top of page

privacy POLICY

Dolomiti Ultra Tour - Privacy Policy

​

INTRODUCTION

This Privacy Policy describes how personal data of users who visit or interact with the Dolomiti Ultra Tour website (hereinafter "the Site") is collected and processed. Respect for users' privacy is of fundamental importance to us.

​

DATA CONTROLLER

The Data Controller is Lorenzo Zani, who can be contacted at the email address: avventura@dolomitiultratour.it

​

TYPES OF DATA COLLECTED

​Browsing data

The computer systems and software procedures used to operate the Site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of computers used by users connecting to the Site, and other parameters related to the user's operating system and computing environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning.

​

Data voluntarily provided by the user

The optional, explicit, and voluntary sending of messages to the contact addresses indicated on the Site involves the subsequent acquisition of the sender's email address, necessary to respond to requests, as well as any other personal data included in the communication.

​

Data of Dolomiti Ultra Tour participants

For participants who complete the Dolomiti Ultra Tour route, we collect the following data on a voluntary basis:

  • First and last name

  • Completion time

  • Date of the attempt

  • Any photos or accounts of the experience voluntarily shared

These data are collected only with the explicit consent of the participants, who can choose to be included in the list of finishers published on the Site.

​

PURPOSES OF PROCESSING

Personal data is processed for the following purposes:

  1. To allow navigation on the Site

  2. To respond to requests sent through contact channels

  3. To manage the sending of the GPS track and roadbook to those who request it

  4. To publish the names of finishers in the appropriate list (only with explicit consent)

  5. To send the patch/sticker to finishers who are entitled to it

  6. To manage the administrative and security activities of the Site

LEGAL BASIS OF PROCESSING

The processing of personal data is based on:

  • The execution of a contract to which the data subject is a party or the execution of pre-contractual measures adopted at the request of the data subject (sending the track, managing requests)

  • Explicit consent (for the publication of names in the list of finishers)

  • The legitimate interest of the controller (for the security of the Site and anonymous statistical analysis)

PROCESSING METHODS

Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected. Specific security measures are observed to prevent data loss, illicit or incorrect use, and unauthorized access.

​

SHARING AND COMMUNICATION OF DATA

The personal data collected will not be disseminated, sold, or exchanged with third parties, except for possible forms of communication necessary to fulfill legal obligations or to respond to legal and judicial requests.

The names of finishers will be published on the Site only with the explicit consent of the interested parties.

​

RIGHTS OF DATA SUBJECTS

Users can exercise at any time the rights provided by the GDPR, in particular:

  • Right of access to their personal data

  • Right to rectification or erasure

  • Right to restriction of processing

  • Right to object to processing

  • Right to data portability

  • Right to withdraw consent (without prejudice to the lawfulness of processing based on consent given before the withdrawal)

  • Right to lodge a complaint with the supervisory authority (Data Protection Authority)

To exercise these rights, users can contact the Data Controller at the email address indicated above.

​

DATA RETENTION

Personal data is retained for the time necessary to fulfill the purposes for which it was collected, or for the time required by legal obligations. In particular:

  • Browsing data is kept for 14 days

  • Contact data is kept for the time necessary to respond to requests

  • Finishers' data is kept until the data subject requests deletion

DATA TRANSFER

Personal data is stored on servers located within the European Union. It is understood, however, that the Data Controller, if necessary, will have the right to move the servers also outside the EU. In this case, the Data Controller ensures that the transfer of data outside the EU will take place in accordance with the applicable legal provisions.

​

CHANGES TO THIS POLICY

This Policy may be subject to changes. It is therefore recommended to regularly check this page and refer to the most updated version.

Last update: 08/03/2025

bottom of page