PRIVACY POLICY
PRIVACY POLICY
Pursuant to Art. 13 of Regulation (EU) 2016/679 on the protection of individuals with regard to the processing of personal data and the recommendation regarding certain minimum requirements for the online collection of personal data in the EU
Department of Provincial Museums
E-mail address: info@museiprovinciali.it
Tel. +39 0471 320162
South Tyrol Museum of Mining
E-mail address: direktion@bergbaumuseum.it
Tel. +39 0472 055085
Data Protection Officer (DPO)
The contact details of the Data Protection Officer (DPO) are as follows:
Renorm GmbH
E-mail address: renorm@legalmail.it
Tel. +39 0471/1882777
This privacy policy statement is intended to provide information on the processing, purposes, methods and, in general, management of personal data collected through the website www.museominiere.it (hereinafter the “website”). This privacy policy statement applies only to this website and therefore excludes additional pages that may be accessed via any link.
In accordance with the conditions of lawfulness provided for in Article 6, GDPR 2016/679, the personal data you provide via the website may only be processed for the following purposes:
a) management of reservations
processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures (Art. 6, para. 1, sentence 1, (b)).
b) newsletter subscriptions
the data subject has given his/her consent to the processing of personal data relating to him/her for one or more specific purposes (Art.6, para.1, sentence 1, (a)).
c) website browsing and improvement
more details on these purposes and data types can be found in the Cookie Policy section.
a. generic personal data (e.g. first name, last name, phone number and email address).
a. by staff members who are authorised to carry out processing activities;
b. using manual and electronic systems;
c. by persons who are legally authorised to carry out these tasks;
d. with appropriate organisational and technical measures to ensure the confidentiality of the data and to prevent access by unauthorised third parties.
We would also inform you that your data will not be subject to automated decision-making processes.
reservation management: max. 10 years in accordance with the retention periods for accounting, tax and administrative records (Art. 2200 of the Italian Civil Code).
newsletter: until cancellation
website navigation and improvement: see Cookie Policy
a. public administrations and authorities, if provided for by law;
b. service providers and third parties that have a contractual relationship with the Data Controller, who have been appointed as “processors” in accordance with Article 28 of the GDPR, and who are obliged to comply with the data protection obligations on the basis of a specific agreement with the Data Controller;
c. legal entities that are entitled to access the data on the grounds of legal and administrative regulations.
- information regarding personal data;
- the right to rectification and erasure (“right to be forgotten”) of personal data;
- the right to the restriction of processing;
- the right to data portability;
- the withdrawal of consent to the processing of personal data.
If you believe that your rights have been violated, you have the right to file a complaint with the Italian Data Protection Authority: www.garanteprivacy.it
Pursuant to Art. 13 of Regulation (EU) 2016/679 on the protection of individuals with regard to the processing of personal data and the recommendation regarding certain minimum requirements for the online collection of personal data in the EU
- Data controller
Department of Provincial Museums
E-mail address: info@museiprovinciali.it
Tel. +39 0471 320162
South Tyrol Museum of Mining
E-mail address: direktion@bergbaumuseum.it
Tel. +39 0472 055085
Data Protection Officer (DPO)
The contact details of the Data Protection Officer (DPO) are as follows:
Renorm GmbH
E-mail address: renorm@legalmail.it
Tel. +39 0471/1882777
This privacy policy statement is intended to provide information on the processing, purposes, methods and, in general, management of personal data collected through the website www.museominiere.it (hereinafter the “website”). This privacy policy statement applies only to this website and therefore excludes additional pages that may be accessed via any link.
- Purpose of data processing and legal basis for processing
In accordance with the conditions of lawfulness provided for in Article 6, GDPR 2016/679, the personal data you provide via the website may only be processed for the following purposes:
a) management of reservations
processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures (Art. 6, para. 1, sentence 1, (b)).
b) newsletter subscriptions
the data subject has given his/her consent to the processing of personal data relating to him/her for one or more specific purposes (Art.6, para.1, sentence 1, (a)).
c) website browsing and improvement
more details on these purposes and data types can be found in the Cookie Policy section.
- Type of data processed
a. generic personal data (e.g. first name, last name, phone number and email address).
- Data processing methods
a. by staff members who are authorised to carry out processing activities;
b. using manual and electronic systems;
c. by persons who are legally authorised to carry out these tasks;
d. with appropriate organisational and technical measures to ensure the confidentiality of the data and to prevent access by unauthorised third parties.
We would also inform you that your data will not be subject to automated decision-making processes.
- Retention of personal data
reservation management: max. 10 years in accordance with the retention periods for accounting, tax and administrative records (Art. 2200 of the Italian Civil Code).
newsletter: until cancellation
website navigation and improvement: see Cookie Policy
- Distribution and disclosure of personal data
a. public administrations and authorities, if provided for by law;
b. service providers and third parties that have a contractual relationship with the Data Controller, who have been appointed as “processors” in accordance with Article 28 of the GDPR, and who are obliged to comply with the data protection obligations on the basis of a specific agreement with the Data Controller;
c. legal entities that are entitled to access the data on the grounds of legal and administrative regulations.
- Rights of the data subject
- information regarding personal data;
- the right to rectification and erasure (“right to be forgotten”) of personal data;
- the right to the restriction of processing;
- the right to data portability;
- the withdrawal of consent to the processing of personal data.
If you believe that your rights have been violated, you have the right to file a complaint with the Italian Data Protection Authority: www.garanteprivacy.it