Privacy

WHY THIS NOTICE

This privacy policy (the “Privacy Policy” or “Policy”) is intended to assist you in understanding what information we gather when you visit this Website and other websites of our brands, (collectively “Websites”), whether you are a registered user or not, and to describe how we use that information. If applicable, this Privacy Policy describes also how we process the information you may provide us or we collect about you, when you visit our boutiques managed directly by us or our affiliates (“Boutiques”) or the points of sales operated by our business partners (“Points of Sales”), or in the context of any other contacts you may have with us. This Policy is supplemental to any other information you may have been provided in those other circumstances. This Policy applies to Marina Rinaldi’s U.S. Websites, Boutiques, and Points of Sales.

These documents provide you with important information about the following:

1.      PROCESSING OF PERSONAL DATA

2.      PERSONAL DATA WE COLLECT

3.      HOW WE USE PERSONAL DATA

4.      HOW WE SHARE PERSONAL DATA

5.      CHILDREN'S PRIVACY

6.      STORAGE, ACCESSIBILITY AND TRANSFER OF PERSONAL DATA

7.      SECURITY AND CONFIDENTIALITY OF PERSONAL DATA

8.      RIGHTS IN RELATION TO PERSONAL DATA– MANAGING YOUR CHOICES

9.      CALIFORNIA PRIVACY RIGHTS

10.    DATA RETENTION

11.    OUR POLICY ON COOKIES AND SIMILAR PROCESSES

12.    LINKS, ADVERTISERS, SPONSORS & ADS

13.    DATA CONTROLLER –DATA PROTECTION OFFICER-  AND HOW TO CONTACT US

14.    UPDATING THIS POLICY – NOTICES

 

ACCEPTANCE

By visiting the Website, using its services or, otherwise by interacting with us, our Points of Sales, Boutique and/or Websites, you acknowledge that you have read and understand this Privacy Policy and you agree that we may collect, use, store, transmit and disclose the personal data we collect through the Websites, Boutiques and/or Points of Sale in accordance with this Privacy Policy. Unless you already registered with us, we may ask you to opt-in (e.g., ticking a checkbox) if we deem it appropriate to safeguard your rights or if so required by the applicable laws. If you do not agree to the terms of this Privacy Policy, please do not visit this Website, create an account and do not otherwise use or submit personal data to this Website, or do not opt-in when this option is offered to you pursuant to the applicable laws.

1. PROCESSING OF PERSONAL DATA

When we use "Personal Data" in this Privacy Policy we refer to any information enabling us to identify you (or a third party whose personal data you provide us) directly or indirectly including any information incidental to the purchase of goods or services; or that you chose to communicate to us or share with us, or third parties, while using the Websites or at Points of Sales. Please note that this Policy is also intended to cover processing activities carried out by Max Mara Fashion Group in Italy and its EU affiliates (see point 13 for details): as EU based entity/ies we will process the personal data in accordance with the General Data Protection Regulation (EU) 2016/679 “Reg.(EU) 2016/679” and with the legislation of the country where data is collected, if applicable. We reserve the right to carry out additional processing as required by law or as part of a criminal or other investigation or proceedings.

2. PERSONAL DATA WE COLLECT

Source of Data

We collect certain personal data from you when you choose to provide it to us, including:

Branded Websites distributing our products: when placing an order through the Website(s) , as a “guest”; establishing an account or modifying your account; by setting up a wish list; entering a contest, sweepstakes or promotion; searching on the Website; contacting us with a comment or question; signing up to receive email newsletters and updates regarding our latest products and services, boutique openings, events or promotions; or requesting to receive an order confirmation, shipping confirmation or other alerts;

Our Boutiques and Points of Sales: when filling in our customer card, during informal chats when you visit our Boutiques or Points of Sales, interact with us, or purchase merchandise;

Events: when participating in our events, surveys and market researches, challenges, and other promotions, also online, e.g., minisites that we run on third party social networks such as Facebook;

Our customer services: when asking for assistance, special services or aftersale care;

E-mail, text and other electronic messages: when communicating between you and us.

In addition, we automatically collect identifiers and network activity information from you or your device (for example, your IP address and usage data) when you visit the Websites.

