Reset Password

Guest Support
Partner Support
Total: 0,00 
View CartCheckout
  1. Home
  2. GDPR
Your search results

GDPR

Last updated: 28 August 2025

This policy is provided pursuant to Articles 13 and 14 of Regulation (EU) 2016/679 (‘GDPR’) and national legislation on the protection of personal data.

The website www.semplicestay.it (hereinafter, the “Website”) is managed by Younes Ouertani – Semplice BnB, with registered office in Via Garibaldi 34, 91100 Trapani (TP), email: info@semplicestay.it, in its capacity as Data Controller.

1. Types of data collected

The Data Controller processes different types of data, depending on users’ interactions with the Website:

  • Browsing data and cookies: IP addresses, logs, technical data of the browser and device, technical cookies and, with prior consent, analytical or profiling cookies (see Cookie Policy).
  • General user contact details: name, surname, telephone number, email address, content of the request.
  • User contact with registered companies/professionals: name, surname, telephone number, email address, content of the request (forwarded to the professional/company).
  • Guest contact with property owners: data collected via the contact form on the property pages (first name, last name, telephone number, email address, content of the request). This data is received by both the property owner (for the purpose of managing the request) and SempliceStay (for technical and security purposes, including the prevention of abuse and monitoring of service quality).
  • Property owners (hosts): name, surname, telephone number, email address, property details, location, uploaded photos of the property, useful information for valuations or consultations.
  • Companies/professionals (Experiences/Services section): personal and company details (first name, last name, company, telephone number, email address, website, WhatsApp), description of services, images/logo, identity documents and Chamber of Commerce registration (for verification purposes), subscription payment details (via WooCommerce and external providers).
  • WooCommerce checkout (consultancy services and subscriptions): billing details (first name, last name, address, VAT number/tax code, email, telephone number), payment details (e.g. PayPal, Stripe or other chosen system).

2. Purpose of processing

Data is processed for the following purposes:

  • Management of general contact requests sent by users to SempliceStay.
  • Management of contact requests from users → companies/professionals registered on the portal, including the transmission of messages and contact details to the recipient company.
  • Management of contact requests from guests → property owners: the guest’s message and contact details are sent directly to the owner to enable the request to be processed. SempliceStay receives a copy of the communication to ensure the proper functioning of the service, for security reasons and for any technical support.
  • Management of requests from property owners for valuations and advice, including the collection of photos of the properties.
  • Management of company/professional registrations for the publication of experiences/services: data collection, document verification, subscription management and publication of the listing on the portal (with the contact details provided).
  • Management and completion of purchases via WooCommerce (consultancy services or subscriptions): including payments, invoicing and administrative/tax compliance.
  • Operational and service communications via email, telephone and WhatsApp.
  • Site security protection and prevention of abuse or fraud.
  • Legal compliance and contractual obligations.
  • Promotional and marketing activities (only with specific and optional consent).

3. Legal basis for processing

  • Execution of pre-contractual and contractual measures (Art. 6.1.b GDPR): management of requests, registrations, service contracts, WooCommerce purchases.
  • Legal obligations (Art. 6.1.c GDPR): tax, accounting and regulatory compliance.
  • Legitimate interest (Art. 6.1.f GDPR): website management, security, abuse prevention, protection of the quality of the portal.
  • Consent (Art. 6.1.a GDPR): promotional activities, publication of company/professional data, optional communications.

4. Methods of processing

The data is processed using IT and paper-based tools, in a lawful, correct and transparent manner.

Appropriate security measures are taken to prevent unauthorised access and data loss.

Sensitive documents (identity documents and Chamber of Commerce registration) are sent to the Data Controller for verification purposes only and are not stored in the website’s databases.

The data of registered companies/professionals is made public on the portal (telephone, email, WhatsApp, website and service description) as part of the requested service.

Payment data is managed securely through external payment providers (e.g. PayPal, Stripe) and is not processed directly by the Website.

5. Data retention

  • General contacts and requests to professionals: retained for the time necessary to manage the request.
  • Property owners: data retained for the time necessary to provide valuations/consultancy and, if a contract is entered into, for the entire duration of the relationship and legal obligations.
  • Registered companies/professionals: data stored for the duration of the subscription and legal obligations; published data remains visible until termination or request for removal.
  • Sensitive documents: deleted after verification and not stored on the site.
  • WooCommerce purchase data: stored for the period required by tax and accounting law.

6. Data recipients

The data may be disclosed to:

  • authorised personnel of the Data Controller;
  • technical suppliers (hosting, email providers, IT services, maintenance, WooCommerce, payment gateways);
  • companies/professionals registered on the portal, if the user contacts them through the Site;
  • property owners contacted by guests through the Site, who receive the data entered by the user in order to respond to the request;
  • public authorities in compliance with legal obligations.

The public data of companies/professionals will be visible online on the portal, as an integral part of the service.

7. Transfers outside the EU

In general, such transfers are not expected. Should certain service providers (e.g. email providers, cloud providers, payment gateways) operate outside the EU, transfers will be carried out in accordance with the GDPR (adequacy decisions or standard contractual clauses).

8. Data subject rights

Users may exercise the rights under Articles 15-22 of the GDPR, including:

  • access, rectification, updating and deletion of data;
  • restriction and objection to processing;
  • data portability;
  • withdrawal of consent;
  • complaint to the Data Protection Authority.

Requests must be sent to: info@semplicestay.it.

9. Marketing and commercial communications

Promotional communications are sent only with your optional consent. Consent can be revoked at any time by writing to info@semplicestay.it or by clicking on the unsubscribe link that may be included in communications.

10. Cookies

The Website uses technical cookies and, with your consent, analytical and profiling cookies. More details can be found in the Cookie Policy.

11. Data controller

Younes Ouertani – Semplice BnB
Via Garibaldi 34, 91100 Trapani (TP)
Email: info@semplicestay.it