The Company uses cookies to offer a better and personalised web service. With this information, the Company informs about the methods and purposes for which it uses cookies on this website.


What are cookies, what are they for and who installs them?

Cookies are small text strings that the websites you visit send to your device (e.g., PC, tablet, smartphone) where they are stored and/or read by the browser and that allow the browser to send information to those who have installed cookies in order to offer you optimal browsing, produce statistics on visits, offer you personalised content and targeted advertising. Cookies are contained in various elements hosted on the page of the site itself (such as, for example, advertising banners, images, videos, etc.).

While browsing this site, the user can receive the following cookies on his/her device:

• first party cookies: cookies sent by the website of the Data Controller;
• third-party cookies: cookies sent by a site other than the one you are visiting, which installs its own cookies through the website of the Data Controller.

The Data Controller has the management and responsibility of first party cookies. The Data Controller has no control over third party cookies or the activity of the third party, or the possibility that the same modifies them over time.

In relation to third-party cookies, the Data Controller acts as an intermediary and, in this capacity, refers to the information of the third party, accessible through a specific link accessible from the banner.

Other tracking tools. In a similar way to cookies, other tracking tools are being developed that allow the same purposes to be pursued. These tracking tools can be classified according to a number of different criteria, however, the main criterion of grouping remains that of the purpose for which they are used: of a technical or commercial nature.


What is the purpose of this Cookie Policy?

In compliance with the provisions of current legislation on the protection of personal data (in particular Regulation (EU) 2016/679 on the protection of personal data "GDPR" and the legislation on European and Italian cookies), the Company informs about the processing of personal data collected through cookies (and possibly other tracking tools similar to them) also from third parties.

The processing will be based on the principles of fairness, lawfulness and transparency, as well as the protection of its confidentiality and the protection of its rights.


Who is the Data Controller? How can I contact the Data Controller?

The Data Controller of your personal data is PICCHI S.r.l., with registered office in Lumezzane (BS), Via Ruca, no. 318, registered in the Brescia Register of Companies REA n. 300690, Tax Code 01492950173 and VAT no. 00632680989, in the person of the pro tempore legal representative, Bugatti Stefano Giuseppe (hereinafter, the Data Controller). Its contact details are as follows: the postal address indicated above or the certified email address picchisrl@legalmail.it.

What cookies does this site use? For what purposes, on what legal basis? Is it mandatory to provide personal data? What happens if the user does not provide them?

The cookies used by this site can be classified according to the following categories: 1) Technical cookies, which are used to operate the site, and 2) Profiling cookies, which are used to track the user's behaviour to analyse it in order to offer services based on his/her preferences. Below are the related details:


1) Technical Cookies, which do not require consent

This category includes the cookies listed below, which pursue the purposes indicated, respectively:

• navigation or session cookies, which are used to ensure the normal navigation and use of the website (allowing you, for example, to make a purchase or authenticate yourself to access reserved areas);
• anonymised analytics cookies,which are cookies used to collect information, in aggregate form and therefore not attributable to the individual, relating to the number of users to the most visited pages, the places from which they connect, etc. to compile statistics on the service and use of the site. These cookies may also be from third parties. In this case, however, the Data Controller must have made them anonymous (e.g. by anonymising the IP or masking part of it) and must not allow the third party to cross-reference the information collected through the site with others already at its disposal or to transmit them to third parties;
• functionality cookies, which allow the user to browse according to a series of selected criteria (for example, language, products selected for purchase) in order to improve the service rendered to the same.