If you provide us with any personal data relating to other individuals, you represent that you have the authority to do so, and where required, have obtained the necessary consent, and acknowledge that it may be used in accordance with this Privacy Policy. If you believe that your personal data has been provided to us improperly, or want to exercise your rights relating to your personal data, please contact us by using the information in section 13 below.

Types of Data

We may collect and use different types of personal data depending on the specific purpose we have, as described below:

  • personal details, such as name, surname, gender, age/date of birth, country of origin, and other personal details as allowed by applicable laws;
  • contact details, such as address, email address, phone number, mobile number, fax number (if any), and other contact details as allowed by applicable laws;
  • payment details, such as payment instrument (credit card, debit card) if applicable, passport number when required for tax or anti money laundering reasons;
  • sales related information, such as date, products or services provided, place of purchase, product codes, amount, total of sales, VAT number, complaints, returns, refunds and other sales related information as allowed by applicable laws;
  • habits and profiles, such as data regarding your purchases (purchase history including, boutique where the sale takes place, type, quantity and price of the products purchased by you), information related to customer relationship management activities and initiatives (date and categories of said actions as performed or to be performed and results of said actions), shopping habits and preferences (wish list, preferred categories of products, colour, style, other brands purchased, most visited countries, how you knows our brands, sizes, notes regarding purchase habits or special needs stated by you – i.e. preferred materials), other information (job related information, education, hobbies and lifestyle activities) as allowed by applicable laws;
  • family related information, such as marital status, anniversary date, number of children, children related information and other family related information as allowed by applicable laws; and
  • identifiers, commercial information, online activity, and inferences. The system automatically collects information about your browsing, identifiers and network activity information (for example, IP addresses or domain names of the device computers used by the Users that connect to the Site, URI Uniform Resource Identifier- addresses of the resources requested, the time of the request, how the request has been submitted to the server, the size of the file obtained in reply, the numerical code for the status of the reply given by the server - successful, error etc., and other parameters relating to your operating system, and certain information the transmission of which is implicit in the use of internet communication protocols) from you or your device when you visit the Websites.  We collect some of this information using cookies and similar technologies. Sometimes we collect this information from your browser to help improve your experience with the Website, for example to keep track of items in your cart or remember your account preferences. You may have options to change your browser settings to choose how we can collect some of this information.

Please note that the browsing details are intended for obtaining statistical information - unmatched with any identification data - on the use of the Website and to check its proper operation. This information is immediately deleted after they are processed.[1] 

3. HOW WE USE PERSONAL DATA

Personal data may be used for the following purposes, depending on the specific circumstances in which you interact with us.

3.1       For online and in-store sales (by the local Boutique/Point of Sale at which you make your purchase or the local website vendor as identified in the Terms of Sale of your online purchase)

Your personal data provided by you or collected when you make any purchase, regardless of whether you are acting as a guest or a registered user, i.e. basic personal details, contact details, data regarding your purchases, fiscal data, payment details, sales related information, and any other data strictly necessary for the delivery of products, will be used:

  1. to manage, administer and process your purchase of our products, sale and post-sale services, e.g. administrative activities, accounting, returns, warranties, tax free refunds if applicable, fraud prevention, communicating with you, including by e-mail, regarding any problem relating to the handling of the order or to subsequent requests relating to the order;
  2. to comply with obligations imposed by applicable laws or regulations and to establish or defend a legal claim.

Providing your personal data for the purposes above is necessary; denial thereof would make it impossible to complete your purchase.

Unless otherwise required to comply with local applicable laws, data may be processed for these purposes without seeking your consent because this is necessary to perform our contract with you for the sale of goods; if we have not entered into a contract with you, we base the processing of your personal data on our legitimate interest to operate and administer our Website.

3.2       For specific purposes for which it was volunteered

Your personal data provided by you or collected when you ask for a specific service (e.g., registering your account on our Websites, handling complaints, asking for information) which may include personal details, contact details, data strictly necessary for follow-up your request, will be used

  1. to provide the services you requested (e.g., operating the processes of registering your account, managing authentication on the Website, operating your accounts, assisting you, and handling any complaints, handling wish lists, follow up to any question or contact request you may submit to us, also through our customer care service);
  2. to manage newsletter subscription if you are not also registered with us.

Providing your personal data for the purposes above is necessary; denial thereof would make it impossible to complete your request.

Unless otherwise required to comply with local applicable laws, data may be processed for these purposes without seeking your consent because this is necessary for our legitimate interest in fulfilling your requests and communicating with you.

