CHRISTIAN DIOR PRIVACY POLICY

1. Who we are

1.1. This is the Privacy Policy ("Policy" or “Privacy Policy”) of LVMH Fragrances & Cosmetics (Singapore) Pte Ltd (“the Company”, “Dior”, “PCD”, “we”, “our”, “us” or words deriving therefrom). We are a limited liability company registered in Singapore (Co. Reg 199608524W) at 391B Orchard Road #12-08, Ngee Ann City Tower B, Singapore 238874.

1.2. You have been directed to this Policy because we are or may be collecting, using, recording, holding, retrieving, transmitting, organizing, adapting or disclosing  (“Processing” or “Process”) your personal data.

1.3. Without limiting any other provisions in this Policy, references to “we”, “us” or “our” refer to the Company, which is or may be Processing your personal data and operating the website which you are accessing or using.

1.4. We own and operate the website at https://shop.dior.com.sg/ (the “Site”) and we operate the stores at the following locations as at the time of publication of this Policy: 

1.4.1. Boutiques:

(a) 50 Jurong Gateway Road, #02-05, JEM, S608549
(b) 2 Bayfront Avenue, #B2-26/26A, The Shoppes At Marina Bay Sands, S18972
(c) 2 Orchard Turn, #B2-44/46A, Ion Orchard, S238801
(d) 2 Orchard Turn, #B2-52, Ion Orchard, S238801
(e) 252 North Bridge Road, #01-01, Raffles City, S179103
(f) 1 HarbourFront Walk, #01-197 VivoCity, S098585

1.4.2. Department Stores

(a) 310 & 320 Orchard Road, Level 1, Cosmetic Floor, Tangs Orchard, S238864
(b) 4 Tampines Central 5, Level 1, Cosmetic Floor, #01-21, Isetan, Tampines Mall, S449269
(c) 23 Serangoon Central, Level 1, Cosmetic Floor, Isetan, NEX, S556083
(d) 230 Victoria Street, #01-01, BHG, Bugis Junction, S188024
(e) 290 Orchard Road, #02-05/15, Metro, Paragon, S238859
(f) 391 Orchard Road, Level 1, Takashimaya, Ngee Ann City, S238873
(g) 391B Orchard Road, #12-08, Epopup at Ngee Ann City Tower B, S238874

The Boutiques and Department Stores listed above are for your information only - their respective addresses may change from time to time, and we may also add other locations to their respective lists above - but any such changes do not affect the validity or operation of this Privacy Policy.

2. Purpose of the Policy

2.1. The purpose of this Privacy Policy is to inform you and provide you with an understanding of how we may handle, collect, use, disclose, deal with or generally Process personal data about you that you give us, that is in our possession or otherwise entrusted to us, in accordance with the Personal Data Protection Act (the “PDPA”). Please read this Privacy Policy carefully.

2.2. This Privacy Policy shall apply to all personal data of individuals in our possession or under our control, whether in connection with the Site, or in connection with the Processing of your personal data at the Boutiques, Department Stores and/ or any other point-of-sale location that is/are operated by us. 

2.3. The contents of this Privacy Policy may change over time so please check back frequently. Any changes to this Privacy Policy will be posted on and can be viewed at the Site. Your continued use of our services and utilization of the Site shall be deemed, to the extent permitted by laws in Singapore, your acknowledgement and acceptance of such changes.

2.4. This Policy applies to all personal data that you provide to us and/or the personal data we hold about you. By providing us with your personal data or by accessing, using or viewing the Site or any of its services, functions or contents (including transmitting, caching or storing of any such personal data), you shall be deemed to have agreed to each and all the terms, conditions, and notices in this Policy, and its subsequent amendments. If you do not agree, please immediately cease using the Site and/or its service(s) and DO NOT provide any personal data to us. You have a right to withdraw any consent for us to Process your personal data at any time by contacting our Data Privacy Officer (see below sections). 

2.5. This Policy applies to and covers all activities and interactions between us, whether through the Site, virtual platforms related to the Site (accessible by any digital devices) operated or managed by us (“Virtual Platforms”), or in person. 

 

3. Personal data that will be collected

3.1 .“Personal Data” is defined under the PDPA to mean data, whether true or not, about an individual who can be identified:

(a) from that data; or

(b) from that data and other information to which we have or are likely to have access.

3.2.

When you use our Site or receive any services from us, or in your interaction with us, the personal data we may collect include but is not limited to:

3.2.1. Data collected directly from you. This may be done through our Site, over the phone, by email or in person through a variety of activities. These activities include, but are not limited to instances where you:

(a) Enter into a contract with us for the supply of any goods or services, including any purchases of goods made by you through the Site or in person;
(b) Participate in our surveys;
(c) Consent to receiving our marketing and/ or commercial communications by email or other means;
(d) Interact with our customer services department;
(e) Contact us through any means to find out more about goods or services we provide;
(f) Participate in any events organized by us; 
(g) Collect samples from our stores through our consultants or by notification from our microsites or websites; and
(h) Request for invoice or other transactional documentation pertaining to the supply and purchase of our goods and services between the Company and you. 

The personal data collected may include, but is not limited to:

(a) Your personal particulars, including your first name and last name, date of birth, gender and identification number (such as national ID or passport details);
(b) Your signature;
(c) Your personal contact details, such as your personal phone number(s), email address and residential address;
(d) Other information required to be able to process your order and provide you with our services, such as information concerning the products that you have ordered or the service that we are providing to you, the billing and/or delivery addresses, banking and/or credit/debit card details;
(e) If you have created an online profile or account, the preferences and/or interests stored in such profile or account; 
(f) If you have contacted customer service, the details of this contact and the contact history; 
(g) In the case there are any virtual make-up or cosmetics “trial on” or “try on” tools (or equivalent) available on the Site, your biometric data and/ or your photographs & images; and
(h) In the case of any spa or facial services (or equivalent), your skin conditions and related health declarations disclosed to us by you. 

3.2.2.

Data collected by automated means. Our Site adopts various technologies to make them more user-friendly, effective and secure for its users. Such technologies may result in data being collected automatically by us or by third parties on behalf of us. This data does not always, but may, contain a user's personal data or comprise of personal data. Examples of such technologies include:

(a) Click-stream data. A visit to our Site results in data that is transmitted from your browser to our server being automatically collected and stored by us or by third parties on behalf of us. This data can include the following:

i. The IP address of the visitor of the Site;
ii. The date and time of the visit to our Site;
iii. The referral URL (the site from which the visitor was directed);
iv. The pages visited on our Site; and
v. Information about the browser used, such as the browser type and version, and operating system.

(b) Cookies. The Site adopts the use of cookies. Cookies are small text files which are stored on your computer’s hard drive or user device by your web browser. We can use cookies to identify the owner of a user account and to store articles in a shopping basket during the purchasing process. The cookies usually used by us are so-called "session cookies", which are automatically deleted at the end of the visit to the relevant website. By default, web browsers enable the use of cookies but this function can also be disabled. However, this may result in some services not being available. It is also possible to manually delete cookies after their use via the web browser. More information may be available from your web browser provider.

(c) Web Analytics. Web analytics is the term given to a method for collecting and assessing the behaviour of visitors to websites. This includes the analysis of traffic patterns in order, for example, to determine the frequency of visits to certain parts of a website, or to and out which of our information and services our visitors are most interested in. For these purposes, we primarily make use of click-stream data and the other techniques listed above.

 

4. Purposes for which we collect, use or disclose your personal data

4.1. We may collect, use, disclosure and/or Process your personal data for one or more of the following purposes:

4.1.1. Processing and dealing with your interest in our products and/or services;

4.1.2.

