Privacy Policy

Last updated: January 2026

Sestri Sea Service Last updated: January 2026

1. Introduction

Sestri Sea Service (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website sestriseaservice.com and use our boat tour services.

We comply with the General Data Protection Regulation (GDPR) and Italian data protection laws (D.Lgs. 196/2003 as amended by D.Lgs. 101/2018).

2. Data Controller

Sestri Sea Service Sestri Levante, Liguria, Italy Email: [email protected] Phone: +39 349 120 6283

3. Information We Collect

3.1 Information You Provide

When you book a tour or contact us, we may collect:

  • Contact Information: Name, email address, phone number
  • Booking Details: Preferred dates, number of guests, special requests
  • Communication Records: Messages you send us via our contact form, email, or WhatsApp

3.2 Information Collected Automatically

When you visit our website, we may automatically collect:

  • Device Information: Browser type, operating system, device type
  • Usage Data: Pages visited, time spent on site, referring website
  • Location Data: General geographic location based on IP address

3.3 Cookies

Our website uses cookies to enhance your browsing experience. See Section 8 for our Cookie Policy.

4. How We Use Your Information

We use your personal data for the following purposes:

  • To Process Bookings: Confirm reservations, send booking confirmations, and communicate tour details
  • To Provide Services: Deliver the boat tour experience you have booked
  • To Communicate: Respond to inquiries, send important updates about your booking
  • To Improve Our Services: Analyze website usage to enhance user experience
  • To Comply with Legal Obligations: Meet regulatory and legal requirements

Legal Basis for Processing (GDPR Article 6):

  • Performance of a contract (booking services)
  • Legitimate interests (improving services, responding to inquiries)
  • Consent (marketing communications, cookies)
  • Legal obligation (tax and regulatory compliance)

5. Information Sharing

We do not sell your personal information. We may share your data with:

  • Service Providers: Third-party platforms that help us operate our business:
    • Holidoit (booking platform)
    • Payment processors
    • Email service providers
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

All third parties are required to protect your data in accordance with applicable laws.

6. Data Retention

We retain your personal data for:

  • Booking Records: 10 years (Italian tax law requirements)
  • Communication Records: 2 years after last interaction
  • Website Analytics: 26 months (anonymized)

You may request deletion of your data at any time, subject to legal retention requirements.

7. Your Rights (GDPR)

Under the GDPR, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data (“right to be forgotten”)
  • Restriction: Limit how we process your data
  • Portability: Receive your data in a portable format
  • Object: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent at any time for consent-based processing

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali) at www.garanteprivacy.it.

8. Cookie Policy

8.1 What Are Cookies

Cookies are small text files stored on your device when you visit our website.

8.2 Types of Cookies We Use

Cookie TypePurposeDuration
EssentialEnable basic website functionsSession
AnalyticsHelp us understand how visitors use our siteUp to 2 years
FunctionalRemember your preferencesUp to 1 year

8.3 Third-Party Cookies

We may use third-party services that set cookies:

  • Google Analytics (website analytics)
  • Holidoit (booking integration)

8.4 Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality.

9. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When this occurs, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by the European Commission

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Secure HTTPS encryption on our website
  • Limited access to personal data on a need-to-know basis
  • Regular security assessments

While we strive to protect your data, no method of transmission over the Internet is 100% secure.

11. Children’s Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated “Last updated” date. Significant changes will be communicated via email or website notice.

13. Contact Us

For questions about this Privacy Policy or to exercise your rights:

Sestri Sea Service Email: [email protected] Phone: +39 349 120 6283 Address: Sestri Levante, Liguria, Italy

Back to Home