Privacy Policy

INFORMATION REGARDING THE PROCESSING OF PERSONAL DATA 

Welcome to Prestish Website (the “Website”).

Pursuant to art. 13 of the Regulations (EU) 2016/679 (hereinafter the “GDPR”), this page provides information on how we process your personal data that we collect when you visit the Website and interact with the Website services.

The information is provided only for the Website and possible sub-domains and not for the other websites that can be visited by the User via hypertextual connections or links.

Please read this information carefully before providing your personal details. 

  • CATEGORIES OF COLLECTED PERSONAL DATA
  • Navigation data

Browsing the Website and accessing the related services involve the acquisition of some personal data relating to your browsing, such as, for example, the IP addresses or domain names of the computers you use to connect to the Site, the addresses in URI (Uniform Resource Identifier) of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and IT environment you use. This information is not collected to be associated with identified interested parties, but, by its very nature it could, through processing and association with data held by third parties, allow such interested parties to be identified.

  • Personal data that you voluntarily provide to us

Prestish processes the personal data that you voluntarily provide to us when you register on the Website, access its services, purchase a product or interact with the customer support service, such as, for example, personal data, contact data, data relating to the purchases and banking data.

  • Cookies

The Website uses the so-called Cookies. For more information on cookies and their use on the Site, see the cookies page.

  • PURPOSES, LEGAL BASES AND PRESERVATION PERIOD
  1. Your personal data will be processed by Prestish as follows:
#PURPOSELEGAL BASEPRESERVATION PERIOD
ABrowsing the Website: the navigation data is processed to allow you to navigate the Website and access the related services and, in particular, to obtain anonymous statistical information on the use of the Website and its services, in order to check their correct functioning and for security reasons.Legitimate interest of the CollectorFor the period necessary for the relevant processing
BRegistration on the Website (personal account): to allow you to create your personal account on the Website and to access and use the related servicesExecution of the contract or pre-contractual measures you have requestedUntil your request for cancellation of the account or, if there is no request from the user, for 24 months after the last access.
CNew product availability update: acknowledgment of your request for the update on the availability of the requested product on the WebsiteExecution of the contract or pre-contractual measures you have requestedFor the period of 3 months to reply to your request
DMarketing: to send you, via e-mail, text messages, social networks and other instant messaging apps, promotional communications (including the newsletter) relating to the Collector’s products, services and events and/or market surveysConsent of the concerned personUntil the revocation of your consent, or, if no revocation is received, for 24 months from when your consent was received.

 

  1. Your personal data will be processed by Prestish as follows:
#PURPOSELEGAL BASEPRESERVATION PERIOD
ESale of products: for the conclusion and execution of the sales agreement for the products offered on the Website, including the management and processing of purchase orders, the delivery of the products, the communication of any information relating to the order, the management of payments and anti-fraud controlsExecution of the contract or pre-contractual measures you have requestedFor the time necessary to process the purchase order (without prejudice to further preservation, where necessary, for the following purposes)
FAfter-sales assistance: for the management and response to the requests you send us in relation to the products purchased on the Website, including returns, complaints and refundsExecution of the contract or pre-contractual measures you have requestedFor the time necessary to reply your request (without prejudice to further preservation, where necessary, for the following purposes).
GFulfillment of legal obligations: for the fulfillment of legal obligations (particularly in civil and fiscal subjects as well as public security, banking and personal data protection matters)Fulfillment of legal obligationsFor the period required by the law. The billing data is kept for 10 years from the date of issue of the invoice.
HLitigations and prevention of offenses: to defend or assert a right of Prestish and/or for the detection and prevention of fraud and other crimes or offensesLegitimate interest of the Data ControllerFor the period necessary for the purpose for which the data is collected in accordance with applicable law (for example, regarding prescription)

 

  • NATURE OF THE DATA PROVISION

The provision of data in the fields marked with an asterisk (*) for the purposes given in the previous art. 4, I), letters A), B), C) and II) is necessary to register in the Website and use the relevant services as well as to purchase the Website’s products; failure to provide the data will make it impossible to obtain the products and services you have required. On the other hand, the provision of data in the fields not marked with an asterisk, although it may be useful to facilitate relations with Prestish, is optional and not providing the data does not affect the possibility to obtain the products and the required services.

With reference to marketing purposes given in the previous art. 4, I), letter D), the provision of data is optional and your refusal will make it impossible for Prestish to process the provided data for marketing purposes, but it will not prevent you from logging onto the Website, purchasing products and using the relevant services according to the provisions given in art. 4, I), letters A), B), C) and II).

  • PROCESSING METHODS

Your data will be processed by the Data Joint Controllers using mainly IT and telematic methods. Specific security measures are adopted to minimize the risk of destruction or loss of personal data and unauthorized access. The Joint Collectors have adopted all suitable security measures given by the law.

  • CATEGORIES OF RECIPIENTS OF PERSONAL DATA AND DISTRIBUTION OF DATA

In order to achieve the purposes that the personal data is collected for, the Joint Collectors can appoint other responsible parties for processing the personal data such as the following:

  • IT service providers, i.e. internet service and cloud computing,
  • subjects that are in charge of the warehouse logistics, as well as promotion, sale and delivery of the products and services of the Joint Collectors,
  • customer care,
  • companies and other subjects that provide legal, fiscal, accountancy, financial, technical-organization, data processing and communication services;
  • subjects that provide bank services, i.e. financial, insurance and credit recovery services;
  • subjects that control anti-fraud on payments;
  • controlled companies and subsidiaries;
  • public authorities and supervising bodies.

