COOKIE POLICY

Cookies settings

Elesa S.p.A. provides below the information regarding the processing of your personal data when you are browsing the website (hereinafter “Site”)pursuant to art. 13 of Regulation 2016/679 (hereinafter “GDPR”) and art. 122 of the Legislative Decree 196/2003 (hereinafter “Privacy Code”) , in accordance with the Decision of the Italian Data Protection Authority of 8 May 2014, "Simplified Arrangements to Provide Information and Obtain Consent Regarding Cookies", as supplemented by the "Guidelines on the use of cookies and other tracking tools" of 10 June 2021 (hereinafter “Decision”).

  1. Identity and contact details of the controller

    The data controller is Elesa S.p.A., VAT 01686450154, with registered office in Via L. Mancini n.5 Milano (MI) e-mail info@elesa.com (hereinafter also “Controller”).

  2. Categories of data processed

    The Controller processes browsing data; specifically, the Site uses cookies as further described below.

    What are cookies?

    Cookies are small text files sent to the user’s device (usually to the user’s browser) by the websites the user visits when the latter accesses such websites for the purpose of storing and transporting information. They are stored so that they can recognize that device on the next visit. On each subsequent visit, in fact, cookies are resent from the user's device back to the site.

    Each cookie generally contains the name of the server from which the cookie was sent and the expiration date and a value, usually a unique number randomly generated by the computer.

    First party and third party cookies

    Cookies can be installed not only by the same owner of the site browsed by the user (first-party cookies), but also by a different site that installs them through the first site (third-party cookies) and is able to recognize them. This happens because on the browsed site there may be elements (images, maps, sounds, links to web pages of other domains, etc.) that are stored on servers other than that of the browsed site.

    Technical, analytical and profiling cookies

    Depending on the purpose, cookies can be divided into technical cookies and profiling cookies.

    Technical cookies are stored for the sole purpose of "carrying out the transmission of a communication over an electronic communication network or as strictly necessary for the supplier of an information society service explicitly requested by subscriber or user to provide the service" (see Art. 122, paragraph 1 of Privacy Code).

    These cookies allow the user to navigate the websites and use their functionality (so-called "essential" or "strictly necessary"). They are usually used to enable efficient navigation between pages, store user preferences (language, searches performed, etc.) store information about specific user configurations, perform user authentication, store items in the shopping cart during online purchases, etc.

    Statistics” or “analytical” cookies (also known as “performance cookies”) collect information about how you use a website, which pages you visited, and which links you clicked on in order to improve website functions.

    Analytical cookies (also known as “Statistic cookies” or “performance cookies”) collect information about how you use a website, which pages you visited, and which links you clicked on in order to improve website functions. Such cookies may only be installed on a user's device if the user has been informed about this and has given his or her consent.

    Profiling cookies are used to track the users’ browsing, analyze their behaviour for marketing purposes and create profiles on their interests so as to transmit targeted ads in line with the preferences expressed when browsing online. These cookies, pursuant to art. 122 of the Privacy Code, may be installed on the user´s device only if the user has given his/her consent after being informed in the simplified manner indicated in the Decision (publication on the site of a "short" notice/policy contained in a banner that appears immediately on the home page (or other page through which the user can access the site), which refers to an "extended" notice/policy, which is accessed through a clickable link by the user).

    Permanent and session cookies

    Based on their duration, cookies are distinguished into persistent, which remain stored, until they expire, on the user's device, subject to removal by the user, and session cookies, which are not stored persistently on the user's device and vanish when the browser is closed.

  3. What are the cookies used by this Site?

    Technical cookies

    The Site uses cookies or other technical tools installed for the purposes indicated below, for which the prior consent of the users is not required pursuant to art. 122 of the Privacy Code.

    Below, the name, purpose of use, the first or third party to which it refers, and duration are reported for each cookie used.

    Name First or third party Purposes Duration
    JSESSIONID First Maintaining an anonymous user session. session
    WC_ACTIVEPOINTER
    WC_AUTHENTICATION_<userid>
    WC_PERSISTENT
    WC_SESSION_ESTABLISHED
    WC_USERACTIVITY_<userid>
    WC_LogonUserId_<storeid>
    WC_timeoffset
    WC_recurringOrder_<orderid>
    WC_DeleteCartCookie_<storeid>
    WC_CartOrderId_<storeid>
    WC_CartTotal_<orderid>     		First Ensuring the functionality and security of e-commerce services (e.g., storing user preferences such as language and currency, keeping users authenticated in ssl, dynamic caching systems to allow pages already viewed by the user to load faster, saving products in the shopping cart and order during the session) session
    CompareItems_<storeid> First Cataloging Entry IDs of the products purchased. session
    last-search-term
    searchTermHistory     		First Memorizing the last searched term on search box session
    homeSlider_LastViewedInitialSlide First Allowing the homepage slider 1 year
    slider__featuredProducts_ultimeNovita_NextInitialSlide First Allowing the homepage to show featured products 1 year
    storeChecker Première partie Geolocating the user's country of origin (via IP address) to suggest the user from country other than the Site to reach the Elesa branch site of the user's country session
    priceMode First Showing prices of the products session
    _GRECAPTCHA Google In order to activate reCAPTCHA service offered by Google for security purposes and, in particular, to prevent automated software ("bots") from using the Site pretending to be users. 179 days
    AEC Google Ensuring that requests within a browsing session are made by the user and not by other sites 6 months

