In compliance with the obligations arising from the new General Data Protection Regulation (EU Regulation No. 679/2016, known as GDPR) and with the aim of making the activities of the website  www.benjaminmooreitalia.com as transparent as possible, this section is intended to inform users about the methods of collection and processing of their personal data. 
"Personal data" refers to any information that identifies (or makes it possible to identify, directly or indirectly) a natural person. This includes, for example, name, address, identification number, online identifier (such as an IP address), or one or more factors specific to the individual’s physical, physiological, genetic, mental, economic, cultural, or social identity.

1. Data Controller and Processing Responsibility
The Data Controller (and Processor) is Mundel srl, headquartered at Via San Giuseppe 100 - 21047 Saronno (VA), Italy.
Data Protection Officer: Masengu Manuela Tshibangu

2. Purpose of Data Processing
On the website www.benjaminmooreitalia.com, the collection (and subsequent processing) of personal data is carried out to fulfill the following purposes:
•  to enable browsing and navigation of the website
•  to provide services and manage the customer’s reserved area
•  to execute the sales contract between Mundel srl and the user/customer
•  to respond to support requests and/or inquiries received via email, telephone, or web pages
•  to send advertising and/or informational material, carry out direct marketing campaigns via email (promotions, news, etc.), and provide personalized commercial offers based on purchased and/or viewed products
•  to comply with legal obligations under national and EU legislation
•  to ensure website security and prevent unlawful or fraudulent behavior, reserving the right to take any appropriate measures to protect both the company and third parties

3. Scope of Data Processing
While browsing (and during the purchase process), Mundel srl collects the following types of personal data:

Browsing Data
This refers to purely technical and IT-related information (such as IP address, browser used, operating system, visited website pages, products added to the cart, etc.) that is collected in an aggregated and non-identifiable form (i.e., not linked to a specific individual). This data is used for statistical purposes, to ensure the correct functioning of the website, and to detect anomalies and/or misuse.

Data Provided Directly by the User
This includes all information that the user voluntarily and explicitly provides during registration, purchase, access to a reserved area, or subscription to a form.

Cookies
Cookies are small text strings stored on the user's computer when visiting certain web pages. In most browsers, cookies are enabled by default. They are not harmful to the device and do not contain personally identifiable information.
These are encrypted data used to improve and optimize website navigation—for example, by identifying and resolving errors or determining relevant related products to display to the visitor while browsing.

Mundel srl uses the following types of cookies:
•  Technical cookies: These are necessary and essential to allow navigation on the site and the use of all its features. Without these cookies, we would not be able to provide some essential services and/or functions, and site navigation would not be as smooth and easy as it should be.
•  Analytical cookies: These collect information on how visitors use the site (for example, which pages are visited). All information collected by these cookies is aggregated and anonymous (they do not allow user identification) and is used solely to improve the site's functionality.
•  Functional cookies: These allow the site to “remember” the choices made by a user and to personalize content in order to improve the service provided.
•  Advertising cookies: These make it possible to create a “profile” of users by collecting information about their preferences, in order to deliver personalized advertising content and enhance the effectiveness of campaigns. They may also be third-party cookies (for example, when set by a website other than the one being visited).

Note: Please be aware that the website www.benjaminmooreitalia.com functions optimally only when cookies are enabled. However, users can choose to disable them at any time by accessing their browser settings. Disabling cookies may limit certain features of the site.

All data collected by Mundel srl during navigation and the purchase process is never sold or disclosed to third parties, except for the purposes outlined in section 2.

4. Data Recipients
A recipient is defined as any natural or legal person, public authority, agency, or other body to whom personal data is disclosed.

For the purposes outlined in section 2, Mundel srl shares users' personal data with the following categories of recipients:
•  professional entities authorized to provide legal, tax, financial, or administrative consultancy and/or assistance
•  professional entities authorized to provide internet services
•  professional entities authorized to manage payments
•  commercial partners responsible for deliveries on behalf of Mundel srl (e.g., couriers and postal services)
•  professional entities authorized to manage mailing lists
•  public bodies or authorities in order to comply with legal obligations or for the establishment, exercise, or defense of a legal claim

These recipients are not authorized to use or disclose the personal data for any purpose other than performing the services assigned to them or fulfilling legal obligations.

5. Data Retention Period
Personal data is retained for no longer than is necessary to achieve the specific purposes outlined in section 2, or until a specific request for withdrawal of consent to processing is made by the user.

6. Data Protection
Mundel srl implements (in accordance with the size and nature of its business) all appropriate technical and organizational measures:
•  aimed at effectively applying data protection principles for users (e.g., by ensuring website navigation through HTTPS encryption) and preventing unlawful or unauthorized access to, or use of, personal data
•  designed to ensure that only the personal data necessary for each specific processing purpose is processed
•  to ensure that anyone acting under its authority who has access to users’ personal data does not process such data unless duly instructed to do so

In the event of a personal data breach, Mundel srl will notify the competent supervisory authority within 72 hours of becoming aware of the breach, unless the breach is unlikely to result in a risk to the rights and freedoms of natural persons.

7. User Rights

Access to Personal Data
Users can access, modify, delete (“right to be forgotten”), and print (“right to data portability”) their personal data at any time through their Account.

Restriction and Withdrawal of Consent
Users have the right to restrict and/or withdraw their consent to the processing of their personal data at any time by sending an email to sito@benjaminmooreitalia.com or by accessing their Account and using the dedicated sections available.

8. Right to Lodge a Complaint
Users who believe that the processing of their personal data is in violation of current legislation have the right to lodge a complaint with a supervisory authority (Data Protection Authority), specifically in the Member State where they habitually reside, work, or where the alleged violation occurred.

If you have any questions or comments regarding this privacy policy, or if you wish to submit a data request, please send an email to sito@benjaminmooreitalia.com call us at +39 02347830 during office hours (9:00 AM – 1:00 PM / 2:00 PM – 6:00 PM, Monday to Friday), or write to the following address:
Mundel srl – Via San Giuseppe 100, 21047 Saronno (VA) – Italy