Administering, facilitating, processing, dealing with, administering and/or managing your purchase of our products and services (the “Transaction”). Without limiting the generality of the following, should you make a Transaction that includes third party individual(s) or on behalf of third party individual(s) or for third party individual(s), you consent to us disclosing personal data that identifies you to the said third party individual(s). This includes but is not limited to the following:

(a) Generating and storing documents concerning the Transaction(s) such as delivery and collection orders, quotations and invoices;
(b) Dealing with your delivery needs, processing orders and payment transactions, implementing transactions and the supply of products and/or services to you that you have requested;
(c) Dealing with your ad-hoc queries, requests or bookings; and/ or 
(d) Assessment of your creditworthiness (for which we may use third parties). 

4.1.3. Administering, facilitating, processing and/or dealing in any Transactions, payments, debt collection or activities carried out by you on the Site;

4.1.4. Administering, facilitating, managing, processing and/or dealing in any matters involving your use or access of the Site, including identifying you for login to the Site, our portals and other online services provided by or on behalf of us;

4.1.5. Facilitating and managing customer services in terms of responding to, handling and processing queries, requests, feedback or any complaints that you may send us via our website, our customer services department, on our social media pages, or otherwise notified to us through other means;

4.1.6. Monitoring, processing and/or tracking your use of the Site in order to provide you with a seamless experience, facilitating or administering your use of the Site, and/or to assist us in improving your experience in using the Site;

4.1.7. Registering you as a customer of any of our products or services on our database to contact you or communicate with you via phone/voice call, text message (including SMS and other messaging applications such as Whatsapp, WeChat, Viber and Line) and/or fax message, email, postal mail or by other lawful methods consented by you for one or more of the Purposes stated herein. You acknowledge and agree that such communication by us could be by way of the mailing of correspondence, documents or notices to you, which could involve disclosure of certain personal data about you to bring about delivery of the same as well as on the external cover of envelopes/mail packages;

4.1.8. To process, to facilitate and/or administer the online account that you may open with us, including to facilitate your transactions on the Site or for us;

4.1.9. To prevent or investigate any fraud, unlawful activity, omission or misconduct, dealing with conflict of interests, or dealing with investigating complaints;

4.1.10. To prevent or investigate any fraud, unlawful activity, omission or misconduct, dealing with conflict of interests, or dealing with investigating complaints;

4.1.11. Complying with or as required by any request or direction of any governmental authority (whether Singapore or other countries) which we are expected to comply with, or responding to requests for information from public agencies, ministries, statutory boards or other similar authorities;

4.1.12. Conducting research (including customer research), surveys, market surveys, analysis and development activities (including but not limited to data analytics, and/or profiling), obtaining your feedback to our products and services to improve our products and services and to enhance any continued interaction between yourself and us in relation to your relationship with us, the Site or your Transaction(s);

4.1.13. Facilitating and offering adapted and personalised services particularly for the purposes of developing our products and services and to enhance any continued interaction between yourself and us in relation to your relationship with us, the Site or your Transaction(s);

4.1.14. Conducting of training to improve the quality of our products and services and our staff’s service quality;

4.1.15. For marketing purposes, including but not limited to, the provision of marketing, advertising and promotional information, materials and documents relating to products, services, contests and events, by phone/voice call, text message (including SMS and other messaging applications such as Whatsapp, WeChat, Viber and Line), and/or fax message, email, postal mail or by other lawful methods consented by you;

4.1.16. For digital remarketing purposes, including but not limited to using your contact details such as your email or mobile number to retarget you on social media channels such as Facebook and Instagram;

4.1.17. Managing your participation in any of our events and promotions to which you have signed up;

4.1.18. Storing, hosting and/or backing up of your personal data to any third party service providers or agents, whether within or outside Singapore;

4.1.19. Maintaining and/or developing our IT or business systems and infrastructure including testing and upgrading of these systems;

4.1.20. Facilitating, dealing with and/or administering external or internal audit(s) of our business, the Transaction(s) and/or transactions with our customers; and

4.1.21. To deal with the or as part of a bankruptcy, winding up, reorganisation, restructuring, insolvency, receivership or an assignment for the benefit of our creditors; 

4.1.22. To train, develop or implement artificial intelligence to support the user experience, functionality and operations of and in connection with the Site; and/ or

4.1.23. any other incidental business purposes related to or in connection with the above. 

(The purposes set out in this Paragraph 4.1 shall be collectively referred to as the “Purposes”)

4.2. Your consent relating to our processing of your personal data in accordance with the marketing purpose mentioned in Paragraph 4.1.15 may be withdrawn at any time using one of the following methods:

4.2.1. Clicking the “Unsubscribe” button located at the bottom of our emailers; or

4.2.2. Contacting us through the contact details listed at Paragraph 10.1 below.
4.2A. If you have listed your telephone number on the “Do Not Call” Register” in Singapore and you do not wish for us to contact you for marketing or promotional activities, please inform us accordingly in writing. 

4.3. We may need to disclose your personal data to third parties, whether located within or outside Singapore for any of the above Purposes. In this connection, you hereby acknowledge, agree and consent that we are permitted to disclose your personal data to such third parties for one or more of the above Purposes, for the cross-border transfer of your personal data for the Purposes and for the said third parties for their subsequent collection, usage, disclosure and/or Processing of your personal data for one or more of the above Purposes. Without limiting the generality of the foregoing or of the above Paragraph 4.1, such third parties include:

4.3.1. Our associated or affiliated organizations or related corporations, including but not limited to, other Parfums Christian Dior subsidiaries in France or abroad, our parent company and other entities of the LVMH (LVMH Moët Hennessy – Louis Vuitton SE) group (including LVMH Recherche and Agache SE) (“LVMH Group”);

4.3.2. Any of our agent, contractors or third party service providers that will process your personal data on our behalf, including but limited to those who provide administrative services to us such as marketing solutions service providers, marketing and commercial prospection management service providers via social media, event organization service providers, customer service providers, mailing houses, telecommunication companies, information technology companies, data centres, hosting and maintenance service providers, email-messaging service providers, handling of payment transactions service providers, marketing service providers, delivery and logistics services, and anti-fraud and fraud prevention service providers;

4.3.3. Our professional advisers, such as our auditors, lawyers, accountants and/ or insurers; and

4.3.4. Third parties to whom disclosure by us is for one or more of the Purposes, who will in turn be collecting and processing your personal data for one or more of the above Purposes. Without limiting the generality of this Paragraph 4.3.4, such third parties include debt collectors, credit agencies, finance companies or banks.

4.4. The consent that you provide for the Processing of your personal data will remain valid until such time it is being withdrawn by you in writing. You may withdraw your consent to the Processing of your personal data in our possession or under our control by contacting us at through the contact details listed below. We will process your request within a reasonable time from such a request for withdrawal of consent being made, and will thereafter not collect, use and/or disclose your personal data in the manner stated in your request, unless an exception under the law or a provision in the law permits us to. However, please take note that your above withdrawal of consent could result in certain legal consequences arising, including us being unable to perform the transactions requested by you or the termination of your relationship with us, as the case may be. Please also note that withdrawing consent does not affect our right to continue to Process your personal data where such collection, use and disclose without consent is required or authorised under applicable laws.

4.5. We may collect, use, disclose or Process your personal data for purposes other than the Purposes set out in the above Paragraph 4.1. Prior to the collection, usage, disclosure or Processing of your personal data for such other purposes, we will seek your consent unless your consent is not required by the PDPA or by any applicable law.

4.6. Please inform us of any changes to your personal data or if there are any errors in the personal data we hold about you. We will not be responsible for relying on inaccurate or incomplete personal data arising from your not updating us of any changes in your personal data that you had initially provided us with. We also will not and do not have obligations to verify the accuracy or completeness of the personal data given by or on behalf of you. 

