Home / Privacy

Directive 2002/58 / EC – relating to the “processing of personal data and the protection of privacy in the electronic communications sector”.
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data and which repeals Directive 95/46 / EC (Regulation General Data Protection Officer).


As part of the consultation of this site, data relating to identified or identifiable persons may be processed. The “controller” of their processing is La Fiorida Srl Agricultural Company Azienda Agrituristica Valtellina, Via Lungo Adda, 12 – 23016 Mantello (SO).

Following the navigation of the Site, we inform you that the Data Controller will process your personal data which may consist of an identifier such as the name, surname, email address or other personal data freely given by you to the Data Controller (hereinafter also only “personal data “) By entering the contact and / or registration forms for which specific information is required.

The treatments connected to the web services of this site take place at the headquarters of the controller and are only handled by technical personnel appropriately appointed for the processing, or by any third party suppliers in charge of occasional maintenance operations, appointed as Data Processors pursuant to article 28. of the GDPR. The data collected will be kept – for each type of data processed – exclusively for the time necessary to fulfill the specific purposes indicated in the specific summary information displayed on the pages of the site and prepared for particular services.


Navigation Data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but which by their very nature could allow users to be identified. This category of data includes IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) ​​addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could also be used to ascertain responsibility in the event of hypothetical computer crimes against the site: except for this possibility, the data on web contacts do not currently persist for more than seven days.


Data provided voluntarily by the User
The optional and voluntary sending of personal data by the user to the contacts on this site involves the acquisition of the data provided by the requested service, necessary for the provision of the requested service. Specific summary information will be further reported on the site prepared for particular services on request. Such data processed by the computer site, to the processing of following up on the user’s request.


Cookies are small text files that are placed on the user’s computer by the sites they visit. They are mainly used in order to make websites work and make them operate more efficiently, as well as to provide information to the owners of the site. Cookies can be both session and persistent. Session cookies remain stored in the terminal for a short period of time and are deleted as soon as the user closes the browser. Their use is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow safe and efficient exploration of the site.


Persistent cookies, on the other hand, remain stored in the user’s terminal until a set deadline. These, not being deleted directly when the browser is closed, allow you to remember the choices made by the user on your site as well as to collect information about the pages of the site visited by the user, the frequency with which the site is visited and to identify the user navigation path, in order to improve the experience on this site.


Lastly, session or persistent cookies can be first party or third party depending on whether the person who installs the cookies on the user’s terminal is the same operator of the site that the user is visiting (we will then speak of cookies first party) or a different subject (we will then speak of third party cookies).



This site makes use of both First Party and Third Party cookies as it uses the features of the Google Analytics services, offered by Google Inc.

Google Analytics uses “cookies” to collect and analyze information on how to use the websites visited by the user. For more information on Google Analytics cookies and their use by Google Inc., you can consult:
the information on the use of cookies by Google available at:


the information for the privacy policy of Google Analytics at the address.









_ga The default

setting is

instigated after 2 years

Third party analysis This cookie is associated with Google Analytics and used to distinguish users by assigning to each of them a randomly generated number as an identifier. It is used to calculate the number of visitors to any page, sessions and data in order to produce anonymous-style statistical analysis in report form.
_gat The default setting is instigated every 10 minutes Third party analysis This cookie is associated with Google Analytics, it is used to speed up access request.
_gid Default expire date is set after 1 day Third party analysis This cookie is associated with Google Analytics, it records a unique ID which is used to generate statistical data about how the user uses the site.
Grecaptha Default expire date is set after 179 days Necessary cookies This cookie is used to distinguish between humans and robots. This is useful for the website in order to make valid reports on the use of the site.
Consent Default expire date is set after 2 years Necessary cookies It is used to detect whether the visitor has accepted the marketing category in the cookie banner. This cookie is required for GDPR compliance of the website.
COOKIELAWINFO-CHECKBOX Default expire date is set after 1 day Necessary cookies Determines whether the user has accepted the cookie consent box.
JSESSIONID Default expire date is set at the end of the session Necessary cookies Preserves the user’s status on the different pages of the site.
PHPSESSID Default expire date is set at the end of the session Necessary cookies Preserves the user’s status on the different pages of the site.
RC::A It hasn’t expire date Necessary cookies This cookie is used to distinguish between humans and robots. This is useful for the website in order to make valid reports on the use of the site.
RC::B Default expire date is set at the end of the session Necessary cookies This cookie is used to distinguish between humans and robots.
RC::C Default expire date is set at the end of the session Necessary cookies This cookie is used to distinguish between humans and robots.
RC::D-# It hasn’t expire date Necessary cookies This cookie is used to distinguish between humans and robots.
TR Default expire date is set at the end of the session Marketing It is used by Facebook to provide a range of advertising products such as real-time offers from third-party advertisements
VISITOR_INFO1_LIVE Default expire date is set after 179 days Marketing It tryes to estimate the user’s connection speed on pages with embedded You Tube videos
YSC Default expire date is set at the end of the session Marketing It registers a unique ID for statistics related to which You Tube videos have been viewed by the user


The site also makes use of the features offered by the Google Analytics service, which uses cookies to collect and anonymously analyze information on the behaviour of use of websites. This information (including the user’s IP address) is collected by Google Analytics, which processes it in order to draw up reports for the site manager regarding the activities on its/own/sites/web. Google does not associate the IP address with any other data in its possession nor does it try to connect an IP address with the identity of a user. Google may also communicate this information to third parties where this is required by law or where such third parties process the aforementioned information on behalf of Google.


