Privacy Policy

Welcome to the Maggioli Editore website https://www.theplan.it/ (hereinafter also referred to as the “Website”).

 

The Data Controller is Maggioli S.p.A. with registered office in Santarcangelo di Romagna (RN) Via del Carpino no. 8 – enrolled in the CCIAA (Chamber of Commerce for Industry, Craft Business and Agriculture) of Romagna Forlì-Cesena and Rimini under no. 06188330150, in the R.E.A. (Chamber of Commerce Register of Economic Activities) of Rimini under no. 219107, tax code: 06188330150, VAT number: 02066400405 in the person of its legal representative: email: privacy@maggioli.it - certified email: segreteria@maggioli.legalmail.it

 

The privacy and security of Users’ Personal Data are of great importance for Maggioli S.p.A. All Personal Data are carefully collected, managed and safeguarded by means of appropriate security measures.

 

This page describes the methods and rationale underpinning the processing of the Personal Data of Users consulting our website. The information herewith, pursuant to Articles 13 and 14 of Regulation (EU) 2016/679, is provided to all Users who provide their Personal Data when interacting with the website. The information on this page pertains both to this website and to other websites made available via hyperlinks whose data processing purposes and relative legal basis are those defined in this policy.

 

1. Who will process your Personal Data;

2. Which Personal Data will be processed;

3. The purposes and legal basis for processing Personal Data;

4. The data conservation or storage period and rights of Data Subjects.

 

When using one or more of the Website's functions, Users hereby accept the Privacy Policy Statement herewith. Users are therefore invited to read this Privacy Policy before providing any personal information.

 

The Data Controller has appointed a Data Protection Officer, who can be contacted at the following addresses:

• email dpo.privacy@maggioli.it

• certified email dpo.privacy@maggioli.legalmail.it.

 

Personal Data processing is carried out by the Data Controller in order to:

 

a)       execute pre-contractual or contractual provisions adopted at the request of the Data Subject (Art. 6, para.1 letter b of the GDPR). Processing is necessary for the execution of an Agreement to which the Data Subject is party; 

b)       respond to User requests for information and assistance. Processing is required in order to meet a User request and is based on the execution of an Agreement or pre-contractual provisions;

c)       create the User Profile and a User Account with relative access to said User’s Reserved Personal Area as a “Registered User”. The legal basis for the data processing shall be the User’s consent thereto; 

d)       ensure the correct working of the web pages and their content. In this case, data processing is based on the legitimate interest of the Data Controller;

e)       send, on a one-off basis, via the email address indicated by the User on purchase of a product or service offered by the Company, communications regarding the sale of products or services similar to those purchased by the User. Since the data processing in this case does not require the User's explicit consent (so-called “soft spam”), said Data Subject has the right to object to processing pursuant to Art. 21 GDPR;

f)       send newsletters. Data processing shall be subject to the Data Subject’s consent;

g)       use, for direct marketing purposes, the contact details provided to send commercial information regarding our products and/or services in order to provide Users with updates on news, promotions or offers. Processing shall be based on the Data Subject’s consent.

h)        provide certain Maggioli services and initiatives deployed in partnership with other players (a complete list of which is available for consultation) that require the processing of personal data to enable centralized management of direct marketing activities in the event of the aforementioned partners being joint Data Controllers. Processing shall be based on the consent of the data subject. 

 

 

As part of their normal operation, the computer systems and software procedures used to operate this website acquire certain Personal Data whose transmission is an implicit component of the relevant Internet communication protocols.

This category of data includes IP addresses or domain names of computers and terminals used by Users, URI/URL (Uniform Resource Identifier/Locator) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the User's operating system and IT environment.

For details of the list of cookies, their storage times, how to disable these and their respective cookie owners, the User is invited to read the Cookie Policy accessible at this link https://www.theplan.it/eng/cookie-policy.  

 

Requests and communications may be sent through the Website using the addresses and contact forms indicated therein. The provision of such data is mandatory, being necessary to enable follow-up of requests made, including making further contact with the User to obtain clarification as to the request or notification made.

It should be noted that Personal Data are provided by Users in order to make use of the services provided by the Website.

The Data Controller shall not collect or process Personal Data relating to minors. By accessing the Website and using the services offered, the User declares he/she is of legal age. Users under the age of 18 are therefore requested not to register with the Website or provide any Personal Data.

 

The Personal Data processed are those data provided in relation to the purposes for which they are collected and may include:

·      Name and surname, tax code, profession, company name;

·      Identification regarding registration with professional rolls and associations;

·      Contact details (address, telephone number/mobile phone and e-mail, postal code).

 

These data shall be processed by the Site in compliance with the GDPR and applicable national legislation, including any provisions issued by the Supervisory Authority (Personal Data Protection Guarantor) where applicable.

 

The data shall be processed with the aid of electronic instruments using those methods and procedures strictly necessary to fulfill the purposes for which said data were collected.

The services provided and initiatives proposed on the Website are carried out in partnership (the complete list of partners is available under point h) and require the processing of personal data to enable centralized management of direct marketing activities.

 

In their capacity as Joint Data Controllers, Maggioli Editore and its partners have, where this is applicable, signed an internal agreement relating to the processing of personal data collected as part of their collaborative project on the Website. The agreement indicates the partner and, alternatively, Maggioli Editore as the contact point that the Data Subject may address in order to exercise his/her rights as referred to in Articles 15-22 of the GDPR.

In order to avoid the risk of data loss, illicit or incorrect use of same or unauthorized access or alteration, appropriate technological and managerial security measures have been adopted. Personal Data shall be processed by the Data Controller availing itself of personnel authorized to process data or individuals specifically appointed as Data Processors. The Data Subject may, at any time, request the Data Controller to provide a complete list of the Data Processors who at any time have been appointed and who are currently involved in the processing of data for the purposes referred to in this Privacy Policy.

 

The Data Controller shall adopt the following policies regarding the conservation of site Users’ data:

 

a) Data provided to conclude and execute Agreements regarding the purchase of goods or services shall be conserved until the administrative and accounting formalities have been completed. Data relating to billing shall be retained for ten years from date of invoice;

b) Data provided in contact forms or emails sent to addresses published on the Website shall be stored only for the time needed to respond to the requests received.

c) Data provided during registration and required in order to create a user profile shall be stored until a request is received to close the User account.

d) Data used to inform Users of commercial communications and marketing activities pertinent to the direct sale of products or services similar to those already purchased (so-called “soft spam”) shall be stored until said User objects to the processing or requests erasure of his/her data.

e) Navigation data shall be stored as indicated in the Cookie Policy;

f) The data provided in order to receive the Newsletter shall be processed until the Data Subject revokes consent. Revocation of consent shall be immediately recorded by the Data Controller but shall not apply to campaigns already planned before the request was received.

g) The data provided to receive promotional communications shall be kept until the User objects or withdraws his/her consent, and in any event, for three years following the User's last interaction, of whatever nature, with the Site or the services offered by the Company.

 

The Data Subject may, at any time, exercise his/her rights provided for in Art. 15 et seq. of Regulation (EU) 2016/679 by sending an email to: privacy@theplan.it  or by writing to Maggioli S.p.A. via del Carpino no. 8 – 47822 Santarcangelo di Romagna (RN). Should the conditions arise, the Data Subject is also entitled to lodge a complaint with the Supervisory Authority, if he/she believes that the processing of his/her Personal Data violates the provisions of current legislation.