WHY THIS INFORMATION

This information is provided in compliance with the European Union and national regulations dictated, respectively, by the “European Regulation 2016/679 on the protection of individuals with regard to the processing of Personal Data and on the free movement of such data” (hereinafter “GDPR“) and by Legislative Decree no. 196/2003 and ss.mm. ii. (the so-called Privacy Code).

In this sense, this page aims to describe the methods for processing the personal data of users consulting the CANOVA S.r.l. website (hereinafter also referred to as ‘Data Controller‘ or ‘Canova‘).

DATA CONTROLLER

The data controller is CANOVA S.r.l., with registered office in Via Emilia 2750 – 47020, Longiano (FC).

Holder’s e-mail address: privacy.canova@apofruit.it.

MODE OF TREATMENT

The Controller takes appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of personal data.

Processing is carried out by means of computer and/or telematic tools, with organisational methods and logic strictly related to the purposes indicated. In addition to subjects involved in the Data Controller’s organisation (administrative, sales, marketing, legal, system administrators), in some cases, some external subjects (such as third party technical service providers, hosting providers, IT companies, communication agencies, etc.) may also have access to the data, appointed, if necessary, as Data Processors by the Data Controller.

The updated list of Data Processors can always be requested from the Data Controller.

LEGAL BASIS FOR PROCESSING

The Controller processes personal data relating to the user if one of the following conditions exists:

  • the user has given consent for one or more specific purposes to such processing;
  • the processing is necessary for the performance of a contract with the user and/or the execution of pre-contractual measures;
  • processing is necessary to comply with a legal obligation to which the Controller is subject;
  • processing is necessary for the pursuit of the legitimate interest of the Controller or of third parties.

However, it is always possible to ask the Data Controller to clarify the concrete legal basis of each processing and in particular to specify whether the processing is based on law, required by a contract or necessary for the execution of pre-contractual measures.

TYPES OF DATA PROCESSED AND PURPOSES OF PROCESSING

  1. Navigation data

The computer systems and software procedures used to operate this site acquire, in the course of their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.

This category of data includes the IP addresses or domain names of the computers and terminals used by the users, the URI/URL (Uniform Resource Identifier/Locator) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.

These data, necessary for the use of web services, are also processed for the purpose of:

  • obtain statistical information on the use of the services (most visited pages, number of visitors per time slot or per day, geographical areas of origin, etc.);
  • monitor the proper functioning of the services offered.
  1. Data communicated by the user

The optional, explicit and voluntary sending of messages to the contact addresses of the Owner, private messages sent by users to official profiles/pages on social media (where this possibility is foreseen), as well as the filling in and forwarding of forms present on Canova S.r.l. websites, entail the acquisition of the sender’s contact data, necessary in order to respond, as well as all the personal data included in the communications.

Specific disclosures will be published on the pages of the Controller’s website set up for the provision of certain services.

  1. Cookies and other tracking systems

Cookies are small text files that websites visited by users send to their devices, where they are stored in order to be retransmitted to the same sites on each subsequent visit via the same device. In addition, this site may allow the transmission of so-called “third party” cookies, i.e. those generated by websites other than the one the user is visiting (through objects on it such as banners, images, maps, sounds, specific links to web pages of other domains).

Depending on their duration, a distinction is made between session cookies (i.e. those that are temporary and automatically deleted from the terminal at the end of the browsing session by closing the browser) and persistent cookies (i.e. those that remain stored on the terminal until they expire or are deleted by the user).

Cookies have several purposes. They are firstly used to transmit communication or to provide the service requested by the user; more specifically, they enable and optimise the operation of the website, perform computer authentication and prevent abuse, monitor sessions, improve the user’s browsing experience, for example by keeping the connection to reserved areas active while browsing through the pages of the site without the need to re-enter the User-Id and password and by storing specific information about the users themselves (including preferences, type of browser and computer used). They may also be used (anonymously, if third-party) to carry out aggregate analysis of how the site is functioning, the number of users and how they visit the site.

 

The aforementioned cookies are called ‘technical’ (no user consent is required for their use), as without them some of the aforementioned operations could not be performed or would be more complex and/or less secure.

On the other hand, if cookies are used for further purposes, typically for analysing behaviour and sending personalised promotional/advertising messages (so-called “profiling” cookies) or even only to obtain, by means of services rendered also by third parties, information in aggregate form on the number of users and on how they visit the site (so-called “analytics cookies”), the user’s consent is required (unless the third-party analytics cookies have been anonymised).

This site may use session cookies and persistent cookies.

The types of cookies directly generated by this site owned by Canova S.r.l. are:

  •  to keep track of the number of failed logins by identifying possible abuses in authentication and preventing fraud); d) customisation of the user interface (e.g. to record the preferences expressed by the user such as language, currency, page display format, connection area); f) the correct functioning of the connection (e.g. by routing user requests between several servers in an appropriate manner).
  • profiling’ cookies, i.e. cookies that allow the collection of information relating to the user experience, purchases made and the use of Internet content by users/visitors of this site in order to identify consumption habits and thus personalize contents and advertisements, send users/visitors advertising in line with their preferences, measure the effectiveness of advertising messages and adopt consequent commercial strategies. Before these cookies are sent to the terminal and, therefore, before starting to process data for these purposes, Canova S.r.l. collects the user’s/visitor’s consent in the following ways: clicking on the “accept” button inside the banner containing the first summary information or personalized cookie consent management through the dedicated management panel, which can be reached inside the banner. In the event that the “X” button located at the top right inside the banner is clicked, the user/visitor will deny consent to all profiling cookies. Consent is traced by sending a special technical cookie to the browser, which guarantees the integrity of the user’s choices and traceability to this Site. Canova S.r.l. may entrust the installation and management of profiling cookies, for which consent must be collected, to technical suppliers (appointed by Canova S.r.l. as data processors).
  • analytics cookies, Canova S.r.l. uses them to collect aggregate/statistical information on the number of users and how they visit this Site. Specifically, the Google Analytics service provided by the company Google LLC and Adobe Analytics provided by the company Adobe Inc. are used, configured in such a way that these analytics cookies are equated with technical cookies, in accordance with the Guidelines of 10 June 2021 of the Privacy Guarantor.

