Privacy Policies

Information on the processing of personal data of visitors to the VRBOOKINGS.COM website

Data protection is a cornerstone of our business strategy; we understand the trust you place in our organization when you choose our services, and we are committed to protecting your personal data to the best of our ability. In this privacy policy for our website we provide a clear overview of how we collect, use, and protect your data during your interaction with our organization through our website and adopted services. We also offer links to external resources to enable you to learn more about the services rendered by third parties and their processing methods.

What is this page for?

The European Regulation 679/2016 stipulates that before collecting their personal data, people must be informed in a simple and transparent way; in this notice we plainly describe what data we acquire, why we collect it, and how it will be processed; we also inform about the rights granted by the privacy legislation to data subjects (the people who give their personal data).
If there are any changes in processing methods or regulations, we will update this policy accordingly; therefore, we recommend that you check it regularly.
This notice was last updated on September 11, 2023.

Personal data collected

Data provided voluntarily

When we receive a communication, either through the "Contact" form on the site or by direct e-mail, we will collect certain personal data, entered by users in the communication itself (e.g., first and last name, e-mail address, telephone number, message text, etc.).
We also make possible the use of additional contact tools made available by third parties, such as Facebook, Instagram and Linkedin, possibly used by visitors on a voluntary basis; the relative links of each social network would lead to the relevant privacy policies.

Data generated from navigation

The mere browsing of this website results in the collection of computer data generated while users are browsing, by our various servers and network device: such as IP address, certain browser identifiers, language settings, and other technical data inherent in communication protocols, IT services, and software, computer or telematics components.
In this regard, we inform that our web service adopts the solution Content Delivery Network CloudFlare to improve site speed and security.

Tools generating cookies and online identifiers

We adopt tools and software components, functional to the site, that generate temporary identifiers stored in the user device; these tools are divided into two classes:

first-party (generated by components on our servers)
third-party (these are tools and services provided by third parties).

First-party tools are necessary for the operation of the website, while those provided by third parties are optional and subject to the free consent of users (via the cookie management panel made available on the site and provided by Iubenda). More information can be found in the specific cookie policy.

Legal basis of data processing

We will process the personal data of subjects in a legitimate manner, relying on some of the legal bases provided by the current privacy regulations:

to fulfill contractual or pre-contractual obligations, such as when we respond to informational requests or follow up on commercial requests, quotes, etc...
on the basis of consent, such as when we follow up on newsletter subscription requests, or in case of the use of third-party tools generating online identifiers, etc...
for legal obligations, such as when we have to comply with national or EU regulations, or we receive requests from competent authorities, etc...
for our legitimate interest, such as when we adopt tools, software, services, and information platforms, including those provided by third parties, to deliver the services, make available advanced features and/or make our website work better, or aimed at ensuring its performance and necessary security, preventing fraud and breaches, DDOS attacks, etc...

Purpose of data processing

Your personal data will be processed for the following purposes:

Purposes	Legal basis
provide the information requested through the contact tools; follow up on requests for quotations received, or on any other request inherent in our services and products; provide pre-sales support to potential customers, either by telephone or through remote support software tools offered by third parties;	fulfillment of contractual and/or pre-contractual obligations
send newsletters, information and/or business proposals, promotions and special offers related to our software products, SaaS platforms, or other related services; carry out market research on the satisfaction of site surfers and/or our customers; propose after-sales services; personalize content and advertisements, collect and analyze behavior on the website in order to improve its usability, content and user experience; collect reviews and ratings from customers on their "user experience" of our products and services;	your consent
fulfill obligations required by law, by a regulation, by EU legislation or by an order of the Authorities;	legal obligations
operate our computer systems properly, analyze traffic and functionality, improve the speed and availability of the website around the world via a CDN (content delivery platform), put in place necessary security measures, and prevent illicit activities, DDOS attacks, or perform anti-fraud and/or information infrastructure security checks; exercise the rights of the Owner, such as, for example, the right to defense in court.	legitimate interest

Necessity of data, optional provision and consequences of refusal

The provision of your personal data is necessary for the purposes indicated in points 1-3; without them we could not follow up the activities indicated in each point; as indicated in the purposes section, the legal basis adopted is the execution of contracts or pre-contractual instances.
Your consent for the purposes indicated in points 4-8 is optional; without it, we will not be able to carry out the related activities, and the enjoyment of the indicated services and functionalities may be partial or not achievable; we inform you that your consent may be subsequently modified or revoked, quickly and easily, by making a direct request to our corporate privacy contact person, at the specific address: privacy@vrbookings.com.

