Privacy Policy | DIOR ID

Loyalty Program Terms & Conditions Syarat dan Ketentuan Program Loyalitas

DIOR PRIVACY POLICY

The confidentiality and security of your Personal Data are important to us. We are committed to offering you personalized services while respecting your privacy and choices.

The purpose of this Privacy Policy (“Privacy Policy”) is to inform you in a transparent, simple and complete manner about the processing of the Personal Data that you provide or that we collect through the different touchpoints you use to interact with us (e.g. in store, Customer Department, https://www.dior.com/en_id/beauty website, social media, digital apps, events) including how we will collect, store, use, retain, transfer, disclose and protect your Personal Data. This Privacy Policy also informs you of the possible transfer of your Personal Data to third parties as well as your rights and options to control your Personal Data and protect your privacy.

By registering your account to https://www.dior.com/en_id/beauty website and using our apps, you acknowledge that you have read this Privacy Policy and understand its content and consequences, and you agree and give consent to us to collect, use, disclose and process your Personal Data in accordance with this Privacy Policy.

In this Policy you will find information on:

· Who we are.

· What data we can collect about you.

· How we collect or receive your data.

· For what purposes we use your data.

· How long we can keep your data.

· Who can access your data.

· How we protect and keep your data confidential.

· How we address consumer preferences and individual rights.

· The additional protections that we provide for residents of certain regions.

· How to contact us if you have questions about our use of your Personal Data.

· How we protect children’s privacy.

· The management of cookies in https://www.dior.com/en_id/beauty website.

· Modifications of this Privacy Policy.

Please read this Privacy Policy thoroughly to make sure that you understand it. Unless otherwise defined, capitalized terms used in this Privacy Policy shall have the same meanings ascribed to them here.

WHO are we?

When we say "Dior", "us", "our" or "we", we refer to, depending on whom you share your data with as further described in this Privacy Policy:

The House of Parfums Christian Dior entities:

PT L Beauty Brands (Parfums Christian Dior – Indonesia Office), a company established and governed by Indonesian law with its registered office at Prudential Tower 12th Floor, Jl. Jend. Sudirman Kav. 79, Jakarta 12190, and any Parfums Christian Dior affiliates with whom you share information.

(Parfums Christian Dior)

Parfums Christian Dior is a data controller under the applicable personal data regulations in particular Law No.27 Year 2022 concerning on Personal Data Protection including its derivative or other implementing regulations related to personal data protection which may be changed from time to time (“LPDP").

WHAT data may we collect about you?

"Personal Data" means any information that could identify you either directly (e.g., your name) or indirectly (e.g., through a unique client ID number, address, date of birth, phone number, e-mail address, gender, payment/banking details, purchase history and/or photo).

You acknowledge that all Personal Data that you have provided or will provide is yours to share and is true and accurate.

The Personal Data we collect depends upon the touchpoint of our interaction and is also limited to that which is relevant and appropriate for the interaction. Website visitors who browse https://www.dior.com/en_id/beauty and view our products, information and offerings can choose to do so without identifying themselves, and the same applies to in-store and social media browsing.

Unless you choose to interact with us via those touchpoints, such as by making a purchase on our site, signing up for one of our programs or services, or posting a comment or a like online, our data collection is limited to the use of ‘cookies’ for website visitors.

For customers and other individuals who sign up for programs or services, we must collect certain relevant information from you. The information we collect is related to the particular transaction as well as our overall relationship with you. For example, if you make purchases from https://www.dior.com/en_id/beauty or in our stores, we must collect information to process (and, if relevant, fulfill and ship) your order. For customers and other individuals who sign up for our programs or services, we generally collect your contact details, contact preferences, and information that will allow us to make recommendations to you about our products or services that may be of interest. We may centralize the information pertaining to our customers so that we have it organized in one place, as this helps us manage our relationship with you as well as your choices and preferences.

