Information about the personal data for website users

Articles 13 and 14 of Regulation 2016/679/EU (hereinafter “GDPR”)

Purpose of this notice

T.A.M.I.L. Snc di Milani Marco, Daniele e C. (hereinafter, also simply the “Company” or “Controller”) is committed to respecting your privacy and wants to make sure you feel safe and secure while simply browsing the website and if you decide to register with us, providing your personal details to use the services available to Users and/or Customers. On this page, the Company wants to provide you with some information about processing of personal data from users who visit or view the website online at www.milaniwood.com.  This privacy notice only covers the Company’s website and not any other websites that a user might browse by clicking on a link (for details of the related privacy policies, please view their specific privacy notices and policies). It is not permitted to reproduce the pages, materials or information on the Website, using any means or media, without the Company’s prior written consent. However, it is possible to copy and/or print material solely for personal and non-commercial use (for any further information or clarifications, please contact the Company using one of the options indicated below.)  All other uses of the content, services and information in the website are forbidden.

In terms of the content and information on the Website, the Company endeavours, within reason, to keep this information  up-to-date and to revise it, but it offers no guarantee as to its adequacy, accuracy or completeness and expressly disclaims any liability for any errors of omission in the information provided on the Website.

Origin – Browsing data

The personal data you provide that is consequently acquired when making a contact/information request, when registering on the website and using the services on a smartphone or any other device that can access the internet, along with any data required in the provision of such services, including browsing data and the information required to purchase any of the Company’s products or services and any data simply obtained from your browsing the site will be processed in compliance with relevant laws, regulations and rules. The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data, the transmission of which is implicit in using the internet. Such information is not collected to be associated with identified data subjects, but that, by its nature, could be used to identify users when processed and associated with data held by third parties. Such data includes the IP addresses or computer domain names used by a user to connect to the website, the URI (Uniform Resource Identifier) addresses for the requested resources, the time of the request, the method used to submit the request to the web server, the size of the response file, the numerical code indicating the state of the data response from the web server (successful, error and so on) and other parameters related to the user’s operating system and computer platform. Such data are only used to obtain anonymous statistical information about the use of the website and to check the Company’s website is functioning properly. However, it should be noted that such data could be used to determine responsibility in cases of computer crimes that harm the Company’s website or other related or linked websites. Aside from this eventuality, at present the web contact data does not exist for more than a few days.

Origin – Data provided by the user

The Company acquires, keeps and processes your personal data in order to provide the products and services offered on the Website or to meet legal obligations. For specific services, products, promotions and so on, the Company might also process your data for commercial purposes.  In such cases, you will be specifically and separately asked for consent, which is optional and can be revoked using the methods and contact details indicated below.

The optional, explicit and voluntary sending of an email to the addresses indicated in the specific section of the Website, as well as the filling in of questionnaires (e.g. forms), communications via chat, push notifications via apps, social networks, call centres, etc., entails the subsequent acquisition of some of your personal data, including those collected through the use of the app and related services, necessary to respond to requests. We would also like you to be aware that when using a mobile connection to access digital content and services offered directly by the Company or by one of our Partners, it might be necessary for your personal data to be sent directly to those third parties.  Additionally, you should be aware that you can access the Website or connect to areas in which you might be able to publish information using a blog or forum, to communicate with others – for example, from the Company’s Facebook®, LinkedIn®, Youtube® and other social network pages -, to review products or offers, and publish comments or content. Prior to accessing such areas, we recommend that you read the relevant General Terms and Conditions of Use carefully and be aware that, in some cases, the information published can be seen by anyone who has access to the internet and all the information you include in what you publish can be read, collected and used by third parties.

