Privacy Policy

Last updated : April 2026

1. Introduction

Villa La Felice ("we", "us", or "our") operates the website lafelicecomo.com and provides villa rental, wedding, event, and hospitality services at our property on Lake Como, Italy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you visit our website, make an enquiry, or book with us.

We are committed to protecting your privacy and handling your data in accordance with the EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679), the Italian Privacy Code (Legislative Decree 196/2003, as amended by Legislative Decree 101/2018), and any other applicable data protection legislation.

By using our website or submitting your personal information to us, you acknowledge that you have read and understood this Privacy Policy.

2. Data Controller

The data controller responsible for your personal data is:

Name: Villa La Felice

Address: Lake Como, Province of Como, Lombardy, Italy

Email: info@lafelicecomo.com

If you have any questions about how we handle your personal data, please contact us using the details above.

3. What Personal Data We Collect

We may collect and process the following categories of personal data:

3.1 Information You Provide to Us

• Full name

• Email address

• Telephone number

• Postal or billing address

• Enquiry type (accommodation, wedding, event, or other)

• Message content and any specific requirements or preferences you share with us

• Payment and billing information (processed securely via third-party payment providers)

3.2 Information Collected Automatically

• IP address and approximate geographic location

• Browser type and version

• Device type and operating system

• Pages visited, time spent on pages, and navigation paths

• Referring website or source

• Cookies and similar tracking technologies (see Section 8)

3.3 Information from Third Parties

We may receive personal data about you from third-party booking platforms (such as Airbnb and Expedia), wedding directories, social media platforms, and event planning partners, in connection with a booking or enquiry you have made.

4. How We Use Your Personal Data

We process your personal data for the following purposes:

• To respond to your enquiries about accommodation, weddings, events, or experiences

• To manage and confirm bookings and process payments

• To provide our hospitality services during your stay

• To communicate with you about your booking, including pre-arrival information and post-stay follow-up

• To send you marketing communications where you have given your consent (you may opt out at any time)

• To improve our website, services, and guest experience

• To comply with legal obligations, including tax, accounting, and regulatory requirements

• To protect our legitimate interests, including fraud prevention and the security of our property

5. Legal Basis for Processing

Under the GDPR, we rely on the following legal bases to process your personal data:

Contractual Necessity: Processing is necessary to perform a contract with you or to take steps at your request before entering into a contract (e.g. managing your booking or responding to your enquiry).

Consent: Where you have given us explicit consent to process your data for a specific purpose, such as receiving marketing emails. You may withdraw consent at any time.

Legitimate Interests: Processing is necessary for our legitimate interests, such as improving our services, maintaining security, and conducting business analytics, provided these interests do not override your fundamental rights and freedoms.

Legal Obligation: Processing is necessary to comply with applicable laws and regulations.

6. Who We Share Your Data With

We do not sell your personal data to any third party. We may share your data with the following categories of recipients, only to the extent necessary:

• Our in-house team, including our events coordinator and private chef, to deliver our services

• Third-party booking platforms (Airbnb, Expedia) through which you made your reservation

• Payment processors and financial institutions to process transactions securely

• Website hosting and analytics providers (e.g. Squarespace, Google Analytics)

• Wedding planners, photographers, or other vendors you have engaged for your event at the villa

• Professional advisors including accountants and legal counsel

• Public authorities where required by law

Where we share data with third-party service providers, we ensure appropriate contractual safeguards are in place to protect your data.

7. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA), for example where our third-party service providers (such as website hosting or analytics platforms) are based outside the EEA. Where such transfers occur, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your data in accordance with the GDPR.

8. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your browsing experience, analyse site traffic, and understand how visitors interact with our site.

Essential Cookies: Required for the website to function correctly. These cannot be disabled.

Analytics Cookies: Help us understand how visitors use our site (e.g. Google Analytics). These are only placed with your consent.

Marketing Cookies: Used to deliver relevant advertising and track campaign performance. These are only placed with your consent.

You can manage your cookie preferences through the cookie banner displayed when you first visit our site, or by adjusting your browser settings. Please note that disabling certain cookies may affect the functionality of the website.

9. How Long We Keep Your Data

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected:

• Booking and guest records: up to 10 years after your stay, as required by Italian tax and accounting regulations

• Enquiry data (where no booking is made): up to 24 months from the date of your last communication with us

• Marketing consent records: for as long as you remain subscribed, plus 12 months after you unsubscribe

• Website analytics data: up to 26 months (in line with Google Analytics default retention settings)

After the applicable retention period, your data will be securely deleted or anonymised.

10. Your Rights

Under the GDPR and Italian data protection law, you have the following rights in relation to your personal data:

• Right of Access: You may request a copy of the personal data we hold about you.

• Right to Rectification: You may request that we correct any inaccurate or incomplete data.

• Right to Erasure: You may request that we delete your personal data, subject to legal retention requirements.

• Right to Restrict Processing: You may request that we limit how we use your data in certain circumstances.

• Right to Data Portability: You may request a copy of your data in a structured, commonly used, machine-readable format.

• Right to Object: You may object to our processing of your data based on legitimate interests or for direct marketing purposes.

• Right to Withdraw Consent: Where we process your data based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, please contact us at info@lafelicecomo.com. We will respond to your request within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali) at www.garanteprivacy.it.

11. Data Security

We take appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include secure hosting, encrypted data transmission (SSL/TLS), access controls, and regular security reviews.

However, no method of transmission over the internet or electronic storage is completely secure. While we strive to protect your personal data, we cannot guarantee its absolute security.

12. Children’s Privacy

Our website and services are not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe that a child has provided us with personal data, please contact us and we will take steps to delete such information.

13. Third-Party Links

Our website may contain links to third-party websites, including booking platforms, social media profiles, and partner services. We are not responsible for the privacy practices or content of those websites. We encourage you to read the privacy policy of any third-party site you visit.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or services. Any updates will be posted on this page with a revised "Last Updated" date. We encourage you to review this policy periodically.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us:

Email: info@lafelicecomo.com

Address: Villa La Felice, Lake Como, Province of Como, Lombardy, Italy

This Privacy Policy is effective as of April 2026.