WhatsApp Number
393394364906
This privacy statement was last changed on 31/12/2023, last checked on 31/12/2023, and applies to citizens and legal permanent residents of the United States.
In this privacy statement, we explain what we do with the data we obtain about you via https://www.stunningbikecotours.com. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:
If you have any questions, or want to know exactly what data we keep of you, please contact us.
We may collect or receive personal information for a number of purposes connected with our business operations which may include the following: (click to expand)
The following categories of data are collected
Retention period
We determine the retention period according to fixed objective criteria: Until the applicable laws require it
The following categories of data are collected
Retention period
We determine the retention period according to fixed objective criteria: Until the applicable laws require it
The following categories of data are collected
Retention period
We determine the retention period according to fixed objective criteria: Until the applicable laws require it
The following categories of data are collected
Retention period
We determine the retention period according to fixed objective criteria: Until the applicable laws require it
The following categories of data are collected
Retention period
We determine the retention period according to fixed objective criteria: Until the applicable laws require it
The following categories of data are collected
Retention period
We determine the retention period according to fixed objective criteria: Until the applicable laws require it
The following categories of data are collected
Retention period
We determine the retention period according to fixed objective criteria: Until the applicable laws require it
The following categories of data are collected
Retention period
We determine the retention period according to fixed objective criteria: Until the applicable laws require it
The following categories of data are collected
Retention period
We retain this data until the service is terminated.
We only share or disclose this data to other recipients for the following purposes:
Purpose of the data transfer: Bookings
Country or state in which this service provider is located: Canada
Purpose of the data transfer: Website Hosting
Country or state in which this service provider is located: Italy
Purpose of the data transfer: Payments
Country or state in which this third party is located: United States
Purpose of the data transfer: Payments
Country or state in which this third party is located: Luxembourg
Purpose of the data transfer: Analytics
Country or state in which this third party is located: Ireland
Purpose of the data transfer: Website Security
Country or state in which this third party is located: United States
Purpose of the data transfer: CMS Backend
Country or state in which this third party is located: United States
Purpose of the data transfer: Website DNS, Caching, Security & Analytics
Country or state in which this third party is located: United States
We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.
If our website or organisation is taken over, sold, or involved in a merger or acquisition, your details may be disclosed to our advisers and any prospective purchasers and will be passed on to the new owners.
Our website responds to and supports the Do Not Track (DNT) header request field. If you turn DNT on in your browser, those preferences are communicated to us in the HTTP request header, and we will not track your browsing behavior.
Our website uses cookies. For more information about cookies, please refer to our Cookie Policy on our Opt-out preferences webpage.
We have concluded a data processing agreement with Google.
Google may not use the data for any other Google services.
The inclusion of full IP addresses is blocked by us.
We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.
The security measures we use consist of:
This privacy statement does not apply to third-party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.
We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.
If you have any questions or want to know which personal data we have about you, please contact us. Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person. We shall provide the requested information only upon receipt of a verifiable consumer request. You can contact us by using the information below. You have the following rights:
9.1 You have the following rights with respect to your personal data
9.2 Supplements
This section, which supplements the rest of this Privacy Statement, applies to citizens and legal permanent residents of California (CPRA), Colorado (CPA), Connecticut (CTDPA), Nevada (NRS 603A), Utah (UCPA) and Virginia (CDPA)
A consumer shall have the right to request that a business that collects personal information about the consumer disclose to the consumer the following:
A consumer shall have the right to request that a business that sells the consumer’s personal information, or that discloses it for a business purpose, disclose to that consumer:
A consumer shall have the right to request that a business delete any personal information about the consumer which the business has collected from the consumer.
A business that receives a verifiable request from a consumer to delete the consumer’s personal information pursuant to subdivision (a) of this section shall delete the consumer’s personal information from its records and direct any service providers to delete the consumer’s personal information from their records.
A business or a service provider shall not be required to comply with a consumer’s request to delete the consumer’s personal information if it is necessary for the business or service provider to maintain the consumer’s personal information in order to:
You may submit a request directing us not to make certain disclosures of personal information we maintain about you. For more information about the possibility of submitting an opt-out request, please refer to our Opt-out preferences page.
We have not sold consumers’ personal data in the preceding 12 months
We have not disclosed consumers’ personal information for a business purpose in the preceding 12 months.
When exercising the right to Access personal data , you have the right to obtain the personal data in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the data to another entity without hindrance. You may exercise this right no more than two times per calendar year.
You may submit a request directing us not to make certain disclosures of personal information we maintain about you.
Under Colorado law this concerns the following purposes:
For more information about the possibility of submitting an opt-out request, please refer to our Opt-out preferences page.
When exercising the right to Access personal data , you have the right to obtain the personal data in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the data to another entity without hindrance.
We are not required to reveal any trade secret.
You may submit a request directing us not to make certain disclosures of personal information we maintain about you.
Under the CTDPA this concerns the following purposes:
For more information about the possibility of submitting an opt-out request, please refer to our Opt-out preferences page.
You may submit a request directing us not to make certain disclosures of personal information we maintain about you.
For more information about the possibility of submitting an opt-out request, please refer to our Opt-out preferences page.
When exercising the right to Access personal data, you have the right to obtain the personal data that you previously provided to us as a controller in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the data to another entity without hindrance.
