La Marzocco S.r.l. (hereinafter referred to as the “Controller” or the “Company”), pursuant to art. 13 of the General Data Protection Regulation no. 2016/679 (hereinafter referred to as the “GDPR”), provides you with information on the processing of your personal data, carried out through cookies, web beacons, web bugs, clear GIFs and similar technologies within the pages of the website https://store.lamarzocco.com (hereinafter referred to as the “Site”).
1. Data Controller and relevant contact details
The data controller is La Marzocco S.r.l., with registered office in Florence (FI), Viale G. Matteotti, n. 25 and operating office in Scarperia (FI), Via La Torre, n. 14/H, VAT number 04040140487.
2. Contact data of the Data Protection Officer (DPO)
The Controller has appointed a Data Protection Officer (DPO), who can be contacted at the following email address: email@example.com.
3. Definitions, characteristics, and regulations applying to cookies
Cookies are small text files that the sites visited by the user send and store on his computer or mobile device and are then sent back to the sites in question on the next visit. Cookies allow a site to remember the user actions and preferences (like the login data, the chosen language, the font size, etc.), to ensure that they don’t need to be specified again when the user returns to the site or browses its pages. Cookies, therefore, are used for IT authentication, session monitoring and storage of information regarding the activities of the users who access a site. They can also contain a unique ID code which allows the user’s browsing within the site to be tracked for statistical or advertising purposes.
While browsing a site, the user can receive on his computer so-called “first-party” cookies – if directly installed by the site manager –, but also cookies of sites or web servers other than the one he is visiting (the so-called “third-party” cookies), installed on the terminal by a person other than the site manager.
There are various types of cookies, according to their characteristics and functions, that may remain stored on the user’s computer for different times. From this point of view, we distinguish: the so-called session cookies, that are automatically deleted when the browser is closed and the so-called persistent cookies, that instead remain stored on the user’s equipment until a pre-set expiry term.
Among the technical cookies, that require no express consent to be used, the Italian Data Protection Authority also includes:
- The analytics cookies: where used directly by the operator of the site to gather information in aggregate form about the number of users and how they visit the site;
- The navigation or session cookies: they are required to ensure normal website browsing and use (for example by allowing the user to login to access any reserved areas);
- Function cookies: they allow the user to navigate according to a series of selected criteria (for example, the language, the products selected for purchase) in order to improve the service provided to the same.
The profiling cookies, instead – i.e., the cookies aimed at creating user profiles and used to send advertising messages that match the preferences shown by the user while browsing online – require prior user consent.
The Site also includes the so-called “web beacons”, i.e., tools whose purpose is generally keeping track of the user behaviour, verifying whether they accessed certain contents.
Also called “tracking pixels”, web beacons are transparent one-pixel images (1×1 images, typically a GIF file) that, when requested from the server, allow to keep track of the fact that the user is displaying the page containing it. Tracking pixels are generally installed to profile the user for commercial purposes.
4. Cookie types used by the Site
The Site uses the following types of cookies, first and third party, which can be selected and de-selected, in a granular manner, through the control panel located at the cookie banner on the homepage of the Site.
In particular, the Site contains:
- Technical cookies;
- Functionality cookies (included among technical cookies);
- Analytical cookies;
- Profiling cookies.
With specific reference to third-party cookies, the user can refer to the relevant information, which can be consulted via the links below:
In detail, the cookies sent by the Controller through the Site are set out below.
You can change your preferences at any time by activating or deactivating the flags below:
5. Cookie settings
The user can block or erase the technical and functionality cookies (or part thereof) through the specific functions of his Browser. It should be reminded, however, that if not authorising the technical cookies visitors could be unable to use the Site, display its contents and obtain the relevant services. If functionality cookies are disabled, some services or certain Site functions could be unavailable or fail to function properly, and the user could be compelled to edit or manually enter some information or preferences every time he visits the Site.
The user can authorise, block or erase the cookies (or part thereof) through the specific functions of his Browser. For further information about setting the cookie preferences through the Browser, you can refer to the relevant instructions:
- by clicking on “ACCEPT ALL”, you give your consent to the use of the cookies and of the other technologies included in the Site.
- by clicking on the “X” at the top right of the banner, the user does not consent to the installation of analytical and profiling cookies, for which consent is required. Therefore, only technical or anonymised analytical cookies are installed on the user’s device, for the installation of which consent is not required;
- By clicking on “SHOW DETAILS“, you will be able to view the individual cookies on the Site, classified by type.
The user, in any case, has the possibility of modifying his or her preferences regarding cookies at any time by the following means:
- by clicking on the “cookie settings” icon in the bottom left-hand corner of each of the Site’s pages;
7. Transfer of personal data
The personal data collected through the first-party cookies – i.e. those installed by the Controller – on the Site are not transferred outside the European Union. In any case it is understood that, where necessary, the Controller shall be entitled to transfer the personal data to extra-EU countries too, ensuring hereby that the data shall be transferred in compliance with the law provisions and thus signing, if and insofar as necessary, specific agreements ensuring an adequate level of protection of the personal data, or anyway adopting the Standard Contractual Clauses provided for by the European Commission for the transfer of personal data to extra-EU countries.
8. Categories of recipients
The personal data collected through the cookies can be shared with:
- people authorised by the Controller to process the personal data, who have received appropriate operating instructions, have committed to keep the data confidential or are subject to an appropriate legal confidentiality obligation;
- persons delegated and/or designated by the Controller to carry out any tasks strictly related to the pursuing of specific purposes (including, but not limited to, technical maintenance operations on the systems), duly appointed as Processors.
9. Rights of the data subject
Consistently with the provisions contained in the GDPR, you have the right to request from the Controller, at any time, the access to your personal data, as well as its rectification or erasure, or to object to its processing. The law also allows you to exercise the right to request the restriction of processing in the cases provided for by art. 18 of the GDPR, as well as to obtain your personal data in a structured format of common use and readable by automatic device, in the cases provided for by art. 20 of the GDPR.
Requests can be sent to the email address: firstname.lastname@example.org.
Finally remember that you always have the right to lodge a complaint with the competent control authority (Italian Data Protection Authority), pursuant to art. 77 of the GDPR, if you consider that the processing of your personal data infringes the GDPR.