Privacy Policy

Galleria d'Arte Firenze, located at Via della Spada, 42R, 50123 Firenze FI, Italy, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal information when you visit our website, use our services, or interact with us in any other way. We operate under the guidance of Professor Alessandro Rossi, our Data Protection Officer, and adhere to the principles outlined in the General Data Protection Regulation (GDPR) and other relevant privacy laws.

Information We Collect

We collect several types of information from and about users of our website and services, including:

• Personal Information: This includes information that can be used to identify you, such as your name, email address, postal address, phone number, and payment information when you make a purchase.
• Usage Data: We collect information about how you use our website, including the pages you visit, the links you click, and the searches you conduct. This data helps us improve our website and tailor it to your interests.
• Device Information: We collect information about the device you use to access our website, including your IP address, browser type, operating system, and device identifiers.
• Cookies: We use cookies to collect information about your browsing activity. Cookies are small text files that are stored on your device when you visit a website. See our Cookies Policy for more information.
• Communication Data: When you contact us via email, phone, or contact form, we collect the information you provide in your communication.

How We Use Your Information

We use the information we collect for various purposes, including:

• Providing and Improving Services: We use your information to provide the services you request, such as processing your orders, responding to your inquiries, and personalizing your experience on our website. We also use your information to improve our website and services.
• Communication: We use your information to communicate with you about our products, services, and promotions. You can opt-out of receiving marketing communications at any time.
• Analytics: We use your information to analyze how our website is used and to improve its performance. This includes monitoring traffic patterns and user behavior.
• Legal Compliance: We may use your information to comply with applicable laws and regulations.
• Security: We use your information to protect the security and integrity of our website and services. This includes detecting and preventing fraud and other malicious activity.

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. For example, we may retain your purchase history for as long as required by tax laws. We regularly review our data retention policies to ensure that we do not retain your information for longer than necessary. When personal data is no longer needed, it is securely deleted or anonymized.

Data Sharing and Disclosure

We may share your personal information with third parties in the following circumstances:

• Service Providers: We may share your information with third-party service providers who help us operate our website, process payments, fulfill orders, and provide other services. These service providers are contractually obligated to protect your information and use it only for the purposes for which we disclose it to them. Examples include shipping companies like DHL and payment processors like Stripe.
• Legal Requirements: We may disclose your information if required to do so by law or in response to a valid legal request, such as a subpoena or court order.
• Business Transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
• With Your Consent: We may share your information with third parties with your consent.

Your Rights

You have certain rights regarding your personal information, including:

• Right to Access: You have the right to access the personal information we hold about you.
• Right to Rectification: You have the right to have your personal information corrected if it is inaccurate or incomplete.
• Right to Erasure: You have the right to have your personal information deleted in certain circumstances.
• Right to Restriction of Processing: You have the right to restrict the processing of your personal information in certain circumstances.
• Right to Data Portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format and to transmit it to another controller.
• Right to Object: You have the right to object to the processing of your personal information in certain circumstances, including for direct marketing purposes.
• Right to Withdraw Consent: If you have provided your consent to the processing of your personal information, you have the right to withdraw your consent at any time.

To exercise any of these rights, please contact us at privacy@galleriadartefirenze.com or by mail at Via della Spada, 42R, 50123 Firenze FI, Italy. We will respond to your request within one month.

Cookies

We use cookies to enhance your browsing experience and personalize our website. You can control the use of cookies through your browser settings. Please see our Cookies Policy for more information about the cookies we use and how to manage them.

Data Security

We take reasonable measures to protect your personal information from unauthorized access, use, or disclosure. These measures include:

• Encryption: We use encryption to protect your sensitive information when it is transmitted over the internet.
• Firewalls: We use firewalls to protect our servers from unauthorized access.
• Access Controls: We restrict access to your personal information to authorized personnel only.
• Regular Security Audits: We conduct regular security audits to identify and address potential vulnerabilities.
• Employee Training: Our employees receive regular training on data protection and security best practices.

However, no method of transmission over the internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee the absolute security of your information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will post any changes on our website and notify you via email if the changes are significant. Your continued use of our website and services after the changes are posted constitutes your acceptance of the revised Privacy Policy. The last update to this policy was on October 26, 2023.

Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us:

Galleria d'Arte Firenze
Via della Spada, 42R
50123 Firenze FI, Italy
Email: privacy@galleriadartefirenze.com
Phone: +39 0429 39113

Data Protection Officer: Professor Alessandro Rossi

GDPR Compliance

Galleria d'Arte Firenze is committed to complying with the General Data Protection Regulation (GDPR). We have implemented appropriate technical and organizational measures to ensure that your personal data is processed in accordance with the GDPR. Our lawful basis for processing personal data includes consent, contract, legitimate interests, legal obligations, and vital interests, depending on the specific processing activity. We provide transparency about our data processing practices and ensure that individuals can exercise their rights under the GDPR.

If you are a resident of the European Economic Area (EEA), you have the right to lodge a complaint with a supervisory authority in your country of residence if you believe that we have violated your rights under the GDPR. The supervisory authority for Italy is the Garante per la protezione dei dati personali.