Privacy policy — Visit Kedungu
Last updated: September 15, 2025
This Privacy Policy explains how Hdemia Digitale LLC ("we", "us", "our") collects, uses and protects the personal data of visitors of the Visit Kedungu website ("Website"). The Policy is prepared to comply with the EU General Data Protection Regulation (GDPR).
Data controller
What personal data we collect
We collect and process personal data when you interact with the Website. Typical data we may collect include:
- Name and email address submitted via the contact form.
- Name and email (or the information you provide) when leaving comments on articles (WordPress native comments).
- Technical and log data automatically collected by the hosting infrastructure (for example: IP address, browser type and version, operating system, access times, requested URLs).
Purpose and legal basis for processing
We process personal data for the following purposes and legal bases:
- Responding to contact requests: when you fill the contact form — legal basis: consent or contract performance (depending on the request).
- Comments moderation and publication: to allow you to post and manage comments — legal basis: consent.
- Website operation and security: to keep the Website running, prevent abuse and detect security incidents — legal basis: legitimate interest.
- Legal compliance: to fulfil obligations under applicable laws — legal basis: legal obligation.
How long we keep your data
We retain personal data only as long as necessary to fulfil the purposes described above and to comply with legal obligations. For example:
- Contact form messages: stored until the request is closed and for any additional period required by law (e.g. accounting or tax obligations).
- Comments: retained until you request deletion or until the comment is removed for policy reasons.
- Server logs: retained according to the hosting provider's retention policy and for security/diagnostic reasons.
Where your data is stored
The Website is hosted in Italy. Personal data are therefore stored on servers located in the European Union. Access to the data is limited to authorized personnel and technical staff who need it to provide the service.
Sharing and third parties
We may share personal data only with:
- Hosting provider and technical suppliers who assist in operating the Website;
- Public authorities when required by law or to protect legal rights.
We do not sell personal data or transfer them to third parties for marketing purposes. The Website contains links to third-party booking platforms and services: these external sites have their own privacy policies and are not under our control.
Cookies and tracking
You mentioned you already have a separate Cookie Policy. This Website uses cookies and trackers as described in the Cookie Policy. Please consult the Cookie Policy for information about categories of cookies, consent management and how to disable cookies.
Security measures
We implement appropriate technical and organizational measures to protect personal data, including but not limited to:
- HTTPS/SSL encryption for data in transit;
- restricted access to servers and back-office systems;
- regular backups and security updates;
- procedures to detect and respond to security incidents.
Minors
The Website is not directed at persons under the age of 16. We do not knowingly collect personal data from children under 16. If you believe we have inadvertently collected data from a minor, please contact us and we will delete the data promptly.
Your rights (GDPR)
Under the GDPR you have the right to:
- request access to your personal data;
- ask for rectification of inaccurate or incomplete data;
- request deletion (the "right to be forgotten");
- request restriction of processing;
- object to processing based on legitimate interest;
- request data portability, where applicable;
- withdraw consent at any time (without affecting the lawfulness of processing based on consent before withdrawal);
- file a complaint with a supervisory authority (for example: the Italian Data Protection Authority — Garante per la protezione dei dati personali).
To exercise any of these rights, contact us at: matteo@hdemiadigitale.it. We will respond within the timescales required by applicable law.
Changes to this policy
We may update this Privacy Policy from time to time. The most recent version is published on this page with the effective date.
Contact
If you have questions about this Privacy Policy or about how we handle your personal data, contact:
This document is provided as a model and does not replace legal advice. We recommend a legal review before publication.