PRIVACY POLICY FOR THE USE OF COOKIES ACCORDING TO REGULATION (EU) 2016/679 (“GDPR”)

Below we inform you with transparency about the operation on this website (hereinafter “Site“) of the so-called cookies.

What are “cookies”

Cookies are small text files sent by the Site to the user’s device (usually to the browser), where they are stored and then retransmitted to the Site the next time the same user visits it. A cookie may not retrieve any other data from the user’s hard drive, transmit computer viruses or acquire email addresses. Each cookie is unique to the user’s web browser. Some of the functions of cookies can be transferred to other technologies. The term “cookies” refers to cookies and all similar technologies.

Purposes of using cookies and purposes of technical session cookies.

Cookies are used on the Site for IT authentication or session monitoring and storage of specific technical information regarding users accessing our servers. In this context, some operations on the Site could not be performed without the use of cookies, which in such cases are therefore technically necessary. For example, access to reserved areas of the Site and the activities that may be carried out there would be much more complex to carry out and less secure without cookies that allow the user to be identified and kept identified during the session.

Pursuant to article 122 (1) of Legislative Decree no. 196 of 30th June 2003, as amended by Legislative Decree no. 101 of 10th August 2018, “technical” cookies may be used even without the consent of the user. Moreover, the European body, which brings together all the Data Protection Authorities of the various Member States (the so-called “Article 29” Group), clarified in Opinion 4/2012 (WP194), entitled “Cookie Consent Exemption”, which are the types of cookies that do not require prior informed consent from the user:

  1. user-input cookies (session-id), for the duration of a session or persistent cookies limited to a few hours in some cases;
  2. authentication cookies, used for the purposes of authenticated services for the duration of a session;
  3. user‑centric security cookies, used to detect authentication abuses, for a limited persistent duration;
  4. multimedia content player cookies, such as cookies for flash players, for the duration of a session;
  5. load balancing cookies, for the duration of a session
  6. user‑interface customization cookies, for the duration of a session (or slightly longer);
  7. third‑party social plug‑in content‑sharing cookies, for logged‑in members of a social network.

Therefore, Exo Lab (as defined below) first of all informs you that on the Site technical cookies are used and are necessary to browse the Site as they allow essential functions such as authentication, validation, management of a browsing session and fraud prevention.

For maximum transparency, the following is a list of a series of technical cookies:

  1. cookies implanted in the user’s / contractor’s device directly (which will not be used for further purposes) such as authentication cookies, cookies for flash-like multimedia content players that do not exceed the duration of the session, etc.;
  2. cookies used to statistically analyse accesses / visits to the site (so-called “analytics” cookies) that only pursue statistical purposes (and not even profiling or marketing) and collect information in aggregate form without the possibility of identifying the individual user. In these cases, since the current legislation requires that for analytics cookies the person concerned is provided with a clear and adequate indication of the simple ways to oppose (opt-out) their system (including any mechanisms of anonymization of the cookies themselves), we specify that you can change the settings of cookies.

Third-Party Cookies

While browsing the Site, the user may also receive on his device cookies from different websites or web servers (so-called “third party” cookies): this is because there may be elements on the Site such as, for example, images, maps, sounds, specific links to web pages of other domains that reside on servers other than the one on which the requested page is located. In other words, these cookies are set directly by web site operators or servers other than the Site. These cookies may be sent to the user’s browser by third party companies directly from their websites which can be accessed by browsing the Exo Lab Site. In such cases,  Exo Lab (as defined below) is not involved in the operation of such cookies, the sending of which is under such third-party companies’ responsibility. As clarified by the Data Protection Authority: “The duty to inform the user about the use of cookies and to obtain their prior consent falls to the site operator who uses them, as the data controller. In the event that a website also allows the transmission of “third party” cookies, the information and the acquisition of consent are normally under the third-party responsibility. It is necessary that the user is duly informed, although in the simplified manner provided by law, when he/she accesses the website that allows the storage of third-party cookies, or when he/she accesses the contents provided by third parties and, in any case, before the cookies are downloaded to his/her device“. For the purposes of the information transparency requested from the operators of the “first party website” where “third party cookies” operate, we inform you that the following third-party cookies are operative on the Site: www.exolabitalia.shop. The Site uses Exo Lab Italia, a web analysis service provided by Exo Lab Italia. 

Data Controller and Data Protection Officer

The Data Controller is Exo Lab Italia S.r.l., with registered office in Località Boschetta di Pile (AQ), Italy with VAT Number 02294980681 (“Exo Lab“), ).

The Data Protection Officer may be contacted at the following email address: infoRD@exolabitalia.com.

Exercise of the user’s rights.

The user may at any time exercise his/her rights and in particular access his/her personal data, request its rectification or limitation, its updating if incomplete or incorrect, and its erasure if collected in breach of the law, as well as object to its processing without prejudice to the existence of legitimate grounds on the part of the Data Controller. The user shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format.

For this purpose, it is possible to contact the Data Controller or the Data Protection Officer.

For any further information you may send a request to the following e-mail address: infoRD@exolabitalia.com