Privacy Policy

FONDAZIONE ROFFREDO CAETANI ONLUS

HOLDER OF DATA PROCESSING
The name of the entity, owner or data controller, that collects, stores and manages data relating to the website www.giardinodininfa.eu is the Fondazione Roffredo Caetani di Sermoneta Onlus, via della Fortezza 04010 Sermoneta (LT) – Vat number: 00550520597. For any information, communication or request concerning the handling of personal data, you are requested to use the contact form on the site or send an email to: info@frcaetani.it.
TYPES OF DATA COLLECTED

Personal data collected by www.giardinodininfa.eu, independently or through third parties, consists of: cookies, usage data, telephone number, name, surname and email.

For needs related to operations and maintenance, www.giardinodininfa.eu and for the use of third-party services it may collect system logs, i.e. files that record the interactions and which may also contain personal data, such as the user’s IP address.

Personal data can be:

  • freely provided by the user (e.g. using the information request form on the site)
    provided by the user for the provision of a service (e.g. by registering to book admissions)
    collected automatically while using www.giardinodininfa.eu (e.g. site usage and navigation data)
  • The data requested by www.giardinodininfa.eu in the fields marked with an asterisk are mandatory. If the user refuses to communicate them, it will be impossible for www.giardinodininfa.eu to provide the service.
  • All other data are optional, users are free to hold back information without this affecting the availability of the service or its functionality.
  • For information on the use of cookies – or other tracking tools – by www.giardinodininfa.eu or by the owners of third-party services used by www.giardinodininfa.eu, please refer to the cookie policy.

It is the user’s responsibility, in the case of mandatory data, to provide corrections and updates. Data-entry errors must be promptly rectified by means of a specific communication sent to the data controller. The data controller declines all responsibility for any damage resulting from incorrect or incorrect indication of data.

The user assumes responsibility for the personal data of third parties obtained, published or shared through www.giardinodininfa.eu and guarantees that he or she has the right to communicate or disseminate such data, freeing the owner from third-party liability.

HANDLING OF COLLECTED DATA
PROCESSING METHODS
Personal data provided by the user are recorded and stored on the owner’s servers and used for the provision of the services provided on the www.giardinodininfa.eu website. The owner has taken the appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of personal data and controls the use of such data by authorised parties. The processing is computer-telematic in nature.
PARTIES THAT MAY HAVE ACCESS TO THE DATA

In addition to the owner, other parties involved in the organization of the services provided through the website www.giardinodininfa.eu and which are specifically appointed as authorized or system administrators (e.g. IT, administrative, accounting or legal operators) may have access to the data.

The data may be accessible to external parties (such as third-party technical service providers, postal couriers, host providers, IT companies, communication agencies) which may, if necessary, be designated as data controllers by the owner. The updated list of managers can always be requested from the owner.

The data may also be communicated to external subjects to whom the right of access is permitted by laws, regulations or acts of the public authority.

LEGAL BASIS OF THE PROCESSING
The data are processed for the time required by the purposes for which they were collected and stored for the subsequent time, foreseen or allowed by the applicable legislation in the specific situation. Therefore: Personal data collected for purposes related to the execution of a contract (e.g. entrance booking) will be kept for 10 years, which is the standard period required by the legislation on the conservation of tax documentation. Personal data collected for marketing purposes will be kept for a maximum of 10 years, without prejudice to the user’s rights of revocation. Personal data may be kept for a longer period (10 years) in compliance with a legal obligation or by order of an authority or in cases where they are necessary to exercise a right or defend one’s position in a dispute. At the end of the retention period, personal data will be deleted. Therefore, at the end of the term, the right of access, rectification and portability of data can no longer be exercised.
PLACE
The data are processed at the controller’s operating offices and on its servers. The user’s personal data may be transferred to a country other than the one in which the user is located but which guarantees the same safety standards established by European legislation (EU Reg. 679/2016) or is deemed suitable on the basis of specific agreements or ratings.
STORAGE PERIOD

The data are processed for the time required by the purposes for which they were collected and stored for the subsequent time, foreseen or allowed by the applicable legislation in the specific situation.

