WEB Privacy Policy of Gio Ponti Store

Data Controller

MAV ARREDA srl CORSO LODI 2 MILAN PEC:mavarreda@pec.it
Tel: +39 0258306187

vat: 05919160969

Types of Data collected

Among the Personal Data collected by this Application, independently or through third parties, are: Cookies, Usage Data, first name, last name, telephone number, address, fax number and email.

Full details on each type of data collected are provided in the dedicated sections of this privacy policy or by means of specific information texts displayed prior to data collection.
Personal Data may be freely provided by the User or, in the case of User Data, automatically collected during the use of this Application.

Unless otherwise specified, all Data requested by this Application are mandatory. If the User refuses to communicate them, it may be impossible for this Application to provide the Service. In cases where this Application indicates certain Data as optional, Users are free to refrain from communicating such Data, without any consequences on the availability of the Service or its operation.

Users in doubt as to which Data are mandatory are encouraged to contact the Data Controller.
The possible use of Cookies - or of other tracking tools - by this Application or by the owners of third party services used by this Application, unless otherwise specified, has the purpose of providing the Service requested by the User, in addition to the further purposes described in this document and in the Cookie Policy, if available.

The User assumes responsibility for the Personal Data of third parties obtained, published or shared through this Application and guarantees that he/she has the right to communicate or disseminate them, releasing the Owner from any liability towards third parties.

Modalities and place of processing of collected Data
Processing methods
The Data Controller adopts appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of Personal Data.
The processing is carried out using computer and/or telematic tools, with organisational methods and logics strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other subjects involved in the organisation of this Application (administrative, sales, marketing, legal, system administrators) or external subjects (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) also appointed, if necessary, as Data Processors by the Data Controller, may have access to the Data. The updated list of Data Processors can always be requested from the Data Controller.

Legal basis of the processing

The Data Controller processes Personal Data relating to the User where one of the following conditions exists

the User has given consent for one or more specific purposes; Note: in some jurisdictions, the Controller may be authorised to process Personal Data without the User's consent or another of the legal bases specified below, until the User objects ("opts-out") to such processing. However, this does not apply if the processing of Personal Data is governed by European legislation on the protection of Personal Data;

the processing is necessary for the performance of a contract with the User and/or the performance of pre-contractual measures;
processing is necessary for the performance of a legal obligation to which the Controller is subject; processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller;

processing is necessary for the pursuit of the legitimate interest of the Controller or of third parties.
However, it is always possible to request the Controller to clarify the concrete legal basis of each processing and in particular to specify whether the processing is based on law, required by a contract or necessary to conclude a contract.

Place

The Data are processed at the Data Controller's operational headquarters and in any other place where the parties involved in the processing are located. For further information, please contact the Data Controller.
The User's Personal Data may be transferred to a country other than the country in which the User is located. To obtain further information on the location of the processing, the User may refer to the section on Personal Data processing details.

The User has the right to obtain information about the legal basis for the transfer of Data outside the European Union or to an international organisation under public international law or consisting of two or more countries, such as the UN, as well as about the security measures taken by the Controller to protect the Data.

Should one of the transfers just described take place, the User may refer to the respective sections of this document or request information from the Controller by contacting him at the contact details given at the beginning.

Storage period

The Data are processed and stored for the time required by the purposes for which they were collected.

Therefore:

  • ● Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User will be retained until the performance of such contract is completed.

  • personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until such interest is satisfied. You may obtain further information about the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller.

When the processing is based on the User's consent, the Data Controller may keep the Personal Data longer until such consent is revoked. Moreover, the Controller may be obliged to keep the Personal Data for a longer period in compliance with a legal obligation or by order of an authority.

At the end of the retention period the Personal Data will be deleted. Therefore, at the expiration of this period, the right of access, cancellation, rectification and the right to Data portability can no longer be exercised.

Purposes of the Data collected

The User's Data is collected to enable the Data Controller to provide its Services, as well as for the following purposes: Statistics, Contacting the User and Displaying content from external platforms.

To obtain further detailed information on the purposes of the processing and on the Personal Data concretely relevant for each purpose, the User may refer to the relevant sections of this document.

Details of Personal Data processing

Personal Data are collected for the following purposes and using the following services:

1. Contacting the User
2. Statistics
3. Displaying content from external platforms

In detail, Personal Data may be collected for the purposes indicated using one or more of the following services:

Social Applications:

These services allow the website and/or portal to tap into your profile data on social networks, and make interactions to your post. These services are not activated automatically, but require explicit authorisation from the user. Twitter account access

This service enables the website and/or portal to connect with the user's account on the social network Twitter, provided by TwitterInc.

Facebook account access

This service enables the website to connect with the User's account on the social network Facebook, provided by FacebookInc.
Facebook permissions
The site may require certain Facebook permissions that allow it to perform actions with the User's Facebook account and collect information, including Personal Data, from it.

For more information about these permissions, please refer to the Facebook permissions documentation and Facebook's privacy policy.

