Privacy Policy


In compliance with the obligations deriving from national legislation (Legislative Decree 30 June 2003, no. 196, Code regarding the protection of personal data) and European legislation (European Regulation for the protection of personal data no. 679/2016, GDPR) and subsequent amendments, Baia Sangiorgio Hotel & Beach Club respects and protects the privacy of visitors and users, making every possible and proportionate effort not to infringe the rights of users.

Data Controller
The data controller is Villaggio Turistico Sportivo San Giorgio s.r.l. You can contact them at the email address

Nature of the Collected Data
If you sign up for this service, we will collect your data, in particular personal data, or contact information, mobile number, email address for marketing communications.

Consent to Processing
By subscribing to Baia Sangiorgio Hotel & Beach Club contact lists or services, or by booking beach or hotel services, the Data Subject consents to the Processing of Personal Data as described in this information notice. Pursuant to art. 7 of the GDPR, the Data Subject has the right to withdraw their consent at any time by simple written communication to the address The withdrawal of consent does not affect the lawfulness of the Processing based on consent before the withdrawal. In case of withdrawal of Consent, the Data Subject's data will be deleted.

Processing Location
The data collected through the website, through the completion of a paper document, and through other electronic systems are processed at the Data Controller's headquarters and at any service providers who are responsible for processing the data on behalf of the controller. The data center is located in the European Economic Area and operates in accordance with European regulations.

Purposes of Processing
The data are processed exclusively for the purposes for which they are collected, as described below. The Data Controller uses the data provided by the data subjects to:

a) provide information and/or send communications regarding the service/product for the purpose of its operation;
b) fulfill any accounting and tax obligations;
c) provide information and updates on products;
d) send advertising communications and information regarding products, discounts, or promotions and for research purposes via SMS and/or email.

The provision of data for the purposes referred to in points c) d) is optional, and refusal will result in not receiving updates on commercial initiatives or promotional campaigns, and the impossibility of receiving offers or other promotional or advertising materials on products/services.

User Rights
Under European Regulation 679/2016 (GDPR) and national legislation, the User can, in the manner and within the limits provided by current legislation, exercise the following rights:

  • request confirmation of the existence of personal data concerning them (right of access);
  • obtain indications about the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be communicated, and, where possible, the retention period;
  • obtain the rectification and erasure of data;
  • obtain the restriction of processing;
  • obtain data portability, meaning receive them from a data controller, in a structured, commonly used and machine-readable format, and transmit them to another data controller without hindrance; oppose processing at any time, including processing for direct marketing purposes;
  • request updating, rectification, integration, deletion, transformation into anonymous form, or blocking of data processed unlawfully, including data no longer necessary for the purposes for which they were collected; withdraw consent at any time without prejudice to the lawfulness of the processing based on consent before withdrawal;
  • the right to lodge a complaint with the Supervisory Authority (Privacy Guarantor - link to the Guarantor's page); and, more generally, exercise all the rights recognized by current legislation.