 

5. Provision by you of third party personal data

5.1. In the event that you provide us with personal data of any individual other than yourself, you represent, undertake and warrant to us the following:

5.1.1. For any personal data of third party individuals that you disclose to us, you have obtained the prior consent from such individuals to:

(a) Permit you to disclose the individuals’ personal data to us for the Purposes; and

(b) Permit us to collect, use, disclose and/or process the individuals’ personal data for the Purposes.

5.1.2. At our request, you will use such form(s) and document(s) provided by us in obtaining the required consent from the third party individuals in question;

5.1.3. Any personal data of third party individuals that you disclose to us are accurate and complete; and

5.1.4. For any personal data of third party individuals that you disclose to us, that you are validly acting on behalf of such individuals and that you have the authority of such individuals to provide their personal data to us and for us to collect, use, disclose and process such personal data for the Purposes.

 

6. Third Party Websites

6.1. This Policy only applies to the Site and information that we collect from you. The Site may contain links to other websites which are not owned, operated or maintained by us. When visiting these third party websites or disclosing your personal data to third parties, you should read their privacy policies, or ask relevant questions before you disclose your personal data. We are not responsible for the Processing of your personal data by such third parties.

 

7. Security and our storage of your personal data

7.1. To safeguard your personal data from unauthorised Processing, access, collection, use, disclosure, copying, modification, disposal or similar risks, we have administrative, physical and technical measures including up-to-date antivirus protection, encryption and the use of privacy filters to secure all storage and transmission of personal data by us, and disclosing personal data both internally and to our authorised third party service providers and agents only on a need-to-know basis.

7.2. You should be aware, however, that no method of transmission over the Internet or method of electronic storage is completely secure. While security cannot be guaranteed, we strive to protect and take steps to protect the security of your personal data. 

 

8. Retention of Personal Data

8.1. We may retain your personal data for as long as it is necessary to fulfil the purpose for which it was collected, or as required or permitted by applicable laws.

8.2. We will cease to retain your personal data, or remove the means by which the data can be associated with you, as soon as it is reasonable to assume that such retention no longer serves the purpose for which the personal data was collected, including but not limited to legal, tax and/ or audit purposes and the Purposes set out above.

8.3. As general guidance (without binding effect on us), your personal data may be retained in our client database:

8.3.1. If you are a “client” (i.e. you have already purchased a Dior product): for no more than 10 years after your first purchase (but no more than 5 years for marketing development purposes); this period will be renewed each time you interact with PCD or the LVMH Group(e.g. when making a purchase).

8.3.2. If you are a “prospect” (i.e. you have never purchased a Dior product but you are interested in the Dior brand): we keep your data for 5 years; this period will be renewed each time you interact with us (e.g. when participating in an event or providing your personal data via or through the Site).

8.3.3. If you have given consent to the processing of your personal data for market research purposes in the field of cosmetics and statistical analyses, for the purpose of improving the understanding of the skin for the development of Dior fragrances and cosmetic products: for a duration of 10 years from the collection date of your personal data.

8.3.4. If you are in contact with the Company or the LVMH Group’s public relations employee/s, department or representative: for no more than 10 years after initial contact; this period will be renewed each time you interact with PCD or the LVMH Group (e.g. when requesting information from the House of Dior or an affiliate of the LVMH Group).
 

 

9. Your rights regarding your personal data that is collected and processed by us

9.1. If you wish to make an access request for access to a copy of the personal data which we hold about you, information about the ways in which we use or disclose your personal data, a withdrawal of any consent that you have given us at any time, or a correction request to correct or update any of your personal data which we hold about you, you are welcome to contact us through the contact details below.

9.2. We will use our reasonable commercial endeavour to respond to your request as soon as reasonably practicable. Should we not be able to respond to your request within thirty (30) days after receiving your request, we will inform you. If we are unable to provide you with any personal data or to make a correction requested by you, we will use our reasonable commercial efforts to inform you of the reasons why we are unable to do so (except where we are not required to do so under the PDPA or in our reasonable view, those reasons contain or pertain to confidential information or business secrets of the Company and/ or the LVMH Group).

9.3. Please note that a fee may be charged for your access request if and to the extent permitted by laws in Singapore. If so, we will inform you of the fee before processing your request.

 

10. Our Contact Information

10.1. You may direct your requests and enquiries to us regarding your personal data in the following ways:
10.1.1. By Email - must be made to our Customer Service team at following address: contact@dior.com.sg or to the Data Protection Officer of LVMH Fragrances & Cosmetics (Singapore) Pte Ltd at the following address: vchou@sg.lvmh-pc.com; 

10.1.2. By Telephone - must be made to our Customer Service team at the following telephone number: +65 9669 3141; 

10.2. All requests and enquiries will first be evaluated by us, including an assessment as to whether such requests and enquiries are generated by a genuine user of the Site, or data subject who is a natural person. After we have completed our evaluation and have satisfied that the requests and enquiries are not, or are not likely to be, spam messages, phishing attempts or other potential fraudulent or illegal activities, our Customer Service team will respond to the initial contact person. 

 

11. Governing Law

11.1. This Policy is prepared pursuant to the PDPA and governed by the laws of Singapore.

 

12. Effect of this Privacy Policy

12.1. This Policy applies in conjunction with any other notices, contractual clauses and consent clauses that apply in relation to the collection, use and disclosure of your personal data by us. If there is a formal written and executed contract between the Company and you (“Formal Agreement”) and to the extent of any inconsistencies between that Formal Agreement and the terms of this Policy, the terms of the Formal Agreement will prevail to the extent permitted by the PDPA or other laws in Singapore. 

 

13. Special Provision: Customer Identity and Access Management, or equivalent Management System, Platform, Tools and Database Operated, Managed or Accessible by the Company or the LVMH Group (“CIAM”)

13.1 Without limiting any other provisions of this Policy, your personal data may be Processed and/ or transferred outside of Singapore for purposes relating to CIAM, which is primarily aimed at the Company’s overall enhancement of customer service and Dior product offerings - in connection of CIAM, your personal data may be used and processed for the following purposes (non-exhaustive): 

 

• Security and prevention of misuse of services; 
• Detecting or preventing illegal activities (e.g. fraud, money laundering) or threats to physical safety and security, IT and network security; 
• Preventing of misuse of services; 
• Carrying out other necessary corporate due diligence; 
• Improving, enhancing or developing new goods or services;
• Improving, enhancing or developing new methods or processes for business operations in relation to the organisations’ goods and services;
• Learning or understanding behaviour and preferences of individuals (including groups of individuals segmented by profile); 
• Identifying goods or services that may be suitable for individuals (including groups of individuals segmented by profile) or personalising or customising any such goods or services for individuals; and/ or
• Improving, enhancing or developing new goods or services. 

13.2 We will endeavour to take steps to analyze and satisfy ourselves that our use of personal data for the business improvement purpose is one that a reasonable person would consider appropriate in the circumstances.

