Welcome to the website www.nadiamanzato.com, hereinafter referred to as the Website.
NMGC S.R.L. having its headquarter in Busto Arsizio (Va), via Fratelli d’Italia n. 5, VAT number 03724240126 (hereinafter, “NMGC S.R.L. ”) protect the confidentiality of the personal data and guarantee that it will protect them from any events that might expose them to the risk of said confidentiality being breached.
The users’ personal data will be processed in Italy in conformity with the applicable European regulation: General Data Protection Regulation no. 2016/679 (GDPR), which regulates the processing of personal data performed by those resident in Italy.
Every user has the right to have their personal data protected.
NMGC S.R.L. respects its users’ right to be informed of the collection and processing methods of their personal data. To obtain clarification, submit questions or for any requirements related to the privacy and processing of their personal data, users can send an email to the following address: firstname.lastname@example.org.
DATA CONTROLLER AND DATA PROTECTION OFFICER
The Data Controller is NMGC S.R.L.
NMGC S.R.L. has not appointed a Data Protection Officer (DPO).
PROCESSED PERSONAL DATA
The personal data processed by NMGC S.R.L. are those that the user provides when they pass an order or purchase a product and those that NMGC S.R.L. collects while the user is browsing or using the services offered on the Website, such as, for example: general details including first name and surname, shipment and invoicing addresses, browsing data and purchasing habits.
The user assumes liability for the personal data of third parties obtained, published or shared through the Site and guarantees that he has the right to communicate or disseminate them, freeing the Data Controllers from any liability to third parties.
DATA PURPOSES AND USE
The data provided by the user are collected and processed for purposes strictly connected with the use of the Website, its services and the purchase of products via the Website; they can also be used in other processing operations in any case compatible with the above-mentioned purposes, for example:
- to provide the service that enables registered users to purchase products and access reserved areas on the Website;
- to provide the service that sends one or more Newsletters about the Website by email containing product promotions and other sales or information initiatives;
- to provide the customer support service.
The above-mentioned data can be processed using paper, electronic and/or digital media and in any case using methods and procedures that guarantee the security and confidentiality of the same, always in conformity with the laws in force.
In case of statistical studies, such as the calculation of how long users remain on certain pages of the Website, the data will be processed anonymously or by way of other methods that do not allow the Data Subject to be identified.
NMGC S.R.L. undertakes to process said data confidentially and not to reveal them to unauthorised persons or use them for purposes other than those indicated herein, unless otherwise explicitly authorised to do so by the user. These data can be communicated, subject to the signing of a confidentiality undertaking, to IT consultants, workers and employees appointed to retain them and to perform the above-mentioned activities and will only be disseminated under the scope of the purposes of the service provided. On request, these data may be shown to the authorities legally authorised to view them.
FAILURE TO CONFER PERSONAL DATA AND CONSEQUENCES
The conferral of the personal data to NMGC S.R.L., in particular, of the Data Subject’s personal details, email address, postal address, credit/debit card and bank details and telephone number is required in order to fulfil the purposes closely related to the use of the Website, its services and to the purchasing of products through the Website.
Some of these data could be essential for fulfilling the duties arising from the laws or regulations in force or for providing other services rendered on the Website.
Should the user fail to confer these mandatory data, this could make it impossible for NMGC S.R.L. to process the contract for the purchase of the products or to correctly fulfil its duties as required by the laws and regulations in force.
Therefore, depending on the case, failure to provide the data could constitute a legitimate and justified reason for not processing the contract for the purchase of products on the Website. Instead, the conferral of other, non-mandatory personal data to NMGC S.R.L. is optional and has no consequences for the purchase of products on the Website.
TRANSFER OF PERSONAL DATA TO A THIRD COUNTRY OR INTERNATIONAL ORGANISATION
NMGC S.R.L. does not intend to transfer the data to any third countries or international organisations.
DATA RETENTION PERIOD
Unless the user explicitly expresses their desire to have their personal data deleted, these will be retained until they are needed for the legitimate purposes for which they have been collected.
Should the user send NMGC S.R.L. personal data that have not been requested or are not required for the performance of the service requested, or for the provision of a service closely connected to it, NMGC S.R.L. will not be considered the Data Controller of these data and shall delete them as soon as possible.
Regardless of whether the user decides to have them removed, the personal data will in any case be retained in line with the terms set forth by the law and/or national regulations in force, with the sole purpose of guaranteeing the specific fulfilments intrinsic to certain services that remain even after the termination of the contract. For these purposes, NMGC S.R.L. will only retain the data necessary for the pursuit of said fulfilments.
RIGHT TO ACCESS THE DATA AND OTHER RIGHTS
The User always has the right to have NMGC S.R.L.:
- update, correct or, where interested therein, integrate their personal data;
- erase, render anonymous or block their personal data in cases of data that have been processed unlawfully, including data that does not need to be retained for the purposes for which it has been collected or subsequently processed;
- certify that the above-mentioned operations have been notified, also with reference to their contents, to the entities to whom or which the data was communicated or disseminated, unless this requirement proves impossible or involves a clearly disproportionate effort compared with the right that is to be protected.
The Data Subject shall have the right to object, fully or partially:
- on legitimate grounds, to the processing of personal data concerning them, even though it may be relevant to the purpose of the collection;
- to the processing of personal data concerning them, where this is carried out for the purpose of sending advertising materials or direct selling, or else for the performance of market research or commercial communication.
The user can exercise their rights at any time, provided they do so lawfully, by sending a request to NMGC S.R.L. at the email address email@example.com.
COMPLAINTS TO THE COMPETENT AUTHORITY
Complaints regarding the personal data processing can be submitted to the competent Authority (the Italian Data Protection Authority) as follows: Garante sulla Protezione dei Dati personali, Piazza di Monte Citorio n. 121, 00186 ROME, Fax: (+39) 06.69677.3785, Switchboard: (+39) 06.696771, email: firstname.lastname@example.org
The GDPR guarantees that the personal data are processed in compliance with the fundamental rights and freedoms as well as the dignity of the Data Subject, with particular reference to the confidentiality, personal identity and the right to protection of the personal data.
THIRD PARTY DATA FOR THE SHIPMENT OF A GIFT
The personal data of a third party (name and address) to whom a user may want to send one of the products on sale in the Website as a gift, supplied during the relative purchasing process, will only be processed in order to enable to ship the product, provide the relative services and fulfil the relative duties accordingly. These data will only be retained until the product has been delivered to the third party and until the term by which the buyer can exercise the right to withdrawal has expired. Subsequently the third party’s personal data processed for the purposes indicated herein will be deleted.