Privacy Policy

May 17, 2025 8 minutes read

1. Introduction

Welcome to BuyVaticanTickets.com (“we,” “us,” or “our”). We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you about how we look after your personal data when you visit our website and tell you about your privacy rights and how the law protects you.

This privacy policy aims to give you information on how we collect, process, and handle your personal data through your use of this website, including any data you may provide when you purchase tickets, sign up for our newsletter, or use our services.

2. Data Controller

BuyVaticanTickets.com is the data controller and responsible for your personal data. If you have any questions about this privacy policy or our data practices, please contact us at:

3. Personal Data We Collect

We may collect, use, store, and transfer different kinds of personal data about you which we have grouped as follows:

  • Identity Data: Full name, title, date of birth
  • Contact Data: Email address, telephone numbers, postal address
  • Transaction Data: Details about payments to and from you, and other details of products and services you have purchased from us
  • Technical Data: IP address, login data, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website
  • Profile Data: Your username and password, purchases or orders made by you, your preferences, feedback, and survey responses
  • Usage Data: Information about how you use our website, products, and services
  • Marketing and Communications Data: Your preferences in receiving marketing from us and our third parties and your communication preferences

4. How We Collect Your Personal Data

We use different methods to collect data from and about you including through:

  • Direct interactions: You may give us your Identity, Contact, and Financial Data by filling in forms or by corresponding with us by post, phone, email, or otherwise.
  • Automated technologies or interactions: As you interact with our website, we may automatically collect Technical Data about your equipment, browsing actions, and patterns.
  • Third parties: We may receive personal data about you from various third parties and public sources, such as analytics providers, advertising networks, and search information providers.

5. How We Use Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • To process and deliver your ticket order, including managing payments
  • To manage our relationship with you, including notifying you about changes to our services or policies
  • To enable you to participate in features of our service, when you choose to do so
  • To administer and protect our business and this website
  • To deliver relevant website content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you
  • To use data analytics to improve our website, products/services, marketing, customer relationships, and experiences
  • To make suggestions and recommendations to you about goods or services that may be of interest to you

6. Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we must have a legal basis for processing your personal data. We rely on the following legal bases:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose.
  • Contract: The processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract.
  • Legal Obligation: The processing is necessary for us to comply with the law.
  • Legitimate Interests: The processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.

7. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.

8. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and whether we can achieve those purposes through other means, and the applicable legal requirements.

9. Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification: You have the right to request that we correct any incomplete or inaccurate data we hold about you.
  • Right to Erasure: You have the right to request that we delete or remove personal data where there is no good reason for us continuing to process it.
  • Right to Restrict Processing: You have the right to request that we suspend the processing of your personal data.
  • Right to Data Portability: You have the right to request the transfer of your personal data to you or to a third party.
  • Right to Object: You have the right to object to processing of your personal data where we are relying on a legitimate interest.
  • Right to Withdraw Consent: You have the right to withdraw consent at any time where we are relying on consent to process your personal data.

If you wish to exercise any of these rights, please contact us at privacy@buyvaticantickets.com.

10. Cookies

Our website uses cookies to distinguish you from other users of our website. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree.

We use the following cookies:

  • Strictly Necessary Cookies: These are cookies that are required for the operation of our website.
  • Analytical/Performance Cookies: These allow us to recognize and count the number of visitors and to see how visitors move around our website when they are using it.
  • Functionality Cookies: These are used to recognize you when you return to our website.
  • Targeting Cookies: These record your visit to our website, the pages you have visited, and the links you have followed.

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly.

11. Third-Party Links

This website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.

12. International Transfers

We may share your personal data within our group of companies and with selected third parties. This might involve transferring your data outside the European Economic Area (EEA).

Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
  • Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
  • Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.

13. Changes to the Privacy Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the “Last Updated” date at the top of this policy. You are advised to review this privacy policy periodically for any changes.

14. Contact Us

If you have any questions about this privacy policy or our privacy practices, please contact us at:

You have the right to make a complaint at any time to the supervisory authority for data protection issues in your country of residence. We would, however, appreciate the chance to deal with your concerns before you approach the authority, so please contact us in the first instance.

Last Updated: August 12, 2025

Ready to Book Your Vatican Experience?

Skip the lines and explore the Vatican with our premium tickets and guided tours.

Book Vatican Tickets