The online business that is integrated into the Website ("E-Store"), which offers VALENTINO products for sale, is managed by YOOX NET-A-PORTER GROUP S.p.A., which is specifically responsible for sales and generally in charge of the transactions carried out in the context of the Online Business (e.g. management of orders, sales, delivery of products, management of returns and warranties, post-sales activity, cross-channel activities, etc.,) and coordinates on all of the above directly with VALENTINO S.p.A., in order to provide customers with better service and a better online purchasing experience.
Control of the processing of data that is collected and processed on the Website and throughout the entire E-Store
As concerns the processing of data that is collected and processed through the Website, we inform you that:
- VALENTINO S.p.A. (hereinafter also merely “VALENTINO”) is the independent controller of the processing of personal data of users who navigate on the Website, including therein navigation data, marketing data and profiling.
- VALENTINO S.p.A. and YOOX NET-A-PORTER GROUP S.p.A. (hereinafter also, merely “YOOX NET-A-PORTER GROUP”) are co-controllers of the processing of data that is connected and related to sales made through the E-Store that is integrated into the Website and to the corresponding pre- and post-sales support activities.
Below you will find more specific instructions pertaining to the processing of data that is collected and processed through the Website.
1. Details of the appointed Data Controller and Processors
The Data Controller is VALENTINO S.p.A., with registered office at Via Turati 16/18, 20121 Milano, Italy.
The appointed processor is the Chief Digital Officer, domiciled for this assignment at the offices of the Controller indicated above. For any information regarding the Controller, and for a complete list of processors, you may contact Customer Care by selecting "Privacy" as the category, or send a request to VALENTINO, to the address of the registered office noted above.
2. Type and purpose of processing performed on the Website, and of which VALENTINO is independent Controller
Through the Website, different types of personal data are collected and processed, for different purposes and with different methods. More precisely:
(b) personal data which is voluntarily provided by the user (such as, for example, the email address, contact information, password provided when completing the "My Account" registration form), or that is otherwise legally acquired, to compare the latter's requests and offer services, assistance and information requested regarding the products and the world, VALENTINO;
(c) with the express consent of the user, VALENTINO may process the latter's personal data for marketing purposes, in other words in order to send the user, including through newsletters, emails, sms and mms, information and updates on products, sales, advertising campaigns, about events and other initiatives promoted by VALENTINO;
(d) with the user's express consent, VALENTINO may also process the latter's personal data for the purposes of analysing user's buying habits and selections, in order to make the VALENTINO products and initiatives more responsive to its customers' tastes and needs.
3. Personal data processing methods carried out by VALENTINO
However, these measures, due to the nature of the online transmission method, cannot limit or absolutely exclude the risk of access without consent, or of dissemination of data. To that end, we recommend that you periodically verify that your computer is equipped with the appropriate software devices to protect from the transmission of incoming and outgoing data on the network (such as up-to-date antivirus systems ) and that the Internet service provider has adopted suitable measures to ensure the security of data transmission on the network (such as, for example, firewalls and antispam filters).
4. Mandatory or optional nature of providing data
5. Scope of personal data communications
VALENTINO communicates the personal data of the Website's users solely within the limits allowed by law and in conformity with the terms noted below.
The personal data shall be processed and known by, in addition to employees and consultants of VALENTINO and by companies in the same Group, also by companies performing specific technical and organisational services for VALENTINO that are related to the Website and to the management of marketing and communications activities (including, by way of example, YOOX NET-A-PORTER GROUP, which performs, among other things, Website management activities) as appointed data processors.
Furthermore, the data may be communicated to police forces or to the judicial authority, in conformity with the law and upon formal request by such parties.
Personal data shall not be disseminated, and shall be transferred abroad solely by guaranteeing suitable levels of protection and safeguards, according to the legal norms.
6. User rights recognised by the privacy law
A user always has the right to obtain from VALENTINO confirmation of whether or not personal data concerning him/her exists, even if it is not yet recorded, and to have it communicated to him/her in an intelligible form. A user also has the right to obtain information about the source of personal data; the purposes and methods of processing, the logic applied in the event of processing that is performed with the aid of electronic instruments; the identification details of the controller and data processors; an indication of the parties or categories of parties whose personal data may be communicated, or which could end up being known by, for example, data processors or agents.
A user also has the right to request an update, correction or, when s/he has an interest in doing so, an inclusion of personal data, deletion, conversion to an anonymous form or the blocking of personal data, that has been processed in violation of the law, including data which it is not necessary to keep in relation to the purposes for which it was collected or subsequently processed; a statement that the above operations were disclosed, including in terms of their content, to those parties to whom the data was communicated, except in the case in which such performance proves impossible or entails the use of methods that are clearly disproportionate to the right protected.
A user nevertheless has the right to oppose, in part or in full, for legitimate reasons, the processing of personal data concerning him/her, even if it is pertinent to the scope of the collection, the processing of personal data concerning him/her for the purposes of sending advertising or direct marketing materials, or to conduct market research or commercial communications.
The opposition right may also be exercised specifically with regard to one or more methods of sending marketing communications.