Processing methods and security measures

We process your data lawfully and fairly, by taking appropriate physical, logical and information security measures - such as encryption – that are designed to protect the information from unauthorized access, unauthorized disclosure, modification or destruction of the data. The processing is carried out mainly by means of computer and telematic tools, adopting due organizational methods and logics strictly related to the indicated purposes. The site adopts the https secure communication protocol, which transfers data within a secure connection; in addition, special data or data requiring enhanced protection is recorded--in mass storage--in encrypted format with secure protocols.

IT infrastructure, external services adopted and location

In order to improve usability, accessibility, and availability, as well as provide enhanced functionality, this website also uses IT services and software components provided by third parties, such as a Content Delivery Network, social media contact tools or those generating cookies and/or online identifiers; the respective data processing information of the contact tools can be viewed on the websites of the third-party service providers, while the specific information of the cookie-generating tools is available at our dedicated page cookie policy.
Your personal data will be processed, by this Controller or by our Processors, mainly within the European Union; in addition to our proprietary IT infrastructure, we have selected some services provided by the following providers:

Hetzner, with datacenter in Europe, at which the web servers serving our websites are located – Data Privacy;
QboxMail, with datacenter in Italy, at which the corporate e-mail services are hosted – GDPR Insight Page;
FreshSales, with European datacenters, for C.R.M. client activities – privacy policy;
Aruba PEC with datacenters in Italy, for certified electronic mail services - insight into info on the protection of personal data;
MailChimp, with datacenters in the USA, for the company’s newsletters service – Insight into data transfer and security measures taken;
Iubenda, with datacenters in Europe, to deliver the cookie management panel and provide the cookie policy – Privacy Policy;
CloudFlare, for the service of CDN – Content Delivery Network, with datacenters spread across the globe – GDPR Compliance Insight;
Google, for the services of Analytics, TAG Manager and reCAPTCHA, with datacenters both in the EU and in the USA - Deepening privacy and data in the EU.
Social media tools - Facebook, Instagram, LinkedIn, used on a voluntary basis by users, whose data protection information pages can be found on their respective sites.

The complete and updated list is always available upon simple request to our privacy contact person: privacy@vrbookings.com.

Access to personal data

Your data may be made accessible:

to our employees or collaborators, specially trained and entrusted with the processing;
to external collaborators in charge of specific technical and/or managerial tasks;
more generally, to other external parties who - after appointment as data controllers - carry out outsourced processing activities as listed in the previous point, that are necessary to pursue the stated purposes.

Your personal data may possibly be disclosed to companies in our group, exclusively for the purposes indicated in this notice, and will not be disseminated or given to third parties.

Time of data retention and deletion

Your personal data will be retained for the minimum period necessary to fulfill the purposes for which they are collected, subject to any additional retention period that is (or may be) imposed by the law. The data related to technical logs is maintained for 30 days, barring ongoing investigative activities or requests received from the Authorities. In relation only to data collected on the basis of consent received, these will be retained for a period not exceeding that necessary to achieve the relevant purposes, or until consent is revoked, which can be implemented either independently within the tools made available, or by simple request to our internal privacy function: privacy@vrbookings.com.

Your rights

The Regulations grant you the rights set forth in Articles 15 et seq. in particular you have the right to obtain:

confirmation as to whether or not any personal data concerning you are being processed, and to obtain access to the data and the following information (purpose of processing, categories of personal data, recipients and/or categories of recipients to whom the data have been and/or will be disclosed, retention period);
rectification of inaccurate personal data concerning you and/or supplementation of incomplete personal data, also by providing a supplementary statement;
the deletion of personal data, if the conditions are met;
the limitation of processing, in the hypotheses indicated;
the portability of the data concerning you, in the cases provided for;
the objection to the processing of personal data for marketing and profiling purposes at any time, on grounds related to your particular situation.

The exercise of these rights can be made, in a simple way, by an e-mail communication to the address: privacy@vrbookings.com.
In any case, pursuant to Article 77 of the Regulations, you are granted the right to lodge a complaint with the National Supervisory Authority (www.gpdp.it), If you believe that the processing of your personal data is in violation of current regulations.

Data protection officer

The Owner has designated a Data Protection Officer (abbreviated RPD or DPO), whom you may contact directly if you have any questions regarding the protection of your personal data, at: dpo@vrbookings.com.

Data controller

The Data controller is Trading Estate Service s.r.l. with headquarters in Via Ettore Majorana n. 11/E int. 2 - 52025 – Montevarchi (AR) - Telephone 055 5351364 – Partita IVA IT01813830518 – info@vrbookings.com.