    It should be noted that Elesa uses YouTube's "Privacy Enhanced Mode" feature and, therefore, a user's viewing of a video on the Site will not be used to personalize the user's browsing experience on YouTube, nor within the Site.

    Anonymised analytical cookies

    The Site uses analytical cookies created and made available by third parties to statistically analyse accesses or visits to the Site, to allow the Controller to improve its structure, navigation logic and contents and to collect information on the use of the Site.

    For further details and information, you can visit the following link: https://support.google.com/analytics/answer/1011397

    These cookies, suitably anonymised (by masking out significant portions of the IP address), allow the collection of aggregate information on the number of users and how they visit the Site without being able to identify the individual user. For these tools, as indicated above, the prior consent of the users is required.

    Below, the name, purpose of use, the first or third party to which it refers, and duration are reported for each cookie used.

    Name First or third party Purposes Duration
    _ga_* First Cookies are Google Analytics used to distinguish unique users. 1 year
    _gid First Cookies of Google Analytics used to store information of how visitors use the Site. The data collected including the number visitors, the source where they have come from, and the pages visited in an anonymous form. 1 day
    _ga First Cookies of Google used to distinguish unique users by assigning a randomly generated number as an identifier. It is included in every page request on the Site and used to calculate visitor, session and campaign data. 2 years
    _gat First Cookies of Google Universal Analytics used to limit the request rate, limiting the collection of data on high traffic sites. 1 minute
    _gid First Cookies of Google Analytics used to store and update a unique value for each page visited and is used to count and track page views. 1 day
    NID Google Saving the user's preferences and other information, such as preferred language, the number of search results to be displayed on the page as well as the decision as to whether the Google SafeSearch filter should be activated or not 6 months
    1P_JAR Google Collecting Site statistics and track conversion rates 30 days
    CONSENT Google Saving the user's preferences and other information, such as preferred language, the number of search results to be displayed on the page as well as the decision as to whether the Google SafeSearch filter should be activated or not 2 years
    DV Google Saving the user's preferences and other information, such as preferred language, the number of search results to be displayed on the page as well as the decision as to whether the Google SafeSearch filter should be activated or not 1 day
    SIDCC Google Confirming visitor authenticity, prevent fraudulent use of login data and protect visitor data from unauthorized access. 3 months
    SSID Google Saving the user's preferences and other information, such as preferred language, the number of search results to be displayed on the page as well as the decision as to whether the Google SafeSearch filter should be activated or not 2 years
    SID Google For session state management. session
    HSID Google For security purposes, i.e., to store digitally signed and encrypted records of a user’s Google account ID and most recent sign-in time which allows Google to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorised parties. 2 years

    Profiling cookies

    The Site uses profiling cookies created and made available by third parties through which it is possible to monitor users while they are browsing, tracing, and storing their preferences and thus creating profiles that allow personalisation of messages in line with their interests on the above-mentioned domains. For these tools, as indicated above, the prior consent of the users is required pursuant to art. 122 of the Privacy Code and in accordance with the Decision.

    Below is the name of the tool, the third party to which it refers, the purpose of its use and its duration, as well as the link to the privacy policy of that third party.

