1. Purpose limitation
CCL may process and subsequently use or further communicate personal data only for purposes of providing cruise services to passengers, ensuring client satisfaction, marketing, handling claims or subsequently authorized by the data subject.

2. Data quality and proportionality
CCL shall ensure that personal data is accurate and, where necessary, kept up to date. CCL shall ensure that the personal data is adequate, relevant and not excessive in relation to the purposes for which it is transferred and further processed.

3. Transparency
CCL shall provide data subjects with information necessary to ensure fair processing (such as information about the purposes of processing and about the transfer), unless such information has already been given by Costa.

4. Security and confidentiality
CCL shall take such technical and organization security measures as are appropriate to the risks presented by processing (such as against accidental or unlawful destruction or accidental loss, alteration, unauthorized disclosure or access).

CCL shall have in place procedures so that any third party it authorizes to have access to the personal data, including data processors, will respect and maintain the confidentiality and security of the personal data. Persons acting under the authority of CCL, including a data processor, may process the data only on instructions from CCL.

5. Rights of access, rectification, deletion and objection
Upon request, either directly or through a third party, CCL shall provide data subjects with the personal information about them that CCL holds. CCL may refuse requests to provide personal information (i) which are manifestly abusive, based on unreasonable intervals or their number or repetitive or systematic nature, or for which access need not be granted under applicable law or (ii) provided that the applicable authority has given its prior approval, when providing the data would be likely to seriously harm the interests of CCL or other organizations dealing with CCL and such interests are not overridden by the interests for fundamental rights and freedoms of the data subject. CCL does not need to identify the sources of the personal data when it is not possible by reasonable efforts or where the rights of persons other than the data subject would be violated.

Data subjects may have the personal information about them rectified, amended, or deleted where it is inaccurate or processed against these principles. If there are compelling grounds to doubt the legitimacy of the request, CCL may require further justifications before proceeding to rectification, amendment or deletion. CCL is not obliged to provide notification of any rectification, amendment or deletion to third parties to whom the data have been disclosed when this involves a disproportionate effort.

Data subjects may object to the processing of the personal data relating to them if there are compelling legitimate grounds relating to their particular situation.

CCL has the burden of proof for any refusal, and the data subject may always challenge a refusal before the appropriate authority.

6. Sensitive data
CCL shall take such additional security and other measures as are necessary to protect such sensitive data in accordance with its obligations this Privacy Policy.

7. Data used for marketing purposes
Where data are processed for the purposes of direct marketing, CCL shall provide effective procedures allowing data subjects at any time to “opt-out” from having their data used for such purposes. If you have any questions about Costa's privacy policy, please contact CLL at privacypolicy@us.costa.it.

8. Automated decisions
CCL shall not make any automated decisions concerning the data subject, except (a) (i) when such decisions are made by CCL in entering into or performing a contract with the data subject, and (ii) the data subject is given an opportunity to discuss the results of a relevant automated decision with a representative of the parties making such decision or otherwise to make representations to that parties, or (b) where otherwise provided by applicable law. For purposes hereof “automated decisions” shall mean a decision by Costa or CCL which produces legal effects concerning a data subject or significantly affects a data subject and which is based solely on automated processing of personal data intended to evaluate certain personal aspects relating to him, such as his performance at work, creditworthiness, reliability, conduct, etc.