3.3       For Customer Relationship Management (CRM) purposes if you register with us

Your personal data provided by you filling in our forms or collected when you visit our Boutiques, Points of Sales or Websites and you interact with us, i.e. personal details, contact details, data regarding your habits and profile, family details, will be entered into our centralized CRM:

  1. to offer you with promotions, discounts, and other tailored services, and send you newsletters, other marketing and commercial communications on products, services and invitations to events about our brands (either organized by us or our distributing chain), surveys and researches, market analysis, invitation to contests, sweepstakes or promotions and other initiatives for registered customers or contacts of our brands (“marketing”). We may use traditional (postal mail, and phone) and/or digital and automated (e-mail, SMS, MMS, telephone and other digital channels, e.g., social medi contact means, and may send you these communications based on your profile, if you agreed to our profiling (see point 3.3.b) below);
  2. to analyze your contacts with us, interests, preferences and purchase habits, and create individual or aggregated profiles based on that, to work out how to provide you with a better service, including to provide you with a customized sales experience in any and every Boutiques and Points of Sales in Italy and abroad (“profiling”). We may use the personal data also to create clusters and conduct market and statistical analyses directed at identifying products and/or services of interest to the customers of our brands and to improve our services (including the Websites). We will combine your data collected on the Websites with information that we may have obtained through your interaction with the sales persons at the Boutiques and/or the Points of Sales. The processing for the personal data for profiling is carried out in compliance with the guarantees and measures set by the applicable law.

Your data entry into the CRM system is optional and free (based on your selective opt-in) and only if you provide your personal data for both the purposes of marketing and profiling under points 3.3.a) and b), or one of them. You may unsubscribe or opt-out at any time (see point 8 below). Denial to provide your personal data for both or one of these CRM purposes does not prevent you, in any way, from using our the services or making your purchases, but we will not be able to inform you on the marketing initiatives and events described above and we could not understand your interests and offer you a more personalized shopping experience.

4. COMMUNICATION OF PERSONAL DATA

The company shares the user’s personal data with its related companies, distributors and affiliates, including those located in other countries, and with other companies that provide services on its behalf (as described in more detail below), under its direction or that of third parties. These companies and organisations will exclusively receive the personal data required to carry out the services and will not be authorised to use them for any other purpose.

 

4.1   Communication of personal data to the data supervisors

When the user buys products or uses the company’s online sales services, their personal data could be shared by the e-commerce supplier of this website with selected third parties that provide services to the supplier, including those which process the orders, ship the products, process credit or debit card payments and carry out fraud-prevention checks.

 

The user’s personal data may be shared with third parties, including digital platforms (including Meta, Google and other providers indicated in point 11) below to monitor and analyse the website activities and/or allow the measurement of marketing campaigns, on behalf of the company as data supervisors or (as independent data controllers or joint data controllers) to provide services under the scope of marketing campaigns based on user tracking activities (e.g. retargeting). To understand how these companies process the user’s personal data and, in the event, change the protection settings, you can consult the section dedicated to privacy on each digital platform listed in the Cookie Policy section.

 

The user’s personal data may also be shared with third parties to host website content, provide technical and organisational services functional to the above purposes, keep customer’s bank details, provide assistance in sending or managing marketing activities (in addition to the above) and manage emails, market analyses, surveys, competitions, reward schemes or promotions.  These third parties may have access to the user’s personal data or store them or process them in order to provide these services, as data supervisors, on behalf of the company in Italy, in the country in which the user is located or abroad. The providers of company services are not authorised to use the personal data for purposes other than the provision of the contracted services.

 

The processing of the user’s personal data for CRM purposes will be carried out, in accordance with the instructions supplied by the company, the associated enterprises that manage the company brands locally in Italy and in other countries or online and by the company’s commercial partners (affiliates and distributors) that manage the sales outlets and online sales on their websites, as data supervisors.

 

4.2   Disclosure of personal data

The user’s personal data may be shared with companies that are involved in the management of payments and fraud-prevention checks, that operate independently as data controllers, in order to provide the user with online sales services.

In the case of capital or corporate transactions (for example, mergers or acquisitions, company restructuring or liquidation), customer’s data will probably be one of the assets supplied and may be shared with legal successors, to the extent allowed by law based on the legitimate interest of the company. The personal data will remain subject to the existing privacy policy, unless the user decides otherwise.