Therefore:
Personal data collected for purposes related to the execution of a contract (e.g. entrance booking) will be kept for 10 years, which is the standard period required by the legislation on the conservation of tax documentation.

Personal data collected for marketing purposes will be kept for a maximum of 10 years, without prejudice to the user’s rights of revocation.

Personal data may be kept for a longer period (10 years) in compliance with a legal obligation or by order of an authority or in cases where they are necessary to exercise a right or defend one’s position in a dispute.


At the end of the retention period, personal data will be deleted. Therefore, at the end of the term, the right of access, rectification and portability of data can no longer be exercised.

PURPOSE OF THE PROCESSING OF THE DATA COLLECTED

User data are collected to allow the controller to provide its services, as well as for the following purposes: payment management, management of support and contact requests, statistics, contacts with the user, sending messages and monitoring of the infrastructure, according to the specific information provided below. 

For each purpose, it must be indicated whether this is a service managed independently by www.giardinodininfa.eu or by third-party companies. The privacy policy references must also be provided.

TO CONTACT THE USER:
Contact by phone

Users who provided their telephone number may be contacted for commercial or promotional purposes (where they have explicitly given their consent) connected to www.giardinodininfa.eu, as well as to satisfy requests for support.
Personal data collected: telephone number.
Service carried out directly by www.giardinodininfa.eu

Fill in the contact form

By filling in the contact form with his or her data, the user consents to their use to respond to requests for information, quotes, or any other kind indicated by the form header. 

Personal data collected: surname, email, name and telephone number. 

Service carried out directly by www.giardinodininfa.eu

Mailing list or newsletter
By registering with the mailing list or the newsletter, the user’s email address is automatically inserted in a list of contacts to which email messages containing information, including commercial and promotional information relating to www.giardinodininfa.eu may be sent. Personal data collected: surname, email, name and telephone number. Service carried out directly by www.giardinodininfa.eu
CONTACT MANAGEMENT AND SENDING OF MESSAGES

This type of service allows the data controller to manage a database of email contacts, telephone contacts or any other type, used to communicate with the user.

These services could also allow for the collection of data relating to the date and time of display of messages by of the user, as well as the interaction of the user with them, such as information on how to click onto the links inserted in the messages.

Sendinblue

Sendinblue is an address management and email message service provided by
Sendinblue SAS – Politique de confidentialité,
55, rue d’Amsterdam
75008
Paris, France.

Personal Data collected: name, surname, email. Place of treatment: Paris (France) – Privacy Policy.
Service provided by Sendinblue SAS – Politique de confidentialité.

SALE AND PAYMENT MANAGEMENT
Sale of goods and services online
The personal data collected is used for the provision of services to the user or for the sale of products, including payment and possible delivery. The personal data collected to complete the payment may be those relating to the credit card, the current account used for the transfer or other payment instruments provided.  The payment data collected by www.giardinodininfa.eu depend on the payment system used. The payment management services allow www.giardinodininfa.eu to process payments by credit card, bank transfer or other instruments. The data used for payment are acquired directly by the payment service manager requested without being processed in any way by www.giardinodininfa.eu.
Paypal
PayPal is a payment service provided by PayPal Inc., which allows the user to make payments online. Personal data collected: various types of data as specified in the privacy policy of the service. Place of treatment: Consult the Paypal privacy policy – Privacy Policy.
MANAGEMENT OF SUPPORT AND CONTACT REQUESTS
This type of service allows www.giardinodininfa.eu to manage support and contact requests received via email or through other tools, such as the contact form. The personal data processed depend on the information provided by the user within the messages and on the tool used for communication (for example, the email address).
FRESHDESK (FRESHWORKS, INC.)

Freshdesk is a service for managing requests for support and contact provided by Freshworks, Inc. personal data collected: various types of data as specified in the privacy policy of the service. Place of treatment: United States – Privacy Policy.

Service provided by Freshworks, Inc. object adhering to the Privacy Shield.

