EU Regulation 679/2016 General data protection regulation
• allow the Site to function properly and provide the related services;
• carry out aggregate statistical analyzes to understand and improve the user's browsing experience (eg count the number of visitors to the Site; check how successful a specific advertising campaign has been; understand how popular a product or service is; etc. .), as well as
• analyze the preferences and navigation of users who visit the Site to send advertising in line with their preferences and personalize the contents.
The following information refers both to the use of "cookies" and to other tracking tools that may be used (unless otherwise indicated). For convenience we will use the term "cookie" to refer to all the different tracking technologies, unless expressly indicated otherwise.
Pursuant to Article 13 of EU Regulation 2016/679 General Data Protection Regulation (the "Regulation") and Directive 58/2002 ss.mm.ii., COIN S.p.A., as Data Controller ("COIN" ), provides the following information.
1. What are cookies
Cookies are text files that are sent from a web server (ie the computer where the visited website is "hosted") to the user's browser (Microsoft Edge, Mozilla Firefox, Google Chrome, Opera, Safari, etc.) and stored in the device, fixed or mobile (computer, smartphone, tablet), used for user navigation. The cookie (but possibly also another tracking tool) allows the Site to identify the user's device, through the information stored in it, every time the same reconnects to the Site through that device.
Cookies can be "session" (when they are stored exclusively for the duration of the browsing session on the Site and are deleted when the browser is closed), or "permanent" (they are stored for a longer time, until they expire or until cancellation by the user). Furthermore, cookies or other tracking tools can be either "first party" (when they are created and used only by the owner of the website that issued them and are not transferred to third parties) or "third parties" (when are issued and managed by parties other than COIN).
An example of other tracking tools are "tracking pixels", small fragments of code integrated into the website which, once downloaded to the user's browser, allow the social media provider (eg Facebook) to monitor the user's session. , collecting data for analysis and user profiling purposes.
2. What types of cookies (or tracking tools) does COIN use
Cookies and technical or necessary tools
COIN uses technical cookies to allow normal and efficient navigation and use of the Site.
Through their use it is possible for us to facilitate the user's navigation within the Site, for example by remembering the data provided by the user when filling in forms on the Site (so-called user input cookie), to recognize the user after he has made log-in to the Site (so-called authentication cookies), to customize the Site interface based on the preferences indicated by the user, etc.
These cookies can be both first-party and third-party and do not require the acquisition of the user's prior and express consent as they are strictly necessary to provide the service requested by the user of the Site.
Analytical cookies, including those of third parties, make it possible to understand how the Site is used by users (eg number of visitors, pages visited, time spent on the Site, etc.); these cookies do not collect information on your identity or any personal data. The information is processed in an aggregate and anonymous form through the use of partial IP obscuring mechanisms. These cookies do not require the acquisition of the user's prior and express consent.
Profiling (or marketing) cookies
These are cookies or other tools aimed at creating profiles relating to the user, for example in order to send advertising messages consistent with the user's preferences (e.g. thanks to the use of these cookies, the user will be able to view advertising content of the products in which he has expressed an interest also on other sites). These cookies and tracking tools can be both first and third party, session or permanent.
Other tracking tools (e.g. Facebook pixels) also work in similar ways (e.g. allowing the user to view advertisements on the social network).
The use of these cookies and tools requires the express and informed consent of the user. Consent will be required only at the first access to the Site: subsequently, thanks to the use of a technical cookie, we will store the consent given / denied to allow direct access at the next access to the Site (see point 4).
Third party cookies
The Site uses both cookies and so-called tracking tools. "First party", ie issued by COIN and the Site, which cookies and tracking tools c.d. "Third party" (eg. Google Analytics; social network cookies; etc.), or tools that are issued and managed by parties other than COIN.
In some cases, on the Site it will also be possible to find social buttons / widgets (social plug-ins), or those particular "buttons" depicting the icons of social networks such as Facebook, Instagram, Twitter, etc. These buttons allow users who are browsing the site to reach and interact directly with social networks with a "click". (see point 6 for more information).
3. Details of the cookies and tracking tools used by the Site
The details of the cookies and tracking tools used by the Site can be verified by:
- selection of the "Show preferences" button present in the information "banner"; or
- using the icon at the bottom right present in all the screens of the Site.
Within the "Cookies preferences" area, by selecting "details" you can check the list of cookies / tracking tools used with an indication of (i) name, (ii) supplier, (iii) purpose and type, (iv ) duration / expiration and (v) the relative coding.
The following information is collected and stored through the cookies used on the Site: the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and IT environment.
From a technical point of view, cookies (transmitted by the domain www.coin.it) contain the following information: a numeric ID that uniquely identifies COIN and a numeric ID that identifies the user (who browses the Site ), both stored in the COIN database; a numeric ID that uniquely identifies the navigation (so-called "record") of the user within the COIN database; a pseudo-random alphanumeric session ID automatically deleted from the browser when it is closed (session cookie).
4. Your consent
By accessing the Site, the user displays a warning "banner" relating to cookies and other tracking tools that may be used.
The banner provides summary information to allow the user to understand which cookies / tools are used and for what purposes; in addition, by using the "Show preferences" button, the user can also check in detail which types of cookies and tools are used.
The user can therefore freely choose whether and which cookies and other tracking tools to authorize.
