This Data Protection Policy regulates Articket’s processing of the data it collects on its website.
The joint controllers of the personal data collected for the administration and management of Articket are:
The data you supply us with are processed in accordance with the Data Protection legislation in force for the sole purpose of delivering to you the service you request from us.
In each of these means, we give you detailed information about the purpose of data processing, which is carried out solely and exclusively if you have authorised such processing.
Detailed below is the information relating to the different purposes for which we can collect your data.
|Processing||How will we use your data?||How long will we retain your data?|
|Buying the Articket passport||We will process your data to administer and manage the service: buying the pass and managing access to the museums. To make payment, you will be redirected to a banking gateway.||Your personal data will be retained for a maximum of one year from the first time you use the pass. After that time, and when the retention period established by tax legislation has elapsed, they will be destroyed.|
|Contacts, complaints or suggestions box||We will process your data to respond to your requests, questions or concerns. Your data will not be transferred to third parties.||Your personal data will be retained until such time as a response has been given to your request and any appropriate actions have been carried out.|
The data you may have provided will only be processed for the purpose you were informed of and which you authorised. Your data are not processed by third parties and they will not be transferred to third parties unless you have expressly authorised us to do so.
The legal basis for processing your data is the execution of services you have requested from us and expressly authorised.
Under no circumstances will automated decisions be made based on your data.
The user voluntary supplies us with data at all times, while being informed of the use and processing thereof. All the information the user provides must be truthful. The user is solely responsible for any false or inaccurate statements he/she makes and for the damages such statements may cause to the Articket museums or to third parties. The museums responsible for the Articket initiative reserve the right to exclude from the services any user who has provided false data or inappropriately uses the pass, without prejudice to other actions that may be taken by law.
To carry out the activities and services of the Articket passport, we use services (reservations portal, payment gateway, the sending of communications, etc.) that are hosted on the technology platforms of firms dedicated to such purposes. Your data are administered and managed in this way solely and exclusively to ensure the performance, security and availability of the service we offer you, while guaranteeing that these firms apply the measures and best practices of information security.
All our service providers are located within the European Economic Area or in countries that guarantee the level of compliance that the legislation demands.
You can request and get information at any time about how and why we are processing your data:
You can submit a letter indicating which right you want to exercise (Access, Rectification, Erasure, Objection or Data Portability) in person or by conventional post to the CCCB (Carrer de Montalegre, 5, 08001 Barcelona) or to any of the museums responsible for the service in accordance with their own Privacy Policies.
If you would like more information about how Articket processes personal data, please get in touch at email@example.com.
The Catalan Data Protection Authority (www.apdcat.cat) is the organisation that oversees compliance the Data Protection legislation within the Catalan Public Administration. If you consider that Articket’s services have violated any of the provisions of that legislation, you may submit a complaint to the aforementioned Authority.