Artemisie Privacy Policy

Last updated : December 30, 2021

I. Introduction

Thanks for visiting artemisie.com!

Associazione Culturale Artemisia Gentileschi (“Artemisie”, “we”, “us” or “our”) respects your privacy. This Privacy Policy (“Policy”) governs how Artemisie, acting as Data Controller collects, stores, uses, discloses or otherwise processes your Personal Data collected through www.artemisie.com (“our website”). This Policy is subject to all applicable data protection laws and regulations, notably Regulation (EU) 2016/679 (the “General Data Protection Regulation”).

By accessing or using our website you agree that we will process your Personal Data in the manner described in this Policy and our General Terms of Use. We also use cookies and similar technologies. Our Cookie Policy describes what we do in that regard.

Our website contains links to third-party platforms. Artemisie does not control these third-party platforms and is not responsible for their actions, or for any of your Personal Data that you provide to them after you leave our website.

II. What information we collect about you

“Personal Data” means any information that relates to you from which it is practicable to ascertain your identity either directly or indirectly. We collect the following personal information regarding you or your device (“Your Personal Data”):

⦁ Information you provide when subscribing to our Newsletter, in particular your e-mail address.

⦁ Information from your use of our website. This includes: IP address, preferences, web pages you visited prior to coming to our website, information about your browser, network or device (such as browser type and version, operating system, internet service provider, preference settings, unique device IDs and language and other regional settings), information about how you interact with the website (such as timestamps, clicks, scrolling, browsing times, searches, transactions, referral pages, load times, and problems you may encounter, such as loading errors).

III. How we use Your Personal Data and on what legal bases

We use the personal information we obtain about you for the following purposes and legal bases:

⦁ Newsletter: Sending news and updates on upcoming events and our museum shop. This processing activity is based on your consent.

⦁ Website Analytics: Understanding how our Services are being accessed and used, evaluating, and improving our Services. This processing activity is based on your consent.

⦁ Security. Ensuring the security and integrity of our website. This processing activity is based on our legitimate interest.

⦁ Enforcement. Enforcing our General Terms of Use, notably our Intellectual Property rights. This processing activity is based on our legitimate interest.

⦁ Compliance: Respecting our legal obligations.

IV. How we share Your Personal Data

Other than as permitted under this Policy or as otherwise consented to by you, we will not share or transfer Your Personal Data to any other third parties for their processing for any purposes.

We share Your Personal Data to the following parties:

⦁ Service Providers. We share personal information with our service providers that perform services on our behalf, including Squarespace Ireland Limited that host our website.

⦁ Public Authorities. We may disclose your personal information if such disclosure is necessary to comply with the law or to respond to lawful requests by public authorities.

⦁ Legal Representatives. We may disclose your personal information to protect our rights, property or interests (such as enforcing our General Terms of Use) or prevent fraud.

V. How long do we process Your Personal Data

Your Personal Data will not be retained for a period of time exceeding what is necessary for the purposes for which it was collected and processed, in accordance with applicable law.

In particular, your personal data will be retained for the time necessary to provide you with requested services, as well as for ensuring the functioning of our website. Factors we consider in determining these periods include the minimum required retention period prescribed by law or recommended as best practice, the period during which a claim can be made with respect to an agreement or other matter and other relevant criteria.

IV. Where do we process Your Personal Data

Personal Information that you submit through the website are processed in the European Union (Italy and France).

For the hosting of the website by our Service Provider, your Personal Data is transferred to the United States. For this transfer, we rely on EU Standard Contractual Clauses and apply the necessary technical and organisational measures in order to guarantee the integrity, confidentiality and availability of Your Personal Data.

Your payment information may be transferred outside the European Union to countries that do not offer an adequate level of personal data protection by the Payment Service Provider.

IV. How we protect Your Personal Information

We use a variety of security technologies and procedures for the purpose of preventing loss, misuse, unauthorized access or disclosure of Your Personal Data. In the event that we are required by law to inform you of a breach to Your Personal Data we will notify you in writing.

V. Your rights and choices

Subject to applicable law, you have the following rights regarding Your Personal Data:

⦁ obtain access to Your Personal Data;

⦁ ask for incorrect, inaccurate or incomplete personal data to be corrected;

⦁ request that personal data be erased when it’s no longer needed or if processing it is unlawful;

⦁ request the restriction of the processing of Your Personal Data in specific cases;

⦁ receive Your Personal Data in a machine-readable format and send it to another Controller (‘data portability’);

In addition, if you believe that Your Personal Data have been processed unlawfully, you have the right to lodge a complaint to the Italian Data Protection Authority by writing at the following address: Garante per la protezione dei dati personali, Piazza Venezia, 11 - 00187 Roma, or by sending an e-mail to protocollo@pec.gpdp.it.

VI. How to contact us

If you have questions, comments or complaints about this Privacy Policy or our privacy practices or if you would like to exercise your rights, please email us at contact@artemisie.com or write to us at the following address: largo Valerio Bacigalupo 32 G 00142 Roma.

VII. Updates to this Privacy Policy

We will be updating this Privacy Policy from time to time to reflect changes in technology, law, or any other reason we determine is necessary or appropriate. When we make changes, we will update the “Last Updated” at the top of the Privacy Policy and post it on our website.

The Artemisie Team