 

14. Specific Provisions on Consent and Exceptions

14.1 We will use our best commercial endeavours to obtain your consent (express or implied) whenever we have to collect, process, use or store your personal data. However, if due to business impracticalities or other reasons, we are unable to obtain your consent, we will rely on exceptions under the laws of Singapore, including the below exceptions under the PDPA as the legal bases permitting our collection, use, transfer, Processing and/or disclosure of your personal data without your consent or explicit consent (as applicable): 
14.1.1  Legitimate Interests Exception 
We will rely upon this exception for the below purposes (non-exhaustive): 
• Security and prevention of misuse of services; 
• Detecting or preventing illegal activities (e.g. fraud, money laundering) or threats to physical safety and security, IT and network security; 
• Preventing of misuse of services; and/ or 
• Carrying out other necessary corporate due diligence.  
14.1.2  Business Improvement Exception
We will rely upon this exception where the use of the personal data falls within the scope of any of the following business improvement purposes:
• Improving, enhancing or developing new goods or services;
• Improving, enhancing or developing new methods or processes for business operations in relation to the organisations’ goods and services;
• Learning or understanding behaviour and preferences of individuals (including groups of individuals segmented by profile); 
• Identifying goods or services that may be suitable for individuals (including groups of individuals segmented by profile) or personalising or customising any such goods or services for individuals; 
• Improving, enhancing or developing new goods or services; and/ or
• Relating to CIAM provided by a subsidiary of the LVMH Group
Further, the Business Improvement Exception also applies to the sharing of personal data (i.e. collection and disclosure) between us and other entities belonging the LVMH Group, for the following business improvement purposes:
• Improving, enhancing or developing new goods or services;
• Improving, enhancing or developing new methods or processes for business operations in relation to the organisations’ goods and services;
• Learning or understanding behaviour and preferences of existing or prospective customers (including groups of individuals segmented by profile);
• Identifying goods or services that may be suitable for existing or prospective customers (including groups of individuals segmented by profile) or personalising or customising any such goods or services for individuals; and/ or 
• Relating to CIAM provided by a subsidiary of the LVMH Group
In relying on the Business Improvement Exception, we will take steps to analyze and satisfy ourselves that a) the business improvement purpose cannot reasonably be achieved without using the personal data in an individually identifiable form; and b) Our use of personal data for the business improvement purpose is one that a reasonable person would consider appropriate in the circumstances.    

EFFECTIVE DATE: [September 2024]
LAST UPDATED: [September 2024]

1. Who we are

1.1. This is the Privacy Policy ("Policy" or “Privacy Policy”) of LVMH Fragrances & Cosmetics (Singapore) Pte Ltd (“the Company”, “Dior”, “PCD”, “we”, “our”, “us” or words deriving therefrom). We are a limited liability company registered in Singapore (Co. Reg 199608524W) at 391B Orchard Road #12-08, Ngee Ann City Tower B, Singapore 238874.

1.2. You have been directed to this Policy because we are or may be collecting, using, recording, holding, retrieving, transmitting, organizing, adapting or disclosing  (“Processing” or “Process”) your personal data.

1.3. Without limiting any other provisions in this Policy, references to “we”, “us” or “our” refer to the Company, which is or may be Processing your personal data and operating the website which you are accessing or using.

1.4. We own and operate the website at https://shop.dior.com.sg/ (the “Site”) and we operate the stores at the following locations as at the time of publication of this Policy: 

1.4.1. Boutiques:

(a) 50 Jurong Gateway Road, #02-05, JEM, S608549
(b) 2 Bayfront Avenue, #B2-26/26A, The Shoppes At Marina Bay Sands, S18972
(c) 2 Orchard Turn, #B2-44/46A, Ion Orchard, S238801
(d) 2 Orchard Turn, #B2-52, Ion Orchard, S238801
(e) 252 North Bridge Road, #01-01, Raffles City, S179103
(f) 1 HarbourFront Walk, #01-197 VivoCity, S098585

1.4.2. Department Stores

(a) 310 & 320 Orchard Road, Level 1, Cosmetic Floor, Tangs Orchard, S238864
(b) 4 Tampines Central 5, Level 1, Cosmetic Floor, #01-21, Isetan, Tampines Mall, S449269
(c) 23 Serangoon Central, Level 1, Cosmetic Floor, Isetan, NEX, S556083
(d) 230 Victoria Street, #01-01, BHG, Bugis Junction, S188024
(e) 290 Orchard Road, #02-05/15, Metro, Paragon, S238859
(f) 391 Orchard Road, Level 1, Takashimaya, Ngee Ann City, S238873
(g) 391B Orchard Road, #12-08, Epopup at Ngee Ann City Tower B, S238874

The Boutiques and Department Stores listed above are for your information only - their respective addresses may change from time to time, and we may also add other locations to their respective lists above - but any such changes do not affect the validity or operation of this Privacy Policy.

2. Purpose of the Policy

2.1. The purpose of this Privacy Policy is to inform you and provide you with an understanding of how we may handle, collect, use, disclose, deal with or generally Process personal data about you that you give us, that is in our possession or otherwise entrusted to us, in accordance with the Personal Data Protection Act (the “PDPA”). Please read this Privacy Policy carefully.

2.2. This Privacy Policy shall apply to all personal data of individuals in our possession or under our control, whether in connection with the Site, or in connection with the Processing of your personal data at the Boutiques, Department Stores and/ or any other point-of-sale location that is/are operated by us. 

2.3. The contents of this Privacy Policy may change over time so please check back frequently. Any changes to this Privacy Policy will be posted on and can be viewed at the Site. Your continued use of our services and utilization of the Site shall be deemed, to the extent permitted by laws in Singapore, your acknowledgement and acceptance of such changes.

2.4. This Policy applies to all personal data that you provide to us and/or the personal data we hold about you. By providing us with your personal data or by accessing, using or viewing the Site or any of its services, functions or contents (including transmitting, caching or storing of any such personal data), you shall be deemed to have agreed to each and all the terms, conditions, and notices in this Policy, and its subsequent amendments. If you do not agree, please immediately cease using the Site and/or its service(s) and DO NOT provide any personal data to us. You have a right to withdraw any consent for us to Process your personal data at any time by contacting our Data Privacy Officer (see below sections). 

2.5. This Policy applies to and covers all activities and interactions between us, whether through the Site, virtual platforms related to the Site (accessible by any digital devices) operated or managed by us (“Virtual Platforms”), or in person. 

 

3. Personal data that will be collected

3.1 .“Personal Data” is defined under the PDPA to mean data, whether true or not, about an individual who can be identified:

(a) from that data; or

(b) from that data and other information to which we have or are likely to have access.

3.2.

When you use our Site or receive any services from us, or in your interaction with us, the personal data we may collect include but is not limited to:

3.2.1. Data collected directly from you. This may be done through our Site, over the phone, by email or in person through a variety of activities. These activities include, but are not limited to instances where you:

(a) Enter into a contract with us for the supply of any goods or services, including any purchases of goods made by you through the Site or in person;
(b) Participate in our surveys;
(c) Consent to receiving our marketing and/ or commercial communications by email or other means;
(d) Interact with our customer services department;
(e) Contact us through any means to find out more about goods or services we provide;
(f) Participate in any events organized by us; 
(g) Collect samples from our stores through our consultants or by notification from our microsites or websites; and
(h) Request for invoice or other transactional documentation pertaining to the supply and purchase of our goods and services between the Company and you. 

The personal data collected may include, but is not limited to:

(a) Your personal particulars, including your first name and last name, date of birth, gender and identification number (such as national ID or passport details);
(b) Your signature;
(c) Your personal contact details, such as your personal phone number(s), email address and residential address;
(d) Other information required to be able to process your order and provide you with our services, such as information concerning the products that you have ordered or the service that we are providing to you, the billing and/or delivery addresses, banking and/or credit/debit card details;
(e) If you have created an online profile or account, the preferences and/or interests stored in such profile or account; 
(f) If you have contacted customer service, the details of this contact and the contact history; 
(g) In the case there are any virtual make-up or cosmetics “trial on” or “try on” tools (or equivalent) available on the Site, your biometric data and/ or your photographs & images; and
(h) In the case of any spa or facial services (or equivalent), your skin conditions and related health declarations disclosed to us by you. 

3.2.2.