 

The company may also divulge the user’s personal data to third parties (i) where provided for by an EU or member state regulation; (ii) in the case of legal proceedings; (iii) in response to a request from the forces of law and order based on legitimate grounds; or (iv) to protect the rights, privacy, security or the property of the company or the public.

 

In addition, to the extent allowed by law, the company may disclose the personal data to third parties in the case of disclosures relating to the user of the website, where deemed necessary to investigate, prevent or adopt measures regarding unlawful activities, suspected fraud or if the company, at its sole discretion, believes that the use of the website by the user is incompatible with the actual conditions of the website.

 

The complete list of designated data supervisors and third parties to whom the data is disclosed can be obtained through our contacts listed below (point 13).

 

5. CHILDREN'S PRIVACY

This Website is a general audience site; however our services are intended for people aged 18 years or older. We do not knowingly request or collect, use and disclose personal data provided by a person under the age of 18 both online and at the Boutiques/Points of Sales. In the event we learn we have collected personally data from a child, we will delete that information.

If you are under this age, please do not register or proceed with the online purchase and ask an adult (i.e. your parents or your legal guardian) to proceed with the required procedures.

6. STORAGE, ACCESSIBILITY AND TRANSFER OF PERSONAL DATA

The personal data collected through the Websites is processed mainly using electronic or web means, including web analytics services hosted by servers of our selected providers both in the European Union (e.g., Germany and Ireland, for online sales transactions on our directly managed Websites) and outside the European Union (e.g., USA, for our newsletter subscription services).  In Boutiques and Points of Sales, personal data may also be processed in hard copy. In both cases, the personal data will be fed for the CRM purposes into our centralized and secured database stored in Italy and is managed by our Customer Relationship Managers and marketing team in Italy and abroad.

Personal data will be accessed, on a need-to-know basis and under multi-level access control tools, only by authorized staff of our Boutiques, Points of Sales and of the local e-commerce vendor (e.g. staff in the digital & IT, marketing, retail, administration, security departments). This staff engaged to be bound by confidentiality obligations and expressly appointed as person in charge of the processing, as required by the applicable law. In particular, if you agreed to the processing of your personal data for the CRM purposes, the related data may be read, amended and updated by our staff and the staff at the, Boutiques, Points of Sales and/or local e-commerce vendors (especially the sales and marketing personnel). The staff is based in Italy or abroad, and is trained and bound by confidentiality obligations. We may use them, indeed, to collect, use and disclose the data as instructed by us.

If we need to transfer the personal data abroad for achieving the purposes of this Privacy Policy, including where the data protection legislation differs from the one applicable in your country, we take steps to ensure that these communications happen in compliance with the European data protection standards, or other local standards in the country where we collect the data, so that your data remain secure and confidential.

7. SECURITY AND CONFIDENTIALITY OF PERSONAL DATA

We take steps to protect your personal data from accidental loss and from unauthorized access, use, alteration and disclosure.  For example, when you provide any order information, we use secure technology, an encryption tool that provides security while transmitting this information over the Internet.  We also use firewall technology, password controls, and other technological and procedural safeguards in maintaining this Website.  Although we have implemented the above security measures for this Website.

However, you should be aware that 100% security is not possible.  We recommend you periodically update your software for protecting data transmission over networks (for example, antivirus software) and take other reasonable steps to protect your personal data.

In the unlikely event we believe that the security of your personal information in our possession or control was or may have been compromised, we will notify you of that development as required by applicable law using any of the methods prescribed thereunder (by providing us with your email address, you hereby consent to receiving any such notification in electronic form through such email address

8. RIGHTS IN RELATION TO PERSONAL DATA– MANAGING YOUR CHOICES

8.1       Your rights

At any time and free of charge, you may access your data, receive your electronic personal data in a structured, commonly used machine-readable format and transmit it to another data controller (data portability), have your data corrected, updated, changed or removed (subject to exemptions which may apply).  You may update any information you have given to us by contacting us at the addresses given below. Requests to delete your data are subject to any applicable legal and document retention obligations imposed on us.

If you think there is a problem with the way we are handling personal data, you have a right to file a complaint to your national and/or any other data protection authority in the EU or the EEA.

