Privacy Policy
This policy explains the methods and purposes of personal data processing carried out by the Data Controller. It also provides contact details for requesting access to, modification, or deletion of personal data at any time.
The Privacy Policy applies whenever a User browses the pages of the Website https://www.blutheatre.it and for all activities carried out online through it.
The processing of the Personal Data of users of the Website will be carried out in Italy and conducted in compliance with:
General Data Protection Regulation EU/2016/679 (GDPR)
Legislative Decree No. 196 of June 30, 2003, containing the Code regarding the Protection of Personal Data
Recommendation No. 2/2001 adopted by the European Data Protection Authorities to identify the minimum requirements for the collection of personal data online.
The Italian supervisory authority is the “Garante per la protezione dei dati personali” (Data Protection Authority), with headquarters in Piazza di Monte Citorio No. 121, 00186 – Rome (https://www.garanteprivacy.it/).
Data Controller and Data Processor
Following consultation of this Website, data relating to identified or identifiable persons may be processed. The Data Controller of such data is:
BLU s.r.l.s.
Corso Italia, 219
80067 Sorrento (NA) - Italy
Phone: +39 081 877 20 48
Mobile: +39 331 992 58 53
Email: info@blutheatre.it
VAT number: 10396061219
Policy
Every person has the right to the protection of their personal data and, in accordance with this right, this Privacy Policy provides all the information necessary to understand how information identifying users of the Website is collected and used.
The Data Controller undertakes to comply with the principle of strict necessity in the processing of data that can identify the User, even indirectly.
The Data Controller does not collect or process “sensitive data” in any way, as defined by EU Regulation 679/2016.
Users' Personal Data will be processed by the Data Controller using appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.
The Website has been configured so that the use of personal data is reduced to the minimum necessary and uses anonymous data whenever possible to pursue the same purposes.
Purpose
The Data Controller and the owners of third-party services used by it, unless otherwise specified, collect User Data for purposes strictly related to the provision of their Services.
The purposes are:
to contact and respond to requests sent by the User, to collect statistical data on the use of the Site, to fulfill contracts entered into with the User relating to the purchase or reservation of products and services, to display content relating to its business from and through other platforms.
In addition to these, there are purposes aimed at providing a better experience for the User:
commenting on content, interacting with social networks, and integrating with external platforms.
With the explicit consent of the User, the following purposes are carried out:
sending commercial information via email, customer satisfaction surveys, market research, promotional activities in general, profiling and analysis of the browsing experience for marketing and promotional purposes.
Data collected by this Website
The types of Personal Data collected and used for each purpose are indicated in the specific sections of this document.
The Personal Data collected by this Website may be freely provided by the User or, in the case of Navigation Data, collected automatically when consulting the pages of this Website.
Other Personal Data that may be collected is indicated in other sections of this privacy policy or through information texts indicated at the time of collection of the Data itself.
Browsing Data
While browsing this Website, some personal data is acquired whose transmission is implicit in the use of Internet communication protocols and for which the User cannot express consent.
Some examples of device information we collect:
Attributes such as operating system, hardware version, device settings.
Connection information such as the name of your mobile operator or ISP, browser type, language and time zone, IP address.
This data is used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning.
This data could be used to ascertain responsibility in the event of hypothetical computer crimes against the Site.
Personal Data provided voluntarily by the User
The optional, explicit, and voluntary sending of emails to the addresses indicated on this Website or through pages/areas dedicated to this function entails the subsequent acquisition of the sender's address/contact details, which are necessary to respond to requests, as well as any other personal or non-personal data included in the message.
The User assumes responsibility for the Personal Data of third parties published or shared through this Website and guarantees that they have the right to communicate or disseminate it, freeing the Data Controller from any liability to third parties.
Examples of such data are: Navigation data, Name, Surname, Email, Telephone Number, Address, Postal Code, Province, Country, State, Requests, and additional data.
Data collected by third-party services
This Website uses third-party services for the purposes indicated in the respective section of this Website. The information acquired is in any case subject to the User's privacy settings.
