USE OF PERSONAL DATA – MANAGEMENT OF FIRST-PARTY AND THIRD-PARTY COOKIES
The term “processing” of personal data covers the collection, recording, organisation, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, disclosure, cancellation, and destruction of data, or the combination of two or more of these operations.
The purpose of data processing is related to, aimed at, and necessary to the service provision, but it is also to collect general and particular data and information about the user’s preferences; send him or her commercial information and offers; send him or her advertising and information material; carry out commercial communications, also interactive; undertake direct activities of sales or placement of products or services, and carry out any other licit commercial and/or statistical activity.
Data is processed through automated tools that store, manage, and transmit data in a secure and confidential way. Data is stored by “Sartarelli s.a.” for the period of time required by the law and processed by its employees and/or a third party on behalf of “Sartarelli s.a.” under its direct supervision and responsibility. “Sartarelli s.a.” ensures and guarantees that sensitive data will not be processed in any way*. Giving consent to the processing of personal data for the aforementioned purposes is necessary. No service will be provided without consent.
We inform you that, pursuant to Article 7 of Italian Legislative Decree no. 196, dated 30 June 2003, the Customer has the right to object, in whole or in part, on legitimate grounds, to the processing of data and, according to the procedures and within the limits laid down in the current regulation, may request confirmation of the existence of said information, learn about its origin, obtain communication in an intelligible form, know the logic, methods, and purposes of data processing, ask for it to be updated, corrected, supplemented, or cancelled, or for its transformation into anonymous format, or to block any data processed in violation of the law, including any data considered not necessary to the purposes for which it was collected and, in general, exercise all the rights recognised by statutory provisions.
The Data Controller is Sartarelli s.a., with registered office at Via Coste del Molino, 24 – 60030 Poggio San Marcello (An) Italy. Any request, pursuant to Article 7 of Italian Legislative Decree 196/03, should be addressed to the same address or to firstname.lastname@example.org.
Cookies policy (extended version)
WHAT ARE COOKIES?
Cookies consist of portions of code installed in the browser and they ensure excellent use of the website according to the purposes described. Some of the purposes for which the Cookies are installed may also require the User’s consent. Cookies, which are usually found in large numbers in users’ browsers and which at times can also remain there for long periods, are used for various purposes: to execute IT authentications, monitor sessions, store information on specific configurations regarding the users who access the server, etc.
WHAT ARE THE MAIN TYPES OF COOKIES?
For the purposes of this provision, two types of cookies are identified: technical cookies and profiling cookies.
a. Technical cookies.
Technical cookies are used for the sole purpose of “carrying out the transmission of a communication over an electronic communications network, or as strictly necessary by the provider of the service of the information company explicitly requested by the subscriber or user to provide such a service” (Article 122, paragraph 1, of the Italian Legislative Decree 196/2003). They are not used for any other purpose and are normally installed by the website owner or operator. Technical cookies may be
- session or browsing cookies: they are necessary for the proper functioning and use of the website (e.g. purchases or accesses)
- analytics cookies: they are similar to technical cookies whenever they are used directly by the website operator to collect aggregated information about the number of users and about how they use the site
- functionality cookies: they allow the user to browse based on a set of selected criteria (for example, the language) in order to improve the service provided.
These cookies do not need the user’s consent.
b. Profiling cookies.
The purpose of Profiling Cookies is to create profiles concerning the user and they are used to deliver advertising relevant to the user by remembering his or her browsing preferences. Given the particularly invasive nature of these systems into the private lives of users, European and Italian legislation requires users to be properly informed about the use of these cookies and to express their valid consent to using them (Article 122 of the Privacy Code: “Storing information, or accessing information that is already stored, in the terminal equipment of a contracting party or user shall only be permitted on condition that the contracting party or user has given his or her consent after being informed in accordance with the simplified arrangements mentioned in Article 13, paragraph 3”.)
