High season ☀️ Some dates sell out quickly!

Privacy Policy

Last updated: 26 April 2026

This Privacy Policy explains how Do You Rome collects, uses, and protects the personal data of users who visit the website doyourome.com, submit request forms, send messages, ask for information about tours, or use concierge and travel assistance services.

Do You Rome operates as a local portal dedicated to the selection of experiences, tours, and services in Rome and connected destinations, and as a contact point for personalized concierge requests. Some tours or experiences may be organized and provided by selected third-party partners.

1. Data Controller

The Data Controller is:

Data Controller: Andrea Servadei
Brand/Site: doyourome.com
Registered office: Via Nicola Machiavelli n/14, Capena (RM) 00060, Italy
VAT: IT17803811003
Email: [email protected]
Phone: +39 3513843085

For any request relating to the processing of personal data, you can contact us at the email address listed above.

2. Types of personal data collected

Through the website, we may collect the following categories of personal data.

Data voluntarily provided by the user

When you fill in a form, send a request, or contact us, we may collect:

  • first name and last name;
  • email address;
  • phone number, if provided;
  • information related to tour requests, availability, or booking requests;
  • number of participants;
  • preferred date or period for the experience;
  • preferred language;
  • any notes, preferences, or specific requests;
  • data necessary for concierge services, such as transfer needs, reservations, itineraries, or personalized assistance.

We ask you not to include particularly sensitive data in the forms, unless strictly necessary to manage your request. For example, accessibility needs, special requirements, or information relevant to properly organizing a service.

Technical and browsing data

During your visit to the website, some technical data may be collected automatically, such as:

  • IP address;
  • browser type and device used;
  • operating system;
  • pages visited;
  • date and time of access;
  • technical information necessary for the security and operation of the website.

Data collected through cookies and similar technologies

The website uses necessary technical cookies and, subject to your consent, may use analytics or marketing cookies.

For more information, please read our Cookie Policy.

3. Purposes of processing

Personal data is processed for the following purposes.

Responding to user requests

We use the data provided to respond to requests for information, availability, quotes, tours, experiences, concierge services, or travel assistance.

Legal basis: performance of pre-contractual measures requested by the user.

Managing booking requests or service organization

If you request a tour, a concierge service, or a personalized experience, we may use your data to check availability, organize the request, coordinate practical details, and communicate with you.

Legal basis: performance of pre-contractual or contractual measures.

Sharing necessary data with selected partners

Some experiences or tours may be provided by selected third-party partners. In these cases, Do You Rome may share only the data necessary to manage the request, check availability, or complete the organization of the service.

Legal basis: performance of pre-contractual or contractual measures requested by the user.

Managing communications by email, phone, or WhatsApp

If you contact us or request assistance, we may use the data provided to communicate with you by email, phone, or other channels indicated by you.

Legal basis: performance of pre-contractual measures or legitimate interest in providing support and assistance in relation to the request received.

Sending newsletters or promotional communications

If you subscribe to the newsletter or agree to receive commercial communications, we may send you updates, special offers, editorial content, or proposals related to tours and experiences.

Legal basis: user consent.

You can withdraw your consent at any time by using the unsubscribe link included in the emails or by writing to us at the address indicated in this Privacy Policy.

Improving the website and measuring performance

Subject to your consent, we may use analytics tools to understand how users browse the website, which pages are visited, and how to improve content, structure, and performance.

Legal basis: user consent, where required.

Security, maintenance, and prevention of abuse

We may process technical data to ensure the proper functioning of the website, prevent spam, fraud, unauthorized access, or harmful activities.

Legal basis: the Data Controller’s legitimate interest in protecting the website and digital services.

Legal and tax obligations

Where necessary, data may be processed to comply with obligations provided by law, regulations, or requests from competent authorities.

Legal basis: legal obligation.

4. Processing methods

Personal data is processed using IT tools and, where necessary, internal organizational procedures appropriate to the purpose of processing.

We adopt technical and organizational measures to protect data from unauthorized access, loss, alteration, disclosure, or misuse.

The data is not used for automated decision-making processes that produce legal effects concerning the user.

5. Recipients of personal data

Personal data may be communicated, within the limits necessary, to:

  • technical providers of the website, hosting, maintenance, security, and infrastructure management;
  • providers of email services, contact forms, newsletters, or communication tools;
  • selected partners who provide tours, experiences, or services connected to the user’s request;
  • tax, legal, or administrative consultants, where necessary;
  • public authorities or authorized parties, where required by law.

Parties that process data on behalf of Do You Rome operate, where necessary, as data processors pursuant to Article 28 of the GDPR.

6. Transfer of data outside the European Economic Area

Some providers used for website management, communications, traffic analysis, or any marketing tools may process data outside the European Economic Area.

In such cases, the transfer takes place on the basis of appropriate safeguards provided by the GDPR, such as adequacy decisions, standard contractual clauses, or other mechanisms recognized by applicable law.

7. Data retention period

Personal data is retained for the time necessary to achieve the purposes for which it was collected.

In particular:

  • data submitted through contact forms or information requests is retained for the time necessary to manage the request and any subsequent communications;
  • data relating to tour requests, bookings, or concierge services is retained for the time necessary to manage the service and for any administrative or legal obligations;
  • data processed for newsletter purposes is retained until consent is withdrawn or the user unsubscribes;
  • technical security data may be retained for the time necessary to ensure protection, maintenance, and prevention of abuse;
  • data necessary for tax or legal obligations is retained according to the periods required by applicable law.

When the data is no longer necessary, it is deleted or anonymized.

8. Provision of data

Providing data through contact forms, tour request forms, or concierge request forms is necessary in order to respond to and manage the request.

If you do not provide the data marked as mandatory, we may not be able to respond properly or organize the requested service.

Providing data for newsletters, analytics cookies, or marketing purposes is optional and based on consent.

9. User rights

As a data subject, you may exercise the rights provided by the GDPR, including:

  • the right of access to personal data;
  • the right to rectify inaccurate data;
  • the right to erasure, where applicable;
  • the right to restriction of processing;
  • the right to object to processing;
  • the right to data portability, where applicable;
  • the right to withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal.

You can exercise your rights by writing to:

[email protected]

10. Complaint to the supervisory authority

If you believe that the processing of your personal data violates applicable data protection law, you have the right to lodge a complaint with the Italian Data Protection Authority or with the competent supervisory authority in your country of residence.

11. Links to third-party websites or services

The website may contain links to third-party websites, platforms, or services.

Do You Rome is not responsible for how such third parties process users’ personal data. We recommend that you read their respective privacy policies before using external services or providing personal data to third parties.

12. Updates to this Privacy Policy

This Privacy Policy may be updated over time to reflect legal, technical, organizational, or service-related changes.

The updated version will be published on this page with the date of the latest update.

dyr-decorative-confused

We noticed you prefer English

Do you want to switch to the English version?

Switch to English
Stay in Italian
Privacy Overview

This website uses necessary cookies to work properly and, only with your consent, analytics and marketing cookies to improve the website and measure performance.

You can accept all cookies, reject non-essential cookies, or manage your preferences by category.

For more information, please read our Privacy Policy.