Depending on the data you provide or share with us, Personal Data may include information related to:

· Your identity and your contact details;

· Your interests and personal preferences;

· Your purchases (in store or online, including your orders, their tracking and your purchase invoices, the amount and type of your purchase) and your repairs;

· Your online journeys (https://www.dior.com/en_id/beauty, social media pages, partner websites and databases);

· Your requests through our customer department or our public relations department;

· The Dior events you attend; and/or

· Specific health data if you notify us of any undesirable side-effects concerning any of our products.

Regarding your purchases, your bank details are encrypted through Dior servers. Payments are made via a secured PCI-DSS certified payment platform, supplemented by control measures, to ensure the security of purchases made and to fight against fraud.

We invite you to keep us regularly informed in writing of any change in your contact details.

HOW do we collect or receive your data?

As part of our relationships, we may collect certain data via the following touchpoints:

· https://www.dior.com/en_id/beauty journey.

· In-store relationship with our salesperson (including our corners and boutiques in department stores).

· Dior events you attend.

· Public Relations relationship.

· Contact with Customer Department.

· Forms you complete (in store or online).

· Digital apps you use.

· Relational program you benefit from.

· Dior social media pages you visit, or comment on/like.

· Social media pages on which you post Dior content or comments.

· Digital Media Advertising you click on.

· Search Engines Paid Advertising you click on.

· Third party data providers you share information with.

· Retailers to which you consent to receive our communications.

· Surveys or satisfaction questionnaires you answer.

In relation to our programs and events, the Personal Data essential to Dior is indicated by an asterisk on each Personal Data collection form. If you do not provide the data marked with an asterisk, this may affect the products and services that we can provide to you. Other information is optional and allows us to know you better and to improve our communications and services to you.

FOR WHAT PURPOSES is your data used by Dior?

As part of our relationship, depending on the context in which your data is collected, we use your data for:

· The management of relationship & contacting you through text messages (including SMS or through other messaging applications such as WhatsApp, Viber, Line), e-mail, by mail, by phone calls or in any other lawful manner consented by you.

· the management of your orders

· the management of the personalized content and communications with Dior (digital or otherwise)

· the management of your account and profile

· the management of your relational program

· the management of your requests linked with Dior.

· the management of events which you register for / attend.

· the management of alerts you send us as part of our cosmetovigilance obligations.

· the management of our website and our digital apps.

· the management and improvement of our products and services, image, and reputation.

· The management of payments (securitization of online transactions, fraud prevention, payment incidents and debt collection).

· For digital remarketing purposes, including but not limited to using your contact details such as your email or mobile number to retarget you on social media channels such as Facebook and Instagram

· Managing your participation in any of our events and promotions to which you have signed up.

· Conducting research, (including customer research), surveys, market surveys, analysis, and development activities (including but not limited to data analytics, and/or profiling), obtaining your feedback to our products and services to improve our products and services and to enhance any continued interaction between yourself and us in relation to your relationship with us, the Site or your Transaction(s).

· Storing, hosting and/or backing up of your personal data to any third-party service providers or agents, whether within or outside Indonesia

· Complying with or as required by any request or direction of any governmental authority, which we are expected to comply with, or responding to requests for information from public agencies, ministries, statutory boards, or other similar authorities.

The legal basis for the processing of your data can be, depending on which context your data is collected:

· Your consent (e.g., to manage our tailored services, managing your browsing via cookies).

· The performance of a contract (e.g., managing your access to your customer account, processing and tracking your orders).

· A legal obligation when processing is required by law (e.g., retention of purchase invoices, cosmetovigilance for Parfums Christian Dior products).

· Our legitimate interests: to improve our products and services, prevent fraud, secure our tools, or tailor our communications.

FOR HOW LONG may we keep your data?

We only keep your Personal Data for as long as we need it to achieve the purpose pursued, to meet your needs, or to comply with our legal or business obligations.

As a general principle, your Personal Data will be retained in our client database:

· If you are a “client” (i.e., you have already purchased a Dior product): for no more than 10 years after your first purchase for customer relationship management, but no more than 5 years for business development; this period will be renewed each time you interact with Dior (e.g., a purchase).

