Privacy
Privacy Policy
1. Controllers
The controllers responsible for the processing of personal data on this website are Ivan Pogodin and Giulia Quaini, Roccia Art Gallery, Leebgasse 14/10, 1100 Vienna, Austria. Email: madonnadellarocciait@gmail.com. Phone: +43 664 3485727.
2. General information
We take the protection of personal data seriously. This Privacy Policy explains which personal data may be processed when you visit this website or contact us.
Personal data means any information relating to an identified or identifiable natural person, for example name, email address, phone number, IP address, or the content of a message.
3. Website access and server log files
When you visit this website, technical data may be processed automatically, in particular:
- IP address
- date and time of access
- page or file requested
- browser type and browser version
- operating system used
- referrer URL
- amount of data transferred
- access status message
These data are processed to provide the website, ensure its stability and security, and analyse technical errors. The legal basis is our legitimate interest under Art. 6(1)(f) GDPR.
4. Hosting
This website is hosted by Cloudflare Pages, a service provided by Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA. Cloudflare processes technical access data to deliver the website, ensure technical security, and analyse errors.
Where personal data are transferred to the United States or other third countries, this takes place on the basis of appropriate safeguards under the GDPR. Further information: https://www.cloudflare.com/privacypolicy/ and https://www.cloudflare.com/cloudflare-customer-dpa/.
5. Contact by email, phone, or form
If you contact us, we process the data you provide, such as your name, email address, phone number, message content, time of contact, and any voluntary information. These data are used to answer your request and communicate with you.
Without a configured secure form endpoint, the contact form opens the visitor's email application with a prepared message. If a secure endpoint is added later, this Privacy Policy should be updated with the service provider and processing details.
6. Artists and submitted materials
If artists or other persons voluntarily send us information, images, biographies, portfolios, or other materials, we process such data only for review, communication, presentation, or possible collaboration within Roccia Art Gallery.
7. Cookies, analytics, and external content
This website currently does not use non-essential cookies for analytics, marketing, or tracking purposes and does not use analytics tools such as Google Analytics or Meta Pixel.
This website may link to external pages such as Instagram or YouTube. At present, no external content is automatically embedded in a way that transfers data to third-party providers when the page loads.
8. Disclosure, transfers, and retention
Personal data are not sold and are not disclosed to third parties without a legal basis. Disclosure may occur where necessary for hosting, communication, legal obligations, or legitimate interests.
Personal data are stored only for as long as necessary for the respective purposes. Data from inquiries are generally deleted once communication has been completed, unless legal retention obligations or legitimate interests require further storage.
9. Your rights
Subject to the GDPR, you have rights of access, rectification, erasure, restriction of processing, data portability, objection, and withdrawal of consent with effect for the future.
To exercise your rights, contact us at madonnadellarocciait@gmail.com. If you believe that the processing of your personal data violates data protection law, you may lodge a complaint with a data protection supervisory authority. In Austria, the competent authority is the Austrian Data Protection Authority, Barichgasse 40-42, 1030 Vienna, Austria, email dsb@dsb.gv.at.
10. Automated decision-making and updates
No automated decision-making, including profiling, takes place on this website. This Privacy Policy may be updated if the website, technical services, or legal requirements change. Last updated: June 2026.