The banner will be displayed only at the first access to the Site: subsequently, thanks to the use of a technical cookie, we will memorize whether the user has given or denied consent to allow direct access to the pages of the Site without having to display the "banner" again , except in particular cases (e.g. if the user deletes the cookies, if it is necessary to update users about the cookies used, etc.).
Still using the icon at the bottom right, it is possible to check which consents have been given or denied, and then modify them.
5. Deactivation / deletion of cookies via web browser
In any case, it is possible to deactivate / activate or delete cookies at any time by using the settings of your web browser. In particular, if you wish not to receive cookies, you can set your browser in such a way as to be warned of the presence of a cookie, thus being able to decide whether to accept it or not; you can also automatically refuse all cookies by activating the appropriate option in the browser. It is also possible to delete specific cookies that have already been stored in the browser, or to block the storage of cookies on the computer by specific websites, or to block third-party cookies.
Each browser (Firefox, Chrome, Edge, Safari, Opera, etc.) has its own cookie management method: in the settings or preferences panel it is possible to modify / manage the parameters relating to cookies and / or proceed with their cancellation.
To do this, it is necessary to consult the information contained in the user's manual of the browser (so-called Help Page) or click on the following links:
Please note that some tracking tools other than cookies (e.g. pixels) may not be disabled through the browser settings. These tools will in any case be disabled by denying / revoking consent within the information banner or by using the icon button at the bottom right on all pages of the Site.
You can also manage your cookie preferences on http://www.youronlinechoices.com.
6. Who will have access to the data
The data collected through cookies and other tracking tools will not be disclosed to the public and will be processed by persons specifically authorized for processing under COIN (in particular in the E-Commerce Department).
In order to manage the Site and, if the user provides consent, to analyze his preferences, navigation and allow you to view content and promotional ads that may be of greater interest, the data will be processed by (i) companies in charge of management of the Site, as well as (ii) by the Information Technologies Department of the company OVS S.p.A. responsible for managing our information systems; (iii) IT service providers (Bcame). These subjects will operate as Data Processors designated by COIN.
6.1 Social networks
The data relating to navigation within the Site may be transmitted to social networks (such as Facebook, Instagram, etc.) for example:
(i) to allow you to log in through the social network (e.g. when the user chooses to log in to his reserved area of the Site using Facebook, an exchange of data takes place between the social network and the Site to allow user recognition and authentication);
(ii) or to allow the sharing of contents on social networks (e.g. if the user uses the sharing function - so-called social plug-in - it will be possible to publish, and therefore share, within his social profile the contents of interest);
(iii) or to display promotional and advertising content when visiting social networks (eg the social network may display advertisements relating to COIN and the products that have been viewed on the Site). The data relating to the user's navigation within the Site and collected through cookies or other tracking tools will then be shared with the social network which, by identifying the user, will display advertising content, then providing COIN with statistics on the advertising campaigns carried out.
For these treatments, the social networks will process the data - as joint data controllers (Article 26 of EU Regulation 679/2016 - "GDPR") - within the limits necessary to allow - for example - the log-in to the Site, or to share content on their social page or to display news / advertising relating to COIN.
Below is some information regarding the processing carried out by the social networks present on the Site:
Facebook (eg Facebook, Instagram, etc.) The joint controller is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2 Ireland.
A joint ownership agreement (Article 26 of the GDPR) regulates the processing of personal data carried out by means of the tracking tools provided by Facebook and present on the Site: the agreement defines the respective responsibilities regarding compliance with the obligations established by the GDPR in relation to joint processing. A copy of the agreement is available at the following link: https://it-it.facebook.com/legal/controller_addendum
Facebook, on the other hand, is the independent owner of the processing of user data carried out subsequently. As the owner, Facebook is responsible for providing data subjects with information relating to the processing carried out or allowing the exercise of privacy rights (Article 15 - 22 of the GDPR).
For these purposes, the data relating to the user's navigation within the Site and collected through cookies or other tracking tools are shared with Facebook.
Details on how Facebook processes data, the relative legal bases of the processing and how to exercise the privacy rights recognized by the GDPR towards Facebook are available at https://www.facebook.com/about/privacy.
The Data Protection Officer of Facebook (so-called Data Protection Officer) can be contacted at: https://www.facebook.com/help/contact/540977946302970
For more information on the processing carried out by social networks, we invite you to also check the privacy information provided by your social network (also by using the icon at the bottom right present in all the screens of the Site it is possible to view the list of cookies / tracking tools used on the Site and the related links to the respective information).
7. Transfer of data outside the European Union
The Data collected through the cookies and tracking tools used by the Site are not generally transferred abroad, as the treatments are carried out through suppliers who use servers located in the European Union (or the European Economic Area).
The data collected using cookies and other social network tracking tools will instead be transferred outside the European Union (eg to the United States): in particular, the data collected through the Site are transferred by Facebook. The applicable privacy legislation provides that specific consent to the transfer is not necessary when it is carried out to a country that guarantees an adequate level of protection (Article 45 of the GDPR) or on the basis of the adoption of adequate guarantees (Articles 46 and 47 of GDPR), and, in particular, on the basis of the adoption of binding rules for groups of companies or the adoption of contractual clauses approved by the European Commission: the transfer made by Facebook is governed by these contractual clauses (see https: / /www.facebook.com/help/566994660333381?ref=dp).
By simple request to ecommerce@ coin.it you can receive more information on the transfer of data and on the guarantees provided for their protection as well as on the means to obtain such data or the place where they were made available.