Privacy Policy

We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your personal data.

Last Update: 11 May 2026

Privacy Policy (GDPR) – Osteria del Santo

This Privacy Policy describes how Osteria del Santo collects, uses, and protects the personal data of users who visit our website and use our reservation services.

1. Data Controller

The Data Controller is Osteria del Santo, with registered office at Piazza de Amicis, 13, 73014 Gallipoli LE. For any questions regarding data protection, you can contact us at the following email address: osteriadelsantoweb@gmail.com.

2. Types of Data Collected

We collect only the data strictly necessary to provide you with the best possible service:

  • Reservation Data: First name, last name, email address, phone number, date and time of the visit, and number of guests.

  • Guest Preferences: Any notes voluntarily provided by you, such as allergies, food intolerances, or table seating preferences.

  • Browsing Data: IP address, browser-related data, and usage statistics collected through cookies (e.g., Google Analytics).

3. Purposes of Data Processing

Your data is processed for the following purposes:

  • Reservation Management: To confirm and manage your table booking.

  • Service Communications: To send you reminders or technical updates related to your reservation.

  • Legal Obligations: To comply with tax, accounting regulations, or requests from authorities.

  • Marketing (Subject to Consent): To send you newsletters or special promotions, only if you have explicitly consented to subscribe.

4. Legal Basis for Processing

We process your data based on:

  • Performance of a contract: To manage and fulfill your reservation request.

  • Consent: For sending marketing communications or handling sensitive data (e.g., allergies specified in the notes).

  • Legitimate interest: To improve the security and performance of our website.

5. Data Sharing with Third Parties

Your data will not be sold to third parties. It may only be shared with technical partners necessary to provide the service, such as:

  • Booking and hosting platforms (e.g., Framer, restaurant management systems).

  • Email service providers used for sending confirmations.

  • Legal authorities, strictly when required by law.

6. Data Security

We implement technical and organizational security measures to protect your data, including the use of SSL/TLS encryption protocols. However, no method of transmission over the internet is 100% secure; therefore, we are committed to constantly monitoring our systems to prevent unauthorized access.

7. Your Rights

Pursuant to the GDPR, you have the right to:

  • Access your personal data in our possession.

  • Request the rectification or erasure of your data ("right to be forgotten").

  • Restrict or object to the processing of your data.

  • Withdraw your consent to marketing at any time.

To exercise these rights, please write to: osteriadelsantoweb@gmail.com.

8. Data Retention

We will retain reservation data for as long as strictly necessary to manage the service or as required by applicable tax regulations. Data processed for marketing purposes will be stored until you request to unsubscribe.