Data collected by automated means. Our Site adopts various technologies to make them more user-friendly, effective and secure for its users. Such technologies may result in data being collected automatically by us or by third parties on behalf of us. This data does not always, but may, contain a user's personal data or comprise of personal data. Examples of such technologies include:

(a) Click-stream data. A visit to our Site results in data that is transmitted from your browser to our server being automatically collected and stored by us or by third parties on behalf of us. This data can include the following:

i. The IP address of the visitor of the Site;
ii. The date and time of the visit to our Site;
iii. The referral URL (the site from which the visitor was directed);
iv. The pages visited on our Site; and
v. Information about the browser used, such as the browser type and version, and operating system.

(b) Cookies. The Site adopts the use of cookies. Cookies are small text files which are stored on your computer’s hard drive or user device by your web browser. We can use cookies to identify the owner of a user account and to store articles in a shopping basket during the purchasing process. The cookies usually used by us are so-called "session cookies", which are automatically deleted at the end of the visit to the relevant website. By default, web browsers enable the use of cookies but this function can also be disabled. However, this may result in some services not being available. It is also possible to manually delete cookies after their use via the web browser. More information may be available from your web browser provider.

(c) Web Analytics. Web analytics is the term given to a method for collecting and assessing the behaviour of visitors to websites. This includes the analysis of traffic patterns in order, for example, to determine the frequency of visits to certain parts of a website, or to and out which of our information and services our visitors are most interested in. For these purposes, we primarily make use of click-stream data and the other techniques listed above.

 

4. Purposes for which we collect, use or disclose your personal data

4.1. We may collect, use, disclosure and/or Process your personal data for one or more of the following purposes:

4.1.1. Processing and dealing with your interest in our products and/or services;

4.1.2.

Administering, facilitating, processing, dealing with, administering and/or managing your purchase of our products and services (the “Transaction”). Without limiting the generality of the following, should you make a Transaction that includes third party individual(s) or on behalf of third party individual(s) or for third party individual(s), you consent to us disclosing personal data that identifies you to the said third party individual(s). This includes but is not limited to the following:

(a) Generating and storing documents concerning the Transaction(s) such as delivery and collection orders, quotations and invoices;
(b) Dealing with your delivery needs, processing orders and payment transactions, implementing transactions and the supply of products and/or services to you that you have requested;
(c) Dealing with your ad-hoc queries, requests or bookings; and/ or 
(d) Assessment of your creditworthiness (for which we may use third parties). 

4.1.3. Administering, facilitating, processing and/or dealing in any Transactions, payments, debt collection or activities carried out by you on the Site;

4.1.4. Administering, facilitating, managing, processing and/or dealing in any matters involving your use or access of the Site, including identifying you for login to the Site, our portals and other online services provided by or on behalf of us;

4.1.5. Facilitating and managing customer services in terms of responding to, handling and processing queries, requests, feedback or any complaints that you may send us via our website, our customer services department, on our social media pages, or otherwise notified to us through other means;

4.1.6. Monitoring, processing and/or tracking your use of the Site in order to provide you with a seamless experience, facilitating or administering your use of the Site, and/or to assist us in improving your experience in using the Site;

4.1.7. Registering you as a customer of any of our products or services on our database to contact you or communicate with you via phone/voice call, text message (including SMS and other messaging applications such as Whatsapp, WeChat, Viber and Line) and/or fax message, email, postal mail or by other lawful methods consented by you for one or more of the Purposes stated herein. You acknowledge and agree that such communication by us could be by way of the mailing of correspondence, documents or notices to you, which could involve disclosure of certain personal data about you to bring about delivery of the same as well as on the external cover of envelopes/mail packages;

4.1.8. To process, to facilitate and/or administer the online account that you may open with us, including to facilitate your transactions on the Site or for us;

4.1.9. To prevent or investigate any fraud, unlawful activity, omission or misconduct, dealing with conflict of interests, or dealing with investigating complaints;

4.1.10. To prevent or investigate any fraud, unlawful activity, omission or misconduct, dealing with conflict of interests, or dealing with investigating complaints;

4.1.11. Complying with or as required by any request or direction of any governmental authority (whether Singapore or other countries) which we are expected to comply with, or responding to requests for information from public agencies, ministries, statutory boards or other similar authorities;

4.1.12. Conducting research (including customer research), surveys, market surveys, analysis and development activities (including but not limited to data analytics, and/or profiling), obtaining your feedback to our products and services to improve our products and services and to enhance any continued interaction between yourself and us in relation to your relationship with us, the Site or your Transaction(s);

4.1.13. Facilitating and offering adapted and personalised services particularly for the purposes of developing our products and services and to enhance any continued interaction between yourself and us in relation to your relationship with us, the Site or your Transaction(s);

4.1.14. Conducting of training to improve the quality of our products and services and our staff’s service quality;

4.1.15. For marketing purposes, including but not limited to, the provision of marketing, advertising and promotional information, materials and documents relating to products, services, contests and events, by phone/voice call, text message (including SMS and other messaging applications such as Whatsapp, WeChat, Viber and Line), and/or fax message, email, postal mail or by other lawful methods consented by you;

4.1.16. For digital remarketing purposes, including but not limited to using your contact details such as your email or mobile number to retarget you on social media channels such as Facebook and Instagram;

4.1.17. Managing your participation in any of our events and promotions to which you have signed up;

4.1.18. Storing, hosting and/or backing up of your personal data to any third party service providers or agents, whether within or outside Singapore;

4.1.19. Maintaining and/or developing our IT or business systems and infrastructure including testing and upgrading of these systems;

4.1.20. Facilitating, dealing with and/or administering external or internal audit(s) of our business, the Transaction(s) and/or transactions with our customers; and

4.1.21. To deal with the or as part of a bankruptcy, winding up, reorganisation, restructuring, insolvency, receivership or an assignment for the benefit of our creditors; 

4.1.22. To train, develop or implement artificial intelligence to support the user experience, functionality and operations of and in connection with the Site; and/ or

4.1.23. any other incidental business purposes related to or in connection with the above. 

(The purposes set out in this Paragraph 4.1 shall be collectively referred to as the “Purposes”)

4.2. Your consent relating to our processing of your personal data in accordance with the marketing purpose mentioned in Paragraph 4.1.15 may be withdrawn at any time using one of the following methods:

4.2.1. Clicking the “Unsubscribe” button located at the bottom of our emailers; or

4.2.2. Contacting us through the contact details listed at Paragraph 10.1 below.
4.2A. If you have listed your telephone number on the “Do Not Call” Register” in Singapore and you do not wish for us to contact you for marketing or promotional activities, please inform us accordingly in writing. 

4.3. We may need to disclose your personal data to third parties, whether located within or outside Singapore for any of the above Purposes. In this connection, you hereby acknowledge, agree and consent that we are permitted to disclose your personal data to such third parties for one or more of the above Purposes, for the cross-border transfer of your personal data for the Purposes and for the said third parties for their subsequent collection, usage, disclosure and/or Processing of your personal data for one or more of the above Purposes. Without limiting the generality of the foregoing or of the above Paragraph 4.1, such third parties include:

4.3.1. Our associated or affiliated organizations or related corporations, including but not limited to, other Parfums Christian Dior subsidiaries in France or abroad, our parent company and other entities of the LVMH (LVMH Moët Hennessy – Louis Vuitton SE) group (including LVMH Recherche and Agache SE) (“LVMH Group”);

4.3.2. Any of our agent, contractors or third party service providers that will process your personal data on our behalf, including but limited to those who provide administrative services to us such as marketing solutions service providers, marketing and commercial prospection management service providers via social media, event organization service providers, customer service providers, mailing houses, telecommunication companies, information technology companies, data centres, hosting and maintenance service providers, email-messaging service providers, handling of payment transactions service providers, marketing service providers, delivery and logistics services, and anti-fraud and fraud prevention service providers;

4.3.3. Our professional advisers, such as our auditors, lawyers, accountants and/ or insurers; and

4.3.4. Third parties to whom disclosure by us is for one or more of the Purposes, who will in turn be collecting and processing your personal data for one or more of the above Purposes. Without limiting the generality of this Paragraph 4.3.4, such third parties include debt collectors, credit agencies, finance companies or banks.

