Privacy Policy regarding the processing of personal data of users of the website madeinheritage.com

Articles 13 and 14 of Regulation 2016/679/EU (GDPR)

Why this notice

Made In Heritage (hereinafter also the “Company” or “Data Controller”) is committed to respecting and protecting your privacy and wishes you to feel secure both while simply browsing the website and if you decide to register by providing your personal data to use the services made available to its Users and/or Customers. On this page, the Company intends to provide some information regarding the processing of personal data relating to users who visit or consult the website accessible electronically at the address madeinheritage.com (the “Site”).

This policy applies only to the Company’s website and not to any other websites that may be consulted by the user via links (for which reference should be made to their respective privacy policies). Reproduction or use of pages, materials, and information contained within the Site, by any means and on any medium, is not permitted without the prior written consent of the Company. Copying and/or printing is allowed exclusively for personal and non-commercial use (for requests and clarifications, contact the Company using the details provided below). Any other use of the content, services, and information on this site is not permitted.

With regard to the content offered and the information provided, the Company will endeavor to keep the Site’s content reasonably updated and reviewed, without providing any guarantee regarding the adequacy, accuracy, or completeness of the information supplied, explicitly disclaiming any liability for errors or omissions in the information provided on the Site.

Source - Browsing data

The Company informs you that the personal data you provide and that are acquired when requesting information and/or contact, registering on the site and using services via smartphone or any other tool used to access the Internet, as well as data necessary for the provision of such services, including browsing data and data used for the possible purchase of products and services offered by the Company, as well as so-called “browsing” data of the site by Users, will be processed in compliance with applicable regulations.

The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified individuals, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category includes IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the web server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the user’s operating system and IT environment. These data are used solely to obtain anonymous statistical information on site usage and to check its correct functioning. It should be noted that such data could be used to ascertain responsibility in the event of cybercrimes against the Company’s site or other connected sites: except for this eventuality, web contact data do not persist for more than a few days.

Source - Data provided by the user

The Company collects, stores, and processes your personal data for the purpose of providing the products and services offered on the Site, or to comply with legal obligations. With regard to certain specific Services, Products, Promotions, etc., the Company may also process your data for commercial purposes. In such cases, specific, separate, optional, and always revocable consent will be requested using the methods and contacts indicated below.

The optional, explicit, and voluntary sending of emails to the addresses indicated in the appropriate section of the Website, as well as completing questionnaires (e.g., forms), communication via chat, push notifications via APP, social networks, call centers, etc., involves the subsequent acquisition of some of your personal data, including those collected through the use of Apps and related services, necessary to respond to requests. We also inform you that when using mobile connections to access digital content and services offered directly by the Company or by our Partners, it may be necessary to transfer your personal data to such third parties. Please note that you may access the Site or connect to areas where you may be able to publish information using blogs or message boards, communicate with others, for example by coming from the Company’s page on Facebook®, LinkedIn®, YouTube®, and other social networking sites, review products and offers, and post comments or content. Before interacting with these areas, we invite you to carefully read the General Terms of Use, considering that in certain circumstances the information published may be viewed by anyone with Internet access and all information you include in your posts may be read, collected, and used by third parties.

Purpose of processing and legal basis

Data are processed for the following purposes:

  1. strictly related and necessary for registration on the site madeinheritage.com, for services and/or Apps developed or made available by the Company, for the use of related information services, for managing contact or information requests, and for purchasing products and services offered through the Company’s website;
  2. for ancillary activities related to the management of User/Customer requests and sending responses, which may include the transmission of promotional material; for completing purchase orders of products and services offered, including payment by credit card, shipment management, possible exercise of the right of withdrawal for distance purchases, and updates on the availability of temporarily unavailable products and services;
  3. related to compliance with obligations established by EU and national regulations, protection of public order, and the detection and prosecution of crimes;
  4. direct marketing, i.e., sending advertising material, direct sales, conducting market research or commercial communication of products and/or services offered by the Company; this activity may also concern products and services of companies within the Company’s Group and may be carried out through “traditional” methods (such as paper mail and/or operator-assisted calls) or through “automated” systems (such as SMS and/or MMS, automated calls, email, fax, interactive applications), pursuant to Article 130 paragraphs 1 and 2 of Legislative Decree 196/03 as amended;

The provision of data for the purposes referred to in points 1), 2), and 3), related to a pre-contractual and/or contractual phase or functional to a user request or required by specific legal provisions, is mandatory; failure to provide such data will make it impossible to receive information and access requested services. With regard to point 4), consent to data processing is free and optional and may always be revoked without affecting the usability of products and services, except for the impossibility for the Company to inform users/customers about new initiatives or special promotions or benefits.

