Last Updated March 2022
Full name of legal entity: Lucca Cycling Club di Elizabeth Anne Te Stroete
Information We Collect
“Personal Information” is defined as information about you that is personally identifiable, like your name, billing address, email address, or phone number, and that is not otherwise publicly available. When you visit our website, sign up for our newsletters or purchase a service, you are not anonymous to us.
Technical Data: that includes your data of the use of our website such as your IP address, cookie information, amount of time spent on particular pages, details about your browser, length of visit to pages and other technology and devices you use to access our website. The source of this data is through various analytics tracking systems. We use this data to protect our website, deliver relevant content, and measure the effectiveness of our advertising.
Marketing Data: We collect your first name and email address when you opt-in to receive our newsletter on the lawful and legitimate interests of serving you as a consumer and growing our business. We process your data using third parties such as advertising networks such as Facebook, email marketing services such as ActiveCampaign, and payment processors such as Stripe.
Visitors may opt-out of our newsletter at any point with the unsubscribe link at the bottom of our emails or by contacting us at [email protected] anytime.
We do not collect any sensitive data about you. Sensitive data refers to personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, genetic data, biometric data processed solely to identify a human being, health-related data, and data concerning a person’s sex life or sexual orientation.
How We Collect Your Personal Data
We may collect data from you by filling out forms directly on our website or by emailing us. We may also immediately collect data as you visit our website by using cookies. We may also collect your data using third parties such as analytics providers such as Google Analytics, advertising networks such as Facebook, email marketing services such as ActiveCampaign and Optinmonster, and payment processors such as Stripe.
If you’re booking with others or for someone else, you will have to give us their information as well, for example their name and date of birth. It is your responsibility to ensure that they are aware that you have done so, and that they accept how we use and process their information as well as yours.
What We Do with Your Data
Your personal information could be used in the following ways:
Processing your bookings: We use your personal information to ensure the services you’ve selected, which may include hotels, transport, insurance, and other ancillary products are provided to you. We need certain information about you and your party so we can fulfill the contractual obligations when you make a booking.
User Accounts: The information that you provide when you set up an account allows us to provide you with additional services including the ability to manage your bookings, personal settings, and access to special offers.
To communicate with you about your booking: We’ll need to contact you using the email or telephone number you provided to give you information relevant to your arrangements. For example, to confirm your booking, notification of any changes, security alerts, administrative messages about your arrangements, and reminders.
Customer Services: You can contact us at any time, whether this is a general query, a question about your booking, or to report an issue. You can do this through our website, by telephone or email. We’ll use the information that you’ve given us to answer any questions and respond to your query or other queries you might have in the future. If you do contact us by telephone, your call may be recorded and reviewed for quality and training purposes. Recordings are only kept for a limited period and then automatically deleted unless we have a legitimate interest in keeping them for a longer period.
Personalization of your experience: We sometimes use your data to enable us to show you the most relevant products and services we think you’ll be interested in, such as the best deals and special offers for destinations you like or have been to previously.
Improving our services: Sometimes we might use your data to help us improve the quality and functionality of our services. This could include eliminating bugs in our system, data analysis, testing, and statistical and survey purposes, all of which helps us improve the service we offer.
Security: We may use your data as part of efforts to keep our sites (and the information you provide to us) safe and secure, and to prevent fraud or unauthorized access/use of our sites.
Fraudulent Claims: We may use your personal information to prevent, detect, or defend any claims/actions we believe to be potentially fraudulent or detrimental to our legitimate interests.
Legal and regulatory compliance: We might need to use your information in relation to any legal disputes, regulatory, compliance or criminal investigations, or if necessary, to enforce our rights.
When do we share your data with third parties?
In certain circumstances we may share the information you provide to us with organizations outside of Lucca Cycling Club. The third parties who we might share your data with include:
Service Providers: If you make a booking, we’ll have to share your booking data with the third parties, such as hoteliers, insurers, and transfer providers to complete your booking contract. The data shared may include your name and the names and ages of any guests traveling with you, any preferences, or special requests you told us about when you made your booking and your contact details. If you contact us with a query about your booking, we may pass this on to our providers if they are needed to answer you.
Third party support services: These include anyone who provides support services or functions on our behalf, including payment card processing, business analytics, review agencies, advertising, and customer support services. This may be to send you marketing material on our behalf or to collate information that can be analyzed to improve our service. They have access to and may collect information only as required to perform their agreed functions and are not permitted to share or use information for any other purpose.
Payment Processors and other financial institutions: When you make a payment on your booking, we use a third-party payment processor, Stripe, to take your payment. If you request a chargeback on your booking, it may be necessary for us to share certain details with the payment processor and the relevant financial institution, so they can manage the chargeback. This may include a copy of your booking confirmation, financial details and the IP address that was used to make your booking.
Referring websites: If you were referred to our site via another webpage, we may share some information about you with that referring website so that they can contact you about their products and services, which may include Google Analytics.
Business Affiliates: We may share your data with our business affiliates with whom we offer relevant joint services. This may include other agencies and advertising networks. We do this to maximize the services that we provide you and so they may contact you directly about their relevant products and services that may interest you. You can unsubscribe from these emails at any time.
Law enforcement authorities: We will disclose personal information insofar as it is required by law or where we believe it is necessary for the prevention, detection, or prosecution of potentially criminal acts, including for fraud, immigration, customs, security, or anti-terrorism purposes.