Even if Users do not use the service, it may still collect traffic data relating to the pages on which it is installed.
Google Analytics (Google LLC)
Google Analytics is a web analytics service provided by Google LLC (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Site, compiling reports, and sharing them with other services developed by Google.
Google may use Personal Data to contextualize and personalize the ads of its own advertising network.
Google Analytics 4 does not record or store individual IP addresses. Analytics provides approximate geographic location data by deriving the following metadata from IP addresses: city (plus the derived latitude and longitude of the city), continent, country, region, subcontinent (and ID-based equivalents). For traffic in the EU, IP address data is used solely for the derivation of geographic location data before being deleted. It is not recorded, made accessible, or used for any other purpose. When Analytics collects measurement data, all IP lookups are performed on servers located in the EU before forwarding the traffic to Analytics servers for processing.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA
For further information: Privacy Policy
Google Tag Manager (Google LLC)
Google Tag Manager is a tag management service provided by Google LLC. It allows this Website to integrate other scripts.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA
For further information: Privacy Policy
Google Maps (Google LLC)
Google Maps is a map viewing service managed by Google LLC that allows this Site to integrate such content into its pages.
It is also used for geolocation services that allow you to calculate a route based on the user's location.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA.
For further information: Privacy Policy.
Cookies
Cookies are installed in the browser when browsing a website and may contain various information, some of which may allow the user's preferences to be identified.
This website and its domain https://www.blutheatre.it do not store personal data in cookies.
The data saved is used solely to store the preferences requested by the user, or information necessary to enable the functionality of this website and its safe and efficient exploration.
The cookies used by this site are:
session cookies (which disappear when the browser is closed)
persistent cookies (which expire on a predetermined date)
The use of cookies—or other tracking tools—by this Site or by third-party services used by it, unless otherwise specified, is for the purpose of identifying the User and recording their preferences for the requested purposes or statistical purposes.
For information on how to disable cookies or for other information regarding cookies and privacy, please refer to the Cookie Policy.
Data processing, sharing, and methods
The Data Controller, in compliance with regulations, processes Users' Personal Data by adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.
The processing is carried out using IT and/or telematic tools, automated tools and with organisational and logical methods strictly related to the purposes indicated.
It is guaranteed by law that the processing of personal data is carried out in compliance with the fundamental rights and dignity of the data subject, in particular with regard to confidentiality, personal identity and the right to protection of the same.
Personal Data will be processed exclusively by persons in charge of processing who are specifically authorized and supervised by the Data Controller:
persons in charge within the company organization:
administrative, commercial, marketing, legal, and system administrators.
external parties:
such as third-party technical service providers, postal couriers, hosting providers, IT companies, and communication agencies.
competent authorities:
- law enforcement agencies or other government authorities in cases provided for by law or if strictly necessary to prevent, detect, or prosecute any criminal acts and fraud;
- to entities and, in general, to any public and private entity, affiliated companies, subsidiaries, and parent companies with respect to which we have a communication obligation, including for the purpose of the most correct fulfillment of any respective obligation (including of an instrumental nature) in any case connected or referable to present and future relationships that will be established with you, imposed by laws and/or regulations or for the achievement of the purposes expressed above.
External parties may also be appointed, if necessary, as Data Processors by the Data Controller.
In addition to companies acting as data processors, Personal Data is also made available to third parties, independent data controllers, for purposes ancillary and related to the provision of the services requested.
The updated list of Data Processors can be requested at any time by sending an email to the Data Controller.
Place and communication of data
The Data is processed at the Data Controller's operating offices and in any other place where the parties involved in the processing are located. For further information, please contact the Data Controller.
The User's Personal Data may be transferred to a country other than the one in which the User is located, but in any case will never be transferred outside the countries belonging to the European Union, unless safeguard clauses or equivalent levels of protection of Personal Data are guaranteed.
The transfer will only be carried out to pursue Commercial Purposes agreed upon with the User's explicit request.
