Cookies Law

COOKIE POLICY

Last updated:[ October 17, 2025].

1. DATA CONTROLLER

Data controller: Hotel Leon d'Oro S.r.l. a socio unico
Registered office: Via Niccolò Tommaseo, 68 - 35131 Padua (PD)
Privacy contacts: privacy@hnh.it
Website: www.hotelleondoroverona.com

2. WHAT ARE COOKIES?

Cookies are small text files that websites send to the user’s device (PC, tablet, smartphone), where they are stored and then transmitted back to the same websites on the next visit.
Cookies can be used for various purposes: performing digital authentication, session monitoring, storing specific configuration information about users accessing the website, and facilitating use of online content.

3. TYPES OF COOKIES AND LEGAL BASIS

3.1 NECESSARY TECHNICAL COOKIES

Definition: these are the cookies that are strictly necessary for the operation of the website or to enable use of the content and services requested by the user.
Legal basis: art. 122, para. 1, Legislative Decree 196/2003 - the user's prior consent is not required.

3.1.1 Technical cookies used

• Cookie Name ASP.NET_SessionId
Domain: www.hotelleondoroverona.com
Purpose: user session management for correct website operation Allows the server to recognise and maintain navigation status

3.1.2 Consent management cookies

• Cookie Name: popupConsent
Domain: www.hotelleondoroverona.com
Purpose: stores the successful display of the cookie information banner

• Cookie Name: addTechnicalCookie
Domain: www.hotelleondoroverona.com
Purpose: stores user preference for technical cookies

• Cookie Name: addAnalyticsCookie
Domain: www.hotelleondoroverona.com
Purpose: stores user consent for the use of analytical cookies
Specific purpose: these cookies are used solely to record and remember the user's choices regarding the use of cookies on the site. They are not used for other purposes and do not track the user's navigation.

3.2 THIRD-PARTY ANALYTICAL COOKIES

Definition: these are cookies used to collect aggregate statistical information about the use of the website by users (number of visitors, pages visited, time spent, geographical origin, etc.).
Legal basis: Art. 6, par. 1(a) GDPR and Art. 122, par. 1, Legislative Decree 196/2003 - the user's prior consent is required.

3.2.1 Google Analytics

The website uses Google Analytics, a web analytics service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Cookies used:
• Cookie Name: _ga
Domain: .hotelleondoroverona.com
Purpose: to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in every page request on the site and used to calculate data on visitors, sessions and campaigns

• Cookie Name: _ga_8QBJYGJ0CV
Domain: www.hotelleondoroverona.com
Purpose: used by Google Analytics 4 to maintain session status. Stores and counts page views by collecting data on how visitors use the website

3.2.2 Google Analytics Privacy Policy and Opt-out

Google's Privacy Policy: for more information on how Google processes the data collected, see the privacy policy at the following link: https://policies.google.com/privacy
Opt-out: it is possible Google Analytics can be completely deactivated by installing the add-on provided by Google to deactivate Google Analytics, available at the following link: https://tools.google.com/dlpage/gaoptout

4. TRANSFER OF DATA TO THIRD COUNTRIES

4.1 Extra-EU transfers relating to Google Analytics

Destination: The data collected via Google Analytics are transferred to and stored on Google LLC's servers located in the United States of America.
Legal basis of the transfer: Google LLC adheres to the EU-US Data Privacy Framework (formerly Privacy Shield), a certification mechanism approved by the European Commission, which guarantees a level of data protection substantially equivalent to that guaranteed within the European Union, pursuant to Article 45 of the GDPR.
Certification verification: Google LLC's adherence to the Data Privacy Framework can be verified by consulting the official register at the following link: https://www.dataprivacyframework.gov/

5. COOKIE RETENTION PERIOD

• Technical session cookies (ASP.NET_SessionId): until the browser is closed
• Consent management cookies (popupConsent, addTechnicalCookie, addAnalyticsCookie): One year after registration
• Cookie Google Analytics (_ga, _ga_8QBJYGJ0CV): Two years after registration
Important: cookies are automatically deleted on expiry of the retention period. You can delete cookies manually at any time via your browser settings (see section 6).