To exercise those rights, you may send your request sending an email at [infoprivacy@marinarinaldi.com] or regular mail at the address appearing below (point 13). When contacting us, please be sure to provide us with your name, email address, mailing address and/or telephone number(s) in order to be sure, we handle your request correctly.

8.2       Accuracy - Keep Personal Data Updated

To allow us to serve you better we encourage you to regularly review and update your personal data.  If you are a registered user you may access and edit your personal data through your user account settings on the Website; otherwise you may contact us (see point 13) to assist you in updating your personal data.

8.3       Managing your choices in relation to direct marketing and profiling

If you wish to opt-out from any of the CRM purposes, marketing and/or profiling, or manage your advertising preferences, you can simply send your request to us (see point 13), or indicated below, or manage your choices account accordingly. The same procedure applies if you wish to withdraw your consent to profiling. 

9. CALIFORNIA PRIVACY RIGHTS

Categories of Personal Information Disclosed

In the last 12 months, we have disclosed each of the categories of personal data described in Section 2 of this Policy to service providers for purposes that include fulfilling orders, processing payments, conducting site analytics, and maintaining the security of the Website.

Access and Deletion Requests

California residents have the right to know what personal data we collected, disclosed, and sold about them.  In particular, you may:

  1. Request, up to two times each year, that we disclose to you:
    • the categories and specific pieces of personal data that we collected about you in the preceding 12 months, the business purpose for such collection, and corresponding categories of sources from which we collected the information,
    • the categories of personal data, and the categories of  third parties to whom we disclosed your personal data in the preceding 12 months, and the business or commercial purpose for such disclosure.
  2. Request that we delete any personal data that we have collected from or about you.  Note that there are some reasons we will not be able to fully address your request, such as if we need to complete a transaction for you, to detect and protect against fraudulent and illegal activity, to exercise our rights, for our internal purposes, or to comply with a legal obligation.
  3. To take advantage of these rights, please submit a written request to infoprivacy@marinarinaldi.com or call 1-866-676-2962. You must put the statement “Your California Privacy Rights” in the subject field if you make a request by email. We may request certain information to verify your identity before we can respond to your access and deletion requests. 

We value your privacy and will not discriminate in response to your exercise of your privacy rights. 

We do not “sell” (as that term is defined under the California Consumer Privacy Act) personal information.

Agent Requests

You may authorize someone to make a privacy rights request on your behalf (an authorized agent). Authorized agents will need to demonstrate that you’ve authorized them to act on your behalf, and that they are registered with the California Secretary of State to conduct business in California, or must demonstrate they have  power of attorney pursuant to applicable probate law. We retain the right to request confirmation directly from you confirming that the agent is authorized to make such a request, or to request additional information to confirm the agent’s identity. An authorized agent is prohibited from using a consumer’s personal information, or any information collected from or about the consumer, for any purpose other than to fulfill the consumer’s requests, for verification, or for fraud prevention.

10. DATA RETENTION

Personal data will be retained for the duration of the business relationship and for as long as necessary for the purposes described in this Privacy Policy (e.g., if you subscribe to a newsletter, for the duration of your subscription; if you have a user account until you close the account). Beyond this period, your personal data will only be retained to comply with our legal and regulatory obligations (e.g, for 10 years for accounting purposes; for the duration of the mandatory retention requirements for tax purposes, etc.), or to allow us to maintain evidence of our respective rights and duties.

Your personal data processed for the CRM purposes (points 3.3) will be retained until you close your account or you withdraw your consent to the processing of your personal data for these purposes. Personal data relating to the details of your purchases processed for profiling and marketing purposes will be retained for a limited period of time in line with the timing permitted by the applicable law; upon expiration of this time limit, the personal data will be deleted or permanently anonymized.

 

 

Il presente Sito Web si rivolge a un pubblico generico, tuttavia i suoi servizi sono destinati a persone di età pari o superiore a 18 anni. La Società non richiede, raccoglie, utilizza e divulga deliberatamente dati personali forniti da persone di età inferiore a 18 anni online o presso le Boutique e i Punti Vendita. Qualora la Società venga a sapere di aver raccolto personalmente dati di un minore, li cancellerà.

Nel caso in cui l’utente non abbia l'età richiesta, è pregato di non registrarsi o procedere con l'acquisto online e di chiedere a un adulto (ovvero ai propri genitori o al proprio tutore) di eseguire le procedure necessarie.

