Privacy Policy

Last updated: 2026-07-07

This Privacy Policy explains how Barclays Center collects, uses and protects the personal data of users who interact with this website, in accordance with applicable data protection laws.

1. Data Controller

The controller responsible for the processing of your personal data is:

For any request relating to the processing of your personal data, you may contact the controller using the details above.

2. Data Protection Officer (DPO)

The controller has not appointed a Data Protection Officer, as it does not fall within the cases where such appointment is mandatory under applicable law. Should a DPO be appointed, their contact details will be published in this section.

3. Categories of personal data processed

We process the following categories of personal data:

We do not process special categories of data or data relating to criminal convictions, except in specific cases notified to the data subject.

4. Purposes of processing and legal basis

PurposeLegal basis
Responding to contact requests, quotes or bookingsPre-contractual measures
Providing the requested services and managing the contractual relationshipPerformance of a contract
Issuing invoices and fulfilling accounting and tax obligationsLegal obligation
Ensuring the security of the site and preventing fraudLegitimate interest
Anonymous statistical analysis of website usageConsent — analytics cookies
Direct marketing and profilingExplicit consent — revocable

5. Methods of processing

Personal data are processed using electronic and paper-based tools, adopting appropriate technical and organisational measures to ensure their security, integrity and confidentiality. Access to the data is limited to authorised staff and to processors appointed for that purpose.

6. Retention period

Category of dataPeriod
Contact data (information requests)24 months from the last contact
Contractual and billing dataAs required by applicable accounting and tax law
Navigation data (server logs)Up to 12 months
Analytics cookiesSee Cookie Policy
Marketing data (with consent)24 months or until consent is withdrawn

At the end of the retention period the data are irreversibly deleted or anonymised.

7. Recipients of the data

Personal data may be disclosed to:

Data are never sold or transferred to third parties for their own commercial purposes.

8. Transfers of data abroad

Some service providers (e.g. Google, Meta, hosting providers) may be located in, or transfer data to, countries other than your own. Where this occurs, the transfer takes place only towards countries ensuring an adequate level of protection, or on the basis of appropriate safeguards such as standard contractual clauses.

9. Provision of data

Providing the data requested by the website forms (e.g. name, email, phone) is optional, but refusal makes it impossible to respond to your requests. Providing data required by law (e.g. for invoicing) is mandatory.

10. Automated decision-making

No solely automated decision-making processes, including profiling, that produce legal effects concerning the data subject are in place.

11. Your rights

Subject to applicable law, you have the right to:

12. How to exercise your rights

To exercise your rights you may write to [email protected], indicating:

The controller will respond within the time limits set by applicable law, free of charge, save for manifestly unfounded or excessive requests.

13. Complaint to a supervisory authority

If you believe that the processing of your data infringes applicable data protection law, you have the right to lodge a complaint with the competent data protection authority in your country of residence.

14. Changes to this policy

The controller reserves the right to amend this Privacy Policy at any time in order to reflect legal or organisational changes. Amendments take effect upon publication on this page. Please review this page periodically.

← Back to site