Privacy Policy

By visiting, you acknowledge and agree to the procedures described in this Privacy Policy.

This page describes how the site is managed with regard to the processing of personal data of users who consult it.
This information is provided pursuant to Articles 13 and 14 of the GDPR 2016/679 and the national legislation in force, to those who interact with the web services of RISTORANTE IL CASTELLO SRL, accessible electronically from the address:

corresponding to the home page of the official website of RISTORANTE IL CASTELLO SRL.
The information is provided only for the site of RISTORANTE IL CASTELLO SRL and its subdomains (e.g.:, and not also for other external websites consulted by the user using any links on the site.
The disclosure is also inspired by Recommendation no. 2/2001 that the European data protection authorities, meeting in the Group established by Art. 29 of Directive No. 95/46/EC, adopted on May 17, 2001 to identify certain minimum requirements for the collection of personal data online, and, in particular, the manner, timing and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purposes of the connection.

Data controller

The Data Controller is RISTORANTE IL CASTELLO SRL, located at Via Bertinoro di Monticino 191 – 47522 Cesena (FC).

Type of data processed and purpose of processing

Navigation data

The computer systems and software procedures used to operate this website acquire, in the course of their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected in order to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment.
This data is used for the sole purpose of obtaining anonymous statistical information about the use of the site and to check its correct operation and is deleted after processing. The data could be used to ascertain liability in case of hypothetical computer crimes against the site.

Data voluntarily provided by the user

The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site, including through the completion of specific forms, involves the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message.

The data you freely provide may be processed for the following purposes:

  • The processing of inquiries about services provided and products/solutions marketed directly by RISTORANTE IL CASTELLO SRL (art. 6 para. 1 lett. (a) and (b) GDPR 2016/679);
  • The processing of reports of any kind, also sent through Contact Form (Art. 6 par. 1 let. a) GDPR 2016/679);
  • The management of E-recruitment and/or other forms of professional collaboration (Art. 6 par. 1 let. b) GDPR 2016/679);
  • The sending of communications of an informative, commercial and/or promotional nature, in full compliance with the GDPR 2016/679 and the national legislation in force (art. 130 D.Lgs 196/2003 ss. mm. ii.) as well as the Provision of the Guarantor of 04/07/2013 “Guidelines on promotional activities and contrast to spam” (art. 6 par. 1 let. a) GDPR 2016/679).

Any and specific disclosures will be progressively reported or displayed on pages of the site set up for particular on-demand services.

Data will be collected and recorded for specified, explicit and legitimate purposes and in a manner compatible with those purposes, as part of the processing necessary for the operation of the business. These data will be processed according to the principle of accuracy and, if necessary, appropriately updated, so that they are always relevant, complete and not excessive in relation to the purpose of collection and that their storage is functional for the period of time necessary for the purpose for which they were collected and subsequently processed according to the GDPR 2016/679 and applicable national legislation.
Personal data may be processed with the help of both paper and electronic means and in any case in such a way as to ensure their security and protect the utmost confidentiality of the person concerned. Specific security measures are observed to prevent data loss, illegal or incorrect use and unauthorized access in full compliance with Art. 32 of GDPR 2016/679 and current national legislation.

Cookies, plugins, and external platform interaction services

Full disclosure on the use of cookies and external (e.g., social networking) platform interaction services by this site is available at the following link:

Site Cookie Policy

Mandatory or optional nature of providing data and consequence of refusal

Except as specified for browsing data, user consent is intended to be optional. However, failure to provide it may result in RISTORANTE IL CASTELLO SRL being unable to process the services requested. Consent, where given, may be revoked at any time by sending a request to the following address:

Disclosure of data

Without prejudice to communications and disclosures made in execution of legal obligations, all data collected and processed may be disclosed to:

  • Professionals and consultants, especially individuals who provide services for the management of the information system and telecommunications networks (including e-mail);
  • Subjects that carry out processing on behalf of the Controller in the capacity of Data Processors pursuant to Article 28 GDPR 2016/679, such as, but not limited to: subjects that provide services for the management of the information system and telecommunications networks (including e-mail). The complete and up-to-date list of the Responsible Parties is knowable, to those entitled to it, upon mere request at the Holder’s office;
  • Subjects authorized to access the data by the regulations in force and/or to whom of data must be communicated in execution of legal obligations.
    Personal data may be processed by the employees and collaborators assigned to the relevant offices of the Writer, who are explicitly authorized to process the data on the basis of the provisions of Art. 29 of GDPR 2016/679 and current national legislation.

Data retention times

The data provided will be stored in our archives according to the following parameters:

  • Data voluntarily provided by the user: until the fulfillment of the service (“principle of storage limitation”, art.5 of GDPR 2016/679) or according to the deadlines stipulated by the regulations of the Law.
  • Data processed for informational, promotional and commercial purposes: 24 months.

Depending on the specific statute of limitations in the law, data necessary for the establishment, exercise or defense of a right in court may be subject to longer retention periods.
Verification of the obsolescence of retained data in relation to the purposes for which they were collected is carried out periodically.

Rights of the data subject

With regard to personal data, the data subject may exercise the rights provided within the limits and under the conditions stipulated in Articles 15 to 22 of GDPR 2016/679 and the applicable national legislation. Specifically, the GDPR attributes to the Data Subject:
– Right of access (Art. 15 GDPR 2016/679);
– Right to rectification of inaccurate personal data and right to supplement incomplete personal parts (Art. 16 GDPR 2016/679);
– Right to cancellation (Art. 17 GDPR 2016/679);
– Right to restriction of processing (Art. 18 GDPR 2016/679);
– Right to request the recipients to whom any rectification or cancellation or restriction of processing has been communicated (Art. 19 GDPR 2016/679);
– Right to data portability (Art. 20 GDPR 2016/679);
– Right to object (Art. 21 GDPR 2016/679);
– Right not to be subjected to a decision based solely on automated processing (Art. 22 GDPR 2016/679).
In the event that any form of consent to processing is signed, it should be noted that the data subject may revoke it at any time, subject to the mandatory requirements of the regulations in force at the time of the revocation request, by contacting the Data Controller at the following e-mail address:

Complaint rights

If you believe that the processing of your personal data, carried out through this site, is in violation of the provisions of the GDPR 2016/679, you also have the right to lodge a complaint with the Garante per la protezione dei dati personali, as provided for in Art. 77 of GDPR 2016/679 itself, or to take appropriate legal action (Art. 79 of GDPR 2016/679).

For more information you can contact the Data Controller:

Via Bertinoro di Monticino 191 – 47522 Cesena (FC)
Tel. +39 0547 347030