Cookie policy
Introduction
This Cookie Policy was specifically prepared and customized for the website zanasigroup.com, owned by Zanasi Group S.r.l., con sede legale in Via Farina, 31 – 41053 Maranello (MO), P.IVA 02732390360, pec zanasi@cert.cna.it.
The owner has appointed a Data Protection Officer, Avv. Chiara Ciccia Romito, who can be contacted at the following e-mail address: dpo@zanasigroup.it
This policy was drafted on the basis of the provision of the Guarantor for the protection of personal data n. 229 of 8 May 2014 “Identification of the simplified procedures for the information and the acquisition of consent for the use of cookies” and the new provision n. 231 of 10 June 2021 “Cookies guidelines and other tracking tools”. It supplements and updates other policies already present on the site and/or issued before now by the company, in combination with which it provides all the elements required by Art. 13 of Regulation (EU) 2016/679 (GDPR).
Important notice
We inform all third parties that the use of this policy, or even only parts of it, on other websites in reference to which it would certainly be irrelevant and / or incorrect and / or inconsistent, may lead to substantial fines imposed by the Authority for the protection of personal data.
What are cookies
In practical and non-technical terms, the cookie can be considered a tracking system that consists of a small file, stored by the website in the user’s device while browsing, used with the aim of saving the preferences expressed during navigation and to improve the performance of the website, optimizing the user experience.
In technical terms, cookies are defined as strings of text (generally formed by a combination of letters and numbers) that websites (so-called first parties) visited by the user or different websites/web servers (so-called third parties) place and store, directly and/or indirectly on a terminal device (e.g. PC, tablet, smartphone, etc.) that is in the availability of the user. The servers for the Internet navigation or for the device functioning can store cookies and then transmit them to the same websites that generated them, in view of a subsequent visit by the same user. Specifically, these tracking tools allow the website to recognize a specific device or browser.
Types of cookies and related purposes
Cookies can be classified into:
- Technical cookies; used for the sole purpose of carrying out the transmission of a communication on an electronic communication network, or to the extent strictly necessary for the service provider of the information society explicitly requested by the contracting party or the user to provide such service in accordance with Article 122, paragraph 1 of the Privacy Code. These types of cookies do not require the acquisition of consent from the user but must be indicated in the cookie policy.
- Profiling cookies; used to trace specific actions or behavioural patterns back to specific, identified or identifiable subjects in order to allow the controller to modulate the provision of the service in a more personalised way and send advertising messages in line with the preferences expressed by the user during navigation.
- Analytics cookies; installed on the user’s terminal by the controller of the visited website or third party websites. Third party cookies, used mainly for analysis purposes, are mostly derived from Matomo features. Matomo is a measurement and tracking software. Matomo is a free software for collecting web metrics and other data for statistical purposes, which is currently the best alternative to Google Analytics.
Applicable legislation
For the use of cookies and other technical tracking tools, the data controller is only subject to the obligation to provide specific policy to the data subject. With regard to cookies and other tracking tools for purposes other than technical, the use is permitted only upon obtaining the informed consent of the user, which must be expressed by an unequivocal act in accordance with Recital 32 EU GDPR.
Consent acquisition system
The data controller guarantees the mechanism for acquiring consent by displaying a banner when the user first accesses the website.
The banner contains:
- an ‘X’ in the top right corner which is equivalent to the user’s denial of consent.
- a brief statement in which it is included that the website uses technical cookies and, only after obtaining the user’s consent, also profiling cookies.
- a link to the privacy policy and cookie policy.
- a command through which the user expresses his consent.
- a link to an area dedicated to the choice and customization of cookies in which the user can freely give his/her consent to the functionalities, suppliers, and specific cookies he/she intends to accept.
In the event that the user does not consent to the use of cookies and other tracking tools, or he/she has chosen to consent only to the use of certain cookies, the choice is recorded and no longer solicited, unless:
- one or more treatment conditions change significantly;
- it is impossible for the website owner to know whether a cookie has already been stored on the device;
- at least 6 months have elapsed since the previous presentation of the banner.
Cookies used – Purposes – Data retention periods – Transfer of data to third parties
You may choose to prevent this website from aggregating and analyzing the actions you take here. Doing so will protect your privacy, but will also prevent the owner from learning from your actions and creating a better experience for you and other users.
Browser settings
We also inform you that the user can configure, freely and at any time, his privacy parameters in relation to the installation and use of cookies, directly through his navigation software (i.e. browser) by following the relevant instructions.
In particular, the user can set the so-called ‘private browsing’, which prevents the browser from saving the web history, any passwords entered, cookies and other information on the visited pages.
We inform that if the user decides to deactivate all the cookies (including technical ones), the quality and speed of the services offered by this website may deteriorate drastically and the access to some sections of the website may be restricted.
Rights of the data subjects
We inform you that as a data subject you have the right to exercise the following rights:
Right of access pursuant to Art. 15 of Regulation (EU) 2016/679 (GDPR); the data subject shall have the right to obtain from the controller confirmation as to whether or not personal data relating to him/her are being processed, and, where that is the case, access to personal data and information concerning the purposes of the processing, the categories of personal data concerned, the recipients or categories of recipients to whom the personal data have been or will be disclosed.
Right of rectification pursuant to Art. 16 of the Regulation; the data subject shall have the right to obtain from the controller:
- the rectification without undue delay of inaccurate personal data;
- the integration of personal data, if incomplete.
Right to erasure (‘right to be forgotten’) under Art. 17 of the Regulation; the data subject shall have the right to obtain from the controller the erasure of personal data without undue delay.
Right to restriction of processing pursuant to Art. 18 of the Regulation; the data subject shall have the right to obtain from the controller restriction of processing in the following cases:
- the data subject contests the accuracy of the personal data, for a period enabling the controller to verify the accuracy of personal data;
- the processing is unlawful and the data subject opposes the erasure of personal data and requests the restriction of their use instead;
- the controller no longer needs the personal data for the purposes of processing, but they are required by the data subject for the establishment, exercise or defence of legal claims;
- the data subject has objected to the processing pursuant to Article 21(1), pending verification whether the legitimate grounds of the controller override those of the data subject.
Right to data portability pursuant to Art. 20 of the Regulation; the data subject shall have the right to receive in a structured, commonly used, and machine-readable format the personal data.
Right to transmit such data to another controller without hindrance from the controller to which personal data have been provided it in the cases referred to in Art. 20 of the Regulation.
Right to object pursuant to Art. 21 or the Regulation; the data subject shall have the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (e) or (f) of Article 6(1), including profiling based on those provisions.
The above-mentioned requests shall be addressed to the data controller.
The controller is Zanasi Group S.r.l., con sede legale in Via Farina, 31 – 41053 Maranello (MO), P.IVA 02732390360, pec zanasi@cert.cna.it.
Requests may be submitted via:
- registered letter with return receipt to Zanasi Group S.r.l., Via Farina, 31 – 41053 Maranello (MO)
- certified e-mail zanasi@cert.cna.it.
- e-mail to the DPO’s address dpo@autodromoimola.it.
In addition, if data subjects consider that the processing has been carried out in violation of the legislation on the protection of personal data, they have the right to lodge a complaint with the Guarantor Authority for the protection of personal data, with registered office in Piazza Venezia, 11 – 00187 – Rome.