INFORMATION ON THE PROCESSING OF USERS' BROWSING DATA

Last updated: February 25, 2026

1. WHO PROCESSES MY DATA?

The Data Controller of your personal data is Iacopo Libero Bernabei, resident in Florence, via Pier Capponi n. 28

You can contact the Controller:

- via e-mail at the address: legal@easyrestaurant.org

2. FOR WHAT PURPOSES ARE MY DATA PROCESSED AND WHY IS THE PROCESSING LAWFUL?

allow you to browse the website ensuring its correct use;
carry out statistical analyses on aggregated (anonymous) data relating to the functioning and use of our website;
allow you to create your personal account;
receive the Easy Restaurant newsletter.

The transmission of this information is implicit in the use of Internet communication protocols, essential to ensure the correct functioning of the platform. These data are collected automatically as soon as access to the website is made.

The processing of data for these purposes is lawful because it is based on the legitimate interest of the Controller:

to allow users to browse its website as part of its business activity;
to monitor its information systems in order to ensure an adequate level of security of its IT infrastructure and perform "troubleshooting" activities in case of malfunctions.

For the creation of your account, it is necessary to fill out a form in which your name and surname, telephone number and e-mail address are requested; the processing of these data is lawful as it is necessary to allow you to create the personal account.

To send the informative newsletter, it is necessary to indicate your e-mail address; the processing of your data is lawful because it is based on the specific consent that you can give by ticking the appropriate box.

3. TO WHOM ARE MY DATA COMMUNICATED?

Your data will be communicated to:

Hosting service provider;
Professionals and/or Professional Firms that provide the Controller with assistance/advice in accounting, administrative, legal, tax, and fiscal matters;
Payment service providers.

Stripe
The site accepts payments via Stripe. If you choose the payment method via Stripe, the data provided for payment will be transmitted to Stripe. For more information on the processing of your data by Stripe, you can consult the Stripe privacy policy at the address: https://stripe.com/en/privacy The provider of this service is Stripe Technology Europe Limited, The One Building, 1, Lower Grand Canal Street, Dublin 2, Ireland (hereinafter "Stripe").

Stripe

The site accepts payments via Stripe. If you choose the payment method via Stripe, the data provided for payment will be transmitted to Stripe. For more information on the processing of your data by Stripe, you can consult the Stripe privacy policy at the address: https://stripe.com/en/privacy

The provider of this service is Stripe Technology Europe Limited, The One Building, 1, Lower Grand Canal Street, Dublin 2, Ireland (hereinafter "Stripe").

You can request the complete list of recipients of your personal data by writing to the email address legal@easyrestaurant.org.

In any case, your personal data will not be disseminated.

4. ARE MY DATA TRANSFERRED OUTSIDE THE EUROPEAN UNION?

The Controller does not directly transfer your personal data outside the European Union (EEA). However, the Controller uses service providers located outside the European Union and this constitutes a transfer of personal data under privacy regulations. To ensure that such transfers take place safely, the Controller verifies the adequacy of these providers and ensures that transfers are carried out according to one of the methods allowed by the discipline in the matter, such as the choice of countries subject to adequacy decisions, the adoption of standard contractual clauses (SCC) approved by the European Commission or other adequate guarantees.

5. FOR HOW LONG ARE MY DATA KEPT?

The Controller will keep your personal data for a period of time not exceeding that necessary to achieve the purposes for which it is processing them. Specifically, your data will be kept in relation to the duration of the individual registered cookies (see cookie policy)

6. WILL I BE SUBJECT TO PROFILING?

When you visit our website, your browsing behavior may be recorded and statistically analyzed in order to obtain information on the use of the platform. Data collection takes place mainly by means of so-called cookies; for more information, you can view our cookie policy.

7. WHAT ARE MY RIGHTS?

You have the following rights:

Right of access to data: right to obtain from the Controller confirmation that personal data concerning you are or are not being processed and, if so, to obtain access to your personal data – and a copy thereof – and to receive information relating to the processing;
Right of rectification of data: right to obtain from the data controller the rectification of inaccurate personal data concerning you without undue delay and the integration of incomplete personal data, also by providing a supplementary statement.
Right to data portability: right to receive in a structured, commonly used and machine-readable format the personal data concerning you provided to the Controller and to transmit such data to another data controller if the processing is based on consent or on a contract and is carried out by automated means.
Right to erasure of data: right to obtain from the data controller the erasure of personal data concerning you without undue delay if one of the following reasons exists: personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; you object to the processing and there is no prevailing legitimate reason to proceed with the processing; personal data have been unlawfully processed; personal data must be erased to comply with a legal obligation to which the Controller is subject; personal data have been collected in relation to the offer of information society services.
Right to limitation of processing: right to obtain from the Controller the limitation of processing when one of the following hypotheses occurs: you contest the accuracy of the personal data, for the period necessary for the Controller to verify the accuracy of such personal data; the processing is unlawful and you object to the erasure of personal data and instead request that its use be limited; although the Controller no longer needs them for processing purposes, the personal data are necessary for you to establish, exercise or defend a right in court; you have objected to processing pending verification as to whether the legitimate reasons of the data controller prevail over those of the data subject.
Right to object to processing: right to object to processing carried out for the performance of a task in the public interest or connected to the exercise of public powers or on the basis of the legitimate interest of the controller or third parties, as well as the right to object to the processing of personal data concerning you carried out for direct marketing purposes, including profiling to the extent that it is connected to such direct marketing.
Right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects your person.

8. HOW CAN I FILE A COMPLAINT?

Should you wish to file a complaint regarding the ways in which your personal data are processed by the Controller or regarding the management of a complaint filed by you, you have the right to file an instance directly to the Supervisory Authority according to the methods indicated in the site www.garanteprivacy.it.