Retention period
The Data is processed and stored for the time required for the purposes for which it was collected.
Specifically:
Personal Data collected for purposes related to the execution of a contract between the Data Controller and the User will be retained until the execution of that contract is completed.
Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until such interest is satisfied.
When the processing is based on the User's consent, the Data Controller may retain the Personal Data for a longer period until such consent is revoked. Furthermore, the Data Controller may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or by order of an authority. At the end of the retention period, the Personal Data will be deleted.
Rights
Users can learn about their rights, request further information and stay up to date on regulations regarding the protection of individuals with regard to the processing of Personal Data by consulting the website of the Data Protection Authority at www.garanteprivacy.it.
Users have the right to:
Withdraw previously given consent to the processing of their Personal Data.
Object to the processing of their Data, if it is based on a legal basis other than consent.
Access their Data and obtain all information about the Data processed by the Data Controller.
The data will be provided in the form of a copy of the Data in a commonly used format that can be read by an automatic device.
Verify and request the rectification of their Data.
Obtain the restriction of processing, if certain conditions are met. In this case, the Data Controller will not process the Data for any purpose other than their storage.
-
Request the deletion or removal (right to be forgotten) of your Personal Data
-
Transfer your data to another Data Controller, where technically feasible, by obtaining or requesting that your Data be forwarded in a structured, commonly used and machine-readable format. This provision is applicable when the Data is processed using automated tools and the processing is based on the User's consent, on a contract to which the User is a party or on contractual measures related to it.
-
Lodge a complaint with the competent personal data protection supervisory authority or take legal action.
The User may exercise their rights at any time by submitting a request to the Data Controller's contacts.
Legal defence
The User's Personal Data may be used by the Data Controller for legal defence in court or in the preparatory stages of any legal proceedings, against abuse of the same or related services by the User.
The User is aware that the Data Controller may be required to disclose the Data at the request of public authorities.
Legal obligations
The Data Controller reserves the right to access, store and share information with regulatory bodies, law enforcement agencies or other entities in the following cases:
In response to a legal request, in good faith and within the terms imposed by law.
For all cases where it is necessary to detect, prevent and resolve unauthorised use of the Services or Products provided or sold by this Site, in order to detect violations of our contractual or regulatory conditions.
In order to detect harmful or illegal activities, to protect the business carried out, in relation to the Business Owner, the User and/or Third Parties.
The Data collected may be consulted and stored for an extended period of time when it is the subject of legal proceedings or obligations, government investigations or investigations into possible violations of our terms and conditions or regulations, or to prevent damage.
We may also store the Data for at least one year in order to prevent the recurrence of misuse or other violations of the terms and conditions.
Applicable law
This Privacy Policy is governed by the aforementioned GDPR and by current Italian law, which regulate the processing of personal data - including data held abroad - carried out by anyone who is resident or based in a European Union country.
The GDPR ensures that the processing of personal data is carried out in accordance with fundamental rights and freedoms, as well as the dignity of the data subject, with particular reference to confidentiality, personal identity and the right to protection of personal data.
Changes and updates
The Data Controller reserves the right to modify, in whole or in part, this Privacy Policy, also in consideration of regulatory updates that protect the rights of Users.
Changes and updates to the Privacy Policy will be binding as soon as they are published in this section. We therefore ask you to regularly access this section to check the publication of the most recent and updated version of the Privacy Policy.
Legal notices
All documentation available on this Website has been created and checked with the utmost care, but the user is always required to check its accuracy and is responsible for its use.
In the event of defects, no liability can be attributed for direct or indirect damage suffered by the User or third parties as a result of the use or non-use of the information obtained.
Although the contents of these pages are subject to continuous updating and verification, errors and/or omissions may still occur.
By accessing this Site, the User implicitly declares that they have read, understood and accepted the information contained in the Legal Notes and Privacy Policy and declares that they will comply with all applicable laws and regulations.
If the User does not accept these conditions, they may not use this Site.