6. CONSENT AND COOKIE MANAGEMENT

6.1 How to provide or withdraw consent:

6.1.1. Via the cookie banner

When accessing the site for the first time, an information banner is displayed, allowing you to:
- Accept all cookies
- Reject unnecessary cookies
- Customise preferences by selecting which categories of cookies to accept
Changing preferences: previously expressed preferences can be changed at any time by clicking on the cookie icon at the bottom of each page of the site.

6.1.2 Via your browser settings:

You can also manage cookies through your browser settings. Below are instructions for the most common browsers:
Google Chrome 1. Open Chrome
2. Click on 'Menu' (three dots in the top right-hand corner) > 'Settings'.
3. Select 'Privacy and Security
4. Click on 'Cookies and other site data'.
5. Select the required preferences
Mozilla Firefox 1. Open Firefox
2. Click on the menu (three lines in the top right-hand corner) > 'Settings'.
3. Select 'Privacy and Security' from the side menu
4. Under 'Cookies and website data', manage preferences
Microsoft Edge 1. Open Edge
2. Click on 'Menu' (three dots) > 'Settings'.
3. Select "Cookies and site authorisations
4. Click on 'Cookies and stored data'.
5. Managing settings
Safari (macOS) 1. Open Safari
2. Click on 'Safari' in the menu bar > 'Preferences'.
3. Select the 'Privacy' tab
4. Under 'Cookies and website data', manage preferences
Safari (iOS) 1. Open 'Settings
2. Scroll down and tap 'Safari'.
3. In the 'Privacy and Security' section, manage 'Block cookies'.
Important note: the total deactivation of technical cookies may affect the correct navigation and use of the site services.

6.2 Withdrawal of consent

Consent to analytical cookies can be withdrawn at any time via:
- The cookie management banner (permanent icon on the site)
- via your browser settings
Important: withdrawal of consent does not affect the lawfulness of processing based on consent given before withdrawal, but it prevents the further installation and use of analytical cookies.

7. YOUR RIGHTS

Pursuant to Articles 15-22 of the GDPR, you have the following rights:
• Right of access (Art. 15 GDPR): to obtain confirmation as to whether or not personal data concerning you are being processed and, if so, to obtain access to the data and information relating to the processing.
• Right of rectification (Art. 16 GDPR): to obtain the rectification of inaccurate personal data concerning you and the integration of incomplete personal data.
• Right of deletion (Art. 17 GDPR): to obtain the deletion of personal data concerning you, when the conditions laid down in the legislation are met.
• Right to restriction of processing (Art. 18 GDPR): to obtain the restriction of the processing of your personal data when the conditions provided for by the legislation are met.
• Right to data portability (Art. 20 GDPR): to receive the personal data you have provided to the Controller in a structured, commonly used and machine-readable format, and to transmit them to another data controller.
• Right of objection (Art. 21 GDPR): you may object at any time to the processing of personal data concerning you, unless the Controller demonstrates the existence of compelling legitimate grounds for processing.
• Right to withdraw consent: to withdraw consent given for the use of analytical cookies at any time, without affecting the lawfulness of the processing based on the consent given before the withdrawal.
• Right to lodge a complaint (Art. 77 GDPR): to lodge a complaint with the competent supervisory authority (Garante per la Protezione dei Dati Personali - www.gpdp.it).

7.1 How to exercise your rights

To exercise your rights, you can contact the Data Controller:
• Email: privacy@hotelleondoroverona.com
• Mail: Hotel Leon d'Oro S.r.l., Via Niccolò Tommaseo, 68 – 35131 Padua (PD)

8. CONTACT INFORMATION

If you have any questions or requests for clarification regarding this cookie policy or the processing of personal data:
Hotel Leon d'Oro S.r.l. a socio unico
Via Niccolò Tommaseo, 68 - 35131 Padua (PD)
Email Privacy: privacy@hnh.it
Telephone: [+39 045 8445140]
Website: www.hotelleondoroverona.com

9. REGULATORY REFERENCES

This cookie policy has been drawn up in accordance with:
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR)
- Legislative Decree 30 June 2003, no. 196 (Personal Data Protection Code) as amended by Legislative Decree 101/2018
- General provision of the Garante per la protezione dei dati personali [Privacy Authority] of 10 June 2021 'Guidelines on cookies and other tracking tools' (web doc. no. 9782890)
- European Data Protection Board (EDPB) Guideline 5/2020 on consent under Regulation 2016/679