SITE PRIVACY POLICY
Information pursuant to art. 13 of Legislative Decree no. 196/2003 and art. 13 EU Reg. 2016/679 (May 2018)

On this page you can find the site management methods with reference to the processing of the personal data of the users who consult it.
The information is provided only for this site and not for other websites that may be consulted by the user via links.

THE “OWNER” OF THE TREATMENT
Following consultation of this site, data relating to identified or identifiable persons may be processed.

The data controllers are:

> FONDAZIONE TEATRO DEL MAGGIO MUSICALE FIORENTINO – to which all operations connected with the management of the site are delegated, – Piazzale Vittorio Gui, 1 – 50144 Florence – tel. 055 2779276.

Contact details of the Data Protection Officer are: rpd@maggiofiorentino.it

> ACCADEMIA DEL MAGGIO MUSICALE FIORENTINO, for the sections of the site dedicated to it, Piazzale Vittorio Gui, 1 – 50144 Florence

TYPES OF DATA PROCESSED – NAVIGATION DATA
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning. The data could be used to ascertain responsibility only in the event of hypothetical computer crimes against the site and only in this case can specific procedures be activated to identify the author.
The LEGAL BASIS FOR THE PROCESSING of these data is constituted by the legitimate interest of the owners constituted by the protection of data security and proper functioning of the site.

METHOD AND RESPONSIBLE FOR THE TREATMENT
Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected. The treatments to the web services of this site are handled by personnel appointed by the Data Controller as well as by external subjects, appointed managers, in charge of the technical management and maintenance of the site and the related IT systems. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.

No data deriving from the web service is disclosed.
The personal data provided by users who submit requests to send information material (newsletters, answers to questions, etc.) are used for the sole purpose of carrying out the service or provision requested and are disclosed to third parties only in the event that this is a this is necessary.

PROVISION OF DATA
Apart from what is specified for navigation data, the user is free to provide the personal data requested during navigation to request the sending of informative material or other communications.
Failure to provide them may make it impossible to obtain what is requested.

DATA PROVIDED VOLUNTARILY BY THE USER
When the user visits a part of the Site that requires the collection of personal data, a link to this information document is re-proposed and, if necessary, consent is requested.
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message which, unless otherwise duly communicated, will be kept for the time necessary to satisfy requests
Specific information relating to the pages of the site prepared for particular services on request or through which further personal data can be acquired are made available below.

BUY ONLINE
In order to offer the best service with the highest safety standards, the management of the service has been entirely entrusted to a company specialized in the sector, with proven experience and reliability, appointed as Manager pursuant to art. 28 REG. EU 2016/679. The “PURCHASE” link, refers to a page of the site managed by this Company, which is fully entrusted with the purchase procedure, more information can be found via the links at the foot of the purchasing area.
Once the purchase has been completed, the data may be processed by administration staff, ticket office staff or other personnel appointed by the Data Controller to register the booking, fulfill contractual and accounting and tax obligations, offer the public due assistance and guarantee the safety of people and structures with an effective access control action.

TREATMENTS RESULTING FROM A REQUEST FOR CONTACT OR REGISTRATION
Personal data provided spontaneously by the interested party through the contact area:

1- are processed with mainly automated tools for:

a) ensure a certain and timely response and satisfy the requests of the interested party;
b) fulfill obligations deriving from EU laws, rules and regulations, and fulfillment of provisions issued by the Judicial Authority;
c) feed the system for acquiring public knowledge, necessary for the verification, improvement and therefore the planning of a service that is increasingly adequate to the demand and to environmental constraints;
d) the contact details and e-mail addresses provided may be used for sending courtesy communications and / or information material / offers relating to the services provided. It is understood that the interested party has the right to object to this treatment at any time. With the consent of the interested party, other contact details may also be used for this purpose, including for sending via SMS or other communication platforms such as whatsapp.

2 – may be processed by communication and marketing staff, IT system maintenance personnel who have the task of guaranteeing the functionality of the systems, data security and backup operations, other employees within the limits of the tasks received and the provisions of company procedures and other subjects that provide services for auxiliary purposes in satisfying the requests of the interested party, within the limits strictly necessary to carry out their duties

3 – may be communicated or made available:

a) to subjects who can access the data by virtue of the provision of law, regulation or community legislation, within the limits established by these rules;
b) to other subjects who provide services for purposes related to satisfying the requests of the interested party, within the limits strictly necessary to carry out their duties.

