Privacy Policy

Privacy Policy

Privacy Policy

PORTIZZOLO S.A.S. DI LUIGI CONSOLINI & C., as Data Controller (hereinafter "Portizzolo" or also: "Data Controller") considers privacy and protection of Personal Data one of the main objectives of its activity. Pursuant to art. 13 of EU Regulation 2016/679 ( "Regulation") in order to allow you to know our privacy policy. Before communicating any personal data to Data Controller, we invite you to read carefully this Privacy notice because it contains important information about your personal data.

This Privacy Policy is intended for the Site ("Site") and not also for other websites that may be consulted by the Interested Party through links and is an integral part of the Site and the services we offer; is provided pursuant to art. 13 of GDPR and the Privacy Code to those who interact with the web services of the Site or who contact Data Controller by mail or email. The processing of your personal data will be based on the principles of correctness, lawfulness, transparency, limitation of purposes and storage, minimization and accuracy, integrity and confidentiality, as well as the principle of accountability.

By processing of personal data we mean any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;


The controller is PORTIZZOLO S.A.S. DI LUIGI CONSOLINI & C., with registered office in Via lungolago D’ Annunzio 12 – 25083 Gardone Riviera (BS),

P. IVA 00666640982, tel. +39 389 656 2449 - email:


We inform you that following navigation on the site, the personal data subject to processing may be constituted (also depending on your decisions on how to use the services) by an identifier such as name and surname, an identification number, location data, an online identifier, bank data, IP addresses, cookies, email address.

The personal data processed through the Site are as follows:

a. Navigation data

Computer systems and procedures software preceded to the operation of this site, acquire, during their normal exercise, some personal data whose transmission is implicit using Internet communication protocols. This category includes: IP addresses, URI/URL (Uniform Resource Identifier/Locator), time of request, type of request, outgoing packet size, server status of response (received, error, etc…) and other parameters related to the operating system.

b. Data provided by data subject

Except for the reference to specific information, this Privacy Policy is also intended for the processing of data voluntarily provided by you through the use of the platform for the purchase of services provided by the Portizzolo on the website or subscription to the newsletter. In this regard, we invite you not to include in the forms contained in the Site, information that may fall within the particular categories of personal data referred to in art. 9 of the GDPR (for example, reported data to racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, life or sexual orientation as well as genetic data, biometric data or data relating to your state of health). In the event that you provide such information voluntarily in the course of a reservation by requesting transport or special needs, the data will be handled only with your consent at any time revocable, or deleted immediately.

c. Third party data provided by data subject

In the use of certain services of the Site, there may be a processing of Personal Data of third parties sent by you. With respect to such hypotheses, you are the autonomous data controller, assuming all the obligations and responsibilities required by law. In this sense, you grant the widest indemnity on this point with respect to any dispute, claim, request for compensation for damages for processing, etc.. that may reach the Data Controller from third parties whose Personal Data have been processed through your use of the functions of the Site in violation of the applicable rules on the protection of Personal Data.

In any case, should the Data Controller provide or otherwise process Personal Data of third parties in the use of the Site, it warrants from now on - assuming all related responsibilities - that this particular processing hypothesis is based on a suitable legal basis pursuant to art. 6 of the Regulation legitimizing the processing of the data in question.

d. Cookie

Information about cookies served by the Site is available at the link (cookie policy) on the Site.


Your personal data will be processed, with your consent where necessary, for the following purposes, where applicable:

3.1. to allow users to use the services offered by the platform, (e.g.: request for contact, request for a quote, request for information, request to send documentation, report abuse;

3.2. to find specific requests, also by telephone, addressed to the Data Controller;

3.3. to comply with any obligations provided for by the laws in force, by regulations or by the community regulations, or to satisfy requests coming from the authorities;

3.4. to exercise the rights of the Data Controller;

3.5. for statistical purposes, without it being possible to trace your identity;

3.6. Soft opt-in: to carry out direct marketing via e-mail provided by you for similar services previously purchased by you as a customer (including: demos, material or documentation downloadable on the Site), unless you expressly refuse to receive such communications, which you may express when requesting the services or on subsequent occasions. Your personal data will be processed by automated and non-automated means.

Specific security measures are observed to prevent the loss of data, unlawful or incorrect use and unauthorized access.


The legal basis for the processing of personal data for the purposes set out in section 3.1. and 3.2. is Article 6(1)(b) of the GDPR ([...]the processing is necessary for the performance of a contract to which the data subject is party or for the performance of pre-contractual measures taken at the request of the data subject), as the processing is necessary for the provision of services. The provision of personal data for these purposes is optional, but failure to do so would make it impossible to activate the services requested.

The legal basis for the purposes referred to in section 3.3. is art. 6(1)(c) of the GDPR ([...] the processing is necessary for compliance with a legal obligation to which the controller is subject). Once the personal data has been provided, in fact, the processing is indeed necessary to comply with legal obligations to which the Data Controller is subject.

The legal basis for the purpose set out in section 3.4. is Article 6(1)(f) of the GDPR (..... The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child).

Please also note that the processing referred to in section 3.5. is not performed on personal data and can therefore be freely carried out by the Data Controller.

The processing of your Personal Data for the purposes described in section 3.6. represents a legitimate treatment under the applicable legislation on the protection of personal data, which does not require your consent (art. 130 co. 4 d.lgs. 196/2003). You may object to the processing of your Personal Data for this purpose both when requesting the products and services available on the Site and in subsequent communications from the Data Controller.


