COOKIE POLICY

This policy is provided, also pursuant to article 13 of REGULATION (EU) 2016/679 – “GDPR” - to users (the «Users») connecting to the website www.civita.art (the «Website»), for the purposes of informing them about the types, purposes, and methods of use and management of cookies used on the website. The policy applies only to the Website and not to other websites which the user may visit using links. This document integrates the GDPR data protection policy available at: https://www.civita.it/Privacy/Privacy-gruppo-Civita

DATA CONTROLLER

The data controller is Civita Mostre e Musei S.p.A. with registered office at Piazza Venezia 11, 00187, Rome (hereinafter the "Company").

1. WHAT ARE COOKIES AND WHAT THEY ARE USED FOR

Cookies are small piece of code (text) which are installed in the user’ browser when the user browses the website. The use of cookies enables us to: (a) recognize your computer; (b) store your preferences and settings; (c) understand the web pages of the website you have visited; (d), enhance your user experience by delivering content specific to your inferred interests; (e) perform searches and analytics; and (f) assist with security administrative functions. Some cookies may require the user’ consent to be installed and used.

2. TYPE OF COOKIES

Cookies can be broken down into the two following categories according to their ownership:
- Primary Cookies: managed directly by the owner and / or publisher of the Website.
- Third-party Cookies: cookies that are managed on the website by external providers.

2.1 PRIMARY COOKIES

The following is a description of the types of primary cookies that we use on the Website:
- Technical Cookies: these are essential for the operation of certain sections of the site and are used to enable users to navigate and use the services correctly. Without these cookies, the site would not work properly.
- Technical cookies may also include analytics cookies when such cookies are used just to collect aggregated information about the website traffic or the user’s behavior, pages visited etc. Session cookies: these are sent to the device / browser for technical functionality (e.g., the transmission of session identifiers required for authentication to restricted areas) but are not stored permanently on the user's computer. They are deleted at the end of the session.

2.2 THIRD-PARTY COOKIES

When browsing the website, users may receive cookies (the "Third Party Cookies") that do not belong to the website domain. For example, users could visit a page that includes content and/or services by third-party suppliers. These cookies may submit aggregate statistical information regarding the user’s habits whilst browsing the website. We use this information to better understand and improve the usability and performance of our site.

• Google Tag Manager and Google Analytics
• SalesIQ
• Facebook and Instagram
• LinkedIn

3. HOW WE RECEIVE THE USER CONSENT REGARDING THE USE OF COOKIES

According to the current law, we allow any user to express the consent to the installation and use of cookies trough the website CMP (Consent Management Platform) which is displayed on the website when the user lands on it.
Civita Mostre e Musei uses a CMP platform which is compliant to the best international standard, according to the Transparency and Consent Framework released by the IAB Europe.

4. HOW TO MANAGER COOKIES THROUG THE BROWSER PREFERENCES

The consent to receive cookies may also be expressed and/or modified by the user, through specific browser configurations. Most browsers allow you to set rules to manage cookies sent only by some or all of the sites. This is an option that gives users finer control of privacy and enables them to deny the possibility of receiving cookies. Here are the directions for the management of cookies for the main browsers:

• Google
• Firefox
• Windows
• Safari

Civita Mostre e Musei S.p.A. would like to point out that the restriction of the use of cookies may however worsen the overall browsing experience for the user. This will affect the operation of some of the services provided by the websites.

5. USE OF COOKIES AND OTHER TRACKING TECHINIQUE

By using cookies, we or our services providers may collect data about your use of the Website and Services by using Internet server logs, cookies, JavaScript, tracking pixels, and/or other technologies. Tracking pixels (sometimes referred to as web beacons or clear GIFs) are tiny electronic tags with a unique identifier embedded in websites, online ads and/or email, and that are designed to provide usage information like ad impressions or clicks, measure popularity of the Services and associated advertising, and to access user cookies. We and/or our service providers may include Web beacons in email messages, newsletters, and other electronic communications to determine whether the message has been opened and for other analytics, personalization, and advertising. As we adopt additional technologies, we may also gather additional information through other methods.
We may use third parties such as network advertisers to serve advertisements on our Services or on third-party services that enable us, and third parties, to target advertisements to you. These third parties may use cookies, JavaScript, pixel/web beacons (including clear gifs), and other tracking technologies to measure the effectiveness of their ads and to personalize advertising content to you. These third parties’ practices are governed by their privacy policies, and not this one.
We may use third-party web analytics services on our Website and Services to collect and analyze the information discussed above, and to engage in auditing, research or reporting.
The information (including your IP address) collected by various analytics technologies described above will be disclosed to or collected directly by these service providers, who use the information to evaluate your use of the Services, including by noting the third-party website from which you arrive, analyzing usage trends, assisting with fraud prevention, and providing certain features to you.

6. RIGHTS OF THE DATA SUBJECT

The data subject can exercise specific rights set forth at Chapter III of EU Regulation 679/2016 (article 12 and following) at any moment, upon request to the Data Controller. In particular, the data subject has the right to be informed on the existence of personal data concerning such data subject, even if data are not yet registered, and to request its communication accordingly. The data subject shall have the right to obtain from the controller restriction of processing should one of the following applies:

• a) the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.

• b) the processing is unlawful, and the data subject opposes the erasure of the personal data and requests the restriction of their use instead

• c) the controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defense of legal claims.

• d) the data subject has objected to processing pursuant to Article 21(§1) pending the verification whether the legitimate grounds of the controller override those of the data subject.