    Name First or third party Purposes Duration
    __Secure-3PSIDCC
    __Secure-3PSID
    __Secure-1PSID
    __Secure-3PAPISID
    __Secure-1PAPISID     		Google Building a profile of website visitor interests to show relevant and personalized ads through retargeting. 2 years
    SAPISID Google Allowing Google to collect visitors’ information for videos hosted by YouTube. 2 years
    SEARCH_SAMESITE Google Collecting information on the use of the Site by visitors each time web pages containing Google services are visited. This cookie is used for the correct sending of data to Google. 3 months
    APISID Google Personalizes Google ads on websites based on recent searches and interactions. 2 years
    OGP
    OGPC     		Google Monitoring the use and enable the functionality of Google Maps. 1 months
    _gcl_au Google Cookie of Google AdSense used to test the efficiency of ads on websites that use their services 3 months
    aam_uuid linkedin Set for ID synchronization for Adobe Audience Manager 1 months
    UserMatchHistory linkedin Tracking visitors so that more relevant ads can be presented based on the visitor's preferences. 1 months
    li_mc linkedin Memorizing and obtaining information on the users preferences above cookies 2 years
    bcookie linkedin Browser identification cookie to uniquely identify the device on which LinkedIn is accessed and to detect abuses on the platform 22 months
    gpv_pn linkedin Storing and retrieving the last page visited through Adobe Analytics 6 months
    lms_analytics
    lms_ads     		linkedin Used to identify LinkedIn Users in designated countries for analytics purposes 30 30 days
    s_ppv linkedin Storing and retrieving the viewed percentage of a page through Adobe Analytics session
    AnalyticsSyncHistory linkedin Storing information on the time when a synchronization with the lms_analytics cookie took place for users in designated countries 30 days
    AMCV_* linkedin Unique identifier for Adobe Experience Cloud 180 days
    lidc linkedin Tracking the use of integrated services 1 days
    lang linkedin Storing language preferences to serve up customized content. session
    s_tslv linkedin For time tracking related metrics within Adobe Analytics 3 months
    liap linkedin Used by domains other than ".www" to indicate the user's access status 1 year
    s_plt
    s_ips
    s_tp     		linkedin Keeping track of how long the previous page took to load Session
    2 years
    2 years
    s_cc linkedin Determining if cookies are enabled for Adobe Analytics session
    s_pltp linkedin Providing the page name value (URL) for use by Adobe Analytics session

  4. Provision of data

    By browsing the Site, the provision of your personal data is necessary to give effect to the computer and telematic protocols.

    This is without prejudice to your freedom to give or not to give consent to profiling using the above-mentioned tracking tools.

  5. Categories of recipients

    Data may be processed, on behalf of the Controller, by third parties, appointed as processors pursuant to art. 28 of the GDPR, carrying out activities that are functional to the services provided, such as the company responsible for the operation and maintenance of the Site.

    Data may be disclosed to autonomous data controllers, such as authorities and supervisory and regulatory authorities and, more generally, public, or private entities, legally authorized to access to data, as well as to third party providers (or vendors) specified in the tables above containing the list of cookies, in which the link to the relevant policy is also provided, also operating outside the European Union. In this case (i.e., transfer of data to "third" countries), where such countries have not been deemed adequate by the European Commission, the "transfer tools" referred to in Article 46 of the GDPR, such as standard contractual clauses, will be used.

    In addition, data are processed by Elesa employees who have been expressly authorised to process such data for the above-mentioned purposes and have received adequate operating instructions.

  6. Procedures for giving and withdrawing consent to profiling cookies

    Profiling cookies will be installed on your devices only if you give your consent, expressed by selecting the "Accept and close" button inside the banner containing the short notice. Consent to the use of cookies is recorded with a special "technical cookie".

    Where you click "Refuse and close" button, the Site will use only technical cookies.

    To express more specific preferences and configure your choices with respect to cookies, you may click on "Learn more".

    You can always change your preference by clicking on the link "Cookies" located at the bottom of each page of the Site.

    However, users can also express their preferences regarding cookies through the settings of the browser used. Even if the web browser used by the user is set to automatically accept cookies, users can change the default configuration through the settings, deleting and/or removing all or some cookies, blocking or limiting cookies from being sent to certain websites.

    Different browsers offer differing ways to configure your browser's cookie settings. Find out how to manage cookies on popular browsers:

    For browsers other than the ones listed above, please consult the related guide.

  7. Your rights

    You may exercise your rights under Articles 15 to 22 of GDPR by sending an e-mail to privacy@elesa.com or using the contact details highlighted in par. 1, in addition to what is pointed out in the previous paragraph, you have the right:

    1. to obtain the confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access the data concerning you in accordance with Article 15 GDPR,
    2. to obtain the rectification of inaccurate data,
    3. to have incomplete data completed,
    4. to obtain the erasure of data in the cases provided for by Article 17 GDPR,
    5. to obtain restriction of processing in the cases provided for by Article 18 GDPR,
    6. to object, at any time, on grounds relating to your own particular situation, to the processing carried out in the legitimate interest of the Controller,
    7. where the processing is based on consent or contract and is carried out by automated means, to receive the data in a structured, commonly used and machine-readable format and to transmit those data to another controller without hindrance from the controller to which the personal data have been provided.

    Furthermore, you shall have the right to lodge a complaint with the competent supervisory authority in the Member State of your habitual residence, place of work or place of the alleged infringement.