PRIVACY

Privacy Policy - Privacy Policy for site visitors

This Privacy Policy is intended to describe how to manage the site www.miawhitemilano.com with reference to the processing of personal data of users / visitors who consult it. The information is provided by miawhite as the owner of the site indicated above. This information is also provided pursuant to art. 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of the data of those who connect to the aforementioned site. Users/visitors are invited to read this Privacy Policy carefully before submitting any type of personal information.

1. Identity and contact details of the data controller

Data controller pursuant to Articles. 4 and 24 of the Regulation is miawhite, e-mail: info@miawhitemilano.com, You can contact the Data Controller by writing to the above address or by sending an email to the aforementioned e-mail address.

2. Contact details of the Data Protection Officer

The Data Protection Officer ("DPO") pursuant to Art. 37 of the Regulation can be contacted at the following e-mail address: info@miawhitemilano.com

3. Type of data processed

1) Navigation data The computer systems and software procedures used to operate this site acquire, in normal operation and only for the duration of the connection, some data that are then implicitly transmitted in the use of Internet communication protocols. This information is not collected with the aim of associating it with users but, by its very nature, could, through processing and association with data held by third parties, allow them to be identified. These are, for example, IP addresses, domain names of the terminals used, addresses in URI (Uniform Resource Identifier) notation of the applicants, the time of the requests, etc. These data, deleted immediately after processing, are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning.

2) Data provided voluntarily by users / visitors If users / visitors connecting to this site send their personal data, you will have the acquisition of such data by miawhite; these data will be processed exclusively to respond to requests for information received and / or to be contacted.

3) Cookies This site uses cookies or markers, which are technically packets of information sent from a web server (in this case, from this site) to the visitor/user's browser and automatically stored by the latter on their device (personal computer, tablet, mobile phone, etc.) and automatically sent back to the server at each subsequent access to the site. To know the types and purposes of cookies used by miawhite and express preferences regarding the use of cookies, you can consult the appropriate Cookie Policy.

4. Purpose and legal basis of data processing

The personal data provided by the interested party will be processed by the Data Controller exclusively for the pursuit of the following purposes:

  • purposes related to the execution of the services provided (response to requests for information and / or contact received through the form on the website, etc.);
  • purposes related to the fulfillment of a legal obligation to which the Data Controller is subject.

The legal basis for the processing of personal data that you will provide to the Data Controller for the purposes referred to in point a) is the response to your request for information and / or contact.

The legal basis for the processing of personal data for the purposes referred to in point a) is art. 6, paragraph 1, letter b) of the Regulation ("the processing is necessary for the execution of a contract of which the interested party is a party or for the execution of pre-contractual measures adopted at the request of the same").

The legal basis for the processing of personal data for the purposes referred to in point b) is the fulfillment of a legal obligation to which the Data Controller is subject pursuant to art. 6, paragraph 1, letter c), of the GDPR ("the processing is necessary to fulfill a legal obligation to which the data controller is subject") .)

5. Processing methods

The processing of user information is carried out only if strictly necessary, both on paper and with the aid of electronic or automated means in compliance with adequate technical and organizational security measures provided for by the GDPR and is carried out by miawhite to store, manage and transmit the data. The personal data being processed are kept and controlled in such a way as to minimize the risks of destruction or loss, even accidental, of the data, of unauthorized access or processing that is not allowed or does not comply with the purposes of the collection.

6. Any recipients and categories of recipients of personal data

Personal data may be communicated for the purposes specified above to subjects who carry out activities necessary for the provision of the services offered by the Site (by way of example, the analysis of the functioning of the Site itself) who will process the data as managers (Article 28 of the Regulation) and / or as authorized persons acting under the authority of the Data Controller and the Data Processor (Article 29 of the Regulation) or as subjects expressly designated for the processing of data within the terms provided for by the GDPR and by the national legislation adapting to the provisions of the GDPR such as, for example, suppliers of IT and / or storage services or other services of a technical / organizational nature) or employees and collaborators of miawhite. The user's information may also be communicated to third parties in order to fulfill the obligations established by law, by the European or national legislation in force and allow the defense in court of miawhite (for example in the case of violations by users of the network). The personal data provided will not be subject to disclosure.

7. Transfer of personal data to a third country and/or an international organisation

No personal data of the User will be transferred to a third country outside the European Union or to International Organizations.

8. Retention period of personal data or criteria for determining the period

The personal data being processed will be kept in compliance with the provisions of art. 5 paragraph 1 letter e) of the Regulation in a form that allows the identification of the interested parties for a period of time not exceeding the achievement of the purposes referred to in point 3 for which the personal data are processed or for the time strictly necessary for the fulfillment of legal obligations.

9. Rights of the interested party

Pursuant to Articles. 15 et seq. of the GDPR, the interested party has the right to ask the Data Controller:

  • access to your personal data;
  • the correction or cancellation of the same or the limitation of the processing that concerns him;
  • opposition to processing;
  • the portability of data in the terms referred to in art. 20 cit.;
  • if the processing is based on Article 6, paragraph 1, letter a), or on Article 9, paragraph 2, letter a), cit. the withdrawal of consent at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation.

Without prejudice to any other administrative or judicial remedy, the data subject who considers that the processing concerning him or her violates the GDPR, has the right to lodge a complaint with a supervisory authority, in particular in the Member State in which he or she habitually resides, works or in the place where the alleged infringement occurred (Article 77). To exercise the above rights, the interested party may contact the Data Controller at the addresses indicated in point 1 of this information.

10. If the communication of personal data is a legal or contractual obligation or a necessary requirement for the conclusion of a contract, and if the data subject is obliged to provide the personal data as well as the possible consequences of failure to communicate such data

The communication of your data is mandatory in order to proceed to respond to your request for information and / or contact received by the Data Controller. Failure to communicate personal data will make it impossible for the Data Controller to proceed with the response to your request for information and / or contact.

11. Existence of an automated decision-making process, including profiling

Pursuant to art. 13, paragraph 2, letter f) of the GDPR, we inform you that the personal data collected will not be subject to any automated decision-making process, including profiling pursuant to art. 22, paragraphs 1 and 4 of the Regulation.

12. Processing of personal data for a purpose other than that for which they were collected

If the Data Controller intends to further process the personal data for a purpose other than that for which they were collected, before such further processing, miawhite will provide the interested party with information regarding this different purpose and any further relevant information referred to in art. 13, paragraph 2 of the GDPR.

13. Updates

This privacy policy may be subject to changes and / or additions as a result of any subsequent changes and / or regulatory additions, the updating or provision of new services or technological innovations.

 

Product added to wishlist
Product added to compare.