 

Il trattamento dei dati personali raccolti tramite i Siti Web avviene principalmente utilizzando mezzi elettronici o basati sul web, tra cui i servizi di analisi web ospitati da server di fornitori selezionati della Società operanti sia all’interno dell’Unione europea (ad esempio, in Germania e Irlanda, per le transazioni delle vendite online sui Siti Web gestiti direttamente dalla Società) che al di fuori di essa (ad esempio, negli Stati Uniti, per i servizi di iscrizione alla newsletter della Società). Nelle Boutique e nei Punti Vendita, il trattamento dei dati personali può essere eseguito anche su supporto cartaceo. In entrambi i casi, i dati personali, per finalità CRM, vengono inseriti nella banca dati centralizzata e messa in sicurezza della Società situata in Italia e gestiti dai Responsabili CRM e dal team di marketing in Italia e all'estero.

 

L’accesso ai dati personali sarà consentito al solo personale autorizzato delle Boutique, dei Punti Vendita e del fornitore locale dell’e-commerce (ad esempio, al personale delle direzioni marketing digitale e informatica, vendite al dettaglio, amministrazione e sicurezza), in funzione della effettiva necessità di conoscere tali informazioni e utilizzando strumenti di controllo degli accessi su più livelli. Tale personale si è impegnato a rispettare gli obblighi di riservatezza ed è stato espressamente designato responsabile del trattamento, come previsto dalla legge vigente. In particolare, laddove lutente abbia fornito il proprio consenso al trattamento dei suoi dati personali per finalità di CRM, i relativi dati potranno essere letti, modificati e aggiornati dal personale della Società e da quello impiegato presso Boutique, Punti Vendita e/o fornitori locali delle-commerce (specialmente dal personale addetto alle vendite e al marketing). Il personale, presente in Italia o all'estero, ha ricevuto un’apposita formazione ed è tenuto al rispetto degli obblighi di riservatezza. La Società potrà avvalersi di esso per raccogliere, utilizzare e divulgare dati secondo le sue istruzioni.

 

Qualora la Società debba trasferire dati personali all'estero al fine di perseguire le finalità enunciate nella presente Informativa sulla Privacy, anche laddove la legislazione in materia di dati personali differisca da quella applicabile nel paese in cui si trova l’utente, la stessa adotterà misure per garantire che tali comunicazioni avvengano in conformità agli standard europei sulla protezione dei dati ovvero ad altri standard locali utilizzati nel paese in cui vengono raccolti i dati, in modo tale che i dati dell’utente rimangano sicuri e riservati.

 

 

La Società ha attuato misure idonee volte a proteggere i dati personali dell’utente da perdita accidentale e da accessi, utilizzo, modifica e divulgazione non autorizzati. Quando l’utente fornisce informazioni sull’ordine, ad esempio, la Società utilizza una tecnologia SSL (Secure Socket Layer), uno strumento di codifica che garantisce la sicurezza durante la trasmissione delle informazioni su Internet. Nella gestione del presente Sito Web, vengono inoltre utilizzati controlli di password, una tecnologia firewall e altre misure di sicurezza tecnologiche e basate su procedure. Nonostante la Società abbia attuato le suddette misure di sicurezza per il Sito Web, l’utente deve sapere che non è possibile garantire la sicurezza al 100%. Pertanto, l’utente fornisce i suoi dati personali a proprio rischio e, nella misura massima consentita dalla legge vigente, la Società non sarà in alcun modo responsabile della loro divulgazione dovuta a errori, omissioni o azioni non autorizzate di terzi durante o dopo la loro trasmissione alla stessa. La Società raccomanda all’utente di (i) aggiornare periodicamente il software per proteggere la trasmissione dei dati sulle reti (ad esempio, il software antivirus) e controllare che il fornitore dei servizi di comunicazione elettronici abbia adottato mezzi idonei per la sicurezza della trasmissione dei dati sulle reti (ad esempio, firewall e filtri anti posta indesiderata); (ii) mantenere riservati e non comunicare a nessuno il nome utente e la password per accedere all’account; e (iii) modificare periodicamente la password.

