Hide text
Show text
logo Villa Agape - Hotel a Firenze

Privacy Policy of villaagape.it

TThe Data process Controller: Soges Srl

E-mail address of the Controller that requests should be sent to: info@soges-group.com

The Data Processor is: Soges Srl

Types of data collected

villaagape.it can use the personal data provided freely by the User or, for Usage Data, that is collected automatically when this Application is used. Unless specified otherwise, all Data requested is obligatory.
When this Application indicates that some Data is optional, Users can decide not to provide it. Without this having any consequences on Service availability or functionality.
Users who have any doubts about what Data is obligatory are encouraged to contact the Controller.
Any use of Cookies - or of other tracking tools - by villaagape.it or the controllers of third party services used by villaagape.it, unless specified otherwise, is to provide the Service requested by the user, as well as the other purposes described in this document or in the Cookie Policy.

Data processing purpose

The User’s data is collected to enable the Controller to provide its Services, and for the following purposes: To contact the User and manage bookings. Those processes can only be carried out with the User’s consent.

Methods and location used to process data collected

Processing methods

The Controller adopts suitable security measures to block unauthorised access, disclosure, modification or destruction of Personal data. Data is processed using digital and/or computer tools, applying organisational methods and logics strictly linked to the purposes indicated.

Legal basis of data processing

The Controller processes the User’s Personal Data under one of the following conditions: 1)the User has consented to one or more specific purposes; 2)processing is needed to execute an agreement with the User and or pre-contractual measures; 3)processing is needed to fulfil a legal obligation the Controller is subjected to; 4)processing is needed to execute a task of public interest or public powers the Controller is vested with; 5)processing is needed to pursue the legitimate interest of the Controller or third parties.
However, it is always possible to ask the Controller to clarify the concrete legal basis for each process and, in particular, to specify whether processing is based on a law, foreseen by a contract or needed to finalise an agreement.


Data is processed in the offices of the Controller and in any other place in which parties involved in processing are located.

Storage period

Data is processed and stored for the time strictly needed to complete the purposes for which it was collected. Therefore:
Personal Data collected to execute an agreement between the Controller and the User is processed until that agreement has been executed in full.
Personal Data collected for purposes that are the legitimate interest of the Controller will be processed until that interest has been satisfied. The User may obtain further information on the legitimate interest pursued by the Controller in the relative sections of this document or by contacting the Controller.
When processing is based on User consent, the Controller may store Personal Data for longer, until that consent is revoked. Furthermore, the Controller could be obliged to store the Personal Data for a longer period in compliance with a legal obligation or an order from the authorities.
At the end of the storage period the Personal Data will be erased. So when that term expires, right of access, erasure, rectification and portability of Data may no longer be exercised.

Details of the processing of Personal Data

Personal data is collected for the following purposes and using the following services: contact the User

User Rights

Users may exercise certain rights referred to Data processed by the Controller. More specifically, the User has the right to:
revoke his/her consent at any time.
object to his/her data being processed.
access his/her Data.
check and request rectification.
obtain restriction of processing.
obtain the erasure or removal of his/her Personal Data.
receive his/her data or have it transferred to another Controller.
present a complaint. How to exercise rights
To exercise User rights, Users can send a request to the contact details of the Processor indicated in this document.

To contact us for any information please use the form on the following page:

Write us

Check room availability and book at the best price guaranteed directly on our website:

Book online at the best price