· If you are a “prospect” (i.e., you have never purchased a Dior product, but you are interested in Dior brand): for no more than 3 years; this period will be renewed each time you interact with Dior (e.g., when participating in an event).

· If you are in contact with the Public Relations department: for no more than 10 years after initial contact; this period will be renewed each time you interact with Dior (e.g., when requesting information from Dior House).

If cookies are placed on your computer, we will keep them for no more than 13 months.

When we no longer need to use your Personal Data, it is removed from our systems and records or anonymized so that you can no longer be identified from it.

WHO may access your data?

Your Personal Data is for Dior services dealing with your requests. We ensure that only duly authorized persons can access your Personal Data when necessary for the above-mentioned purposes.

We communicate your information only where necessary, and if possible, in a form that does not allow a direct identification to:

· Other Dior entities to provide you with the same personalized service worldwide.

· Our trusted third-party suppliers (whether located within or outside Indonesia territory), including other entities of the LVMH group (including but not limited to, other Parfums Christian Dior subsidiaries in France or abroad, our parent company and other entities of the LVMH (LVMH Moët Hennessy – Louis Vuitton SE) group (including LVMH Recherche)), acting as processors according to our instructions and solely on our behalf.

For example, we entrust certain services to third parties in charge of managing cosmetic vigilance alerts, third parties who assist us in the organization of our events, third parties providing IT services, digital communication, and public relations agencies, third parties who assist us with customer service and logistics services.

· Department stores in which you buy our products.

· Our trusted third-party partners assisting us in the management of your orders. In particular, we entrust certain services to third parties in charge of delivering you a product, payment service providers and providers securing transactions against fraud.

Please note that these partners may act as data controllers; in such case, they have their own privacy policies.

· Third parties in the event of a change of control, for legal reasons, or with your prior consent

You may also choose to disclose your Personal Data to our partners, advertisers, or affiliates by following a link to and from their websites. Please note that these websites have their own privacy policies.

We may also offer you the opportunity to use your social media login. Please be aware that in this case you are sharing your profile information with us. The Personal Data shared depends on your social media platform settings. Please note that these social networks have their own privacy policies.

HOW do we protect and keep your data confidential?

We have adopted reasonable and appropriate precautions to protect your data from loss, misuse, alteration, destruction, or access by unauthorized third parties.

We are also required by our partners and group companies to uphold a similar level of protection for your data. The measures are evaluated and updated to address new threats and challenges, as well as new legal requirements in the countries where we operate.

In creating your account on https://www.dior.com/en_id/beauty, entering a personal password complying with our security requirements is compulsory and part of our privacy policy.

We will also notify you of any failure to keep Personal Data confidential specifying reasons for the failure. The notice will be sent to you no later than 72 (seventy-two) hours after we learn of the failure, and we will ensure that you receive the notice.

HOW do we address cross-border protections?

Because Dior operates in many countries across the world, some of your data may be collected, accessible or stored outside of your country of residence. You should know that the data protection and security requirements differ from place to place and may not offer the same level of protection as those in your home country. Nevertheless, Dior and our group companies have taken steps to ensure an adequate level of protection of your data irrespective of where it is located, such as by using data transfer methods approved by the European Commission (where the data protection laws are considered to be the tightest in worldwide). We also require our third-party partners to comply with applicable data transfer obligations in relation to the Personal Data that they receive on our behalf.

HOW are consumer preferences and individual rights addressed?

In accordance with applicable laws and requirements, Dior and its group companies have put in place measures to fulfill the rights of individuals in relation to the Personal Data that we (or our third parties) hold about them. This includes, for example, the right to know about the data we hold about you or to obtain a copy, and the limited rights to amend your data, request erasure or deletion, object to the processing of your data, restrict to process, claim or demand, and/or portability of the Personal Data . [RAH1] [MS2] We encourage individuals who have entrusted their data to us to keep it current (such as if you change your email address, postal address, or phone number), so that we have your correct information on file. We also encourage consumers to update their preferences with us, such as in relation to products and the frequency of contacts, so that we can personalize our service to your expectations and needs. Finally, we offer individuals the right to withdraw consent from our programs and offerings at any time. To do so, or to exercise any of these other rights, please use our Contact Us link on https://www.dior.com/en_id/beauty, or email us at idservice@diormail.com. For individuals seeking access to their data, we also require authentication to ensure that we are not providing Personal Data to an unauthorized person.

