“MONASTERY COUTURE S.A.S.”, hereinafter “we”, is a brand and retail distributor of luxury lifestyle. This Privacy Statement applies to all personal information processed by MONASTERY and collected from: visitors, customers and business partners, and service providers of the following websites and applications: www.monasteryclothing.com
Information we collect
We process personal data to offer our services or to comply with the (international) law.
The information we collect is collected and processed according to the EU GDPR (as well as other applicable laws) and is used only for the purposes indicated in this privacy statement.
For any questions about this privacy statement or if you wish to submit a claim, send us an email to: email@example.com or by post at MONASTERY Carrera 52 # 6 sur - 91 Avenida Guayabal. Medellín Colombia.
What personal data we process
We process certain information related to you that is collected automatically or that you voluntarily provide to us. This information includes your name, address, email address and telephone number. We also process your financial data to facilitate the payment of our services. All information collected is processed in strict compliance with this privacy statement. We process the following personal data:
- Personal data, such as your first and last name.
- Contact information, such as email address, telephone number and address.
- Access data, such as username and password.
- Purchase history, such as price, products and purchase date.
- Payment data, such as transaction history, pending claims, bank account number or credit card information.
- Correspondence, such as communications with our customer service or marketing communications.
- Preferences, such as language choice and email preferences.
- Technical data, such as IP address, cookies or log files.
- Statistics on the use of the website, such as the number of times certain pages are visited and which products are most popular.
- Interests, such as what (type of) products you pay more attention to and what ads you click on.
Other personal information you provide us
It may happen that you provide us with different data than those of the mentioned categories, for example, regarding communications with customer service or when filing a complaint. In this case, we will process this data to the extent necessary to process and manage your request or complaint.
Reasons and fundamentals
We process your personal data according to the following legal bases, according to your interaction with our website.
When you buy a MONASTERY product. On our website, we need to process your personal information to execute our agreement. For example, we need your payment and contact information to process the order.
Compliance with the law: We can process or save information to comply with legal obligations. We may also use your information to investigate possible fraud, illegal activities, breach of our terms of service or threats to the security of our staff or our website.
We do not share your information with third parties unless it is strictly necessary to fulfill our contract with you, to offer a service for which you have given your specific and explicit consent (such as to receive our newsletter) or to comply with local and international laws.
MONASTERY has partners inside and outside the Colombian Economic Area. We will ensure that the information shared has the necessary level of protection, for which we will use agreements established for processing.
Revocation of consent
You have the right to revoke the consent you have given for any of our services, such as our newsletter or group chat on WhatsApp. You can withdraw voluntarily through the link that appears at the bottom of each newsletter or by leaving the WhatsApp group. However, it is possible that by revoking your consent we cannot offer you the main services for which you had registered. In addition, you can voluntarily withdraw by canceling your account, which will be deleted from our files within a period of four weeks.
As a user of our services, you should know a series of rights that correspond to you in accordance with the GDPR:
- Right to access
- Right to be forgotten
- Right to rectification
- Right of knowledge
- Right for Data Portability
The right of access means that you have the right to see the information we process about you. Do you think the information we have about you is not correct? In such a case, you can exercise your right to rectification, which allows you to modify the information we have about you. You also have the right to be forgotten, by which you can delete the data we have about you. However, it may be the case that we keep this data anonymously, so that it is not possible to know its origin since we keep them only, for example, for statistical purposes. In some cases we may not be legally authorized to delete certain data. For more information on the exceptions to the right of elimination (right to be forgotten), you can visit https://gdpr-info.eu/art-17-gdpr/, paragraph 3.
To transfer data between our web pages, our applications and backend servers, the communication is encrypted with SSL (Secure Socket Layer). We protect systems and processing with a series of technical and organizational measures, including data encryption, pseudonymisation and anonymization, logical and physical access controls and restrictions, firewalls and recovery systems, as well as integrity tests. Our employees regularly receive training on personal data management, and are required to respect the confidentiality of data according to legal requirements.
We do not collect or process with our knowledge any personal information of children under 16 years of age. If we realize that any of our users / visitors is a minor, we will take the necessary measures to remove your information immediately. If you think we have processed or still have information about minors, send us an email to firstname.lastname@example.org and we will remove it A.S.A.P.
We never keep the information for a period longer than the law allows, which may vary depending on the type of data. For more information on data retainment terms per data process please send us an email at email@example.com.
Changes to the privacy statement
The effective date at the bottom of this page indicates when this Privacy Statement was last revised. We will notify you of any substantial change in it before it becomes effective, so that you can review the changes. Any changes will take effect at the time of publication of the revised Privacy Statement. Your use of the Services after such changes indicates that you accept the revised Privacy Statement.
You also have the right to submit claims to the national supervisory authority. If you are not sure which one it is.
Last update: August 23, 2019