Privacy Policy

Dear User, pursuant to European Regulation No. 679/2016 EU (GDPR), the European Union Directive 94/46/EC of the European Parliament and Council of 24/10/95, and the Italian Privacy Law, Legislative Decree No. 196/2003, known as the “Code regarding the protection of personal data,” and subsequent amendments, we wish to inform you that ForGuest, owner of this portal, as the data controller, uses the services provided such as international communication methods within specific sectors, resulting in the processing of personal data where necessary and as specified on the respective pages.

ForGuest s.r.l.s. (hereinafter ForGuest) has implemented the necessary procedures to comply with regulations for the protection of personal data of those who interact with its services.

ForGuest s.r.l.s. – Via Alghero, 2 – 07039 Valledoria (SS) – through its legal representative, acts as the data controller of the following personal data:

Personal Data
Name, surname, address, country and place of residence, phone number, email address.

Electronic Processing Data
IP address, logs
ForGuest does not use any persistent cookies directly, except for purposes necessary for proper navigation. The use of so-called session cookies (which are not stored persistently on the User’s computer and disappear when the browser is closed) is strictly limited to transmitting session identifiers (consisting of randomly generated numbers from the server) necessary to allow safe and efficient exploration of the site. The session cookies used on this site avoid the use of other IT techniques that could compromise the privacy of Users and do not allow the collection of personally identifiable data of each User.

The use of cookies can still be managed through the functions available in each browser, which allow the User to disable this feature.

ForGuest websites also use Google Analytics to track navigation data for statistical and aggregated purposes. This functionality can be disabled if not accepted, according to Google’s specifications.

In addition to the above, for clients only, data required by law for fiscal and financial purposes are processed.

No other types of data are processed in relation to the corporate services offered.

Purpose of Processing
The data are processed for the management of contact requests, registration and subscription to the services offered, provision of services and support or assistance activities, and institutional promotion and communication.

The data are optionally entered into the system directly by their owners, who are responsible for verifying them and can, at any time, perform any corrections or deletions concerning their data independently. Refusal to provide data does not affect any activities except those for which the data are strictly necessary in relation to the services offered.

The data provided by users are used exclusively for purposes related to the dedicated services, as indicated in the respective service sections, and for conducting research and activities permitted under national and European law. Information is collected through specific pages, where dedicated applications are provided for data submission, such as registration forms, which also contain specific information about data processing.

Data processing is carried out via online, telephone, electronic, or alternative physical methods that ensure confidentiality, and through a complete process including collection, recording, cataloging, storage, processing and modification, research, extraction, publication, blocking, deletion, communication, and dissemination, including the combination of two or more of these activities. Processing may be performed directly by ForGuest or by companies appointed for processing, which can be identified in the list available at the company’s headquarters.

Regarding promotion and institutional communication activities, in case of authorization to process data, the individual agrees to receive information about ForGuest products and services, either individually or periodically, always strictly related to the services provided by ForGuest.

Security
In preparing the risk analysis for data, the optimal level of control over information flows was evaluated. Data are recorded on servers equipped with intrusion-prevention firewalls and stored in data centers managed according to ISO9001 processes, with periodic duplication using automated backup systems. All major company applications operate online on the same type of platform, including accounting management systems. All ForGuest servers are located within the European Union and hosted in data centers compliant with GDPR.

All systems are protected by anti-intrusion, malware, and virus protection, even for the temporary handling of information. The list of authorized personnel for data processing is available upon request. Customer access for data management is performed securely using SSL certificates.

In the event of a security breach affecting one or more pieces of data, a dedicated notification procedure is in place, varying and immediate depending on the type of breach, loss, or tampering of the data.

Likewise, data recovery procedures have been planned and implemented.

Minors
No activities involving minors are planned. All ForGuest actions and services are directed exclusively toward property owners or business services.

Fraud
For the execution of commercial contracts, in addition to registration through digital means, users are contacted by phone and company data are verified. There may be attempts at initial contact by non-genuine individuals or pseudonyms not connected to our company, but at the time of registration, for contractual security purposes, all references are verified by us.

Regarding online payments, ForGuest does not process any payments directly. Payments are handled through third-party systems such as the client’s bank, PayPal, or Stripe, which are highly structured to prevent and control fraud.

Communication of Personal Data to Third Parties

The communication of data to third parties processed by ForGuest derives from its organizational structure and legal obligations.

The following entities may process data for which ForGuest is the data controller:

Aruba S.p.A.
Purpose: Data Center services (infrastructure) and legal compliance (accounting).

Telecom S.p.A./Vodafone/Wind/TIM/Telephone Providers
Purpose: Data transport services from the Data Center to the ForGuest headquarters or mobile staff stations.

Third-Party Service Providers
Purpose: Application development and support related to contracts, tax and accounting consultants.

Financial and Payment Systems
Purpose: Management of payments and collections related to contracts.

Public Administration
Any entity that, by law, may request access to data for legitimate reasons, for control or legal purposes, in relation to the involved subjects.

For the services offered by ForGuest, these services can only be provided if the company receives from the data subject the authorization for processing, for registration and subscription to the services offered, and for the provision of services and support activities. Without this authorization, the services cannot be provided.

Data Retention Period
Data will be retained for the entire period related to the purpose for which it was collected.

Here are the different types of retention:

Session Cookies
Only for the duration of a single browsing session.

Google Analytics Data
Retention according to the collection methods used by Google: https://www.google.com/intl/en/policies/privacy

Personal Data Related to Registrations and Contracts with ForGuest
For the entire duration of the contract, and for the minimum period required by law for the custody of administrative documents, as provided by law.

General Contact Data Not Linked to a Service Contract
2 years.

Data Subject Rights

The data subject can exercise their legally recognized rights at any time, specifically:

•    Revoking consent  
•    Objecting to processing   
•    Accessing their data
•    Verifying and modifying data
•    Limiting processing
•    Requesting deletion  
•    Receiving their data or transferring it to another data controller
•    Filing a complaint

For detailed information regarding the rights and duties of the data subject, please refer to the official document issued by the Italian Data Protection Authority (Garante per la protezione dei dati personali).

Regarding the specific processing carried out by ForGuest, any action or request from the data subject can be sent by email to info@forguest.cloud.

ForGuest is solely responsible for providing the tools that allow users to exercise the above rights according to current legislation. Users have the right to object, in whole or in part, for legitimate reasons, to the processing of their data and may, in accordance with the law, request confirmation of the existence of personal data concerning them, know its origin, receive communication, obtain information about processing methods and purposes, request updating, rectification, integration, deletion, transformation into anonymous form, or blocking in case of legal violations, including data no longer necessary for the purposes for which it was collected. In general, users can exercise all rights recognized by applicable law.

Data Processing: The data controller for this portal is ForGuest, with registered office at Via P. Dettori, 13 – 07039 Valledoria (SS) – Italy, represented by its legal representative, who serves as the Privacy Officer, together with the Data Protection Officer.

Update 17/03/2026