4.4. The consent that you provide for the Processing of your personal data will remain valid until such time it is being withdrawn by you in writing. You may withdraw your consent to the Processing of your personal data in our possession or under our control by contacting us at through the contact details listed below. We will process your request within a reasonable time from such a request for withdrawal of consent being made, and will thereafter not collect, use and/or disclose your personal data in the manner stated in your request, unless an exception under the law or a provision in the law permits us to. However, please take note that your above withdrawal of consent could result in certain legal consequences arising, including us being unable to perform the transactions requested by you or the termination of your relationship with us, as the case may be. Please also note that withdrawing consent does not affect our right to continue to Process your personal data where such collection, use and disclose without consent is required or authorised under applicable laws.

4.5. We may collect, use, disclose or Process your personal data for purposes other than the Purposes set out in the above Paragraph 4.1. Prior to the collection, usage, disclosure or Processing of your personal data for such other purposes, we will seek your consent unless your consent is not required by the PDPA or by any applicable law.

4.6. Please inform us of any changes to your personal data or if there are any errors in the personal data we hold about you. We will not be responsible for relying on inaccurate or incomplete personal data arising from your not updating us of any changes in your personal data that you had initially provided us with. We also will not and do not have obligations to verify the accuracy or completeness of the personal data given by or on behalf of you. 

 

5. Provision by you of third party personal data

5.1. In the event that you provide us with personal data of any individual other than yourself, you represent, undertake and warrant to us the following:

5.1.1. For any personal data of third party individuals that you disclose to us, you have obtained the prior consent from such individuals to:

(a) Permit you to disclose the individuals’ personal data to us for the Purposes; and

(b) Permit us to collect, use, disclose and/or process the individuals’ personal data for the Purposes.

5.1.2. At our request, you will use such form(s) and document(s) provided by us in obtaining the required consent from the third party individuals in question;

5.1.3. Any personal data of third party individuals that you disclose to us are accurate and complete; and

5.1.4. For any personal data of third party individuals that you disclose to us, that you are validly acting on behalf of such individuals and that you have the authority of such individuals to provide their personal data to us and for us to collect, use, disclose and process such personal data for the Purposes.

 

6. Third Party Websites

6.1. This Policy only applies to the Site and information that we collect from you. The Site may contain links to other websites which are not owned, operated or maintained by us. When visiting these third party websites or disclosing your personal data to third parties, you should read their privacy policies, or ask relevant questions before you disclose your personal data. We are not responsible for the Processing of your personal data by such third parties.

 

7. Security and our storage of your personal data

7.1. To safeguard your personal data from unauthorised Processing, access, collection, use, disclosure, copying, modification, disposal or similar risks, we have administrative, physical and technical measures including up-to-date antivirus protection, encryption and the use of privacy filters to secure all storage and transmission of personal data by us, and disclosing personal data both internally and to our authorised third party service providers and agents only on a need-to-know basis.

7.2. You should be aware, however, that no method of transmission over the Internet or method of electronic storage is completely secure. While security cannot be guaranteed, we strive to protect and take steps to protect the security of your personal data. 

 

8. Retention of Personal Data

8.1. We may retain your personal data for as long as it is necessary to fulfil the purpose for which it was collected, or as required or permitted by applicable laws.

8.2. We will cease to retain your personal data, or remove the means by which the data can be associated with you, as soon as it is reasonable to assume that such retention no longer serves the purpose for which the personal data was collected, including but not limited to legal, tax and/ or audit purposes and the Purposes set out above.

8.3. As general guidance (without binding effect on us), your personal data may be retained in our client database:

8.3.1. If you are a “client” (i.e. you have already purchased a Dior product): for no more than 10 years after your first purchase (but no more than 5 years for marketing development purposes); this period will be renewed each time you interact with PCD or the LVMH Group(e.g. when making a purchase).

8.3.2. If you are a “prospect” (i.e. you have never purchased a Dior product but you are interested in the Dior brand): we keep your data for 5 years; this period will be renewed each time you interact with us (e.g. when participating in an event or providing your personal data via or through the Site).

8.3.3. If you have given consent to the processing of your personal data for market research purposes in the field of cosmetics and statistical analyses, for the purpose of improving the understanding of the skin for the development of Dior fragrances and cosmetic products: for a duration of 10 years from the collection date of your personal data.

8.3.4. If you are in contact with the Company or the LVMH Group’s public relations employee/s, department or representative: for no more than 10 years after initial contact; this period will be renewed each time you interact with PCD or the LVMH Group (e.g. when requesting information from the House of Dior or an affiliate of the LVMH Group).
 

 

9. Your rights regarding your personal data that is collected and processed by us

9.1. If you wish to make an access request for access to a copy of the personal data which we hold about you, information about the ways in which we use or disclose your personal data, a withdrawal of any consent that you have given us at any time, or a correction request to correct or update any of your personal data which we hold about you, you are welcome to contact us through the contact details below.

9.2. We will use our reasonable commercial endeavour to respond to your request as soon as reasonably practicable. Should we not be able to respond to your request within thirty (30) days after receiving your request, we will inform you. If we are unable to provide you with any personal data or to make a correction requested by you, we will use our reasonable commercial efforts to inform you of the reasons why we are unable to do so (except where we are not required to do so under the PDPA or in our reasonable view, those reasons contain or pertain to confidential information or business secrets of the Company and/ or the LVMH Group).

9.3. Please note that a fee may be charged for your access request if and to the extent permitted by laws in Singapore. If so, we will inform you of the fee before processing your request.

 

10. Our Contact Information

10.1. You may direct your requests and enquiries to us regarding your personal data in the following ways:
10.1.1. By Email - must be made to our Customer Service team at following address: contact@dior.com.sg or to the Data Protection Officer of LVMH Fragrances & Cosmetics (Singapore) Pte Ltd at the following address: vchou@sg.lvmh-pc.com; 

10.1.2. By Telephone - must be made to our Customer Service team at the following telephone number: +65 9669 3141; 

10.2. All requests and enquiries will first be evaluated by us, including an assessment as to whether such requests and enquiries are generated by a genuine user of the Site, or data subject who is a natural person. After we have completed our evaluation and have satisfied that the requests and enquiries are not, or are not likely to be, spam messages, phishing attempts or other potential fraudulent or illegal activities, our Customer Service team will respond to the initial contact person. 

 

11. Governing Law

11.1. This Policy is prepared pursuant to the PDPA and governed by the laws of Singapore.

 

12. Effect of this Privacy Policy

12.1. This Policy applies in conjunction with any other notices, contractual clauses and consent clauses that apply in relation to the collection, use and disclosure of your personal data by us. If there is a formal written and executed contract between the Company and you (“Formal Agreement”) and to the extent of any inconsistencies between that Formal Agreement and the terms of this Policy, the terms of the Formal Agreement will prevail to the extent permitted by the PDPA or other laws in Singapore. 