Legal Basis

For navigation or functionality cookies, the legal basis lies in the execution of a contract or pre-contractual measures (art. 6, lett. b) GDPR) since they are necessary to make the site and the service requested by users usable. The use of these cookies does not require your consent. For anonymised analytics cookies, however, the legal basis lies in the legitimate interest of the Data Controller to constantly improve the site and the service requested by users (art. 6, lett. f) GDPR). Consent is not required but the user has the right to object to the use of such cookies if he/she believes that his/her interests or fundamental rights and freedoms prevail over the legitimate interests of the Data Controller. The Data Controller will refrain from further use of these cookies unless it proves the existence of compelling legitimate reasons that prevail over the user's right to object or for the establishment or defence of a right in court (art. 21 GDPR). To oppose the use of these cookies, the user must exercise the right that is recognised by the GDPR, by contacting the Data Controller at the address indicated above.


Need for the provision of the data and consequences

The provision of data collected through the cookies described above is not mandatory, however it is necessary for the connection to the site and the provision of the service. In the absence of partial or total of such provision, the user will not be able to use the site or there may be problems in the use. The user has the ability to allow or block the use of technical cookies used by this site through the Cookie preferences page accessible via the link in the footer of the site.


2) Profiling Cookies, which require the user's consent

Profiling cookies can be first party (installed directly by the Data Controller on its website) or third party (installed on the Data Controller's website by a third party). On third-party cookies, the Data Controller has no control over the activity and purpose of the third party, nor over the possibility that the same may modify them over time. In this sense, the Data Controller acts as an intermediary. The user has the ability to allow or block the use of technical cookies used by this site through the Cookie preferences page accessible via the link in the footer of the site.

Profiling cookies make it possible to follow and track, through automated tools, the behaviour of the user while browsing the Internet. They have the purpose of profiling the user and are used by the Owner or by the third party in order to send personalised advertising content in line with your preferences and interests, expressed in the context of your navigation on Internet.

Profiling cookies are also non-anonymised analytics cookies used by the third party, when the Data Controller has not made them anonymous (e.g., has not anonymised the IP) or when it allows the third party to cross the information collected with others already available or to transmit them to third parties, thus allowing the user to be identified through this information.


Legal Basis

The use of profiling cookies (including non-anonymised analytics) can only take place with your consent, which constitutes the legal basis for the processing of data collected through these cookies, in accordance with the provisions of art. 6, lett. a) GDPR. The consent can be provided by you or revoked at any time by operating directly in the appropriate cookie preferences page accessible via the link in the footer of the site.


Need for the provision of the data and consequences

Failure to provide data resulting from the lack of consent for such cookies has no consequence for the purposes of navigation on the site and its use, but implies the impossibility of proposing advertising messages on services and goods in line with the preferences and real interests expressed in the context of browsing the web by the user.


How can the user manage the consent of cookies?

The user can manage the consent relating to the individual categories of cookies by operating directly in the appropriate cookie area accessible from the cookie preferences page accessible via the link in the footer of the site.


How can the user disable all cookies with the browser?

Another possibility for limiting the use of cookies is to operate on the browser. Most browsers offer the user the opportunity to express their choices regarding the use of cookies by sites. Below are the procedures for changing the cookie settings and links to the relevant pages of the main browsers on the market to express your choices.

• Google Chrome – Select the icon from the menu: Chrome > Select Settings > At the bottom of the page, select Show advanced settings > In the “Privacy” section, select Content settings > Select Allow local data to be saved > Select Finish. For more information: https://support.google.com/accounts/answer/61416?hl=en
• Safari – iOS 8 - Tap Settings > Safari > Block cookies and choose “Always allow”, “Only allow from websites I visit”, “Only allow from current website” or “Always block”. In iOS 7 or earlier, choose “Never”, “Third-party and advertisers”, or “Always”. For more information: https://support.apple.com/en-us/HT201265
• Firefox – Click the menu button and select Options > Select the Privacy panel > Under History Settings: select Use Custom Settings > To enable cookies, mark the Accept cookies from sites item; to disable them, unmark the item. For more information: https://support.mozilla.org/it/kb/Attivare%20e%20disactivare%20i%20cookie
• Edge – Click the Tools button, and then click Internet Options > Click on the Privacy tab, and under Settings, move the slider up to block all cookies, or down to allow all cookies, and then click OK. For more information: http://windows.microsoft.com/it-it/windows7/block-enable-or-allow-cookies

Is personal data transferred outside the European Union (EU)?