INFRASTRUCTURE MONITORING
This type of service allows www.giardinodininfa.eu to monitor the use and behavior of components of the same, to allow for improved performance and functionality, maintenance or troubleshooting.
STATISTICS

The services contained in this section allow the owner to monitor and analyze traffic data and are used to keep track of user behaviour.

Google analytics with anonymized ip
Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google uses the personal data collected for the purpose of tracking and examining the use of www.giardinodininfa.eu, compiling reports and sharing them with other services developed by Google. Google could use personal data to contextualize and personalize the advertisements of its advertising network. This integration of Google Analytics makes your IP address anonymous. Anonymization works by shortening the IP address of the Users within the borders of the member states of the European Union or in other countries adhering to the agreement on the European Economic Area. Only in exceptional cases, the IP address will be sent to Google’s servers and abbreviated within the United States. Personal data collected: cookies and usage data. Place of treatment: United States – Privacy Policy – Opt Out. Service provided by Google Inc., subject adhering to the Privacy Shield.
GOOGLE ANALYTICS (GOOGLE INC.)
Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google uses the personal data collected for the purpose of tracking and examining the use of www.giardinodininfa.eu, compiling reports and sharing them with the other services developed by Google. Google could use personal data to contextualize and personalize the advertisements of its advertising network. Personal Data collected: Cookies and Usage Data. Place of treatment: United States – Privacy Policy – Opt Out. Service provided by Google Inc. subject to the Privacy Shield.
STATISTICS COLLECTED DIRECTLY FROM THE WEBSITE WWW.GIARDINODININFA.EU

www.giardinodininfa.eu uses an internal statistics system, which does not involve third parties.

The data are collected through cookies and consist of usage data linked to an IP address. Service carried out directly by www.giardinodininfa.eu.

WORDPRESS STAT (AUTOMATTIC INC.)

In addition to internal statistics, WordPress Stats is used: a statistics service provided by Automattic Inc. Personal data collected: cookies and usage data. Service provided by Automatic Inc. Place of treatment: United States Privacy Policy.

USER RIGHTS

Users can exercise certain rights with reference to the data processed by the data controller.

In particular, the user has the right to:

Withdraw consent at any time. Consent to processing can be revoked at any time by written communication to the data controller, including via email. The revocation of consent does not affect the processing carried out before the revocation, which remains valid and legitimate in all respects.

  • Object to the processing of their data. The user can object to the processing of their data where the processing is illegal or non-compliant, and in the cases provided for by law.
  • Access their data. The user has the right to obtain information on the data processed by the data-controller, on certain aspects of the processing and to receive a copy of the data processed.
  • Verify and request correction. The user can verify the correctness of his data and request its updating or correction.
  • Limit the amount of data processed. When certain conditions are met, the user is entitled to request a limitation of the processing of their data. In this case, the data controller can legitimately continue the treatment, taking into account the limitation made.
  • Obtain the cancellation or removal of your personal data. When certain conditions are met, the user can request the removal of their data by the controller.
  • Obtain your data or have it transferred to another holder. The User has the right to receive data in a structured format, commonly used and readable by an automatic device and, where technically feasible, to obtain its transfer without hindrance, to another holder. This provision is applicable when the data are processed with automated tools and the treatment is based on the user’s consent, under a contract of which the user is a party or on contractual measures connected to it.
  • Lodge a complaint. The user can lodge a complaint with the competent personal data protection supervisory authority or take legal action.
HOW TO EXERCISE RIGHTS

To exercise rights, users can send a request to the contact details by writing to the data controller by writing to the email address info@frcaetani.it, or through the appropriate contact form specifying the subject “ADMINISTRATIVE INFORMATION”.

Requests are filed free of charge and processed by the data controller as soon as possible, in any case within 30 days.

In the case of a person under the age of 14, the request must be authorized by a parent, whose status must be proved.

In case of violation of the rights reported in this Information, pursuant to art. 77 of EU Reg. No. 2016/679, the user can lodge a complaint with the competent supervisory authority based on his/her habitual residence, workplace, or place of violation of his rights: for Italy the Guarantor for the Protection of Personal Data is the appropriate authority – (all pertinent information is available on the website: www.garanteprivacy.it).

