top of page

Privacy Policy

(pursuant to Articles 13–14 of EU Regulation 2016/679 – GDPR)

1. Data Controller

The Data Controller of personal data is:

FortePiano S.r.l.
Registered office: Via Ennio Quirino Visconti 66, 00193 Rome (Italy)
VAT / Tax Code: 14757291001
Email: info@ristorantedaeduardo.com
PEC: fortepiano@pec.it

2. Types of Data Collected

The website www.ristorantedaeduardo.com collects and processes the following categories of personal data:

  • Identification and contact data: name, surname, email address, phone number, collected via contact or reservation forms.

  • Browsing data: IP address, logs, browser type, session-related data, collected automatically during website use.

  • Cookies and similar technologies: as described in the Cookie Policy.

  • Special categories of data possibly provided by users (e.g. dietary requirements, preferences), processed only for reservation purposes.

3. Purposes of Processing and Legal Bases

The collected data are processed for the following purposes:

  1. Reservation management, contacts and requests

    • Legal basis: performance of a contract or pre-contractual measures (Art. 6(1)(b) GDPR).

  2. Legal, fiscal, and administrative compliance

    • Legal basis: legal obligation (Art. 6(1)(c) GDPR).

  3. Sending of newsletters and marketing communications (only with explicit consent)

    • Legal basis: consent of the data subject (Art. 6(1)(a) GDPR).

  4. Website improvement, IT security, and fraud prevention

    • Legal basis: legitimate interest of the controller (Art. 6(1)(f) GDPR).

4. Processing Methods

Data are processed using electronic and paper tools, with appropriate technical and organizational measures in place to ensure data security.
No automated decision-making or profiling producing legal effects on users is carried out.

5. Data Recipients

Personal data may be disclosed to:

  • IT, hosting, and website maintenance service providers.

  • Communication and newsletter service providers.

  • Legal, tax, and administrative consultants, within the necessary limits.

  • Public authorities, where required by law.

Data will not be disclosed to unauthorized third parties.

6. Data Retention

  • Reservations and contact requests: retained for the time necessary to manage the request and up to 10 years for fiscal obligations.

  • Marketing/newsletter: retained until withdrawal of consent.

  • Browsing data and cookies: as specified in the Cookie Policy.

7. Data Transfers outside the EU

Personal data are not transferred outside the European Economic Area.
Should services located in non-EU countries be used (e.g. newsletter providers, cloud, or analytics), transfers will take place in accordance with Articles 44–49 GDPR, through safeguards such as Standard Contractual Clauses or adequacy decisions by the European Commission.

8. Rights of the Data Subject

Pursuant to Articles 15–22 GDPR, users have the right to:

  • Access: know whether data are being processed and obtain a copy.

  • Rectification: update or correct inaccurate or incomplete data.

  • Erasure (“right to be forgotten”): request deletion of data in the cases provided by law.

  • Restriction: request limitation of processing under certain conditions.

  • Portability: receive data in a structured format and transfer them to another controller.

  • Objection: object to processing based on legitimate interest or direct marketing.

  • Withdraw consent: at any time, without affecting the lawfulness of prior processing.

Requests may be sent to: info@ristorantedaeduardo.com

The data subject also has the right to lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it).

9. Updates to this Policy

This Privacy Policy may be updated due to legal or technical requirements.
Any changes will be published on this page, with a revision date.

Last updated: [insert date of publication on the website]

bottom of page