With the entry into force of the General Data Protection Regulation (GDPR) in May 2018, the Appia Antica Archeological Park has updated its policies for the management and storage of personal data collected and held for various reasons as a result of the application of the GDPR.
Below you will find all the information about the method used by the Archeological Park to manage the data, allowing all users to exercise their right under the law.

The holder of the treatment of personal data is the Ministry of Culture, Via del Collegio Romano 27 – Rome.

The Data Protection Officer (DPO) is Mr. Stefano Vitali, Director of the Central State Archives, who can be contacted as follows:
e-mail: rpd@cultura.gov.it | Phone: 065454.8568 | Via del Collegio Romano 27, 00186 – Rome (ITALY).

The data controller for the Appia Antica Archeological Park, on behalf of the Ministry of Culture, is Mr. Simone Quilici and the DPO is Mr. Giovanni Cubellotti.

The data processing related to the web services of this website takes place in the above mentioned office of the Park and is carried out by the competent technical staff or by occasional maintenance staff.
No data from the web service will be disclosed to or shared with third parties
The personal data provided by users when sending requests for information (newsletters, requests, brochures and actions, services or reports about the website…) will be used and stored exclusively for the purpose of providing the service and may be disclosed to other public or private entities only when necessary for the purpose.

The personal data will be processed using automated instruments for a period not longer than necessary for the purposes.
In order to avoid the loss of data, unlawful or incorrect use and unauthorized input, special security measures are observed.
If you wish to know what information about you is stored in our database, if you wish to update the data or if you wish your data to be deleted from our database, please contact us at pa-appia.comunicazione@cultura.gov.it.

Navigation Data
The computer systems and software procedures on which this website is based are such that, during their normal operation, they receive information and personal data that is later sent implicitly over the web by systems based on the Internet Protocol.
This type of information is not collected for purposes directly related to identifiable individuals, but due to its nature could be processed and merged with data held by third parties, making it possible to identify the user.
The data include IP addresses, the domain names of users connecting to the website, the URI (Uniform Resource Identifier) addresses of the requested sources, the time of the request, the method used to submit the request to the server, the size of the requested file and the numerical code supplied by the server indicating the status of the request (successful, error, etc.), as well as other parameters related to the operating system and the environment of the user IT.
These data are only used to obtain anonymous statistical information about the use of the website and to ensure its correct functioning. The data could be used to establish responsibility in case of criminal acts committed on the website or to have a possible crime verified by the judicial authority.
Data voluntarily provided by the user.
The sending of emails and messages to the addresses communicated on the website involves the subsequent acquisition of the user’s address and the personal data contained in the message, which are necessary to respond to the requests. Specific information will be published progressively, upon request, on the pages of the website set up for specific services.
Personal data collected through cookies
The use of cookies does not involve the transmission of personal data, only third-party cookies are used for the collective tracking of the pages visited by the user.
The use of session cookies (which are not permanently stored on the user’s computer, but are deleted when the browser is closed) is strictly limited to the transmission of session identification data (random numbers generated by the server), which are necessary for safe and efficient browsing of the website.
In addition, the cookies used in the session are used to avoid the repetition of other potentially harmful technical information when navigating the website and do not consent to the collection of personal data.

Apart from the navigation data, the user is free to provide his/her personal data in the registration and access forms, in the requests for information or in the sending of suggestions and comments, in order to expedite the request for information material or to participate in any of the services offered by the website.
Failure to provide data may result in not being able to use the requested service.

The holder of personal data has the right to obtain confirmation at any time from the holder of the data and to know the content and origin of the data and to verify its accuracy or request its integration or updating (article 7 of Legislative Decree 196 of 2003).
According to the same article, everyone has the right to request the cancelation, the transformation into an anonymous form or the blocking of the data in case of violation of the law and, in any case, to oppose the treatment of the data.
All requests should be sent to the e-mail address pa-appia.comunicazione@cultura.gov.it.
Please note that this document falls under the “Personal Data Protection Policy” applied by the Appia Antica Archeological Park, which is constantly reviewed and updated.