You may submit a request directing us not to make certain disclosures of personal information we maintain about you.
Under the UCPA this concerns the following purposes:
For more information about the possibility of submitting an opt-out request, please refer to our Opt-out preferences page.
When exercising the right to Access personal data , you have the right to obtain the personal data in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the data to another entity without hindrance. You may exercise this right no more than two times per calendar year.
You may submit a request directing us not to make certain disclosures of personal information we maintain about you.
Under the CDPA this concerns the following purposes:
For more information about the possibility of submitting an opt-out request, please refer to our Opt-out preferences page.
Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.
Stunning Bike Co-Tours
Via Rezzonico, 32
22100 - Como (CO)
Italy
Italy
Website: https://www.stunningbikecotours.com
Email: privacy@stunningbikecotours.com
Phone number: +39031.514.0010
For the most frequently submitted requests, we also offer you the possibility to use our data request form
The forms which collect your personal data are:
By default Forminator captures the IP Address for each submission to a Form. Other personal data such as your name and email address may also be captured, depending on the Form Fields.
When visitors or users submit a form, we capture the IP Address for spam protection. We also capture the email address and might capture other personal data included in the Form fields. We collect the following data for the contact forms, checkin, newsletter and user registration:
When visitors or users submit a form we retain the data as long as the services require it.
All collected data might be sent to our workers or contractors to perform necessary actions based on the form submission.
Forminator Forms uses these third parties:
Information shared with a payment provider to process payments includes:
This plugin/extension sets the following cookies:
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year. If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select "Remember Me", your login will persist for two weeks. If you log out of your account, the login cookies will be removed. If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
By default WordPress does not share any personal data with anyone. If you request a password reset, your IP address will be included in the reset email.
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue. For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
Visitor comments may be checked through an automated spam detection service.
Pop-ups are the modules we use to collect personal data with your consent for different scopes such as newsletters
When visitors or users submit a form or view a module, we capture the name and email address and might capture other personal data included in the form fields for marketing purposes. These information are provided by you after reading our privacy policy.
When visitors or users submit a form or view a module we retain the data until needed.
All collected data might be shown publicly and we send it to our workers or contractors to perform necessary actions based on the form submission.
If your forms use either built-in or external third party services, in this section you should mention any third parties and its privacy policy.
We use reCAPTCHA to protect your website from fraud and abuse. Their privacy policy can be found here : https://policies.google.com/privacy.
The service uses cookies to count how many times each module is visualized. Cookies might be used to handle other features such as display settings, used when a module should not be displayed for a certain time, whether the user commented before, whether the user has subscribed, among others, if their related settings are enabled.
This website uses the Privacy Suite for WordPress from Complianz to collect records of consent. For this functionality your IP address is anonymized and stored in our database. For more information, see the Complianz Privacy Statement.
Visiting the login page sets a temporary cookie that aids compatibility with some alternate login methods. This cookie contains no personal data and expires after 1 hour.
The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days.
When running Security Check, solidwp.com will be contacted as part of a process to determine if the site supports TLS/SSL requests. No personal data is sent to solidwp.com as part of this process. Requests to solidwp.com include the site's URL. For solidwp.com privacy policy details, please see the SolidWP Privacy Policy.
This site is scanned for potential malware and vulnerabilities by the iThemes Site Scanner. We do not send personal information to the scanner; however, the scanner could find personal information posted publicly (such as in comments) during the scan.
In order to ensure file integrity, Solid Security pulls data from wordpress.org, solidwp.com, ithemes.com and amazonaws.com. No personal data is sent to these sites. Requests to wordpress.org include the WordPress version, the site's locale, a list of installed plugins, and a list of each plugin's version. Requests to solidwp.com and amazonaws.com include the installed SolidWP products and their versions. For wordpress.org privacy policy details, please see the WordPress Privacy Policy. For solidwp.com privacy policy details, please see the SolidWP Privacy Policy. Requests to amazonaws.com are to retrieve content added and managed by SolidWP which is covered by the Amazon Web Services Data Privacy policy.
Security logs are retained for 60 days.
This site is part of a network of sites that protect against distributed brute force attacks. To enable this protection, the IP address of visitors attempting to log into the site is shared with a service provided by solidwp.com. For privacy policy details, please see the SolidWP Privacy Policy.
We use Stripe for identity document verification. Stripe collects identity document images, facial images, ID numbers and addresses as well as advanced fraud signals and information about the devices that connect to its services. Stripe shares this information with us and also uses this information to operate and improve the services it provides, including for fraud detection. You may also choose to allow Stripe to use your data to improve Stripe’s biometric verification technology. You can learn more about Stripe and read its privacy policy at https://stripe.com/privacy. Stripe retains a copy of all the data provided as part of a verification. You may also have consented to allow Stripe to use your data to improve their technology. You can delete your information from Stripe’s servers or revoke your consent by visiting https://support.stripe.com
The calls to our office are managed by an online phone service provider, CloudTalk, and we use the recording feature to allow our operators to train and to have statistics, as described in the message played during the call.
To know more, you can read CloudTalk's Privacy Policy
Telephone Call Recording for GDPR Summary of Call Recording Policy
This summary outlines the call recording process that is in operation. The purpose of call recording is to provide a record of incoming and outgoing calls, which can: