Cookie policy
1. Introduction
In compliance with the provisions of Article 22.2 of Law 34/2002 on Information Society Services (LSSI), Canary Fly, S.L. – hereinafter, Canary Fly – hereby informs you that the installation of cookies is required for the proper browsing and use of this website.
2. Information on data protection. Article 13 GDPR:
Data collected via cookie technology will be processed on the basis of the data subject’s consent, where necessary (this will not apply to technical and personalisation cookies), and the purpose of installing and, consequently, processing personal data associated with the use of this technology will be:
- The configuration of technical security measures, personalisation, form completion, and the general basic functioning of the website, through the installation of technical cookies.
- To carry out statistical analyses of website usage by visitors and users, through the installation of analytical cookies.
- To facilitate users’ access to the website owner’s official accounts on various social media platforms, or their arrival at the premises via online map services; to provide information and third-party multimedia content, all through the installation of both technical and analytical third-party cookies.
The retention period for data collected by cookies will generally be as indicated in the table below in this document. The information in this document will be updated periodically. The retention period will begin upon the end of each user session on the website.
What is a cookie?
Cookies are files containing information that are downloaded to the user’s device when they visit a website. Their main purpose is to recognise the user each time they access www.canaryfly.es and they also allow us to improve the quality and usability of our website.
Cookies cannot harm the user’s computer or device and, if enabled in their browser settings, help us to identify and resolve any potential malfunctions on www.canaryfly.es.
Types of cookies
There are different types of cookies, which are grouped according to the following criteria:
- Session Cookies: Session cookies are valid only for the duration of your visit and are deleted when you close your browser. Their main purpose is to identify the type of device, support the website’s security or its basic functionality. They do not contain personal information that allows us to identify an individual.
- Persistent or Permanent Cookies: These are stored on your device’s hard drive and our website reads them every time you visit www.canaryfly.es; they have a specific expiry date, after which the cookie ceases to function. They allow us to identify your actions and preferences; analyse visits and help us understand how users arrive at our site and improve our services.
- Functionality Cookies: These allow www.canaryfly.es to remember decisions made by the user, such as their login or username, or search preferences. The information collected by these cookies is anonymised (i.e. it does not contain your name, address or other personal details).
- Third-Party Cookies: Third-party cookies are cookies installed by a website other than the one you are visiting; for example, those used by social media platforms (such as Facebook) or by external content plugins (such as Google Maps). Furthermore, some advertising companies use this type of file to track your visits to every site on which they advertise.
- Analytical Cookies: These are cookies intended for regular maintenance and to ensure the best possible performance and service for the user, by collecting data on user activity.
3. Use of cookies by www.canaryfly.es
Below is a list of the types of cookies we use on this website, as well as the specific cookies that may be installed whilst you browse the site, indicating their characteristics, owners, duration, purpose and other relevant information.
Technical cookies
First-party cookies
Provider: Canaryfly
| Name | Expiry | Description |
|---|---|---|
| cookiePolicy | 1 year | Cookie used to store the user’s preferences regarding acceptance of the cookie policy |
| lastBookingSearch | 1 year | Cookie used to improve the user experience and pre-load data from their last flight search |
| authTokenWeb | Session | Cookie containing the session ID of a user registered on the website |
Third-party cookies
Provider: Google
| Name | Expiry | Description |
|---|---|---|
| CONSENT | 9 years | Technical cookie to track cookie acceptance |
| DV | 10 minutes | Cookie used by Google to provide services and collect anonymous browsing data |
| OGP | 2 months | Cookie used to display geographical locations |
| OGPC | 3 months | Cookie used by Google to enable Google Maps |
| SIDCC | 4 months | Cookie used by Google to provide services and collect anonymous browsing data |
Provider: Google Recaptcha
| Name | Expiry | Description |
|---|---|---|
| _grecaptcha | 6 months | Spam protection. |
| rc::a | Persistebte | Distinguish humans from bots through behavioural analysis |
| rc::b | Session | Bot detection during the active session |
| rc::c | Session | User verification in forms |
| rc::f | Persistent | Automated risk and behavioural analysis |
Analytical cookies
Third-party cookies
Provider: Google Analytics
| Name | Expiry | Description |
|---|---|---|
| __utma | 2 years | Collects data on the number of times a user has visited the website, as well as the dates of the first and last visits. Used by Google Analytics. |
| __utmb | 1 day | Records a timestamp with the exact time the user accessed the website. Used by Google Analytics to calculate the duration of a visit to the website. |
| __utmc | Session | Records a timestamp with the exact time the user leaves the website. Used by Google Analytics to calculate the duration of a visit to the website. |
| __utmt | 1 day | Used to limit the rate of requests to the server. |
| __utmv | Session | Stores user-defined tracking parameters for use in Google Analytics. |
| _utmz | 6 months | Collects data on the user’s origin, the search engine used, the link clicked and the search term used. Used by Google Analytics. |
| _ga | 2 years | Used to send data to Google Analytics about the device and the visitor’s behaviour. Tracks the visitor across different devices and marketing channels. |
| _ga_<container-id> | 2 years | Used to send data to Google Analytics about the device and visitor behaviour. Tracks the visitor across different devices and marketing channels. |
| _gat | 1 day | Used by Google Analytics to limit the request rate. |
| _gid | 1 day | Registers a unique ID that is used to generate statistical data on how the visitor uses the website. |
Provider: Microsoft Clarity
| Name | Expiry | Description |
|---|---|---|
| _clck | 1 year | The user ID and Clarity preferences, which are unique to that site, are retained and attributed to the same user ID. |
| _clsk | 1 day | Links multiple page views from a user into a single Clarity session recording. |
| CLID | 1 year | Identifies the first time Clarity saw this user on any site using Clarity. |
| ANONCHK | 10 minutes | Indicates whether the MUID is transferred to ANID, a cookie used for advertising. Clarity does not use ANID, so this is always set to 0. |
| MR | 1 week | Indicates whether MUID should be updated. |
| MUID | 1 year | Identifies unique web browsers visiting Microsoft sites. These cookies are used for advertising, site analytics and other operational purposes. |
| SM | Per session | Used to synchronise the MUID across Microsoft domains. |
Advertising cookies
Third-party cookies
Provider: Google Ads + Campaign Manager 360 + Display & Video 360 + DoubleClick
| Name | Expiry | Description | Service |
|---|---|---|---|
| _gcl_au | 90 days / 3 months | Measure advertising effectiveness and conversions | Google Ads |
| ads/ga-audiences | Session | Remarketing and user re-engagement | Google Ads |
| pagead/1p-user-list/# | Session | Audience targeting and remarketing | Google Ads |
| IDE | 13 months / 1 year | Show personalised ads and measure conversions | DoubleClick / Campaign Manager 360 / DV360 |
| test_cookie | 15 minutes / 1 day | Check browser cookie compatibility | DoubleClick |
| DSID | 2 weeks | Link user activity across devices | DV360 / DoubleClick |
| id | 13 months | Unique advertising identifier | DoubleClick |
| receive-cookie-deprecation | 6 months | Transition management for the removal of third-party cookies | |
| pm_sess | 30 minutes | Advertising session persistence | Campaign Manager 360 |
| pm_sess_NNN | 30 minutes | Ad session persistence variant | Campaign Manager 360 |
| aboutads_sessNNN | 30 minutes | Consent and ad management | Google Ads / DV360 |
| ar_debug | 90 days | Ad debugging and technical validation | Google Ads / DV360 |
| FLC | 10 seconds | Limit ad display frequency | DoubleClick |
| APC | 6 months | Advertising configuration and optimisation | Google Ads |
| __eoi | 6 months | Ad fraud protection | |
| __gads | 13 months | Ad interaction measurement | Google Ads |
| FPAU | 90 days | Analytics and ad personalisation | Google Ads / DV360 |
| ANID | 13 months (EEA/UK) | Ad personalisation based on previous activity | |
| AID | 13 months / 540 days | Cross-device activity linking | Google Ads |
| TAID | 14 days | Link actions across devices and sessions | Google Ads |
| FPGCLDC | 90 days | Click measurement and conversion attribution | Google Ads |
| _gcl_dc | 90 days | Advertising conversion tracking | DoubleClick |
| RUL | 12 months | Ad repetition control | DoubleClick / DV360 |
| _gcl_aw | 90 days | Google Ads conversion attribution | Google Ads |
| _gcl_gs | 90 days | Consent and conversion management | Google Ads |
| 1P_JAR | 1 month | Advertising measurement and personalisation | Google Ads |
| DV | 24 hours | Technical and advertising information | Google Ads / DoubleClick |
Provider: Meta Ads
| Name | Expiry | Description |
|---|---|---|
| _fbp | 3 months | Used by Facebook to offer a range of advertising products, such as real-time bidding for external advertisers. |