Purpose of processing and legal basis

Data are processed for the following: 

1 . Purposes strictly connected to and necessary for registering on www.milaniwood.com, for the services and/or apps developed or made available by the Company, to use the relative information services, to manage contact/information requests and to purchase products and services offered on the Company’s website;
2 . For ancillary activities related to managing User/Customer requests and sending feedback that may include sending promotional material; to complete orders to purchase the products and services offered, including aspects relating to payments by credit cards, the management of shipments, any use of the right of withdrawal for remote purchases, and provide updates for the availability of products and services that are temporarily unavailable;
3 . Related to the fulfilment of obligations provided for by EU and Italian laws and regulations, to protecting public order and to investigating and stopping crimes;
4 . Direct marketing, i.e. sending advertising material, direct sales, conducting market research or sales communications for products and/or services offered by the Company;  such activities might even relate to products and services from companies in the same group as the Company and they may be carried out by sending advertising/information/promotional material and/or invitations to take part in initiatives, events and offers designed to reward users/customers. Such activities and initiatives might be carried out using “traditional” methods (e.g. paper mail and/or operator calls), or using “automated” contact systems (e.g. SMS and/or MMS, telephone calls without operators, email, fax, interactive applications), pursuant to Article 130 subsections 1 and 2 of Legislative Decree 196/03, as amended and integrated;

Providing data for the purposes indicated in points 1), 2) and 3), connected to a pre-contractual and / or contractual or functional to a request from the user or provided for by a specific provision of law, is required and, failing to do so, will mean you cannot receive the required information or access any services you might have requested. Providing information in relation to point 4) of this privacy notice is open and optional for the user/client, and it can be revoked without any consequences for the use of products and services, with the sole exception that the Company won’t be able to update you on new initiatives or specific promotions/benefits that might be available to users/clients.

The Company might send marketing messages about products and/or services similar to those already provided, pursuant to Directive 2002/58/EU, using the email or physical address you provided at that time. You can oppose such sending of information using the methods and contact details indicated below.

Methods, processing logic, storage times and security measures

Processing is done using electronic and automated means, and it is done by the Company and/or third parties the Company uses to store, manage and send such data.    The data processing logic is the organisation and use of your data, which includes the logs created for accessing and using services provided via the web, the products and services used in relation to the aforementioned purposes and, in any case, to guarantee the security and confidentiality of the data. Any processed personal data will be stored for the period required by applicable laws and regulations at that time.

Additionally, in terms of data security, in those sections of the website that offer specific services and as such require the personal data of the website user, any data is encrypted using Secure Sockets Layer technology, which is often known simply as SSL. SSL technology encrypts information before it is sent over the internet from the user’s device to the Company’s central systems, making it unintelligible to unauthorised parties and thus guaranteeing the confidentiality of the information sent.  Moreover, transactions that use electronic payment tools are done directly using the Payment Service Provider’s platform and the Company only has the minimum necessary information to handle any potential complaints. In terms of personal data protection and pursuant to Article 33 of GDPR, the user/customer is asked to inform the Company of any circumstances or events that could result in a “personal data breach” so that such situations can be assessed immediately and appropriate countermeasures adopted. Such notifications can be sent to privacy@Azienda.it or by contacting Customer Services.

Despite the measures adopted by the Company, Clients must still take due care by using, where required, suitably complex passwords/PINs, which must be changed periodically, especially if they have been hacked/revealed by third parties, and by guarding such passwords/PINS carefully and making them inaccessible to third parties so as to avoid improper and unauthorised use.

Cookies

A cookie is a short text string sent to your browser and, if necessary, is saved on your computer (or smartphone/tablet or any device you use to access the internet). This normally happens every time you visit a website. The Company uses cookies for various reasons in order to offer you a faster and more secure digital experience by, for example, by making it possible to remain logged in to the area for registered users while browsing the rest of the website.

The cookies stored on your device cannot be used to retrieve any data from your hard disk, send a computer virus or identify/use your email address. Each cookie is unique to the browser and device you use to access the website or to use the Company’s App. In general, the purpose of cookies is to improve how a website functions and the user experience when using the website, although cookies can potentially be used to send advertising messages (as detailed below). For more information about cookies and how they work, please visit the website “All about cookies” http://www.allaboutcookies.org.

Google Analytics

This website uses Google Analytics, a web analytics service from Google, Inc. (“Google”).
Google Analytics uses “cookies”, which are text files placed on your computer to make it possible to obtain and analyse, in anonymous form, information about the behaviour of website users (including your IP address). This information is sent to and processed by Google in order to generate reports about your use of the website.  This website does not use (and does not allow third parties to use) Google’s analytics tool to track or collect any personal identification information about you. Google will not associate your IP address with any other data  it has nor will it attempt to link an IP address with a computer user’s identity.  Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. You may reject the use of cookies by selecting the appropriate setting on your browser, but this may prevent you from using all the features the website offers. By using our website, you consent to your data being processed by Google for the purposes and using the means indicated above.