 

13. Special Provision: Customer Identity and Access Management, or equivalent Management System, Platform, Tools and Database Operated, Managed or Accessible by the Company or the LVMH Group (“CIAM”)

13.1 Without limiting any other provisions of this Policy, your personal data may be Processed and/ or transferred outside of Singapore for purposes relating to CIAM, which is primarily aimed at the Company’s overall enhancement of customer service and Dior product offerings - in connection of CIAM, your personal data may be used and processed for the following purposes (non-exhaustive): 

 

• Security and prevention of misuse of services; 
• Detecting or preventing illegal activities (e.g. fraud, money laundering) or threats to physical safety and security, IT and network security; 
• Preventing of misuse of services; 
• Carrying out other necessary corporate due diligence; 
• Improving, enhancing or developing new goods or services;
• Improving, enhancing or developing new methods or processes for business operations in relation to the organisations’ goods and services;
• Learning or understanding behaviour and preferences of individuals (including groups of individuals segmented by profile); 
• Identifying goods or services that may be suitable for individuals (including groups of individuals segmented by profile) or personalising or customising any such goods or services for individuals; and/ or
• Improving, enhancing or developing new goods or services. 

13.2 We will endeavour to take steps to analyze and satisfy ourselves that our use of personal data for the business improvement purpose is one that a reasonable person would consider appropriate in the circumstances.

 

14. Specific Provisions on Consent and Exceptions

14.1 We will use our best commercial endeavours to obtain your consent (express or implied) whenever we have to collect, process, use or store your personal data. However, if due to business impracticalities or other reasons, we are unable to obtain your consent, we will rely on exceptions under the laws of Singapore, including the below exceptions under the PDPA as the legal bases permitting our collection, use, transfer, Processing and/or disclosure of your personal data without your consent or explicit consent (as applicable): 
14.1.1  Legitimate Interests Exception 
We will rely upon this exception for the below purposes (non-exhaustive): 
• Security and prevention of misuse of services; 
• Detecting or preventing illegal activities (e.g. fraud, money laundering) or threats to physical safety and security, IT and network security; 
• Preventing of misuse of services; and/ or 
• Carrying out other necessary corporate due diligence.  
14.1.2  Business Improvement Exception
We will rely upon this exception where the use of the personal data falls within the scope of any of the following business improvement purposes:
• Improving, enhancing or developing new goods or services;
• Improving, enhancing or developing new methods or processes for business operations in relation to the organisations’ goods and services;
• Learning or understanding behaviour and preferences of individuals (including groups of individuals segmented by profile); 
• Identifying goods or services that may be suitable for individuals (including groups of individuals segmented by profile) or personalising or customising any such goods or services for individuals; 
• Improving, enhancing or developing new goods or services; and/ or
• Relating to CIAM provided by a subsidiary of the LVMH Group
Further, the Business Improvement Exception also applies to the sharing of personal data (i.e. collection and disclosure) between us and other entities belonging the LVMH Group, for the following business improvement purposes:
• Improving, enhancing or developing new goods or services;
• Improving, enhancing or developing new methods or processes for business operations in relation to the organisations’ goods and services;
• Learning or understanding behaviour and preferences of existing or prospective customers (including groups of individuals segmented by profile);
• Identifying goods or services that may be suitable for existing or prospective customers (including groups of individuals segmented by profile) or personalising or customising any such goods or services for individuals; and/ or 
• Relating to CIAM provided by a subsidiary of the LVMH Group
In relying on the Business Improvement Exception, we will take steps to analyze and satisfy ourselves that a) the business improvement purpose cannot reasonably be achieved without using the personal data in an individually identifiable form; and b) Our use of personal data for the business improvement purpose is one that a reasonable person would consider appropriate in the circumstances.    

EFFECTIVE DATE: [September 2024]
LAST UPDATED: [September 2024]

Statement relating to the protection of your personal data collected in the context of recruitment

This Privacy Statement for Candidates (hereinafter the “Privacy Statement”) is intended to provide visitors and users (“You”) of the www.dior.com website, as well as of all the Dior’s websites with .com, .it, .ru, .co, .jp, .cn domain names suffixes (hereinafter collectively the “Website”) with information relating to how the Maison Parfums Christian Dior (hereinafter “Parfums Christian Dior” or “We/Us”) processes your personal data (hereinafter the “Personal Data” or “Data”) and about your rights in this respect.

Parfums Christian Dior places the highest priority and takes the utmost care to protect your Personal Data.

 

1. Who are we? Who is the Data Controller of your Personal data?

During your recruitment experience, and in order to inform you in advance, the Data Controller will be Parfums Christian Dior within the meaning of the regulations applicable to personal data and in particular with regard to article 24 of the Regulations (EU) 2016/679 (hereinafter "GDPR").

As an example, referring to some of the Maison iconic products:

• J’adore

• Miss Dior

• Capture Total

Parfums Christian Dior S.A. (head office), a public limited company under French law with its head office located at 33 avenue Hoche, Paris 8, France, registered with the Paris Trade and Companies Register under number 552 065 187 and represented by Laurent Kleitman in his capacity as President Director General Parfums Christian Dior,

And all Parfums Christian Dior affiliates

The Dior soul is expressed in each of the Maison's products and in the attention paid to each stage of their manufacture. From Grasse in Paris to the Jardins Dior, Parfums Christian Dior sublimates the finest materials so that each of its creations contributes to its aura around the world.

2. What is a “personal data”?

Personal Data refers to any information or pieces of information that could identify You either directly (e.g. your name, surname, email, home address, etc.) or indirectly (e.g. through pseudonymized data, such as a unique ID number, etc.). It may also include unique identifiers like your computer’s IP address.

3. Why and how do We use the Personal Data that We collect?

3.1 How do We collect your Personal Data?

 We collect your Personal Data as follows:

• directly from You when You use our Website and our services (completion of various forms on the Website, direct communication with Us through our institutional departments, etc.);

• automatically when You access or use the Website (technical details, IP address, browsing information, etc.).

3.2 What Data do We collect?

We collect several types of Personal Data about You:

 Personal Data that We collect directly from You

We collect Personal Data that You provide directly when You use our Website.

This is specifically the case when You:

• interact with Us through the contact forms,

• register to receive our newsletters or institutional documentation,

• apply to job offers.

The categories of Personal Data that We collect include:

• Identification and contact information: e.g., last name, first name, mailing address, contact details needed to identify You when You interact with Us,

• Application information: e.g., last name, first name, email address, telephone number, professional experience and all the information You provide by sending your application and/or your curriculum vitae: photo, skills, education level, spoken languages, salary expectations, home address, hobbies, family status, etc.  We only collect and store this Data in connection with the management of our own job offers and do not use them for any other purposes, including for commercial purposes.

Personal Data that We collect automatically

We automatically collect certain Data about You when You access or use the Website, specifically:

• Technical information: We collect information about the device that You use to login, as well as your use of the Website (g., operating system, type of browser used, whether a proxy is used, location of the device inferred from your IP address that identifies your computer, access time, accessed pages and the link that enabled You to access our Website),

• Browsing information: We use tracking technologies to collect Data about You when You use our Website.

3.3 On what legal grounds and for which purposes do We use the Data that We collect?

 In accordance with current personal data protection regulations, We only collect Personal Data when We have a legal basis to do so.

Personal Data is collected either:

        i.          based on pre-contractual measures

       ii.          based on your consent,

      iii.          in our legitimate interest, or

     iv.          to meet our legal obligations.

(i) We collect your Personal Data on the basis of pre-contractual measures, in particular in the context of the processing of applications (CV and motivation letter) and management of interviews.

(ii) We collect Personal Data based on your consent, for the following purposes: 

• Share opportunities that can match your profile and keep you up to date on the life of Maison Dior,

 (iii) We collect Personal Data based on our legitimate interest, for the following purposes:

• ·        to manage your requests and queries: We use your Data to send You the information You request,

• to defend our interests in the event of a dispute or court action,

• to manage cybersecurity of the Website,

• to prevent fraudulent acts in order to ensure the security of our assets and contents.