The user/visitor may object to such processing, either by clicking the ‘X’ button at the top right-hand side of the banner, by accessing the dedicated management panel via the link available in the footer of each page of the Site domain, or by deleting cookies on their browser/terminal.

Unless consent is revoked, the user/visitor may receive promotional messages/content based on his interests until the profiling cookie expires. The aforementioned Canova S.r.l. profiling cookie will be stored on the device from the user’s/visitor’s last navigation event on this site; subsequently it will be automatically deleted from the device.

  • with regard to third party’ cookies, this site permits their transmission to the user’s device. Third parties” means companies with which Canova S.r.l. collaborates. Canova S.r.l., as a technical intermediary, sends these cookies, but does not have control and access to the information provided/acquired. For these cookies, it is possible to access the information and manage the consents of third parties by accessing the dedicated management panel.

Third-party cookies are of the following categories:

  • profiling cookies of advertising and e-commerce operators, who manage cookies to keep track of the activities or purchases that the user/visitor has made on this website (also coming from other websites), typically in order to (i) customise contents and ads and send advertising messages on the potential interests of the user/visitor on the websites of their affiliates; (ii) allow the correct attribution of commissions for the commercial transaction; (iii) measure the effectiveness of the advertising message and adopt consequent commercial strategies. These advertisers may also use geo-referencing data based on the user/visitor’s IP address in order to target geographically differentiated ads and content;
  • social media cookies, which manage cookies typically to enable, via plug-ins, the sharing of content between ‘logged in’ members of the same social network;
  • analytical cookies (also known as ‘performance cookies’) that allow third parties to carry out aggregate/statistical analysis of the operation and use of the Site and may retain the possibility of identifying the user/visitor.

Cookies can be managed by the user via their browser or from this site.

The user/visitor can manage his or her preferences concerning cookies through the functionalities present in common browsers (Internet Explorer, Mozilla Firefox, Google Chrome, Apple Safari), which allow to delete/remove cookies (all or some) or to change the settings of the browser itself in order to block the sending of cookies or to limit it to specific sites (as opposed to others).

Disabling cookies does not in itself preclude the use of the website services; however, if all cookies, including technical cookies, are deleted/blocked, certain operations could not be performed or would be more complex and/or less secure.

In relation to this site, the user may express his or her choices in relation to the profiling cookies sent by it via the dedicated management panel accessible from the banner, from the link in the footer of each page of the domain of this Site or by clicking here on Cookie Preferences.

We use technical and analytics cookies to ensure the proper functioning of the site.

RETENTION PERIOD

Data are processed and stored for the time required by the purposes for which they were collected.

Therefore:

  • Personal data collected to process user contact requests will be retained until a response is received;
  • personal data collected for purposes related to the performance of a contract between the Controller and the user will be retained until the performance of that contract is completed;
  • personal data collected for purposes related to the legitimate interest of the Controller will be retained until such interest is satisfied. The user may obtain further information regarding the legitimate interest pursued by the Controller by contacting him at the contact details indicated above.

When a specific processing is based on the user’s consent, duly informed of the same, the Controller may retain personal data for a longer period until such consent is revoked. Furthermore, the Controller may be obliged to retain personal data for a longer period in compliance with a legal obligation or by order of an authority.

At the end of the retention period, the personal data will be deleted. Therefore, upon expiry of this period, the right of access, cancellation, rectification and the right to data portability can no longer be exercised.

RECIPIENTS OF DATA

Under no circumstances will the data collected for the above-mentioned purposes be disseminated online or passed on to third parties, with the exception of any legal obligations and technical requirements related to the provision of the services requested.

RIGHTS OF THE INTERESTED PARTIES

Data subjects have the right to obtain from the Data Controller, in the cases provided for, access to their personal data and the rectification or erasure thereof or the restriction of processing concerning them or to object to processing (Art. 15 et seq. of EU Reg. 2016/679).

The appropriate application to the Controller shall be submitted by sending an appropriate communication to the following e-mail address: privacy.canova@apofruit.it.

Requests may be made free of charge and will be processed by the Holder as quickly as possible, in any case within one month.

RIGHT OF COMPLAINT

Interested parties who consider that the processing of personal data relating to them carried out through this site is in breach of the provisions of the European Union and national regulations have the right to lodge a complaint with the Garante for the protection of personal data, as provided for in Article 77 of the Regulation itself, or to take legal action (Article 79 of the Regulation).

CHANGES TO THIS POLICY

The Data Controller reserves the right to make changes to this privacy policy at any time by informing users on this page.

If the changes affect processing whose legal basis is consent, the Controller will collect the user’s consent again, if necessary.