The Company may send commercial communications related to products and/or services similar to those already provided, pursuant to Directive 2002/58/EU, using the email or postal addresses you provided, to which you may object using the methods indicated below.

Methods, processing logic, retention periods, and security measures

Processing is carried out using electronic or automated means and is performed by the Company and/or third parties engaged by the Company to store, manage, and transmit the data. Data processing will follow organizational and logical procedures related to the purposes indicated above and in any case ensure data security and confidentiality. Personal data will be stored for the period required by applicable laws.

Regarding data security, in sections of the website prepared for particular services where personal data are requested, data are encrypted using Secure Sockets Layer (SSL) technology. SSL encrypts information before it is exchanged over the Internet between the user’s device and the Company’s central systems, making it unreadable to unauthorized parties and ensuring confidentiality; furthermore, transactions carried out using electronic payment instruments are performed directly via the Payment Service Provider (PSP) platform, and the Company retains only the minimum set of information necessary to manage disputes. With regard to personal data protection, users/customers are invited, pursuant to Article 33 of the GDPR, to report any circumstances or events that may result in a potential “data breach” to the Company to allow prompt evaluation and necessary actions by sending a communication to info@madeinheritage.com or contacting Customer Service. The measures adopted by the Company do not exempt the Customer from taking appropriate precautions, such as using secure passwords/PINs and updating them regularly, especially if compromised, and keeping them confidential to prevent unauthorized use.

Cookies

A cookie is a short text string sent to your browser and possibly stored on your computer (or smartphone/tablet or any other device used to access the Internet); this transmission generally occurs each time you visit a website. The Company uses cookies for various purposes to provide a fast and secure digital experience, for example by allowing you to remain logged into secure areas during navigation.

Cookies stored on your device cannot retrieve any data from your hard drive, transmit viruses, or identify your email address. Each cookie is unique to the browser and device used to access the Site or App. Generally, cookies aim to improve website functionality and user experience, although they may also be used to send advertising messages (as specified below). For more information about cookies and how they work, you can visit “All about cookies” http://www.allaboutcookies.org .

For detailed information on Cookies, please refer to the dedicated page (www.madeinheritage.com/informativa-cookie).

Data sharing and transfer

For the purposes indicated above, the Company may share and allow processing of personal data of users/customers in Italy and abroad with third parties with whom it collaborates, where such parties provide services on our behalf. Only the necessary information will be provided, and all measures will be taken to protect your personal data...

Personal data may also be accessed by employees/consultants of the Company who are duly trained and appointed as data processors. Categories of recipients can be requested from the Company using the contact details below.

Data subject rights

You may exercise at any time the rights granted by law, including:

  • access your personal data and obtain information on purposes, categories, recipients, retention period, and existence of automated decision-making;
  • obtain without delay the correction of inaccurate personal data;
  • obtain deletion of your data where applicable;
  • obtain restriction of processing or object where applicable;
  • request data portability, receiving your data in a structured, commonly used, machine-readable format, within the limits of Article 20 GDPR;

You may also lodge a complaint with the Data Protection Authority pursuant to Article 77 GDPR.

For processing referred to in point 4), the Customer may always withdraw consent and object to direct marketing (both traditional and automated forms).

Data Controller

The Data Controller, pursuant to Article 4 of the GDPR, is mind@ware srl, via Machiavelli 33 – 31021 Mogliano Veneto (TV), VAT: 03874000262 - Tax Code: 03874000262.

The above rights may be exercised upon request using Customer Service channels or the Company’s website, or by contacting: Gianluca Riato.

Use of the Website implies full knowledge and acceptance of this privacy notice. The Company may modify this notice without prior notice and recommends periodic review.

The Data Controller
Made In Heritage

This privacy policy was last updated on 13/11/2020