When filling in the forms, the fields whose drafting is optional are indicated, in the absence of the mandatory data it will not be possible to satisfy the requests of the interested party.
Please note that the legislation provides for specific precautions for particular categories of data (such as: personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as processing genetic data, biometric data intended to uniquely identify a natural person, data relating to the health or sexual life or sexual orientation of the person) in this regard, the user is invited not to enter information falling into these categories in the first contact request, considering that, in the absence of specific consent, it may be impossible to process the requests of the interested party.

The data communicated, unless otherwise duly communicated, will be kept for the time necessary to satisfy the requests of the interested party. If the communication is related to contractual or economic relationships with the Foundation (for example in the case of donations, season tickets, ticket purchases, etc.), the data will be kept, if pertinent to them, for the duration of the relationship, after which the conservation will be continued only if required by law and in compliance with the regulations on the conservation of administrative documentation.

SUBSCRIBE TO THE NEWSLETTER
Personal data provided spontaneously by the interested party by subscribing to the Newsletter:

> are processed with mainly automated tools for the sole purpose of satisfying the requests of the interested party, who has the right to interrupt the aforementioned processing at any time.
> may be handled by communication and marketing staff, IT systems maintenance staff who have the task of ensuring the functionality of the systems, data security and backup operations, other employees within the limits of the tasks received and what provided for by company procedures and other subjects that provide services for auxiliary purposes in satisfying the requests of the interested party, within the limits strictly necessary to carry out their duties
> may be communicated or made available:

to subjects who can access the data by virtue of the provision of law, regulation or community legislation, within the limits established by these rules;
to other subjects who provide services for purposes related to satisfying the requests of the interested party, within the limits strictly necessary to carry out their duties;

DATA STORAGE
The data communicated, unless otherwise indicated by the interested party duly communicated, will be kept for the time necessary to satisfy the requests of the interested party and comply with the law.

In case of registration to some sections of the site, the data will be kept until the cancellation of the same, after which the conservation will be continued only if required by law and in accordance with the rules on the conservation of administrative documentation.

The contact details processed for sending commercial communications will be kept for up to 12 months following the last sending or until the consent is revoked by the interested part.

COOKIES – What are Cookies?
A cookie is a small amount of data, often containing an anonymous unique identification code, which are sent to the browser by a Web server and which are subsequently stored on the user’s computer hard drive. The cookie is then reread and recognized only by the website that sent it each time a subsequent connection is made.
We remind you that the browser is the software that allows you to browse the Internet by viewing and transferring information to the hard drive of the user’s computer. If the browser preferences are set to accept cookies, any website can send its cookies to the browser, but – in order to protect privacy – it can only detect those sent by the site itself, and not those sent instead. to the browser from other sites.

In any case, cookies cannot cause damage to the user’s computer.

ALTERNATIVES FOR THE SETTING OF COOKIES
The user’s privacy is essentially guaranteed by the fact that he can AT ANY TIME:

> configure your browser to accept all cookies, reject them all or receive a warning note when one is sent;

> delete one, some or all cookies.

Each browser has its own specific settings, so please remember to consult the “Help” section of the browser used for more information on how to change your preferences.

Internet Explorer:	https://support.microsoft.com/en-us/windows/delete-and-manage-cookies-168dab11-0753-043d-7c16-ede5947fc64d
Mozilla Firefox	https://support.mozilla.org/en-US/kb/block-websites-storing-cookies-site-data-firefox
Google Chrome	https://support.google.com/chrome/bin/answer.py?hl=en-EN&answer=95647&p=cpn_cookies
Apple Safari	https://www.apple.com/legal/privacy/en-ww/

HOW COOKIES ARE USED ON THIS SITE
Cookies are not used to transmit information of a personal nature, nor are systems used to track users.

The use of so-called session cookies (which are not stored permanently on the user’s computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers necessary to allow safe and efficient exploration of the site.

