Privacy Policy

Privacy Policy

PRIVACY AND COOKIES: ALL THE INFORMATION YOU ARE ENTITLED TO IN ONE PLACE!

Your data will always be protected. We explain why we need it, the purposes, and how we use it, in accordance with the following principles:

  1. Fairness

We use your data to enhance your experience on our website and to ensure the best use of our services.

  1. Security

Your data is protected.

  1. Clarity

All information will be provided to you in the clearest and most accessible way: no surprises!

  1. Your consent is essential

You decide whether you wish to receive updates from us and how.

  1. Essentiality

No unnecessary information: if we don't need it, we won't collect it.

Personal Data Processing Information pursuant to Articles 13-14 of Regulation (EU) 2016/679

Data Subjects: E-commerce customers

MAGGINI GROUP S.R.L., as the data controller of your personal data (the "Controller"), pursuant to and for the purposes of Regulation (EU) 2016/679 (the "GDPR"), informs you through this document, in your capacity as the data subject (the "Data Subject"), that the mentioned regulation provides protection for data subjects with respect to the processing of personal data and that such processing will be based on the principles of fairness, lawfulness, transparency, and protection of your privacy and rights.

ONLINE PURCHASES

Why do we use personal data? (Purpose of processing)

MAGGINI GROUP S.R.L., as the Data Controller, uses your personal data to provide you with the information, products, and services you requested or purchased online and in our stores. In particular, we use your personal data to process your purchase and payment orders, issue electronic receipts or invoices, manage shipments, returns, complaints, and activities related to the warranties for our products.

Whenever you make a purchase and/or payment, or return a product, we use your personal data to verify your identity and ability to enter into a contract, ensure that the financial information you provided is correct, carry out fraud checks, or prevent other illegal activities.

Your personal data are also used to confirm your address with our external partners.

Another purpose of processing is the pursuit of the legitimate interest of the Controller to ensure the full operation and proper functionality of the website.

Additionally, following a purchase, we may share certain transaction data (such as your name, email address, and order details) with third-party partners, such as Google, to send you requests to review our products and services. These partners use automated tools such as cookies or tracking technologies to manage these requests, in accordance with their own privacy policies.

What types of personal data do we process?

We will process the following categories of personal data:

  • Contact details such as name, address, email address, phone number

  • Payment data and payment history

  • Credit information

  • Order information

  • Tax code, identity card number, any VAT number, or similar identification numbers (provided you choose to provide them).

If you have a User Profile, we will also process the personal data you have provided related to the account:

  • User Profile or registration ID and corresponding password

  • Purchase history

Who has access to personal data?

Sometimes your personal data are shared with third parties who assist us in performing certain tasks or providing certain services. In particular, we may ask third parties to validate your address, communication agencies to send order confirmations, warehouses and distributors to deliver your order, payment service providers to process your credit/debit card payments, banks and other financial service providers, and online platforms through which our products and services are available for purchase.

Remember that many of these recipients have an independent right or obligation to process the user's personal data.

What is the legal basis for processing personal data?

MAGGINI GROUP S.R.L. processes the personal data necessary to enter into a contract with you and fulfill all obligations arising from such a contract, whether it relates to a purchase order, a payment, or the use of the services we provide.

In relation to the provision of our products and services, we are sometimes required by law to collect, process, and store your personal data, for example, to comply with tax and financial laws.

What are the methods for processing personal data?

Personal data may be processed using automated means, through computers or other electronic tools. Each processing will be carried out in compliance with the provisions of Articles 6 and 32 of the GDPR and by adopting the appropriate security measures provided therein.

The data will only be processed by data processors explicitly and formally appointed (the "Processors") and by persons authorized to process under the direct authority of the Controller or the Processor, duly trained and adequately instructed for these purposes.

In particular, for purposes related to ensuring the full operation and proper functionality of the website, data may be processed by external collaborators, including IT consulting companies.

Disclosure of personal data

Without prejudice to communications made to fulfill legal and contractual obligations, as well as for the pursuit of the Controller's legitimate interest, your data may be communicated to public and/or private entities for whom the communication of data is mandatory or necessary in relation to the purposes of the processing, and, in any case, to comply with legal obligations to constitutional bodies or bodies of constitutional importance.

Dissemination

Your personal data will not be disseminated.

Your personal data may also be transferred, limited to the above purposes, to EU countries.

How long are personal data kept?

In compliance with the principles of lawfulness, purpose limitation, and data minimization, under Article 5 of the GDPR, the retention period for your personal data is set for a time period not exceeding:

  • The execution of necessary mandatory checks by the Authorities and public bodies;

  • The achievement of the purposes for which the data was collected and processed.

Rights of the Data Subject

In your capacity as the Data Subject, you have the rights under Articles 15 and following of the GDPR, and specifically the rights to:

  • Obtain confirmation as to whether personal data concerning you exists, even if not yet registered, and to have it communicated in an intelligible form.

In particular, the Data Subject has the right to obtain the indication of:

  • The origin of the personal data;

  • The purposes and methods of processing;

  • The logic applied in case of processing carried out with the aid of electronic tools;

  • The identification details of the Data Controller and the data processors;

  • The recipients or categories of recipients to whom the personal data may be communicated, or who may come to know about them, as designated representatives in the State's territory, data processors, or authorized persons (processing personnel).

The Data Subject also has the right to:

  • Obtain the update, rectification, or, when relevant, the integration of the data;

  • The deletion, transformation into anonymous form, or blocking of data processed in violation of the law, including data that no longer need to be retained for the purposes for which they were collected or subsequently processed;

  • The certification that the operations mentioned above have been brought to the attention of those to whom the data have been communicated or disseminated, except when such fulfillment proves impossible or involves a disproportionate use of resources compared to the protected right;

  • The portability of the data.

The Data Subject has the right to object, in whole or in part, to the processing of personal data concerning them, for reasons related to their personal situation, even if relevant to the purpose of collection.

To exercise the rights and obtain any useful information related to the processing of your data, you may send a written request to [info@fuix.com].

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with the Italian Data Protection Authority if you believe that the processing of your data violates the GDPR.

Controller, Processor, and Authorized Persons

The Data Controller with whom you can exercise the above rights is Maggini Group S.r.l., to whom you can also communicate via the following email address: [info@fuix.com].

The updated list of Processors and authorized persons for processing is kept at the operational headquarters of the company at Via Francesco Serritelli n. 31, 00123 – Rome.