The Gallery
Privacy Policy
Last updated: July 9, 2026
1. Who We Are
This website is operated by [Under The Arch Gallery / legal entity name], [address: Via Termine, 8/d, Sant’Agata sui Due Golfi, 80061 (NA), Italy].
Contact: underthearchag@gmail.com · +39 338 464 9639
For the purposes of GDPR, [legal entity name] is the “data controller” — the party responsible for deciding how and why your personal data is processed.
2. What Personal Data We Collect
We collect personal data only when you actively provide it to us, specifically when you:
- Submit an inquiry or reservation form on this site (name, email, phone number, optional message, and which experience/artwork you’re asking about)
- Contact us directly via email or WhatsApp
We do not require account creation, and we do not sell products directly through this website.
3. Why We Collect It (Legal Basis)
- To respond to your inquiry or booking request (legal basis: your consent / steps taken at your request prior to entering a contract)
- To keep a record of past inquiries for our own reference (legal basis: legitimate interest in running our business)
4. How Long We Keep It
Inquiry and reservation data is kept in our internal system for [X months/years — decide a retention period] after your last contact with us, after which it is deleted, unless a longer period is required by law (e.g. accounting records).
5. Who We Share It With
We do not sell or rent your personal data. We may share it with:
- Our email provider, solely to deliver inquiry notifications to us
- [Your hosting provider, Hostinger], which stores the website’s database
- [If using WP Mail SMTP with a third-party mail service — name it here]
We do not share your data with advertisers.
6. Cookies
This website uses cookies and similar technologies. Some are strictly necessary for the site to function; others (such as the embedded Google Map, our language translation tool, and any social media feeds) are only set with your consent, via the cookie banner shown when you first visit.
For full details on what each cookie does, see our Cookie Policy.
7. Third-Party Services Used on This Site
- Google Maps (Visit page) — embeds a map from Google; Google’s own privacy policy applies to any data this collects: policies.google.com/privacy
- GTranslate — provides the language-switcher; may set a preference cookie
- Instagram (if/when embedded) — Meta’s privacy policy applies to that content
- [WP Mail SMTP + your email provider, once configured]
8. Your Rights Under GDPR
If you are in the EU/EEA, you have the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Request deletion of your data (“right to be forgotten”)
- Object to or restrict our processing of your data
- Request a copy of your data in a portable format
- Withdraw consent at any time (this won’t affect processing that already happened before withdrawal)
- Lodge a complaint with the Garante per la Protezione dei Dati Personali if you believe your rights have been violated
To exercise any of these rights, contact us at underthearchag@gmail.com.
9. Children’s Privacy
This website is not directed at children, and we do not knowingly collect personal data from anyone under 16.
10. Changes to This Policy
We may update this policy from time to time. The “Last updated” date at the top will reflect the most recent revision.
11. Contact
Questions about this policy or your data: underthearchag@gmail.com