(iv) We may also store your Personal Data when the law requires Us to do so or to defend our legal rights.

3.4 Who has access to your Data? 

3.4.1 Accessibility within Parfums Christian Dior

Your Data is processed by the Maison Parfums Christian Dior for the purposes described above and are only accessible to Parfums Christian Dior personnel who need to know it to perform their duties.

In this respect, your Personal Data is processed by the following departments of the Maison Parfums Christian Dior and/or other Maisons of the LVMH Group:

• Parfums Christian Dior Institutional Communication Department and Financial Communication Department for the management of your requests and queries, as well as to send You newsletters;

• Parfums Christian Dior Human Resources department to manage your applications to job offers;

• Parfums Christian Dior Security Department to manage cybersecurity of the Website;

• Parfums Christian Dior Fraud and Legal Departments to manage fraudulent acts or legal claims if any.

3.4.2 Accessibility by third parties

Certain third parties may have access to your Data, specifically:

(i) our subcontractors and service providers acting for technical and logistical reasons (carriers, Website hosting, security and maintenance providers, fraud management service providers, technical service providers responsible for sending e-mails and newsletters, anti-spam and anti-bot services, recruitment agencies which may provide Us with advice on the management of our candidates’ databases and help with the selection of profiles within such databases, etc.);

(ii) other LVMH Group affiliates for recruitment purposes: when you apply to an LVMH Group affiliate’s job offer, this affiliate collects and processes your Data as independent data controller. In such case, your Data will be processed according to this affiliate’s personal data protection policy, which You may obtain by contacting it directly. Likewise, the rights You enjoy pursuant to personal data protection laws must be directly enforced against it;

(iii) any authority, court or other third party when disclosure is required by law, regulations or a judicial decision, or if such disclosure is necessary to protect and defend our rights.

3.5 Is any Personal Data transferred outside of the European Economic Area?

Your Data is processed in France by the Maison Parfums Christian Dior. However, We may rely on certain service providers, which are located abroad or which themselves rely on processors located abroad, including outside of the European Economic Area (EEA) in countries where personal data protection laws differ from those that apply in the EEA.

With reference to the data relating to applications, the LVMH Group has adopted binding corporate rules ("BCR") which the French Supervisory Authority (the CNIL) has declared to be compliant with current legislation and suitable for offering an adequate level. of protection in case of data transfer within the Group, also outside the European Economic Area.

3.6 How long do We store your Data?

Data is stored as long as required for the purpose for which it was collected and, in any case, will be destroyed at the end of such period.

Please see the list below for additional details about these periods.

Any transfer of your Data outside of the EEA will take place with appropriate safeguards in place that comply with applicable personal data protection regulations. Upon request, We will provide You with a copy of applicable safeguards.

• Purpose: Management of your requests and queries

• Data categories: Identification Data (last name, first name, mailing address, contact details needed to identify You when You interact with Us).

• Period of storage before erasure: Duration required to manage your requests and queries. Your Data will then be either deleted or anonymized, unless we need to keep it to meet our legal obligations for the applicable statutory retention period.         

 

• Purpose: Sending You our newsletters

• Data categories: Your email address

• Period of storage before erasure: Duration of your subscription. Then, the Data will be destroyed or anonymized.

 

• Purpose: Management of your applications to job offers

• Data categories: Application information

• Period of storage before erasure: Duration of two (2) years from when the Data has been provided or from the last contact with You. At the end of this 2-year period, Parfums Christian Dior may contact You to know whether You want Parfums Christian Dior to keep retaining your Personal Data, for the purpose of informing You of an opportunity that may arise and match your career aspirations and skills. In any event, your Data will be erased at your request, within a maximum period of 1 month from your request.

 

• Purpose: Security of the Website

• Data categories: Technical information of your device (IP address, device type, browser ID, etc.)

• Period of storage before erasure: 6 months, then the Data is either deleted or anonymized.

 

• Purpose: Disputes/complaints

• Data categories: Data concerning the dispute/complaint

• Period of storage before erasure: Duration of the complaint + 5 years from the complaint.

• In the event of a court action: duration of proceedings through full enforcement of the legal decision or settlement agreement

4. What are your rights in relation to your Data?

 4.1 Access, rectification and portability

 In accordance with current regulations, You have the right to access your Data. You may also request correction of Your Personal Data should they be inaccurate. Depending on the purpose of processing, You also have the right to have incomplete Personal Data completed.

To respond to your request, We may ask You to provide Us with a proof of your identity. We may also need to ask You for additional information or supporting documents. We will make every effort to respond to your request as soon as possible.

You may, to the extent provided for by law, exercise your right to Data portability which allows You to retrieve, in an interoperable format, the Personal Data that You provided to Us.

4.2 Right to erasure of your Data and to limitation of the processing of your Data

 You may request erasure of your Personal Data if:

• You believe that our processing of your Personal Data is no longer needed for the purposes described in this Privacy Policy,

• You believe that the processing is unlawful or You contest the accuracy of the Data We process about You,

• You withdrew your consent to the processing of your Data.

Alternatively, to the extent provided for by law, You may request limitation of the processing of your Data.

Please note that despite the exercise of your right to erasure or processing limitation, We will store some of Your Personal Data when the law requires Us to do so, or to exercise or defend our rights.

4.3 Right to establish instructions for the management of your Personal Data after your death

For France and when mandatory local provisions so provide, You may determine how You want Us to handle your Personal Data upon your death.

4.4 Procedure to exercise your Data protection rights

Vous pouvez exercer vos droits en matière de protection des Données selon les modalités suivantes ou si vous avez des questions ou réclamations concernant le traitement de vos données personnelles.

• by using the following email address: gdpr_hr@diormail.com

• by using the following contact form: https://www.dior.com/en_gb/contact-parfum

• by mail at the following address: Data Protection Officer, Parfums Christian Dior, 190 avenue Charles de Gaulle, 92200 Neuilly sur Seine, France.

You also have the right to contact Dior’s lead Supervisory Authority, the CNIL, at any time in order to file a complaint against Dior’s data protection and privacy practices. The CNIL can be contacted by using

the following information:

Commission Nationale de l'Informatique et des Libertés – CNIL

3 Place de Fontenoy
TSA 80715 - 75334 Paris, Cedex 07
Phone. +33 1 53 73 22 22
Fax +33 1 53 73 22 00
Website: http://www.cnil.fr/

 

We also wish to inform you about the contacts of other authorities in Europe that you can find and contact on the website of the European Data Protection Board: https://edpb.europa.eu/about-edpb/board/members_en

When the processing of your Data is based on your consent (e.g., subscription to the newsletter), You may withdraw your consent at any time without justification. This right can be exercised by changing your options regarding subscriptions to our newsletters by clicking on the hyperlink provided for this purpose in each email We send You.

5. How is your Personal Data secured?

Parfums Christian Dior uses technical and organizational measures that comply with French and EU legal and regulatory requirements, to keep your Data secure and confidential. Under written agreements, Parfums Christian Dior requires its service providers and processors to provide safeguards and implement sufficient security measures to protect the Personal Data they have agreed to process, in accordance with applicable requirements under personal data protection laws. However, Parfums Christian Dior does not control all risks related to the operation of the Internet and draws your attention to the inherent risks of using any website.

6. Third party websites

There may be links to third-party websites (such as LVMH Group affiliates’ websites) that We do not control, and which are governed by their own confidentiality and personal data protection policies. This Privacy Statement does not apply to third-party websites. Please review the confidentiality and personal data protection policies of the third-party websites that You visit to understand how they process your Data. Parfums Christian Dior shall not be liable for any use of your Data by any third parties.