Cookies Policy – Extended statement

Itema S.p.A. hereby provides you with information regarding the processing of your personal data relative to the navigation of this website (hereinafter referred to as the “Website”).

This policy has been produced pursuant to Art. 13 of Regulation (EU) 2016/679 (hereinafter referred to as the “Regulation”) and Art. 122 of Italian Legislative Decree 196/2003 as amended (hereinafter referred to as the “Privacy Code”), as well as in compliance with the measures issued by the Data Protection Authority “Identification of simplified procedures for policies and acquisition of consent for the use of cookies” of 8 May 2014, as supplemented by the “Guidelines regarding cookies and other tracking tools” of 10 June 2021 (hereinafter referred to as the “Measures”).

1. Identity and contact details of the data controller

The data controller is Itema S.p.A., with registered offices in via Cav. G. Radici, 4 Colzate (BG) 24020, email privacy@itemagroup.com (hereinafter referred to as the “Company” or “Data Controller”).

2. Categories of data processed

The Company processes common personal data relating to the Website’s telematic traffic. Consequently, the Website uses cookies.

What are cookies?

Cookies (or markers) are small text files that are sent from the server of the website visited by the user to the user’s device (usually to the browser) when the latter accesses a particular website, for the purpose of storing and transporting information. These files are stored in order to allow that device to be recognised on future visits. On each subsequent visit, the cookies are sent back from the user’s device to the website.

Each cookie generally contains the name of the server from which the cookie was sent, the expiry date and a value, usually a unique number randomly generated by the computer.

First-party and third-party Cookies

Cookies may be installed not only by the operator of the website visited by the user (first-party cookies), but also by a different website, which installs cookies via the website visited (third-party cookies), and is able to recognise them. This is possible because the website visited may contain elements (images, maps, sounds, links to web pages of other domains, etc.) that reside on servers other than that of the website visited.

Technical, analytics and profiling cookies

Cookies are divided into technical cookies and profiling cookies according to their purpose.

Technical cookies are installed for the sole purpose of “transmitting over an electronic communications network, or as is strictly necessary for the supplier of a company service for information explicitly requested by the subscriber or user, in order to supply such a service” (cf. Article 122, para. 1 of the Privacy code). They are generally used to enable efficient navigation between pages, store user preferences, store information on specific user configurations, perform user authentication, etc.

Technical cookies can be subdivided into navigation cookies, which are used to record data required for the normal navigation and use of the website on the user’s computer (e.g. allowing the user to remember the preferred page size in a list) and functional cookies, which allow the website to remember the choices made by the user in order to optimise its functionality (for example, functional cookies allow the website to remember specific user settings, such as country selection and, if set, permanent login status). Some of these cookies (considered as essential or strictly necessary) enable functions without which certain operations would not be possible.

Pursuant to the aforementioned Art. 122, para. 1 of the Privacy Code, the use of technical cookies does not require user consent, but only the obligation to inform users.

Pursuant to the Measures, technical cookies are considered to be integrated with analytics cookies – thus not requiring user consent for installation – if:

  1. they are produced and used directly by the first party website operator (thus without the intervention of third parties) for website optimisation purposes, to collect aggregate information on the number of users and how said users visit the website, as well as
  2. those created and made available by third parties if:
    1. used by the first party website for purely statistical purposes, if suitable measures for minimisation are adopted to reduce the ability of said cookies to identify users (e.g., by masking suitable portions of the IP address) and used exclusively for the production of aggregate statistics and in relation, as a rule, to a single website or mobile application, so as not to allow the user’s browsing to be tracked though different applications or on other websites.
    2. the third parties providing the web measurement service to the website do not combine, enhance or cross-reference the data, even when minimised as above, with other information available to said third parties (e.g., customer files or statistics regarding visits to other sites) or send said data to other third parties.

Profiling cookies are used to track the user’s browsing, analyse their behaviour for marketing purposes and create profiles on their tastes, habits, choices, etc. in order to send targeted advertising messages in relation to the user’s interests and in line with the preferences expressed by the user when browsing online. Pursuant to Article 122 of the Privacy Code, these cookies may be installed on the user’s terminal only if the user has granted their consent after being informed in the simplified manner indicated by the Data Protection Authority in the Measures (publication on the website of a “short” policy contained in a banner that appears immediately on the home page (or other page via which the user can access the website), which links to an “extended” policy that can be accessed through a link that can be clicked on by the user).

Persistent and session cookies

Based on their duration, cookies are categorised as persistent cookies, which remain stored on the user’s device until they expire or are removed by the user, and session cookies, which are not stored persistently on the user’s device and disappear when the browser is closed.

List of cookies used by this website

Technical cookies:

This Website makes use of technical cookies, which are installed by the Website for the purposes indicated below.

This type of cookie cannot be disabled and their installation, as indicated above, does not require the prior consent of users pursuant to Article 122 of the Privacy Code.

Below, you will find, for each cookie used, the name, the third party (if any), the purpose of use and the duration.