SESSION AND PERSISTENT COOKIES
Session Cookies contain information that is used in your current browser session. These cookies are automatically deleted when you close your browser. Nothing is stored on your computer after you have finished using the website (ASP.NET_SessionId and language).
Persistent Cookies (like ASPXANONYMOUS) allow websites to remember you on subsequent visits and to adapt accordingly. They remain for as long as the website has programmed them to last (from a few minutes to a number of years).
FIRST- AND THIRD-PARTY COOKIES
First-party cookies can be read by the site that created them.
Third-party cookies are created and can be read by domains other than the site and their data is stored with the third party.
We may also use other tracking technologies within our communications to you (for example to see if they have been read or opened or to see what content you interact with and what links you follow) so that we can better match future communications to your interests.
WHAT COOKIES WE USE AND HOW
Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the data collected to track and examine navigation and may share data with other Google services.
Google may use the data collected to personalize the ads of its own advertising network.
Personal Data collected: Usage data.
It is a service that allows you to view geographical maps, add them to a website, and show location information.
Personal Data collected: Usage data and GPS location (if the system is active)
Pinterest social widgets and “Pin it” button
These services are provided by Pinterest: they allow direct interaction between the website and the social network by making direct sharing of content and images easier on the board.Personal Data collected: Usage data
Facebook Like button and social widgets
These services are provided by Facebook: they allow direct interaction between the website and the social network by making content sharing and liking straight from the page.
Personal Data collected: Usage data
Vimeo video player
This service is provided by Vimeo: it allows direct interaction between the website and the social network by making direct sharing of content and posts easier.
Personal Data collected: Usage data
HOW TO MANAGE COOKIES IN A BROWSER?
The user can manage cookies from his or her browser’s settings. The procedure for the different browsers is on the following websites:
DATA SUBJECT’S RIGHTS
The Data Subject is entitled, at any time, to exercise the rights, by sending an e-mail to the Data Controller to email@example.com , in accordance with Article 7 of Italian Legislative Decree 196/2003, which is fully reproduced below.
ADDITIONAL INFORMATION ABOUT DATA PROCESSING
The User’s Personal Data may be used for legal purposes by the Data Controller in court or in the stages leading to possible legal action arising from its improper use or that of related services by the User.
The User is aware that the Data Controller may be required to disclose the Data at the instance of public authorities.
System Logs and Maintenance
For operation and maintenance purposes, this Application and any third party services may collect files that record interaction with this website (System Logs) or use for this purpose other Personal Data (such as IP Address).
Information not contained in this policy
More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time at its contact information.
The rights of Users
Users have the right, at any time, to know whether their Personal Data has been stored and can consult the Data Controller to learn about its contents and origin, to verify its accuracy or to ask for it to be supplemented, cancelled, updated or corrected, or for its transformation into anonymous format or to block any data held in violation of the law, as well as to oppose its processing on legitimate grounds. Requests should be sent to the Data Controller.
DEFINITIONS AND LEGAL REFERENCES
Personal Data (or Data)
Any information regarding a natural person, that is, or can be, identified, even indirectly, by reference to any other information, including a personal identification number.
Information collected automatically from this Application (or third party services employed in this Application), which can include: the IP addresses or domain names of the computers utilized by the Users who use this Application, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page), and the details about the path followed within the Application, with special reference to the sequence of pages visited, and other parameters about the device operating system and the User’s IT environment.
The individual using this Application, which must coincide with or be authorized by the Data Subject, to whom the Personal Data refers.
The legal or natural person to whom the Personal Data refers.
Data Controller (or Website Owner, or Owner)
The natural person, legal person, public administration or any other body, association or organization with the right, also jointly with another Data Controller, to make decisions regarding the purposes, and the methods of processing of Personal Data and the means used, including the security measures concerning the operation and use of this Application. The Data Controller, unless otherwise specified, is the Owner of this Application.
The hardware or software tool by which the User Personal Data is collected.
Small piece of data stored in the User’s device.