For more information, consult:

You can disable the Google Analytics functionality by following the instructions below:

If the user does not wish to receive any type of cookie on his computer, neither from this site nor from others, he can raise the privacy protection level of his browser using the appropriate function. The site manager reminds you that, based on articles 15 et seq. of EU Regulation 2016/679 there is the right to ask those who use these solutions to delete the information collected through cookies at any time.


Browsers normally allow the control of most cookies through the browser settings. We remind you that the total or partial disabling of the c.d. technicians can compromise the use of the site’s features.
In any case, the user can decide whether or not to accept cookies by changing the security settings of his browser.



This site may contain links or references for accessing other websites, such as the social networks Facebook, Instagram, Google+, Twitter etc … The Company does not control the cookies / monitoring technologies of other websites to which this Policy does not apply.



The personal data referred to in the section “PERSONAL DATA OBJECT OF THE PROCESSING” will be processed respectively for the following purposes:
to. allow the provision of the Services requested by you, namely: i) the request for registration on the site to create an account for the purchase of goods on the Site; ii) make a reservation at the hotel; iii) make a reservation at the restaurant.
b. to allow online payments for services expressly provided within the Site;
c. provide feedback to your requests for information;
d. to evaluate the applications sent in the dedicated section “Work with us”;
e. for sending newsletters.



La Fiorida processes your personal data for the execution of a contract of which you are a party or for pre-contractual measures taken at your request. In this case, the provision of personal data for these purposes is optional but failure to provide it would make it impossible to activate the services provided by the Site or respond to your requests.
La Fiorida also processes your personal data with your express consent. In this case, you are free to give your consent to the specific processing activity and failure to provide it does not make it impossible to use the services provided by the Site.
The interested party where he has given his consent has the right to revoke it at any time by sending an email to the email address
We remind you that specific summary information on the processing of personal data is provided on the Site and requests for consent will be progressively reported or displayed on the pages of the Site prepared for particular services.


Apart from what is specified for navigation data, the user is free to provide their personal data. However, failure to provide them may make it impossible to obtain what is requested.


Personal data are processed, including with the aid of automated tools, for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access. The Data Controller has adopted all the minimum security measures required by law and inspired by the main international standards, it has also taken additional security measures to minimize the risks relating to the confidentiality, availability and integrity of the personal data collected and processed.

The data collected may be transferred or disclosed to other companies for activities strictly connected and instrumental to the operation of the service, such as the management of the computer system. The personal data provided by users who submit requests to send information material (brochures, information material, etc.) are used for the sole purpose of carrying out the service or provision requested and are disclosed to third parties only in the case, in which this is a this necessary purpose (companies that provide enveloping, labeling, shipping services). Outside of these cases, personal data will not be disclosed or granted to anyone, except for contractual provisions or authorization of the subjects. In this sense, personal data could be transmitted to third parties, but only and exclusively if: a) there is explicit consent to share data with third parties; b) there is a need to share information with third parties in order to provide the requested service; c) this is necessary to comply with requests from the Judicial or Public Security Authorities. No data deriving from the web service is disclosed.


Personal data processed for the purposes referred to in this privacy policy will be kept for the time strictly necessary to achieve those same purposes in compliance with the principles of minimization and limitation of conservation pursuant to art. 5.1. lett. e) of the Regulations. In any case, La Fiorida will process personal data for the time necessary for contractual and legal obligations. With reference to the retention of data for the purposes of sending promotional communications, they will be kept until the purpose pursued is achieved and in any case until the revocation of the express consent.


The legislation for the protection of personal data expressly provides for some rights of the subjects to whom the data refer (so-called interested party). In particular, pursuant to articles 15 et seq. of Regulation (EU) 2016/679, each interested party has the right to obtain confirmation of the existence or not of data concerning him, to obtain an indication of the origin and of the purposes and methods of processing, updating, rectification, integration of data as well as their cancellation if processed in violation of the law or if there is one of the reasons specified in Article 17 of Regulation (EU) 2016/679.
The interested party who believes that the processing of personal data carried out through the La Fiorida website is in violation of the provisions of the Regulation has the right to lodge a complaint with the Guarantor, as provided for by art. 77 of the Regulation itself, or to take the appropriate judicial offices (Article 79 of the Regulation).


The Data Controller periodically checks its privacy and security policy and, if necessary, reviews it in relation to regulatory, organizational or technological changes. In the event of a change in the policies, the new version will be published on this page of the site.



Anyone interested in more information, in contributing with their own suggestions or making complaints or disputes regarding the privacy policies or the way in which our Company processes personal data, can do so by writing to La Fiorida S.r.l. Agricultural Company Azienda Agrituristica Valtellina, Via Lungo Adda, 12 – 23016 Mantello (SO).

  • we periodically organize farm tours for the whole family?
  • we are the ideal spot if you love running?
  • our “calech” used to be a refuge for shepherds in the mountains?
  • we are a truly zero kilometer reality?
  • we are located right in bewteen the Alps and Lake Como?
We will call you back!

Leave us your phone number, we'll call you as soon as possible to give you all the information you need!




    Autorizzo il trattamento dei miei dati personali per la finalità di cui al punto b) dell’Informativa Privacy

    Ti richiamiamo noi!

    Lasciaci il tuo numero di telefono, ti richiameremo il prima possibile per darti tutte le informazioni di cui hai bisogno!