We are open from Thursday to Sunday: 3:30 PM till 7:30 PM

03.01.2026 - 05.24.2026 Aneta Grzeszykowska. Out of the blue

05.04.2026 Closed for Easter

Visit

Privacy Policy and Cookie Policy

This Privacy Policy describes how Fondazione D’ARC collects, uses, and protects personal data, in accordance with the General Data Protection Regulation (EU Regulation 2016/679 – “GDPR”), the Italian Personal Data Protection Code (Legislative Decree No. 196/2003, as amended by Legislative Decree No. 101/2018), and other applicable regulations. By using our services, you confirm that you have read and understood this Privacy Policy.

 

DATA CONTROLLER
The Data Controller of personal data is:

Fondazione D’ARC
Via dei Cluniacensi, 128
00159 Rome, Italy
Email: info@fondazionedarc.it 

 

DATA PROTECTION OFFICER (DPO)
The Data Controller has appointed a Data Protection Officer (DPO), who can be contacted at dpo@fondazionedarc.it for any matters concerning the processing of personal data.

 

SCOPE OF APPLICATION
This Privacy Policy applies to personal data collected through:
– The website fondazionedarc.it
Contact forms and other digital tools provided by the Foundation
– Direct communications, such as emails and phone calls

 

1. DEFINITIONS
The following definitions apply to this Privacy Policy:
– Personal Data: Information relating to an identified or identifiable natural person, as defined in Art. 4(1) of the GDPR.
– Data Subject: The natural person to whom the personal data refers.
– Data Controller: Fondazione D’ARC, which determines the purposes and means of processing.
– Data Processor: Third parties who process personal data on behalf of the Foundation, in accordance with specific contractual agreements.
– Service: The website fondazionedarc.it and any other tools provided by the Foundation.

 

2. TYPES OF DATA PROCESSED

2.1. Data voluntarily provided by the data subject
During the use of our Service, we collect the following personal data:
– Personal details: first name, last name
– Contact details: email address, phone number
– Other personal information: information provided through contact forms, emails, or other means of communication

2.2. Data collected automatically
We automatically collect:
– Browsing data: IP address, browser type, operating system, date and time of access, pages visited
– Cookies and similar technologies: for analytical and functional purposes (see Section 5: Cookie Policy)

 

3. PURPOSE AND LEGAL BASIS OF DATA PROCESSING

3.1. Primary Purposes
Personal data is processed for:
– Service delivery: managing requests submitted through the website or other communication channels. (Legal basis: Art. 6(1)(b) GDPR – performance of a contract)
– Informative communications: responding to inquiries made by the Data Subject. (Legal basis: Art. 6(1)(b) GDPR)

3.2. Secondary Purposes
With the explicit consent of the Data Subject:
– Direct marketing: sending information about activities, events, and services of the Foundation. (Legal basis: Art. 6(1)(a) GDPR)
– Profiling: analyzing preferences to personalize service offerings. (Legal basis: Art. 6(1)(a) GDPR)

3.3. Legal obligations and legal defense
Personal data may be processed to fulfill legal obligations or to establish, exercise, or defend legal claims. (Legal basis: Art. 6(1)(c) and (f) GDPR)

 

4. DATA PROCESSING METHODS
Personal data is processed in accordance with the principles of lawfulness, fairness, transparency, data minimization, and protection as set out in the GDPR.

Processing operations may include:
– Collection, recording, organization, storage
– Consultation, use, deletion, or destruction

Data is processed using both electronic and manual tools, with appropriate technical and organizational measures in place to ensure data security.

 

5. COOKIE POLICY
Our website uses cookies to improve the user experience.

5.1. Types of Cookies Used
Technical cookies: necessary for website functionality.
– Analytical cookies: for aggregated statistical analysis (anonymized).
– Profiling cookies: to provide personalized content, subject to prior consent.

5.2. Cookie Management
You can manage your cookie preferences through the website’s initial banner or your browser settings.

 

6. DATA RETENTION
We retain personal data for:
– The period necessary to deliver the Service
– 10 years for legal obligations (e.g., tax documentation)
– Until consent is withdrawn for marketing purposes

After these periods, data will be deleted or anonymized.

 

7. DATA COMMUNICATION AND SHARING
Personal data may be shared with:
– Service providers: to ensure the proper functioning of the Service (e.g., hosting providers)
– Competent authorities: when required by law
– Commercial partners: with the explicit consent of the Data Subject

 

8. DATA SUBJECT RIGHTS
You have the right to:
– Access your personal data (Art. 15 GDPR)
– Rectify inaccurate data (Art. 16 GDPR)
– Erase personal data (“right to be forgotten”) (Art. 17 GDPR)
– Restrict processing (Art. 18 GDPR)
– Receive your data in a structured, machine-readable format (Art. 20 GDPR)
– Object to processing for legitimate reasons (Art. 21 GDPR)

You can exercise your rights by contacting us at info@fondazionedarc.it.

 

9. DATA TRANSFERS OUTSIDE THE EU
Personal data will not be transferred outside the European Economic Area without adequate safeguards, such as standard contractual clauses or adequacy decisions by the European Commission.

 

10. CHANGES TO THE PRIVACY POLICY
We reserve the right to update this Privacy Policy. Updates will be published on this page with the revision date indicated.

 

11. CONTACT INFORMATION
For any questions regarding this Privacy Policy, you may contact us:

Fondazione D’ARC
Via dei Cluniacensi, 128
00159 Rome, Italy
Email: info@fondazionedarc.it