Interaction with social networks and external platforms:

These services enable interactions with social networks, or other external platforms, directly of the website and/or portal. The interactions and information acquired by the website and/or portal are in each case subject to the User's privacy settings relating to each social network. In the event that a service is installed for

if a social network interaction service is installed, it is possible that, even if Users do not use the service, it may collect traffic data relating to the pages where it is installed.
Tweet button and Twitter social widgets (Twitter)
The Tweet button and Twitter social widgets are services for interaction with the social network Twitter, provided by TwitterInc.

Facebook Like button and social widgets (Facebook)

The Facebook "Like" button and social widgets are services for interaction with the Facebook social network, provided by FacebookInc.
Google+ +1 button and social widgets (Google)
The +1 button and Google+ social widgets are services for interaction with the Google+ social network, provided by Google Inc.

User contact, chat and feedback:
Mailing List or Newsletter
By registering to the mailing list or newsletter, the User's email address is automatically added to a list of contacts to whom email messages may be sent containing information, including of a commercial and promotional nature, relating to the minihotel group's websites and/or portals. The User's email address may also be added to this list as a result of registering on the site form or after making a purchase.

Managing addresses and sending email messages

These services allow the management of a database of email contacts, telephone contacts or any other type of contact used to communicate with the User. These services may also collect data on the date and time the User views the messages, as well as the User's interaction with them, such as information on clicks on links in the messages.

Interaction with live chat platforms

These services allow interaction with live chat platforms, operated by third parties, directly from the pages of the site and/or portal. This allows the User to contact the site's support service. If a service for interacting with live chat platforms is installed, it is possible that, even if Users do not use the service, it will collect Usage Data relating to the pages where it is installed. In addition, live chat conversations may be recorded.

Interaction with support and feedback platforms

These services allow interactions with support and feedback platforms, operated by third parties, directly from the pages of the site and/or portal. If a service for interacting with support and feedback platforms is installed, it is possible that, even if Users do not use the service, it will collect Usage Data relating to the pages where it is installed.
Traffic optimisation and distribution, infrastructure monitoring:
These services allow the Application to distribute its contents through servers located on the territory and to optimise its performance. The Personal Data processed depend on the characteristics and implementation mode of these services, which by their nature filter communications between the site and/or portal and the User's browser. Given the distributed nature of this system, it is difficult to determine the places to which content, which may contain Personal Data of the User, is transferred.
Infrastructure monitoring
These services allow the site and/or portal to monitor the use and behaviour of components of the same, in order to enable the improvement of performance and

functionality, maintenance or troubleshooting. The Personal Data processed depend on the characteristics and the way these services are implemented, which by their nature filter the site's activity.
Remarketing and BehavioralTargeting:
These services allow sites/portals and its partners to communicate, optimise and serve advertisements based on the User's past use of the site/portal. This activity is carried out through the tracking of Usage Data and the use of Cookies, information that is transferred to the partners to which the remarketing and behaviouraltargeting activity is linked.
AdWordsRemarketing (Google)
AdWordsRemarketing is a Remarketing and BehavioralTargeting service provided by Google Inc. that links the activity of this Application with the Adwords advertising network and the Doubleclick Cookie.

FacebookRemarketing (Facebook, Inc.)

FacebookRemarketing is a Remarketing and BehavioralTargeting service provided by Facebook, Inc. which links the activity of this Application with the Facebook advertising network.

Statistics:

The services contained in this section allow the Data Controller to monitor and analyse traffic data and serve to keep track of the User's behaviour.

Google Analytics (Google)

Google Analytics is a web analysis service provided by Google Inc. ("Google"). Google uses the Personal Data collected in order to track and examine the use of this Application, compile reports and share them with other services developed by Google. Google may use Personal Data to contextualise and personalise ads in its advertising network.

FacebookAds conversion tracking (Facebook)

FacebookAds conversion tracking is a statistics service provided by Facebook, Inc. that links data from the Facebook ad network with actions taken on the site/portal.

Conversion tracking by Google AdWords (Google)

Google AdWords conversion tracking is a statistics service provided by Google, Inc. that links data from the Google AdWords ad network with the actions performed by the website/portal.

Display of content from external platforms:

These services make it possible to display content hosted on external platforms directly from the pages of the website/portal and to interact with them. If a service of this type is installed, it is possible that, even if Users do not use the service, it may collect traffic data relating to the pages where it is installed.

Youtube video widget (Google)

Youtube is a video content display service operated by Google Inc. that allows the site to integrate such content into its pages.

Vimeo Video Widget (Vimeo, LLC)

Vimeo is a video content display service operated by Vimeo, LLC, which allows the site to integrate such content into its pages.

User rights

Users may exercise certain rights with regard to the Data processed by the Data Controller. In particular, the User has the right to:

  • ● revoke consent at any time. you may revoke your previously given consent to the processing of your Personal Data.

  • object to the processing of your Data. you may object to the processing of your Data when it is done on a legal basis other than consent. Further details on the right to object are set out in the section below.

  • access to your Data. The User has the right to obtain information on the Data processed by the Controller, on certain aspects of the processing and to receive a copy of the Data processed.

  • ● verify and request rectification. The User may verify the correctness of its Data and request that it be updated or corrected.