Please note that while we have procedures and security features to protect your information from access by unauthorized persons and against unlawful processing, accidental loss, destruction, and damage, we don’t control the privacy practices of any of these third-parties or your Service Providers and we would encourage you to review their own privacy policies where appropriate.
Legal Basis for Processing Personal Data
When we process your information as described above, we will be relying on one or more of the following legal rights:
Performance of a contract: We use your information to carry out the contract that you have with us and your Service Providers. We’ll use the information that you provide us when making a booking to conclude and process the reservations with the relevant third-party Service Providers.
Consent: You may, through your action(s) of providing us your details, consent to us sending you marketing and promotional material. If you do kindly give us this consent, we’ll rely on this consent when contacting you. You can always withdraw your consent at any time by simply unsubscribing.
Legitimate interest: We may use your information for our own legitimate interest, for example to provide you with the most relevant content on our site or to promote new services and for certain administrative and legal purposes. If you fail to complete a purchase, we may send you some follow-up emails to try and help you, or seek your feedback or offer you alternative products related to your selection.
Business transaction: We may use your data in connection with a business transaction such as the sale of a part or the whole of our business.
To Comply with a legal obligation: We may share your personal data with regulatory authorities such as immigration, border control, security, anti-terrorism, and any other legitimate legal obligation as required.
To protect your vital interests or those of another individual: We may share your information in the case of an emergency. For example, with insurance companies or medical personnel.
How We Protect Information
We limit access to Personal Information about you to those affiliated who we believe reasonably need to come into contact with that information to provide products or services to you in order to do their jobs.
We will protect personal information by reasonable security safeguards against loss or theft, as well as unauthorized access, disclosure, copying, use or modification. Our data security protections meet the “reasonable security requirements” of the New York “Shield Act”. Unless required by law or to establish or exercise our legal rights or defend against legal claims, we do not rent, sell, or share Personal Information about you with other non affiliated companies. Please understand, not all security system is fail-proof. We cannot guarantee that its servers are impenetrable, nor can we promise that your information will not be intercepted as it is being transmitted over the Internet. We’ll only retain your information for a reasonable period, or for so long as either you or the law allows.
For Residents of the European Union
Due to the nature of our business and the arrangements you have chosen, it may be necessary for your data to be transferred to, and stored at, a destination outside the European Economic Area ("EEA") and may not be subject to the same level of data protection controls as within the EEA. We will take all reasonable steps to ensure that your data is handled securely.
Your Legal Rights
What rights do you have in relation to your personal information?
You have the following rights in relation to the personal information that we hold about you:
You may request a copy of the personal information we are keeping about you by submitting a request to us at the below address.
You may ask that we correct any inaccuracies in the data, ask us to transfer it to another party or provide it to you for transfer it to another party yourself.
You can ask us not to process your personal information for marketing purposes at any time by sending a request to the below address or clicking ‘unsubscribe’ on any of the emails that we send to you. Alternatively, you can also email [email protected] and it will be done for you. We will let you know if we intend to use your data for marketing purposes.
You have the right to request that we delete all personal information that we hold about you. If there is no other reason beside you providing your consent for us to hold your data, we will delete it upon receiving your request.
We may not delete your personal information if one of the following exceptions exists:
- Information is necessary to complete the transaction;
- Information is necessary to detect security incidents;
- Information is necessary to protect against deceptive, fraudulent, or illegal activity;
- Information is necessary to identify and repair errors;
- Information is necessary to promote free speech;
- Information is necessary for scientific, historical, or statistical research in the public interest;
- Information is necessary for internal uses of the company if those uses are reasonably expected by consumers;
- Information is necessary to comply with a legal obligation; or
- Information is used internally in a manner that is compatible with the context of the collection.
You may contact us at [email protected] to exercise any of these rights free of charge and we will respond within 1 month of the receipt of the request. We may need to ask for additional information in order to confirm your identity.
What about data that is collected through a mobile device?
Mobile devices can be used to access our services, as well as versions of our regular website. These mobile sites work in a similar way to our main website. Sometimes we make use of something known as cross-device tracking, which allows us to track user behavior across different devices. We use this to improve the service that we provide you and for marketing activities, so advertisements shown to you on other websites may be offered based on your activities on linked devices.
Our Policy on "Do Not Track" Signals under the California Online Protection Act (CalOPPA)
We do not support Do Not Track ("DNT"). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.
You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.
Other types of Cookies or third parties that install Cookies: The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.
- Facebook, Inc ads conversation tracking connects data from the Facebook advertising network with actions performed on https://luccacyclingclub.com. Personal Data collected: Cookies and Usage Data.
- Optinmonster, LLC is a service for interacting with ActiveCampaign email address management and email marketing service. Personal Data collected: Cookies, email address, first name and Usage Data.
How to provide or withdraw consent to the installation of Cookies: You can manage preferences for Cookies directly from within your own browser and prevent – for example – third parties from installing Cookies.
Through browser preferences, it is also possible to delete Cookies installed in the past, including the Cookies that may have saved the initial consent for the installation of Cookies by this website. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.
How do we treat personal information of children?
You are only allowed to book through our site if you are over 18 years of age. We only process information about children with the consent of the parents or legal guardians. We are the operator.
Links to other sites
We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.
Who exactly is responsible for processing personal information that is collected under the policy?
We control the processing of data over our sites – in legal terms, this means that Lucca Cycling Club is the Data Controller for the purposes of EU Data Protection laws.