Some data collected by cookies may be transferred abroad to locations outside the European Union. This transfer will in any case be carried out in compliance with the guarantees prescribed by the GDPR for this type of activity (articles 45 - 49): for example, transfer to companies located in countries for which the existence of guarantees for the protection of personal data comparable to those of the GDPR (Countries on the White List) or to companies with which specific contractual clauses for the protection of personal data have been signed approved by the European Commission or by the Guarantor Authority, or which adopt binding company rules approved by the Guarantor Authority or when the transfer is necessary for the execution of the contract concluded with the interested party or to execute your request or takes place on the basis of specific exceptions provided for by the GDPR. It is possible to obtain more information, on request, from the Data Controller at the contacts indicated above.


How long is the data retained?

The data collected through the use of cookies are stored according to the specific terms and conditions of use established by each supplier of cookies installed on the site, with reference to which the Data Controller has no responsibility or authority. Retention terms, other than those established by each supplier of cookies installed on the site, may be provided for contractual needs and/or for requests from public authorities. The user can request information on the providers of cookies installed on the website of the Data Controller by sending a written request addressed to the Data Controller at the postal address or by certified email, as indicated above.


Who can know the user's data? To whom are they communicated?

The data collected through cookies may be used by collaborators authorised by the Data Controller, such as those involved in the maintenance and management of the site, marketing and administration. They may also be used by any third parties (providers of services, infrastructure and IT involved in the management and supervision of the site and the like) who operate on behalf of the Data Controller and have been duly appointed data processors in accordance with the provisions of article 28 of the GDPR. With the consent of the user, they may also be used by third parties who install their cookies on the website of the Data Controller.


What are the user’s rights as a data subject?

The GDPR recognises the following rights in relation to your personal data that you may exercise within the limits and in accordance with the provisions of the legislation:

• Right of access to your personal data (article 15);
• Right of rectification (article 16);
• Right to deletion (right to cancellation) (article 17);
• Right to restriction of processing (article 18);
• Right to portability of the data (article 20);
• Right to object (art. 21): the data subject has the right to object at any time, for reasons related to the particular situation, to the processing of personal data concerning him/her or based on legitimate interest, including profiling on the basis thereof. The Data Controller refrains from processing unless it proves the existence of compelling legitimate grounds for processing that prevail over the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of a right in court;
• Right to object to a decision based solely on automated processing (article 22);
• Right to revoke, at any time, the consent given, without prejudice to the lawfulness of the processing based on the consent given before the revocation, by sending a written request addressed to the Data Controller at the postal address or by certified e-mail, as indicated above;
• Right to lodge a complaint with the Data Protection Authority (www.garanteprivacy.it) if the user considers that the processing of his/her data is contrary to the legislation in force (art. 77) or to take legal action (art. 79).

Data Protection Officer (DPO)

The Data Controller has appointed a Data Protection Officer (also known as a DPO) whom you can contact for all matters relating to the processing of personal data and the exercise of rights deriving from the GDPR. The contact details of the DPO are as follows: marco.depaolis@studiolegaledepaolis.it.


How is personal data protected?

Personal data will be processed using technical and organisational security measures appropriate to the nature of the data to ensure their integrity and confidentiality and protect them against the risks of unlawful intrusion, loss, alteration, or disclosure to third parties not authorised to process them.


Updates

The Data Controller reserves the right to modify and update this information at any time. Changes will apply from their communication or publication. It is therefore necessary for you to regularly review the Information policy in force.


Further information

For more information regarding the processing of personal data, the Company also invites you to consult the privacy policy on this site. For more details on the cookies used, the Company also invites you to consult the appropriate cookie area accessible from the Cookie preferences page accessible via the link in the footer of the site.