 

Nell’improbabile eventualità in cui la Società ritenga che la sicurezza dei dati personali dell’utente in suo possesso o sotto il suo controllo sia stata o possa essere stata compromessa, la stessa informerà l’utente dell'accaduto secondo le modalità previste dalla legge vigente, utilizzando i metodi da essa prescritti (fornendo alla Società il proprio indirizzo email, l’utente acconsente a ricevere tali comunicazioni in formato elettronico attraverso tale indirizzo email).

 

 

In qualunque momento e gratuitamente, l’utente potrà accedere ai propri dati, ricevere i propri dati personali elettronici in un formato strutturato e comunemente utilizzato leggibile meccanicamente e trasmetterli a un altro titolare del trattamento (portabilità dei dati), nonché farli correggere, aggiornare, modificare o eliminare (fatte salve le eventuali eccezioni applicabili). L’utente potrà aggiornare i dati forniti alla Società contattando la stessa all’indirizzo fornito qui di seguito. Le richieste di cancellazione dei dati sono subordinate agli obblighi vigenti di legge e di conservazione dei documenti imposti alla Società.

Qualora ritenga che vi sia un problema nelle modalità di gestione dei dati personali, l’utente avrà il diritto di presentare una denuncia presso l’autorità per la protezione dei dati personali nazionale o di qualunque altro paese dell’UE o dello Spazio Economico Europeo.

Per esercitare tali diritti, l’utente potrà inviare una richiesta inviando un’email all’indirizzo infoprivacy@brand.com oppure una lettera per posta ordinaria all’indirizzo riportato qui di seguito (punto 13). Nel contattare la Società, l’utente dovrà accertarsi di includere il proprio nome, indirizzo email, indirizzo postale e/o numero/i di telefono per essere sicuro che la stessa possa gestire correttamente la sua richiesta.

 

8.2  Accuratezza - Aggiornamento dei dati personali

Per consentire alla Società di servire al meglio l’utente, lo stesso è invitato a verificare e aggiornare regolarmente i propri dati personali.  Se registrato, l’utente potrà accedere ai propri dati personali e modificarli utilizzando le impostazioni dell'account utente sul Sito Web; diversamente, potrà contattare la Società (vedere il punto 13) per ricevere assistenza per l'aggiornamento dei dati personali.

 

8.3  Gestione delle scelte relative al marketing diretto e alla profilazione

Qualora l’utente desideri non fornire il proprio consenso all’utilizzo dei dati per finalità CRM, di marketing e/o di profilazione, ovvero gestire le proprie preferenze relative alla pubblicità, potrà inviare una semplice richiesta alla Società (vedere il punto 13) di seguito indicato oppure gestire di conseguenza le proprie scelte relative all'account. La stessa procedura si applica laddove l’utente desideri revocare il proprio consenso alla profilazione.  

 

 

Ai sensi della Sezione 1798.83 del Codice Civile della California, le persone residenti in California hanno diritto a richiedere alle società con cui hanno instaurato un rapporto commerciale alcune informazioni rispetto ai tipi di dati personali che la stessa condivide con terzi che conducono attività di marketing diretto, nonché a conoscere l’identità dei soggetti terzi con cui la Società ha condiviso tali informazioni durante l’anno solare immediatamente precedente. Qualora l’utente sia residente in California e desideri ricevere una copia delle informazioni fornite ai sensi di tale legge, può inviare una richiesta scritta alla Società. La risposta sarà fornita entro 30 giorni dalla richiesta.

 

I dati personali saranno conservati per la durata del rapporto commerciale e per tutto il tempo necessario a perseguire le finalità descritte nella presente Informativa sulla Privacy (ad esempio, laddove l’utente si iscriva a una newsletter, per la durata di tale iscrizione, oppure laddove abbia un account utente, fino alla chiusura dello stesso). Dopo tale periodo, i dati personali dell’utente saranno conservati soltanto per ottemperare agli obblighi di legge e regolamentari (ad esempio, per 10 anni, nel caso di finalità contabili; per la durata dell’obbligo di conservazione inderogabile, nel caso di finalità fiscali; ecc.) ovvero per consentire alla Società di mantenere una prova dei rispettivi diritti e obblighi.

 

I dati personali dellutente che sono oggetto di trattamento per finalità CRM (punto 3.3) saranno conservati fino alla chiusura dellaccount ovvero fino a quando non sarà ritirato il consenso al loro trattamento per tali finalità. I dati personali relativi alle informazioni sugli acquisti di cui si effettua il trattamento per finalità di profilazione e marketing saranno conservati per un periodo limitato, in linea con il termine consentito dalla legge vigente, e, alla scadenza di tale termine, saranno cancellati o anonimizzati in modo permanente.

