Fondazione Teatro La Fenice di Venezia (hereinafter “La Fenice” or the “Foundation”) pays the utmost attention to the security and confidentiality of users’ personal data (hereinafter, the ” “Users” or the “User” singular) of the website https://www.teatrolafenice.it/ (hereinafter, the “Website”) and wishes to provide them with information relating to the processing of their personal data.
Data Controller and Data Protection Officer – DPO
The data controller of the processing is Fondazione Teatro La Fenice di Venezia, with registered office in Saint Mark 1965, 30124, Venice.
For any request regarding the processing of personal data, or to exercise the rights recognised by the GDPR and described in more detail in the following point 7, contact La Fenice at the email address firstname.lastname@example.org.
The Foundation has appointed a Data Protection Officer (“RPD“, also known as Data Protection Officer – “DPO“) appointed pursuant to Art. 37 of the GDPR, who can be contacted at the following email address: email@example.com
For what purposes La Fenice processes personal data
Through the Website, for the purposes described below the Foundation processes some of the User’s personal data, which is provided either voluntarily or collected in the normal functioning of the same.
During normal operations, the computer systems and software procedures used to run this Website gather various personal data, the transmission of which is implicit in the use of Internet communication protocols. This information is not collected with the intent of associating it with particular users but, by its very nature, could lead to the identification of users through its processing, and through its association with data held by third parties. This category of data includes the IP addresses and/or domain names of the website’s users/visitors’ computers, URI (Uniform Resource Identifier) of the requested resources, the time of request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the reply from the server (error in transmission, no error and so on) and other parameters regarding the operating system and computer environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the same and to check its correct functioning and is deleted immediately after processing; it could be used to ascertain responsibility in the event of any computer crimes committed on the Website to the detriment of the Foundation.
Below is a description of the processing carried out by the Foundation.
How personal data is kept safe
The Foundation implements appropriate security measures to guarantee the protection, safety, integrity and accessibility of the Users’ personal data. The appropriate security measures are designed to prevent the unauthorised access, disclosure, modification or destruction of the Personal Data.
All personal data is stored on Fenice’s secure IT devices (or suitably stored paper copies) or on those of the latter’s suppliers, and is accessible and usable according to its standards and security policies (or equivalent standards for its suppliers).
How long personal data is stored
La Fenice stores the Users’ personal data only for the amount of time necessary to achieve the purposes for which it was collected or for any related legitimate purpose.
The personal data that is no longer necessary, or for which there is no longer any legal requirement for its storage, will be irreversibly anonymised or destroyed securely.
If there is more than one purpose for the processing of personal data, it will be deleted or made anonymous as soon as the retention period relating to the last purpose has elapsed.
With whom personal data may be shared
The personal data may be accessed by duly authorised employees of the Foundation, as well as by any external suppliers, who have been appointed, if necessary, as data processors, who provide support for the provision of services, including those necessary for the operation of the website.
La Fenice can be contacted at the following address firstname.lastname@example.org, to ask to see the list of data processors and other subjects to whom the data is communicated.
Transfers to third countries
Personal data will be processed mainly within the European Economic Area (EEA). However, the use of certain tools by the Foundation may involve, albeit on a residual basis, a transfer of personal data to subjects established in countries that do not belong to the European Union (EU) or the EEA (hereinafter the “Third party countries”). This transfer, in any case, is carried out in compliance with the provisions of Chapter V of the GDPR.
These external parties will process the personal data as independent data controllers or as data processors, duly appointed by Fenice in accordance with the legislation on the protection of personal data (depending on the role they play in relation to the processing).
You can write to La Fenice at any time, using the contact details below, to ask to which subjects the personal data is transmitted as well as to receive a copy of the guarantees adopted for the transfer.
Rights on the subject of personal data protection and the right to lodge complaints with the Supervisory Authority
provided there is legal basis backing the request, each User is entitled to ask the Company:
to access to their personal data, as foreseen by Art. 15 of the GDPR;
for the amendment or integration of the personal data La Fenice has that is deemed incorrect, as foreseen by Art. 16 of the GDPR;
to cancel the personal data for which La Fenice no longer has any legal basis to process, as foreseen by art. 17 of the GDPR;
to limit the way in which the personal data is processed, if one of the circumstances foreseen by Art. 18 of the GDPR applies;
to copy the personal data provided to the Company in a structured, commonly used format that is legible from any automatic device and the transmission of the said data to another Data Controller (referred to as portability), as foreseen by Art. 20 of the GDPR;
to withdraw consent, where processing is founded on this legal basis.
Right to object: in addition to the rights listed herein above, the User always has the right to object at any time to the processing of the personal data carried out by the Foundation to pursue its own legitimate interest Furthermore, the User always has the right to object at any time if the personal data is processed for marketing purposes.
The exercising of the aforesaid rights, which may be effected through the contact details of the Foundation specified in paragraph 1, is free of charge and is not subject to any formal constraints. La Fenice will be responsible for verifying whether the User is legitimately entitled to exercise the related right and to reply, usually, within one month.
Should the User believe the processing of their personal data is being carried out in violation of the provisions foreseen in the GDPR, they are entitled to lodge a complaint with the Supervisory Authority using the reference details available on the site: www.garanteprivacy.it, or to take the appropriate legal action.