COOKIE POLICY

www.giardinodininfa.eu uses cookies. To learn more and to view the detailed information, the user can examine our cookie policy.

ADDITIONAL INFORMATION ON TREATMENT
DEFENSE IN COURT

The user’s personal data may be used by the data controller in court or in the preparatory stages for a possible defense against abuse of the website or of the services required by the user.

The user declares that he/she is aware that the data controller may be obliged to disclose the data by order of the public authorities.

SPECIFIC DISCLOSURES
At the request of the user, in addition to the information contained in this privacy policy, www.giardinodininfa.eu could provide the him/her with additional and contextual information regarding specific services, or the collection and processing of personal data.
INFORMATION NOT CONTAINED IN THIS POLICY
Further information in relation to the processing of personal data may be requested at any time to the data controller using the contact details.
ANSWER TO “DO NOT TRACK” REQUESTS

www.giardinodininfa.eu does not support “Do Not Track” requests.
To find out if any third-party services used support them, the user is invited to consult this/her respective privacy policies.

CHANGES TO THIS PRIVACY POLICY

The data controller reserves the right to make changes to this privacy policy at any time by giving information to users on this page and, if possible, on www.giardinodininfa.eu and, if technically and legally feasible, by sending a notification to them through one of the contact details held by the data controller.

Therefore, please consult this page regularly, referring to the date of the last modification indicated at the bottom.
If the changes concern treatments whose legal basis is consent, the data controller will collect the user’s consent again, if necessary.

LEGAL DEFINITIONS AND REFERENCES
PERSONAL DATA (OR DATA)
Personal data is any information that, directly or indirectly, also in connection with any other information, including a personal identification number, makes a person identified or identifiable.
USAGE DATA
This refers to information collected automatically through www.giardinodininfa.eu (also from third-party applications integrated in www.giardinodininfa.eu), including: IP addresses or domain names of the computers used by the user who connects with www.giardinodininfa.eu, the addresses in URI (Uniform Resource Identifier) ​​notation, the time of the request, the method used to forward the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response from the server ( success, error, etc.) the country of origin, the characteristics of the browser and operating system used by the visitor, the various time characteristics of the visit (for example the time spent on each page) and the details of the itinerary followed within the application, with particular reference to the sequence of pages consulted, the parameters relating to the operating system and the IT environment of the user.
USER
The individual who uses www.giardinodininfa.eu which, unless otherwise specified, is deemed to be the interested party.
THE INTERESTED PARTY
The person or individual to whom the personal data refers.
THE PARTY RESPONSIBLE FOR PROCESSING
The person or individual, legal entity, public administration and any other entity that processes personal data on behalf of the data controller, as set out in this privacy policy.
DATA CONTROLLER (OR OWNER)
The person or individual, or legal entity, public authority, service or other body that, individually or jointly, determines the purposes and means of the processing of personal data and the tools adopted, including the security measures relating to the operation and use of www.giardinodininfa.eu. Unless otherwise specified, the data controller is the owner of www.giardinodininfa.eu.
WWW.GIARDINODININFA.EU (OR THIS APPLICATION)
The hardware or software tool through which users’ personal data is collected and processed.
SERVICE
The service provided by www.giardinodininfa.eu as defined in the relevant terms (if available) as provided on this site/application.
EUROPEAN UNION (OR EU)
Unless otherwise specified, any reference to the European Union contained in this document is intended to mean all current member states of the European Union and the European Economic Area.
COOKIES

A small portion of data stored within the user’s computer systems.

LEGAL REFERENCES
This privacy policy concerns exclusively www.giardinodininfa.eu and has been drawn up under articles. 13 and 14 of the EU regulation 2016/679 and relevant articles under Italian law.

Rimaniamo in contatto

Ricevi informazioni su aperture straordinarie, eventi o promozioni riguardanti
il Giardino di Ninfa, il Castello Caetani di Sermoneta e la Fondazione Roffredo Caetani

Scroll to Top