What additional protections are provided for residents of certain regions?

Dior has adopted the data protection and security practices described in this Privacy Policy for all individuals within its scope. In addition, we also recognize and have addressed data protection and security measures that are required on a local or regional level.

In particular, the LPDP provides the following rights:

· The right to be informed: you have the right to obtain clear, transparent, and easily understandable information about how we use your Personal Data, and your rights. You will find all this information in this Privacy Policy

· The right of access: you have the right to access and obtaining copy of the Personal Data that Dior holds about you.

· The right of rectification: you have the right to have your Personal Data rectified, updated, and/or completed if it is incorrect or inaccurate.

· The right to erasure / right to be forgotten: you have the right to have your Personal Data erased or deleted. Please note this is not an absolute right, as we may have legal or legitimate grounds for retaining your Personal Data

· The right to withdraw consent for data processing: You can withdraw or revoke your consent to our processing of your Personal Data which has already been provided to us.

· The right to data portability: you have the right to move, copy or transfer data from our database to another. This only applies to data that you have provided, where processing is based on a contract or your consent, and the processing is carried out by automated means.

In addition to the above, you are also entitled as follows:

· You can unsubscribe or opt out of our direct marketing communication at any time. You can do so by clicking on the “unsubscribe” link in any email or communication we send you. You are also able to request non-personalized communications about our products and services.

· You are also entitled to determine your Personal Data protection guidelines and directives in the event of death or external circumstances.

· You also have the right to contact the data protection authority of your country in order to lodge a complaint against the data protection and privacy practices of Dior.

Please contact us at the contact details below to exercise these rights or if you have any questions or complaints regarding the processing of your Personal Data.

Note that we may require proof of your identity and full details of your request before we process it.

How does Dior protect children's privacy?

Dior has adopted practices that are designed to ensure that we do not collect or maintain any information from children under the age of 15. If we learn that we mistakenly collected any information from anyone under the age of 15, we will purge it immediately, except for responding to a question or inquiry on a one-time basis from the individual or his/her parent or legal guardian.

CONTACT US

If you have any questions or concerns about how we process and use your Personal Data, or would like to exercise any of your rights above, please contact us:

By sending an email to idservice@diormail.com

If you are a client or a prospect: idservice@diormail.com

INFORMATION ABOUT COOKIES MANAGEMENT

This section presents our policy for managing cookies on the https://www.dior.com/en_id/beauty website.

It aims to explain where the browsing information processed when you visit our website comes from, how it is used, and your rights.

For further information regarding the management of Cookies, please be able to study the Notice About Cookie Management as accessible via [Cookie Management]

What is the benefit of seeing special offers and advertising tailored to your browsing preferences?

The aim is to show you the most relevant offers and advertising. As such, cookie technology enables us to display content, in real-time, that is best suited to your fields of interest, as deduced from your browsing history on our website.

The interest you show in content displayed on your terminal when you consult a website often determines the advertising resources of this site, enabling it to provide its services, which are often supplied free of charge to users. You doubtless prefer to see offers and advertising that are relevant to you, rather than content that is of no interest to you at all. Similarly, both Dior and advertisers want their offers and advertising to be shown to Internet users that are likely to be interested in them.

MODIFICATION OF THIS PRIVACY POLICY

This Privacy Policy may change from time to time in accordance with the provisions of the applicable laws and regulations. In the event of modification of this Privacy Policy, we will ensure that you are informed of these changes either by a special notice on our site, or by a personalized warning notably in the context of our newsletters.

LANGUAGE

This Privacy Policy is prepared in the English and Indonesian languages. In the event of a conflict, inconsistency or a different interpretation between the English and the Indonesian versions, the English version shall prevail to the fullest extent permitted by any applicable law.