Privacy Policy

Privacy Policy

With this Information MON MASSAGUE of Massagué Flaqué Montserrat, with headquarters in via Montini n. 2, 35122 Padua (Italy), REA and tax code MSSMTS73A44Z131Y, VAT number  08029611004, owner of the websites www.monmassague.com and www.monmassague.it , wishes to inform you about the purposes and methods of processing your personal data and the rights that Regulation (EU) 2016/679 on the protection and free circulation of data personal data ( General Data Protection Regulation , or “ GDPR ”) and Legislative Decree 196/2003 recognize them.

This Notice pertains exclusively to the processing of personal data relating to the website www.monmassague.com and www.monmassague.it (the “ Site ”); any third-party websites that may be consulted by the interested party via links remain subject to the privacy policy provided by the manager of the relevant third-party site. Interested parties are invited to read these documents before browsing third-party sites.

The data controller is MON MASSAGUE di Massagué Flaqué Montserrat, with registered office in via Montini n. 2, 35122 Padova (Italy), REA and Tax Code MSSMTS73A44Z131Y, VAT number  08029611004 (the “ Owner ”).

You can contact the Owner at the following email address: info@monmassague.com

Contact and payment details

Where provided spontaneously by you, the Data Controller will process your contact details (e.g. email and delivery address), product selection details (e.g. model, size) and payment details (e.g. bank details) to carry out:

  • the sale of products on the Site (and related activities);
  • Your requests for information on the products offered by the Owner.

Browsing data

The computer systems and computer programs used to operate the Site collect some personal data whose transmission is implicit in the use of Internet communication protocols (e.g. IP addresses or domain names of computers used by users connecting to the Site, URI addresses – Uniform Resource Identifier – of the resources requested, time of the request, method used to submit the request to the server, size of the file obtained in response, numerical code regarding the status of the response provided by the server – successful, error, etc. – and other parameters relating to the operating system and the user's computer environment). Although this information is not collected to be associated with identified interested parties, by its nature it could, through processing and association with data held by third parties, allow the interested parties to be identified.
Such data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the Site: except for this eventuality, at present the data on web contacts do not persist for more than 365 days.

Cookie

In some cases, personal data is collected by the Owner using various technologies, including “cookies”. Cookies are made up of a series of data that a website sends to a “browser” (which could be your browser). This information can then be stored on the computer (including your computer) via a tag that identifies the computer but not the user.

Some pages of the Site use cookies, sent by the Owner or by third parties, and other technologies in order to allow the technical functioning of the Site itself, for a better use of the Site and to carry out statistical analysis activities on the use of the Site.

For further information on this subject, please refer to the Cookie Policy .

Management of the contractual relationship

The processing is necessary in order to conclude the contractual relationship and carry out all the necessary operations (order confirmation, payment management, shipping, pre- and post-sales assistance activities); as well as for the administrative obligations connected to the above.

The legal bases are the execution of the contract or pre-contractual measures, pursuant to art. 6, paragraph 1, letter b) GDPR; as well as the fulfillment of a legal obligation, pursuant to art. 6, paragraph 1, letter c GDPR.

Management of your requests

The processing is necessary to be able to navigate the Site and to follow up on your specific request such as, by way of example and not limited to, the sending of technical information on the products and services offered by the Data Controller.

The legal basis for the processing of your data is the fulfillment of your request, pursuant to Article 6, first paragraph, letter b), of the GDPR.

Website Management

The processing is necessary for the correct management and functioning of the Site.

The legal basis for data processing is the legitimate interest of the Data Controller, pursuant to art. 6, first paragraph, letter f), of the GDPR.

The processing of your personal data is a necessary requirement for (i) the completion and correct execution and management of the contractual relationship and/or (ii) the management of your request; therefore, your refusal to provide the personal data expressly indicated as mandatory from time to time will make it impossible for the Data Controller to follow up on it.

As regards cookies, you can set your preferences as indicated in the Cookie Policy . 

The processing of your personal data will take place, in compliance with the provisions of the GDPR, using IT tools, for the purposes indicated and, in any case, with methods suitable to guarantee their security and confidentiality in compliance with the provisions of Article 32 of the GDPR.

In order to pursue the purposes described in the previous point 2, your data may be communicated to employees, collaborators and, in general, to the personnel of the Data Controller, who will operate as persons authorised to process personal data , specifically appointed.

Furthermore, your data may be transferred to, and processed by, the following third parties:

  1. logistics/transport service providers for the execution of the contractual relationship;
  2. credit and insurance institutions for payment management;
  3. legal, tax and accounting consultants for the management of the relationship or legal obligations;
  4. authorities and public administrations to fulfill legal obligations or to ascertain, exercise or defend a right in judicial or administrative proceedings;
  5. arbitrators, mediators, technical consultants and other persons who may be involved in the prevention or resolution of disputes in relation to the management of the relationship;
  6. other service providers in relation to managing the relationship.

The subjects belonging to the categories listed above will operate, in some cases, as separate data controllers, in other cases, as data processors specifically appointed by the Data Controller pursuant to Article 28 GDPR. At any time, you may request the list of data processors by contacting the Data Controller at the addresses indicated in the previous point 1. Your data will not be disclosed to the public.

Your personal data will not be disclosed to the public or communicated to parties outside the European Union.

The Data Controller will process your personal data, for the purposes indicated above, for the time necessary to manage your request and to fulfill any obligation imposed by laws or regulations, European or of a Member State of the European Union.

Without prejudice to the above, in the event of the conclusion of a contractual relationship, your personal data will be retained by the Data Controller for a period of 10 years from the conclusion of the relationship and subsequently destroyed.

In relation to the processing described in this Policy, you may exercise the rights listed in this section, within the limits of what is provided for by the legislation. In particular: 

  • Right of access – Article 15 of the GDPR: obtain confirmation as to whether or not your data is being processed and, where that is the case, receive information regarding, among other things: the purposes of the processing, the categories of data processed and the retention period, and the recipients to whom the data may be communicated.
  • Right to rectification – Article 16 of the GDPR: obtain, without undue delay, the rectification of inaccurate data concerning you or the integration of incomplete data.
  • Right to erasure – Article 17 of the GDPR: obtain, without undue delay, the erasure of your data in the cases provided for by the same article.
  • Right to restriction of processing – Article 18 of the GDPR: obtain from the data controller the restriction of processing in the cases provided for by the same article.
  • Right to portability – Article 20 of the GDPR: to receive, in a structured, commonly used and machine-readable format, your data and to have them transmitted to another controller without impediments, in the cases provided for by the same article.
  • Right to object – Article 21 of the GDPR: to object, at any time, to the processing of your data, unless there are legitimate reasons for the owner to continue the processing.
  • Complaints – submit a complaint to the Data Protection Authority, using one of the following contact details: Piazza Venezia, 11 – 00187 Rome; PEC: protocollo@pec.gpdp.it . On the website www.garanteprivacy.it/home/diritti you can find further information on how to submit a complaint.

The above rights may be exercised by contacting the Data Controller at the addresses indicated in the previous point 1. The Data Controller may ask to verify your identity before proceeding with your request.