The updated list of the Data Processors of personal data is available by a specific request to the Data Joint Controllers through the methods indicated in the paragraph 12.

Personal details can be also known by the Joint Controllers’ staff in charge of dealing with orders and authorized by the Joint Controllers.

No data collected by the Website can be diffused.

  • TRANSFER OF DATA BOTH TO A THIRD COUNTRY AND/OR AN INTERNATIONAL ORGANIZATION

Your personal data may be transferred, for the purposes for which it is collected, to Canada and the United States of America (USA) which don’t belong to the European Union. The transfer to Canada will take place pursuant to the adequacy decision of the Commission of 20th December 2001. The transfer of personal data to subjects located in the United States of America will take place exclusively pursuant to the standard contractual clauses adopted or approved by the Commission of the European Union and/or of the adequacy decision of the European Union Commission of 10th July 2023 on the adequacy of the level of protection of personal data with the EU-US Data Privacy Framework (articles 45 and 46, par. II, letters C and D of Regulation).To obtain a copy of this data, please contact the Joint Controllers as given in the paragraph 12.

  • SOCIAL BUTTONS AND WIDGETS

The Website is equipped with social buttons/widgets. These icons are the social network icons such as Facebook, Twitter, Instagram, Pinterest, Google+, YouTube, LinkedIn and Instagram and they allow you to interact with the relevant networks by simply clicking on the icon. By entering the social networks, you can share content or recommend the Website products. After clicking the social buttons/widgets, the social network might collect the data relevant to your visit to the Website. As given in the introduction, this privacy information note does not consider the processing of your personal data performed by social networks. Please refer to the social network’s privacy information for further information about this topic.

Outside of cases where you voluntarily share your navigation data with the social networks chosen by clicking on the social button/widgets, the Joint Collectors will not share or diffuse any detail of yours with the social network.

  • FACEBOOK PAGE

Prestish uses the “Page Insights” function for its Facebook page, which offers aggregate data on the user’s interaction with the Facebook page.

In relation to this processing, Prestish is the joint controller of the processing jointly with Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. You can find the joint ownership agreement at the following link: https://www.facebook.com/legal/terms/page_controller_addendum. You can consult Facebook’s privacy policy at the following link: https://www.facebook.com/privacy/explanation.

  • MINORS

The Website and the services are intended for the sale of products and services to adults. Therefore, the Joint Controllers do not intentionally collect the personal data of persons under the age of 18. If you access the services of the Joint Controllers, you are declaring that you are of age.

RIGHTS OF THE CONCERNED PERSON 

With reference to the provided data, you have the right at any time to ask for the following:

  1. the confirmation that personal data is being processed and, in this case, to access your personal data, the information specified within the article 15 of the GDPR and obtain a copy of it (right of access);
  2. the correction of inaccurate personal data, as well as the integration of it if it is incomplete, provided that the purposes of the processing are met (see Article 16 of the GDPR);
  3. the erasure of personal data in accordance with the cases given in art. 17 of the GDPR, including the lack of necessity of personal data for the purposes for which they are collected or processed, the revocation of consent (if there are no other legal bases) or the objection to the processing (if no legitimate reason for the processing prevails), the illicit processing of data, cancellation imposed by legal obligations or in the case of information society services aimed at minors;
  4. the restriction of data processing in the cases given in art. 18 of the GDPR, such as contesting the accuracy of the data or the lawfulness of the related processing, if the owner no longer needs it for the purposes of the processing, or in case of opposition to the processing; the limitation of processing means that your personal data will be processed, except for storage, only with your consent or for the establishment, exercise or defense of a right in court or to protect the rights of another natural or legal person or for reasons of important public interest of the European Union or of a Member State;
  5. to prevent the processing of personal data in the cases given in Art. 21 of the GDPR; including processing based on the legitimate interest of the data controller or third parties or for marketing purposes; in the event of opposition, the Data Controller refrains from further processing the personal data, except in the case of compelling legitimate reasons to proceed with the processing which prevail over your interests, rights and freedom or for the assessment, exercise or defense of a right in court;
  6. to request data portability if the processing is based on your consent or on the contract with the Data Controller and is carried out by automated means; portability involves the right to receive or transmit your personal data to another collector in a structured, commonly used and machine-readable format (art. 20 GPDR);
  7. if you have expressly authorized the processing of your personal data, you are entitled to revoke your consent without affecting the legality of the processing based on the authorization given before the revocation.

To exercise these rights, you can write to: privacy@test.thedimm.ru

However, you can exercise your rights towards each Joint Controller by writing to the respective references indicated in paragraph 1.

You can also revoke your consent via the personal section of your account and the link contained in each marketing communication received from the Data Collector.

Finally, you have the right to claim to the Guarantor Authority for the protection of personal data as the Guarantor is the control authority of the established procedures.

TOP

SHOPPING BAG 0

Open chat
1
💬 Do you Need Help?
👋 Welcome to Prestish

We are here to answer any questions you may have. Email us to see how we can help.
Subscribe to our notifications for the latest news and to be always updated about promotions, sales and latest products!