• Manage last-minute booking requests for accommodations/rooms;
• Fulfill contractual and pre-contractual obligations;
• Manage any requests for assistance or information;
• Comply with legal or regulatory obligations.
The legal basis for processing is:
• The performance of a contract to which the user is a party or the implementation of pre-contractual measures adopted at the user's request (Article 6, paragraph 1, letter b) GDPR);
• Compliance with legal obligations (Article 6, paragraph 1, letter c) GDPR);
• The user's consent, where required (Article 6, paragraph 1, letter a) GDPR);
• The data controller's legitimate interest, where applicable (Article 6, paragraph 1, letter f) GDPR).
4. Legitimate interests pursued by the data controller or third parties
If the processing is based on Article 6, paragraph 1, letter f) of the GDPR, the legitimate interests pursued are:
• Improvement of the services offered;
• Prevention of fraud and abuse in the use of the platform.
5. Recipients or categories of recipients of personal data
Personal data may be disclosed to:
• Providers of technical and IT services necessary for the operation of the platform;
• Partner accommodation providers for managing reservations;
• Consultants and professionals who support the data controller with legal, tax, and administrative obligations;
• Public authorities, where required by law.
6. Transfer of personal data to third countries or international organizations
Where applicable, personal data may be transferred to third countries or international organizations. In this case, the transfer will take place in compliance with the conditions set out in Articles 45, 46, 47, or 49 of the GDPR and appropriate safeguards will be implemented.
For further details on the safeguards adopted, please consult Article 13 of the GDPR:
Article 13 of the GDPR
7. Personal data retention period
Personal data will be retained for the time strictly necessary to achieve the purposes for which they were collected and, in any case, no longer than the terms established by current legislation. If it is not possible to determine the retention period in advance, objective criteria will be used to determine it (e.g., duration of the contractual relationship, legal obligations).
8. Rights of the data subject
The user, as a data subject, has the right to:
• Access their personal data;
• Obtain rectification or erasure of their data;
• Obtain restriction of processing;
• Object to processing;
• Request data portability.
To exercise these rights, please contact the Data Controller at the contact details above.
9. Right to withdraw consent
If the processing is based on consent (Article 6, paragraph 1, letter a) or Article 9, paragraph 2, letter a) GDPR), you have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
10. Right to lodge a complaint with a supervisory authority
You have the right to lodge a complaint with a supervisory authority, as provided for in Article 13, paragraph 2, letter d) GDPR.
For more information:
Article 13 GDPR
11. Mandatory provision of data and consequences of refusal
The provision of personal data may be mandatory by law, by contract, or necessary for the conclusion of a contract. Any refusal to provide the requested data may make it impossible to access the platform's services.
12. Existence of Automated Decision-Making and Profiling
The user will not be subject to automated decision-making, including profiling, that produces legal effects or similarly significantly affects him or her, except as may be specified below.
For further details:
Article 13 GDPR
13. Newsletter Subscription
The user can subscribe to the portal's newsletter when registering for their personal account. Subscription is optional and requires the user's explicit consent. The user may withdraw their consent and unsubscribe from the newsletter at any time through their account settings or by following the instructions contained in each newsletter email.
________________________________________
CONSENT
Please express your consent by checking the boxes below: ☐ I consent to the processing of my personal data for the purposes indicated in this policy.
☐ I DO NOT consent to the processing of my personal data for the purposes indicated in this policy.
________________________________________
Place: ____________________
Date: ____________________
Signature: ____________________
________________________________________
