1. Data controller
The data controller is:
Numbis Rooms
CIN: IT063049B4SAPICGJ2
Headquarters Via Raimondo de Sangro di Sansevero 23 Naples
Email: nimbusrooms@gmail.com
Telephone: +39 3514913 853
2. Introduction
This notice describes how personal data of users visiting the website (hereinafter the “Site”) or making requests or bookings is collected and processed.
The processing of personal data is carried out in compliance with:
General Data Protection Regulation
Data Protection Code
3. Types of data collected
The Data Controller may collect and process the following categories of data:
a) Identification and contact details
Full name
Email address
Telephone number
Country of origin
b) Booking details
Booking details
Information about your stay
Payment details (handled by third-party providers – we do not store credit card details)
c) Technical and navigational data
IP address
Device and browser information
Site usage data
d) Preferences
Language
Marketing preferences
Cookie preferences
4. Purpose and legal basis of processing
a) Booking and service management
The data is processed to manage bookings, communicate with the user, and provide the requested services.
Legal basis: performance of a contract
Customer support
Per rispondere a richieste o comunicazioni.
Legal basis: legitimate interest
c) Site improvement and analysis
To analyse site usage and improve its performance.
Legal basis: legitimate interest / consent (where required)
Marketing communications
The Data Controller may send promotional communications, offers, or updates relating to Nora’s Suites only with the explicit consent of the user.
Consent can be withdrawn at any time.
Legal basis: consent
5. Data communication
Personal data will not be sold or passed on to third parties for marketing purposes without the user's consent.
However, for the provision of services, data may be processed by third parties such as:
Payment service providers
Booking platforms (e.g. Booking.com, Airbnb)
IT and hosting service providers
These subjects process data exclusively for the purposes necessary to provide the service and in compliance with the GDPR.
Some entities (such as booking platforms) may act as independent controllers.
The data may also be communicated to the competent authorities in cases provided for by law.
6. Data Retention
Personal data is kept for as long as is necessary for the purposes for which it is collected:
Booking and tax data: up to 10 years (legal obligations)
For marketing purposes: until consent is revoked or for a maximum indicative period of 24 months
Technical/analytical data: anonymised where possible
7. Data subject rights
The user has the right to:
Access your personal data
Request correction of inaccurate data
Request data erasure
To limit treatment
To receive data in portable format
Object to treatment
Withdraw consent at any time
To exercise one's rights:
nimbusrooms@gmail.com
You can also make a complaint to:
Information Commissioner's Office
8. Data security
The Controller adopts appropriate technical and organisational measures to protect personal data from unauthorised access, loss or unlawful use.
9. Cookie Policy
What are cookies
Cookies are small text files that are stored on the user's device while browsing.
Types of cookies used
a) Technical cookies (necessary)
Essential for the website's operation and require no consent.
b) Analytical cookies
Used to collect information on website usage.
They can request user consent.
c) Marketing cookies (if any)
Used for advertising or profiling purposes.
They require explicit consent.
Cookie management
The user can manage cookie preferences through their browser or via the banner on the website.
Disabling cookies may impair some website functionality.
10. Updates
This notice may be updated from time to time. The most recent version will always be available on the Site.