Privacy Policy

Who we are

Our website address is:

Corporate Information

Relais Borgo Poggetello

Via Bonella 4 – 67069 – Poggetello di Tagliacozzo

What personal data we collect and why we collect it

Navigation data
The software applications used to operate the Cortona Wellness website acquire some personal data transmitted using secure protocols. This informationis not collected to be associated with identified interested parties, but could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses, browser identifier (user agent), URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the code numeric indicating the status of the response given by the server (for example successful, error) and other parameters relating to the operating system and the user’s IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning.


When visitors leave comments on the site, we collect the data shown in the comments form as well as the visitor’s IP address and browser user agent string to facilitate spam detection.

An anonymized string created from your email address (otherwise called a hash) can be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After your comment is approved, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images that include embedded location data (EXIF GPS). Visitors to the website can download and extract any location data from images on the website.

Contact form

Data provided voluntarily by the user
To access some services provided through the Relais Borgo Poggetello website, the optional and voluntary insertion of some identification data (email, name, contact details, and information necessary to provide the requested service) may be required.


If you leave a comment on our site, you can choose to save your name, email address and website in cookies. They are used for your convenience so that you do not have to re-enter your details when you leave another comment. These cookies will last for one year.

If you visit the login page, a temporary cookie will be set to determine if your browser accepts cookies. This cookie contains no personal data and is deleted when you close your browser.

When you log in, several cookies will be set to save your login information and your screen display options. Login cookies last for two days and screen options cookies last for one year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie does not include personal data, but simply indicates the ID of the article just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in exactly the same way as if the visitor had visited the other website.

These websites may collect data about you, use cookies, integrate additional third-party tracking and monitor your interaction with them, including tracking your interaction with embedded content if you have an account and are logged in to those websites.

Who we share your data with

Your personal data will not be disclosed in any way.

To carry out and to provide support for the operation and organization of the activity, some data may be disclosed or communicated to recipients. These subjects are divided into: Third parties, Managers and sub-processors, and authorized personnel under the authority of the owner or manager.

Third parties
they are defined as natural or legal persons, public authorities, service or other body other than the data subject, the data controller, the data processor and the authorized persons responsible for the processing.
For data processing related to administrative, accounting, legal obligations, customer management, contracts, the data can be communicated to:
– Companies that manage traditional or computerized postal services.
– Companies registering domain names
– Any other subjects whose data communication is necessary for the achievement of the aforementioned purposes, or for a legal obligation;

Managers and sub-managers of the treatment
are defined as natural or legal persons, public authority, service or other body that processes personal data on behalf of the data controller
– DHH S.p.A. as primary data processor, and other sub-managers service providers for the technological infrastructure, connectivity, and hosting services: Tophost s.r.l.
– Any other IT service providers necessary for the provision of the service possibly located in the E.U. and in the USA with the guarantee of the “Privacy Shield” adequacy agreement.

Within our company structure
Your data will be processed only by personnel expressly authorized by the Data Controller, with the assurance of the adoption of suitable instructions, training, confidentiality agreement and, in particular, by the following categories of employees:
– Administration staff.

How long do we keep your data

If you leave a comment, the comment and its metadata are kept indefinitely. This is how we can automatically recognize and approve any subsequent comments instead of keeping them in a moderation queue.

For users who register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit or delete their personal information at any time (except their username which they cannot change). Website administrators can also see and edit this information.

What rights do you have on your data

If you have an account on this site, or have left comments, you can request to receive a file exported from the site with the personal data we hold about you, including any data you have provided to us. You can also request that we delete all personal data concerning you. This does not include any data we are required to keep for administrative, legal or security purposes. The interested parties (subjects to whom the personal data refer) may at any time exercise the rights provided for by the Regulation,

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your contact information

Data controller: Relais Borgo Poggetello – Via Bonella 4 – 67069 – Poggetello di Tagliacozzo (AQ) – email:, with registered office in Via Bonella 4 – 67069 – Poggetello di Tagliacozzo (AQ).

Additional information

By entering your data in the relative form, you can request a quote for an accommodation service from Relais Borgo Poggetello. Point (1): You will have to enter some useful and necessary information to configure your service and to determine its price in order to be able to receive an offer. Point (2): You will have the possibility to optionally decide whether or not to receive direct marketing to your e-mail address, with reference to the offers and promotions of Relais Borgo Poggetello. After submitting your request, you will receive an email to inform you of the availability of the offer reserved for you, by clicking on this email you will be able to access your offer. Point (3): At the same time you will have the possibility to optionally decide whether to receive direct marketing based on the profiling of your data, or you will be able to receive information by e-mail on the basis of your preferences, consumption habits, deriving from your requests for quotations, or from other information subsequently collected by the owner. If you do not intend to be profiled, close the request window by clicking on “I do not accept”.

How we protect your data

Your personal data will be processed in accordance with the legislative provisions of the aforementioned legislation and the confidentiality obligations set forth therein. They are considered “good practices” THE provv. of the Italian Privacy Guarantor “Guidelines on promotional activities and the fight against spam of – July 4, 2013 (Published in the Official Gazette No. 174 of July 26, 2013), the Guidelines on the processing of personal data for online profiling – 19 March 2015, and the Guidelines on automated decision-making and profiling processes – WP251, defined on the basis of the provisions of Regulation (EU) 2016/679.

What procedures we have in place to prevent data breaches

The processing of personal data takes place through IT tools suitable to guarantee the security and confidentiality of the data and in any case in compliance with the appropriate security measures as required by art. 32 GDPR, using secure communication protocols with SSL encryption algorithms.

Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected.

Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.

Rights of interested parties

Industry regulatory disclosure requirements