Your personal data may be shared, for the purposes set out in section 3 of this Privacy Policy, with:

5.1. subjects who typically act as data processors: a) persons, companies or professional firms that provide assistance and advice to the Data Controller in administrative and legal matters, in relation to the provision of services; b) subjects with whom it is necessary to interact for the provision of services (e.g. hosting providers); c) subjects delegated to carry out technical maintenance activities (including the maintenance of network equipment and electronic communication networks);

 5.2. persons authorized by the Portizzolo to process personal data necessary to carry out activities strictly related to the provision of services, who are committed to confidentiality or have an adequate legal obligation of confidentiality and who guarantee the Data Processing in accordance with the GDPR.

5.3. persons, entities or authorities to whom it is mandatory to communicate your Personal Data pursuant to provisions of law or orders of the authorities or in case of reports to investigate complaints and identify the source of messages received from users;

The complete and updated list of Data Processors is kept at the Data Controller's operational headquarters.


The data provided will in no case be disseminated or communicated to third parties, except for subjects whose right to access the data is recognized by law or orders of the authorities, as well as subjects, including external and/or foreign ones, to whom the communication is necessary to carry out fiscal or administrative obligations, or subjects that the data Controller makes use of for the performance of activities instrumental and/or ancillary to the fulfillment of its obligations arising from the conclusion of contracts governed by the General Conditions of Sale on line and/or in any case related to the services offered (for example: members of the Portizzolo). Please also note that in order to carry out the above activities, the data collected may be transferred to servers that may be located in countries outside the EU (booking service). In this case, after verifying that the country in question guarantees an "adequate" level of protection pursuant to art. 46 GDPR 679/16, the Data Controller will guarantee suitable security measures based on the provisions of the Regulation.


Personal data processed for the purposes set out in section 3.1. - 3.2. - 3.6. will be kept for the time strictly necessary to achieve those same purposes and, since they are processed for the provision of services, until the period of time provided for and allowed by Italian law to protect the interests and rights of defense of the Data Controller, having regard to the limitation periods provided for by applicable law (Art. 2946 c.c. et seq.). Personal Data processed for the purposes set forth in section 3.3. will be kept until the time provided for by the specific obligation or rule of applicable law.

Further information regarding the period of conservation of data and the criteria used to determine this period can be requested by sending a written request to the Data Controller to the e-mail address indicated in this notice.


You have the following rights:

Right of access (Art. 15 GDPR): You have the right to request confirmation as to whether or not your personal information is being processed, and, where that is the case, to request access to the personal information and information such as the purposes of the processing or the categories of personal information concerned.

Right to rectification (Art. 16 GDPR): You have the right to request the correction of inaccurate personal information.

Right to erasure (Art. 17 GDPR): You have the right to request erasure of personal information without undue delay under certain circumstances, e.g. if your personal information is no longer necessary for the purposes for which it was collected or if you withdraw consent on which processing is based according to Art. 6 (1) (a) GDPR and where there is no other legal ground for processing.

Right to restriction of processing (Art. 18 GDPR): You have the right to request us to restrict the processing of your personal information under certain circumstances, e.g. if you think that the personal information we process about you is incorrect or unlawful.

Right to object (Art. 21 GDPR): You have the right to object to the processing of your personal information under certain circumstances, in particular if we process your personal information on the legal basis of legitimate interest (Art. 6 (1) (f) GDPR) or if we use your personal information for marketing purposes.

Right to data portability (Art. 20 GDPR): Under certain circumstances, you have the right to receive your personal information you have provided us with, in a structured, commonly used and machine-readable format and you have the right to transmit that information to another controller without hindrance or ask us to do so.

Where the processing is based on point (a) of Article 6(1), the existence of the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

You can assert your abovementioned rights by contacting our Privacy Office at

We don’t use your personal information for automated decision-making, including profiling.

Without prejudice to any other administrative or judicial remedy, in case you consider the processing conflicting with Reg. UE 2016/679, pursuant to article 15 lett. f) you have the right to lodge a complaint with a supervisory authority (


Portizzolo s.a.s.  retains the right to modify, update add or remove parts of this statement at his own discretion, in any moment. Data Controller  invites you to visit this section regularly in order to be informed of the most recent and updated version of the Privacy Policy so as to be always up to date on the data collected and the use made of it by the Data Controller.


Our website may include links to and from websites of our partner networks, advertisers and affiliates, or to social media platforms. If you follow a link to any of these websites, you should remember that these websites have privacy policies in place and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit personal information to their websites.

Last update: 01/05/2021

Speciale agenzie

Lo staff del ristorante Al Veliero collabora attivamente con agenzie di viaggio, scuole, comunità religiose ed enti per organizzare le visite al Vittoriale degli Italiani ed ai luoghi di interesse sl lago di Garda. La nostra struttura consente di ospitare, direttamente sul lungolago di Gardone Riviera oltre 200 persone. Contattaci per conoscere i nostri servizi ed organizzare al meglio la tua visita.


Per qualsiasi informazione:

+39.0365520241 +39.3896562449




FROM 12:00 TO 15:00
FROM 19:00 TO 22:00


Where we are

Lungolago D'Annunzio 12
25083, Gardone Riviera (BS)


Tel.: +39.0365520241 +39.3896562449

+39.0365520241 +39.3896562449