Vai al contenuto principale
Information notice

Privacy Policy & Cookie — Talèe Pinto Lampedusa

Last updated: 16/07/2026 · Version 2.0 (EN)

Your privacy matters. This page explains in a clear and complete way which data we collect, why we use it, how we protect it and what your rights are, in compliance with EU Regulation 2016/679 (GDPR), EU Regulation 2024/1689 (AI Act), Italian Legislative Decree 101/2018 and Italian Law 4/2004 (accessibility for people with disabilities).

1. Data Controller

The Data Controller is:

  • Talèe Pinto
  • Registered office: Via Roma, 96 — 92031 Lampedusa (AG), Italy
  • VAT number: 07219190829
  • Privacy contact: WhatsApp +39 339 400 7772

A Data Protection Officer (DPO) has not been appointed, as the processing does not fall within the categories that make such appointment mandatory (art. 37 GDPR).

2. Categories of personal data collected

We collect only the following categories of data:

  • Contact data voluntarily provided by the user via WhatsApp: name (or nickname), phone number, message content.
  • Navigation data: IP address, browser type, operating system, pages visited, duration of visit. These are collected automatically via web-server logs and are necessary for site operation and IT security.
  • Technical cookies necessary for site operation (see section 8).

We do NOT collect: payment data (reservations and payments happen directly at the venue or via WhatsApp), health data, biometric data, marketing profiling data, special-category data (art. 9 GDPR).

3. Purposes of processing and legal bases

Personal data is processed for the following purposes:

  1. Responding to booking and information requests sent via WhatsApp. Legal basis: performance of pre-contractual measures at the user's request (art. 6.1.b GDPR).
  2. Managing table reservations and the catering service. Legal basis: contract performance (art. 6.1.b GDPR).
  3. Legal obligations (accounting, tax, health). Legal basis: legal obligation (art. 6.1.c GDPR).
  4. IT security of the site and abuse prevention. Legal basis: legitimate interest (art. 6.1.f GDPR).
  5. Potential complaints and litigation management. Legal basis: legitimate interest (art. 6.1.f GDPR).

No data is sold to third parties, transferred for marketing, profiling or newsletter purposes.

4. Data retention

Data is kept for the time strictly necessary to fulfil the purposes for which it was collected, and in any case:

  • Contact and reservation data: 24 months from last contact, unless legal obligations apply.
  • Accounting and tax data: 10 years (art. 2220 Italian Civil Code).
  • Site access logs: 12 months.

After this period, data is deleted or irreversibly anonymised.

5. Recipients and transfers

Personal data may be disclosed, only for the purposes above, to:

  • WhatsApp (Meta Platforms Ireland Ltd): for communication management. Seat: Ireland. Intra-EU transfer, GDPR-compliant.
  • Tax and legal advisors: for legal obligations.
  • Public authorities: upon request and within the limits of the law.

Third-party services used by the website:

  • GTranslate (translation widget, supplied by gtranslate.net): possible extra-EU transfer (United States). Compliant with EU-US Data Privacy Framework.
  • Google Maps (embedded in the Contact page): possible extra-EU transfer (United States). Compliant with EU-US Data Privacy Framework.
  • Google Fonts: fonts are loaded locally from our server (no connection to Google during browsing).

6. Data subject rights

As a data subject (artt. 15-22 GDPR) you have the right to obtain confirmation of the existence of your personal data, to know its content, to verify its accuracy or request its integration, updating, rectification or erasure. In particular, you can exercise the rights of access, rectification, erasure (right to be forgotten), restriction, data portability, objection to processing and withdrawal of consent, where applicable.

To exercise these rights, write to us on WhatsApp at +39 339 400 7772. We will reply within 30 days (art. 12.3 GDPR). You also always have the right to lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it) or with your local supervisory authority.

7. Cookie

This site uses only technical cookies necessary for operation:

  • Session cookies: to manage navigation and preferences (e.g. selected language via GTranslate widget).
  • GTranslate widget cookies: to memorise the language chosen by the user. These are functional technical cookies, not profiling cookies.

We do NOT use: profiling cookies, third-party analytics cookies (Google Analytics, etc.), advertising cookies, social tracking pixels.

Cookie management: you can manage cookie preferences directly from your browser. Here are the links to the most common browsers' guides:

8. Data security

We adopt adequate technical and organisational measures (art. 32 GDPR) to protect data from unauthorised access, loss, alteration or destruction, including: encrypted HTTPS connection, access to data limited to authorised personnel, regular backups, security updates. The site is hosted on servers compliant with European regulations.

9. Accessibility

The site is designed to be accessible to everyone, including people with disabilities, in accordance with Italian Law 4/2004 and the WCAG 2.1 AA standards (European Accessibility Act 2025/2882). If you have any difficulty accessing content, let us know on WhatsApp at +39 339 400 7772.

10. Changes to this policy

We may update this Privacy Policy to reflect changes in our practices or for legal/operational reasons. The latest version is always available at this URL. For material changes we will notify users via WhatsApp or a banner on the site.

© 2026 Talèe Pinto Lampedusa — Privacy Policy v2.0 (English version)