The so-called Session cookies used on this site avoid the use of other IT techniques that are potentially detrimental to the confidentiality of users’ browsing and do not allow the acquisition of the user’s personal identification data. In particular, these are exclusively “TECHNICAL COOKIES“: “Technical cookies are those used for the sole purpose of” transmitting a communication over an electronic communications network, or to the extent strictly necessary for the provider of a service from the company information explicitly requested by the subscriber or user to provide this service “. They are not used for any other purposes. They can be divided into navigation or session cookies, which guarantee the normal navigation and use of the website (allowing, for example, to make a purchase or authenticate to access restricted areas); analytics cookies, similar to technical cookies when used directly by the site manager to collect information, in aggregate form, on the number of users and how they visit the site; functionality cookies, which allow the user to navigate according to a series of criteria selected by him (for example, the language, the products selected for purchase) in order to improve the service provided. The prior consent of users is not required for the installation of these cookies.”

GOOGLE ANALYTICS
This site uses Google Analytics, a web analysis service provided by Google Inc. to generate statistics on the use of the web portal

Google Analytics uses “cookies”, which are stored on your computer to analyze the use of the site by users. The information generated by the cookie on the use of the website (including the IP address) is transmitted by the user’s browser to Google, based at 1600 Amphitheater Parkway, Mountain View, CA 94043, United States, and deposited on its servers. .

Google Analytics collects information anonymously without identifying individual visitors. Browsers do not share proprietary cookies of the Google Analytics tool between various domains. Google Analytics does not report information relating to actual addresses: Google Analytics communicates information so that only a part of the IP address is used for geolocation, rather than the entire address, using a method known as IP masking.

Google will use this information for the purpose of tracing and examining the use of the website, compiling reports on website activity and providing other services to the owner of the same relating to website activity, connection methods (mobile, PC, browser used, etc. ) and how to search and reach the pages of the portal. Google may also transfer this information to third parties where this is required by law or where such third parties process the aforementioned information on behalf of Google. Google will not associate your IP address with any other data held by Google.

It is possible to disable Google Analytics cookies, using the opt-out add-on provided by Google for the main browsers. In this way it will also be possible to use the online services.

See also:

– the terms of service of Google Analytics

– the privacy policy of the Google company http://www.google.com/intl/en/analytics/privacyoverview.html

– Google’s privacy policy
https://policies.google.com/technologies/cookies?hl=en-GB

– https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage

– https://support.google.com/analytics/answer/2763052?hl=en

THIRD PARTS COOKIES
While browsing the Site, the User may also receive cookies from third party websites or web servers (so-called “third party” cookies) on their terminal: this happens because the Site may contain elements such as, for example, images, maps, sounds, specific links to web pages of other domains that reside on servers other than the one on which the requested page is located. In other words, these cookies are set directly by managers of websites or servers other than the Site. These third parties could theoretically set cookies while you visit the Site and thus obtain information relating to the fact that you have visited the Site. You will find more information on use of cookies by accessing the link indicated. If the User decides not to give his consent to the storage of third-party cookies, the User can only use the functions of the Site, which do not require the storage of such cookies.

For more information, please visit the following site: https://www.yourlinechoices.com/uk/

RIGHTS OF THE INTERESTED PARTIES
The interested party has the right:

> to ask the data controller for access to personal data and the correction or cancellation of the same or the limitation of the processing of personal data concerning him and to oppose their processing;

> if the processing is carried out by automated (computer) means and on the basis of one’s consent, to receive personal data concerning him in a structured format, commonly used and readable by an automatic device and / or to obtain direct transmission to another data controller, if technically feasible;

> to withdraw their consent at any time (without prejudice to the lawfulness of the treatment based on the consent before the revocation), obviously for the treatments carried out on the basis of this assumption;

> to lodge a complaint with a supervisory authority: Guarantor for the protection of personal data – Piazza di Monte Citorio n. 121 00186 ROME – Fax: (+39) 06.69677.3785 – Telephone switchboard: (+39) 06.696771 – E-mail: garante@gpdp.it – certified mail protocol@pec.gpdp.it

Requests should be addressed to the Teatro del Maggio Musicale Fiorentino Foundation using the contact details indicated above, bearing in mind that it will not be possible to respond to requests received by telephone if there is no certainty about the identity of the applicant

LEGAL VALIDITY
For the correct interpretation for legal purposes, the Italian text is valid.