 

11. COOKIES AND ONLINE TRACKING TOOLS

The company uses tracking tools that utilise unique identifiers on the website to collect and save information (for example through the use of cookies, namely small text files stored on the device browser used by the user to visit the website) or use resources (for example by running a script) on the user’s device when the latter interacts with this website.  

If the user has given their consent to use the tracking tools on the website, setting their preferences as willing via banners or in the Cookies preferences area, the company can also use personal data, such as the email or postal address or telephone number provided by the user to improve, for example, the measurement of the effective conversions of its potential customers on websites, through the monitoring of its marketing campaigns, as well as to show the user marketing ads and content consistent with their interests, on the basis of the consumer preferences and behaviour identified through cookies and/or other tracking tools of media platform operators, including Meta Platforms Ireland Ltd., Google Ireland Limited and other operators, following the analyses they conduct on their users based on their interactions. For more information about cookies and tracking tools that the company uses, as well as to find out how to enable or disable them, please consult the Cookie Policy section.

 

12. LINKS, ADVERTISERS, SPONSORS & ADS

This Website may contain links to our various owned or controlled websites, as well as links to third party websites. If you elect to provide your personal data on any such linked website(s), that information will be subject to such linked website's privacy policy and security practices -  including the Websites run and managed by our approved distributors, except for the data collected therein by our distributors for the CRM purposes where our privacy policy is posted - and is not governed by this Privacy Policy. You should familiarize yourself with these other privacy policies , as we are not responsible for, and have no control over, the information submitted to, or collected, used, disclosed or otherwise processed by third party websites.

13. DATA CONTROLLER - HOW TO CONTACT US

For the purpose of this Privacy Policy and the data processing described therein please note that “We” “our”, “us” "Company" is Max Mara Fashion Group S.r.l. with registered place of business in Via Pietro Giannone, 10 - 10122 Turin, Italy.  As holding company and ultimate owner of several brands through its affiliates including "Max Mara", the Company is the data controller (as defined under the Reg.(EU) 2016/679) of the data collected at the Boutiques, Points of Sales and/or on the Websites in Italy and abroad for the CRM purposes under points 3.2 and 3.3 . The Company appointed a Data Protection Officer who may be addressed with queries and may receive claims about the processing of personal data for CRM purposes. The Data Protection Officer may be reached at Via Pietro Giannone 10, 10122 Turin (Italy), email: dpo@mmfg.it.

The data controller of the data collected at the local Boutique, Point of Sales and/or on the local Website for the sales related purposes under point 3.1 is the Marina Rinaldi Boutique, Point of Sales or online store at which you make your purchase and/or which has collected the data. The local vendor may be required to process your personal data in accordance with the data protection rules applicable in the country where it is based. Nevertheless, except in case of any conflicting mandatory rule applicable in that jurisdiction, the local vendor is committed to process your personal data according to the principles declared under this Privacy Policy.

14. UPDATING THIS POLICY - NOTICES

We reserve the right, at our discretion, to change, modify, add, or remove portions of this Privacy Policy at any time by posting such revised Privacy Policy on this page of the Website and updating the “Last Modified” date below.  It is your responsibility to review this Privacy Policy from time to time to take notice of any changes we made.  In some cases, we may provide additional notification of material changes to this Privacy Policy by adding a statement on the homepage of this Website or, for registered users, by sending a notification email or by adding a statement on their account page.  By accepting such revised Privacy Policy through a “click accept” in such notification email or account page statement (made available when required to comply with the applicable laws), or by completing a purchase on the Website or in any stores after this Privacy Policy has been revised, or, otherwise, by using or submitting information to the Website following the posting of the revised Privacy Policy, you agree to such revised Privacy Policy. As a consequence of the changes no processing of your data will be carried out without your explicit consent if so required by the applicable law. 

For any prior versions of the Privacy Policy, please visit this page: maxmara.com/database-privacy

LAST MODIFIED

This policy is effective 2020-October-30

 [1]Please confirm

 [2]If MMFG collects date of birth or other age information from registrants, it must ensure that it does not allow registration by users who declare themselves to be under 13 years old.