Data protection

Privacy Policy

In accordance with Art. 13 of Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and the recommendation on certain minimum requirements for the online collection of personal data in the EU

1. data controller of the data processing

The data controller for the processing of personal data is the Landesmuseen organisation, which operates through the Franzensfeste Fortress Museum.

Operation Landesmuseen
E-mail address: info@landesmuseen.it
Phone +39 0471 320162

Museum Franzensfeste Fortress 
E-mail address: info@franzensfeste.info
Tel. +39 0472 057218

Data Protection Officer (DPO)
The contact details of the Data Protection Officer (DPO) are as follows
Renorm GmbH
Telephone number: 0471/1882777
E-mail address: renorm@legalmail.it

‘This privacy policy is intended to provide information on the processing, purposes, methods and, more generally, the management of personal data collected through the website www.franzensfeste.info (hereinafter “the website”). This privacy policy applies only to this website and therefore exc

2. purpose of the data processing and legal basis of the processing

The Data Controller guarantees, within the limits of the law, that the processing of personal data will be carried out in compliance with fundamental rights and freedoms and the dignity of the interested party, with particular reference to confidentiality, personal identity and the right to the protection of personal data.
In accordance with the conditions of lawfulness provided for in Article 6 of GDPR 2016/679, the personal data you provide through the website may be processed only for the following purposes
a) Management of reservation requests;
b) Management of contact requests;
Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps prior to entering into a contract (Article 6(1)(b)).
c) Press subscription
d)Newsletter registration
The data subject has given their consent to the processing of their personal data for one or more specific purposes (Art. 6 para. 1 sentence 1 let. a)).
e) Website navigation and improvement
Further details on these purposes and data types can be found in the “Cookie Policy” section.

3. type of data processed

The following categories of personal data may be processed for the above-mentioned purposes
a. personal data type (e.g. first name, surname, telephone number and e-mail address) transmitted in the event of contact via the methods provided on the website;

4. methods of data processing

The data processing is carried out
a. by employees who are authorised to carry out processing activities;
b. by using manual and electronic systems;
c. by persons legally authorised to perform these tasks
d. with appropriate organisational and technical measures to guarantee the confidentiality of the data and prevent access to them by unauthorised third parties.
We also inform you that your data will not be subject to automated decision-making processes.

5. storage of personal data

The data you provide will be kept for as long as is strictly necessary to fulfil the purposes for which it was collected, in particular
Reservation management
Max. 10 years in accordance with the retention periods for accounting, tax and administrative documents (art. 2200 of the Italian Civil Code)
Management of contacts
Until the purposes for which the data was collected are fulfilled
Newsletter and press subscription
Until cancellation
Website navigation and improvement
See cookie policy

6. dissemination and communication of personal data

Your personal data will not be disseminated, but may be disclosed to third parties in the following cases
a. Public administrations and authorities, if this is provided for by law;
b. b. Service providers and third parties who have a contractual relationship with the data controller, who are appointed as “data processors” in accordance with Article 28 of the GDPR and who are obliged to comply with data protection obligations on the basis of a special agreement with the data controller;
c. Legal entities authorised to access the data on the basis of legal and administrative provisions

7. Rights of the data subject

You have the right to obtain from the controller the rights referred to in Article 15 et seq. of GDPR 2016/679:
– Access to personal data;
– Rectification and erasure (“right to be forgotten”) of personal data;
– Right to restriction of processing;
– Right to data portability;
– Revocation of consent to the processing of personal data.

If you believe that your rights have been violated, you have the right to lodge a complaint with the Italian Data Protection Authority: www.garanteprivacy.it