NameFirst or third partyPurposesDuration
_cml_languageItemaAutomatically sets the website’s display language.Session
PHPSESSIDItemaTo store the session as necessary for the server to offer essential navigation functions to the user.Session
YSCYoutubeRecord a unique ID for statistics related to which YouTube videos were viewed by the user.Session
VISITOR_INFO1_LIVEYoutubeSet by YouTube to measure bandwidth and determine which interface to use.180 days
CONSENTYoutubeUsed to detect whether the visitor has accepted the marketing category in the cookie banner.2 years

Please note that the Company uses the YouTube “Privacy Enhanced Mode” feature and, therefore, the viewing of a video on the Website by a user will not be used to personalise the user’s browsing experience on YouTube, nor within the Website.

Anonymised analytical cookie

The Website uses analytical cookies created and made available by third parties in order to statistically analyse access or visits to the Website, to allow the Company to improve its structure, navigation logic and content, and to collect information on the use of the Website.

For more details and information, please visit the following link https://support.google.com/analytics/answer/1011397

These cookies, which are appropriately anonymised (by masking significant portions of the IP address), allow the collection of aggregate information on the number of users and how they visit the Website without being able to identify the individual user. Therefore, the prior consent of users is not required in accordance with the Measures.

Below, you will find, for each cookie used, the name, the third party (if any), the purpose of use and the duration.

NameFirst or third partyPurposesTerm
_gaItemaCookie provided by Google; it is used to distinguish unique users by assigning a randomly generated number as an identifier. It is included in every page request on the Website and used to calculate visitor, session and campaign data.730 days
_gatItemaCookie provided by Google; it is used to speed up the request rate.Session
_gidItemaCookie provided by Google; it is used to store and update a unique value for each page visited.1 day

At the end of the aforementioned terms of conservation, the data will be destroyed or rendered anonymous, in compliance with technical erasure and backup procedures.

It should also be noted that the Website uses the following services:

  • reCAPTCHA, offered by Google for security purposes and, in particular, to prevent automated software (“bots”) from using the Website by impersonating users. For any data processing carried out by Google, reference is made to its privacy policy;
  • Google Fonts, which allows fonts to be loaded to enhance the appearance of the Website through the use of style sheets. For any data processing carried out by Google, reference is made to its privacy policy.

3. Nature of provision and methods of processing

The provision of your personal data is necessary in order to implement computer and telematic protocols.

The personal data are processed by the Company with both digital and paper methods and in respect of the principles specified by the Regulation and are protected with technical and organisational measures that are adequate in guaranteeing their integrity and confidentiality.

4. Data recipients

The data may also be processed on behalf of the Company by third parties, designated as Data Processors pursuant to Article 28 of the Regulation, such as natural persons and/or legal entities carrying out activities functional to the purposes indicated above, for example the company in charge of managing and maintaining the Website.

The data may be disclosed to autonomous data controllers, such as authorities and supervisory and control bodies entitled to request/receive the data, as well as to third-party providers (or vendors) listed in the aforementioned tables containing the list of cookies, which also include a link to the relevant information notice.

Furthermore, the data are processed by employees of the Company working within sectors of the organisation charged with the fulfilment of the purposes indicated above, who are expressly authorised for processing and have received appropriate operating instructions.

5. Transfer of data to other countries

Where data are transferred to countries outside the European Union (EU) or the European Economic Area (EEA) that have not been deemed suitable by the European Commission, the “transfer tools” referred to in Article 46 of the Regulation will be used. For more information, please see the links to the third-party policy indicated in the table.

6. Rights of the data subject

You can also implement your choices regarding cookies through the settings of the browser you use. Even if the web browser you use is set to automatically accept cookies, you can change the default configuration via the settings menu, thus deleting and/or removing all or some cookies, blocking the sending of cookies or restricting sending to certain sites. The disabling, blocking or deleting of cookies may compromise the optimal use of a number of areas of the Website or impede some of its functions, as well as influence the functioning of third-party services. Below are links to guides on cookie management for the main browsers:

For browsers other than those listed above, please consult the relevant guide to find out how to manage cookies.

In relation to the data processing described herein, you may exercise the rights provided by the Regulation, including the right to:

  • receive confirmation of the processing of personal data and to access the data (right to access).
  • update, modify and/or integrate the personal data (right to rectification).
  • request the erasure of the data in the cases provided for by article 17 of the Regulation (right to be forgotten).
  • obtain the restriction of processing of the data in the cases provided for by article 18 of the Regulation (right to restriction of processing).
  • object to the processing of the data carried out on the basis of the legitimate interest of the Data Controller at any time, in a manner that is facilitated and free of charge, for reasons related to the particular case (right to object).
  • to receive the data in a structured, commonly used, machine-readable and interoperable format, and, if technically possible, to transmit it to another controller without hindrance, in the event that processing is based on consent or contract and is carried out with automated tools (right to data portability).

To exercise these rights, you may contact the Company at any time, sending your request by email to the following address privacy@itemagroup.com or by registered letter with return receipt to the following address: Data Protection Committee – via Cav. G. Radici 4, Colzate (BG), 24020 – Italy. 

You have the right to lodge a complaint with the Data Protection Authority or a supervisory authority in the Member State in which you habitually reside or work, or in the State in which the alleged infringement has taken place.