For more information, please see the information provided directly by Google at: Google Analytics Disclosure. You can also stop your data being used by Google Analytics by installing a specific add-on to your browser from: Google Analytics browser add-on to opt out of Google Analytics.

Scope of data communication and transfer

For the aforementioned purposes, the Company may communicate user/customer personal data to third parties, in Italy and abroad, so that they can process the data. The Company has relations with those third parties and they provide services we have requested. We will only provide such third parties with the information needed to provide the requested services, taking all necessary measures to protect your personal data.  Your data might be transferred outside of the European Economic Area where this is necessary to manage a contractual relationship with you.  In such cases, the parties that receive the data shall be subject to data security and protection obligations that are equivalent to those guaranteed by the Controller. In those cases where services are offered directly by our Partners, we will only provide the data strictly needed for these services.  In any case, we will only send the data required for the indicated purposes and the guarantees applicable to the transfer of data to third countries will be applied, when requested.  We might disclose your personal data to our suppliers of sales services, for marketing reasons, and in such cases those suppliers will have been appointed as external data processors.  In addition, personal data might be communicated to competent public bodies and authorities to comply with legal and regulatory obligations or to ascertain responsibility in the event of computer crimes against the website. Personal data might also be communicated or allocated to third parties (in their capacity as data processors or, in the case of providers of electronic communication services, independent data controllers) that provide computer and telecommunications services (e.g. hosting services, website management and development) and which the Company uses to perform technical and organisational tasks and activities needed for the functioning of the website. Any parties that fall within the aforementioned categories operate as independent Data Controllers or as Processors specifically appointed for this purpose by the Company.

The Company’s employees and consultants might also learn of personal data, but they will have received specific training and have been appointed to process such data.

To receive details of the categories of recipients that might be sent data, please contact the Company using the contact details below.

Data subject’s rights

A Data Subject can enforce his or her rights, as recognised by the law, at any time. These include: 

1 . The right to access your personal data, obtaining evidence of the purposes pursued by the Data Controller, the data categories involved, the recipients to whom the data may be communicated, the applicable storage period, and the existence of automated decision-making processes;
2 . The right to obtain without delay the rectification of inaccurate personal data about him/her;
3 . The right to obtain, in those cases foreseen by the law, the deletion of your data;
4 . The right to have processing limited or to oppose such processing, when possible;
5 . The right to request the portability of the data you provided to the Company, i.e. to receive such data in a structured, commonly used and machine-readable format, also for the purpose of transmitting such data to another data controller, within the limits and constraints indicated in Article 20 of GDPR. 

You can also submit a complaint to the Italian data protection authority (Autorità Garante per la Protezione dei Dati Personali) pursuant to Article 77 of GDPR.

For the processing indicated in point 4) of the purposes, a Customer can revoke consent at any time and exercise his or her right to oppose direct marketing (in “traditional” and “automated” form).    Unless otherwise indicated, such objection will be understood as against both traditional and automated communications.

Data Controller

The Data Controller, pursuant to Article 4 of the Privacy Code and GDPR, is  T.A.M.I.L. Snc di Milani Marco, Daniele e C., Via Aldo Moro, 16 – 23857 – Valgreghentino (LC).

The rights indicated above can be enforced at the request of the Data Subject using the methods indicated by Customer Services, on the Company’s website or by contacting:  T.A.M.I.L. Snc di Milani Marco, Daniele e C.

The use of the Website, including where optimised for tablets and/or smartphones, by the Customer and/or the User implies full knowledge and acceptance of the content and any indications included in this version of the policy published by the Company at the time the site is accessed. The Company notes that this policy may be modified without prior notice, so we recommend that you read it periodically.

The Data controller 

T.A.M.I.L. Snc di Milani Marco, Daniele e C.

privacy notice

WEB USERS

privacy notice

CUSTOMERS

privacy notice

SUPPLIERS

informativa privacy

STAFF