The rights noted above may be exercised by contacting Customer Care and selecting the “Privacy” option, or by sending a request to VALENTINO at the address of the registered office indicated above
1. References of Co-Data Controllers and Appointed Processors
As concerns data related to sales made through the E-Store integrated into the Website, and the activities related thereto, VALENTINO S.p.A., with registered office at via Turati 16/18, Milan, Italy, and YOOX NET-A-PORTER GROUP S.p.A. with registered office at via Morimondo, 17 – Milano 20143, Italy, operate jointly as Co-Data Controllers (hereinafter, for brevity's sake, the “Co-Controllers”).
VALENTINO has taken steps to appoint its own Chief Digital Officer as internal processor, who is domiciled for this assignment at the company's registered office. YOOX NET-A-PORTER GROUP has taken steps to appoint its own Privacy Officer as internal processor, who is domiciled for this assignment at the company's registered office.
Furthermore, due to exclusively organisational and functional requirements, the Co-Controllers have appointed specific outside parties as personal data processors, for purposes that are strictly connected and related to the sale of products and to activities that are useful and instrumental thereto (such as, for example, delivery). These processors were selected because they have demonstrated to have experience, capacity and reliability, and to provide a suitable guarantee of full compliance with the current processing provisions, including therein the data security profile. The processors process the personal data of users of www.redvalentino.com according to the instructions provided by the Co-Controllers. There is also a periodic check that the processors have fulfilled their tasks in a timely manner, and that they continue to provide suitable guarantees that the personal data protection provisions are fully respected. To obtain a full list of the processors who process your data, you may contact Customer Care, selecting the "Privacy" option, or send a request to the Co-Controllers at the address of the respective registered offices noted above.
2. Type and purpose of processing performed by the Co-Controllers
The Co-Controllers directly collect personal data from users within the context of online registration processes on the Website, the sending of order forms for purchasing products from the E-Store to conclude e-commerce transactions, and as part of the interrelation with users for activities that are functional and instrumental to sales, as well as for any needed pre- and post-sales assistance. Additionally, specific purposes may be better illustrated by specific notices which are periodically presented on the Website.
3. Procedures for processing personal data
However, these measures, due to the nature of the online transmission method, cannot limit or absolutely exclude any risk of access without consent or dissemination of data. To that end, we advise periodically checking that the computer is equipped with suitable software to protect from incoming and outgoing transmission of data on networks (such as up-to-date antivirus systems), and that the Internet service provider have adopted suitable measures to ensure the security of the data transmitted on the network (such as, for example, firewalls and antispam filters).
Each purchase on www.redvalentino.com is made with the utmost security thanks to the use of the most advanced technological systems and coding (SSL)
4. Mandatory or optional nature of providing data
Providing your personal data, in particular personal details, email address, mailing address and telephone number, is necessary to enter into a product purchase agreement through the E-Store.
Some of this data could conversely be essential for providing other services rendered on the Website, that are related to the sale, or to perform obligations arising from the legal norms or regulations.
Any refusal to indicate certain data that is needed for these purposes could make it impossible to perform the E-Store product purchase agreement, or to correctly perform other services related thereto - such as, for example, customer care services (Customer Care), the use of the Wish List - or, even, of properly performing the legal or regulatory obligations. Failure to provide data may therefore constitute, depending on the case, a legitimate and justified reason to not perform the E-Store product purchase agreement for provision of the services related thereto.
The disclosure of subsequent data, other than what it was mandatory to provide, for the purposes of performing one's own legal or contractual obligations, or for providing certain services upon request is, conversely, optional, and does not entail any consequence for use of the Website and its services, or to purchase products from the Online Store.
Depending on the case, and where needed, the mandatory or optional nature of disclosing data shall be periodically indicated, by affixing an appropriate (*) sign next to the mandatory information, or merely data that is needed to provide services and purchase products on the Website. Failure to provide optional personal data shall not result in any obligation or disadvantage.
5. Scope of communication of personal data
Personal data may be made available to third party companies that perform, on behalf of the Co-Controllers, specific services, as Data Processors (such as, for example, logistics and IT services) and/or those that are disclosed to other recipients of data that has been collected by the Co-Controllers - whose names shall be periodically specified - which process the data independently, solely to perform the agreement to purchase products from the Website (such as, for example, the credit institution to perform remote e-payment services via credit/debit card) and solely when this purpose is not incompatible with the purposes for which the data was collected and subsequently processed and, in any event, in a manner that is in conformity with the law.
The data shall not be communicated, assigned or in any other way transferred to third parties unless this has been required by law. The data shall not be disseminated in any way and shall only be transferred abroad having assured suitable levels of protection and safeguards, according to the legal standards.
6. User rights recognised by the privacy law
Furthermore, the user always has the right to obtain the following from the Co-Controllers:
a. an update, correction or, where applicable, inclusion of one's personal data;
b. the deletion, conversion to an anonymous format, or blocking of one's personal data, which has been processed in violation of the law, including such data it is not necessary to keep in relation to the purposes for which it was collected or subsequently processed;
c. a statement that the operations indicated in letters a) and b) were brought to their knowledge, including as concerns their content, for those parties whose data were communicated or disseminated, except for the case in which this performance proves impossible or entails the use of means that are clearly disproportionate to the protected right. You will nevertheless be entitled to oppose, in part or in full, for legitimate reasons, the processing of data concerning you, provided it is pertinent to the scope of collection.
It will be possible at any time to exercise the rights listed above, provided they are within the legal limits, by sending a request to the Co-Controllers, to which we shall endeavor to reply in a timely manner, by contacting our Customer Care department and selecting the "Privacy" option.