Based on the provisions of Art. 13 of European Regulation 2016/679, there follows complete information regarding handling of personal data by Ente Villa Carlotta within the scope of its activities.
The Data Controller is: Ente Villa Carlotta, based in Via Regina, 2 – 22016
Tremezzina – Loc. Tremezzo, Como, whose main activity is as a museum and botanical garden.
The main types of data collected and managed by Ente Villa Carlotta are shown below:
1. Orders and invoicing: data are collected when tickets are purchased or a contract (specific events) is signed and are necessary for correct supply of the requested product. If data are found to be incorrect, please inform us at +39 0344 40405.
These data are mandatory for the duration of the contract and the entire period envisaged by accounting and tax regulations.
2. Contact details: Ente Villa Carlotta collects contact details (name, surname, email, address and telephone) through different channels: site, email, phone calls, application forms, etc. During the collection phase, the explicit consent is always requested from the interested party to be included in mailing databases used by Ente Villa Carlotta for all its communications. Any communications are usually sent in the form of newsletters or invitations to events and are intended to inform the public about daily activities and new initiatives carried out by the institution.
All persons should be aware that they are entitled to withdraw consent for the aforementioned handling, in which case they will no longer be contacted in any way by Ente Villa Carlotta. If the interested party would like to access their data or limit the processing or revoke consent to use of their data for the purposes indicated above, they may avail themselves of the specific automatic functions in the communication footer or call us on +39 0344 40405.
Data will be retained until an explicit request for cancellation by the interested party is received.
3. Photos and videos: Ente Villa Carlotta may produce video/photographic material on different occasions and in different ways. This material is circulated for promotional purposes through communication channels (web, social media, press). Whenever such representations are planned (i.e. photos or videos whose key subjects are persons), the person involved is always asked for explicit consent.
If there is photography of the place or an event in which persons are accidentally recognizable but are not fundamental to the totality of the image, no explicit request for consent is made but specific information is posted on the spot to inform the public fact that photography is taking place.
If the interested party wishes to have access to material concerning them, wishes to limit handling or revoke the consent to use of their image, they should call us on +39 0344 40405 at any time. Photographic material is catalogued and filed for a duration of three years, after which time it is deleted from the institution’s databases. All material classified as official, however, becomes part of the historical archive and preserved as proof of Ente Villa Carlotta activities over the years.
4. CCTV: In consideration of the vastness of the park area and to protect the botanical, artistic, cultural, historical, and architectural heritage of items in the museum and in the botanical garden, Ente Villa Carlotta has a video surveillance system made up of groups of video cameras for a total of 28 units. The video surveillance system is in operation 24/7 and is intended solely for protection of persons and to safeguard Ente Villa Carlotta, in full compliance with Law 300 of 20 May 1970 which prohibits the use of equipment for remote monitoring of employees at work, as well as Decree 196/2003 for the protection of personal data, excluding any other direct or indirect remote monitoring of employees at work. The areas subject to video surveillance are indicated by special signs that advise staff and visitors of the presence of cameras in compliance with the provisions of Legislative Decree 196 of 30 June 2003 for the protection of personal data. Recording are stored in compliance with the security requirements indicated by the privacy authority, for a period not exceeding 60 days. After this time limit, the records are automatically deleted.
As part of the normal activities carried out by Villa Carlotta, personal data falling within the first category will be communicated only to duly informed external subjects who work with the institution (interns, apprentices, trainees, volunteers), deal with accounting and tax issues, or provide technical support (e.g. legal and IT services) and corporate control.
As far as contact data is concerned, these can be shared with duly informed external subjects who work with the institution (interns, apprentices, trainees, volunteers) or who support it in organizing events and initiatives, not only of a promotional nature (event organizers, caterers, activity organization partners, etc.).
As far as video/photographic material is concerned, this may be produced in collaboration with professionals or contracted companies specialized in the specific activity, then published through leading communication platforms (Facebook, Instagram, etc.) and shared with those in charge of producing institutional material (both paper and digital). In this case, the material may be stored in the processor archives of social media located outside EU borders.
With regard to the footage taken by the video surveillance system, the institution explicitly undertakes not to use data and information of which it becomes aware for effects or purposes other than those mentioned above.
Please note that according to the GDPR regulation the interested party has the right to
Any requests should be addressed to Ente Villa Carlotta’s Data Processing Manager, Mr Massimiliano Pozzi – firstname.lastname@example.org – tel. +39 0344 40405 – and he will provide all necessary clarifications and take action in the databases in all cases where the request is confirmed.