| _fbc | 3 months | This cookie is used by Facebook to display personalised adverts based on the user’s behaviour and preferences across various websites. The cookie contains an encrypted identifier that allows Facebook to identify the user across different websites. |
| fr | 3 months | This cookie is used for Facebook ad targeting. |
| tr | Session | Advertising tracking and conversion measurement |
| datr | 1 year and 1 month | Fraud prevention. |
Provider: TikTok Ads
| Name | Expiry | Description |
|---|---|---|
| _ttp | 13 months | To measure and improve the performance of your advertising campaigns and to personalise the experience (including adverts) on TikTok. |
| ttcsid_, ttcsid_<pixel code> | 13 months | To measure and improve the performance of your advertising campaigns and to personalise the user experience (including adverts) on TikTok. |
| ttclid | 13 months | To measure and improve the performance of your advertising campaigns and to personalise the customer experience (including adverts) on TikTok. |
| _pangle | 13 months | To measure and improve the performance of your advertising campaigns and personalise the advertising experiences provided by TikTok’s Pangle advertising network. |
| _ttp | 13 months | To measure and improve the performance of your advertising campaigns and to personalise the experience (including adverts) on TikTok. |
| _tt_enable_cookie | 13 months | Enable TikTok tracking and measurement |
| tt_pixel_session_index | Session | Associate events with a specific session. |
| tt_appInfo | Session / variable | Technical information about the browser/device |
Provider: Spotify Ads
| Name | Expiry | Description |
|---|---|---|
| sp_adid | Session | Used to identify and track users for advertising purposes. |
| sp_dc | 1 year | Related to the management of user sessions and preferences on Spotify. |
| sp_gaid | 18 days | Used to collect analytical data on the use of Spotify services. |
| sp_key | 1 year | Used for authentication or security functions on Spotify. |
| sp_landing | 1 day | Set by Spotify to embed audio content on the website and record information about user interaction with that content. |
| sp_landingref | 1 day | Used to track referrals or traffic sources to embedded Spotify content. |
| sp_m | 1 year | Management of user preferences or settings on Spotify. |
| sp_t | 1 year | Set by Spotify to embed audio content on the website and record information about user interaction with that content. |
Provider: Microsoft Advertising
| Name | Expiry | Description |
|---|---|---|
| _uetsid | Persistent | Used to track visitors across multiple websites in order to display relevant adverts based on the visitor’s preferences. |
| _uetsid | 1 day | Bing uses this cookie to determine which adverts to display that may be relevant to the end user browsing the site. |
| _uetsid_exp | Persistent | Contains the expiry date of the cookie with the corresponding name. |
| _uetvid | Persistent | Used to track visitors across multiple websites, in order to display relevant adverts based on the visitor’s preferences. |
| _uetvid | 1 year | Used to track visitors across multiple websites in order to display relevant adverts based on the visitor’s preferences. |
| _uetvid_exp | Persistent | Contains the expiry date of the cookie with the corresponding name. |
| MSPTC | 1 year | This cookie records visitor data. This information is used to optimise the relevance of advertising. |
| MUID | 1 year | Microsoft uses this widely as a unique user identifier. This cookie enables user tracking by synchronising the identifier across various Microsoft domains. |
Vendor privacy policies:
- Google: https://policies.google.com/privacy?hl=es
- Facebook: https://www.facebook.com/privacy/explanation
- Atdmt: https://cx.atdmt.com/
- Verizonmedia: https://www.verizonmedia.com/policies/ie/es/verizonmedia/privacy/index.html
- Microsoft: https://privacy.microsoft.com/es-es/privacystatement
4. Cookie settings depending on the browser used
At Canaryfly, in compliance with current legislation, we provide you with information to help you configure your web browser to maintain your privacy and security in relation to cookies. We therefore provide you with information and links to the official support sites of the main browsers so that you can make an informed decision.
If you use several computers in different locations, you will need to ensure that each computer is configured according to your preferences.
You can block cookies using your browser’s settings, or you can configure your browser to notify you when a server attempts to store a cookie:
- If you use Microsoft Internet Explorer, go to the Tools menu > Internet Options > Privacy > Settings.
To find out more, visit: http://windows.microsoft.com/es-es/windows-vista/block-or-allow-cookies - If you use Firefox, go to the menu option Tools > Options > Privacy > Cookies.
To find out more, visit: http://support.mozilla.org/es/kb/habilitar-y-deshabilitar-cookies-que-los-sitios-we - If you use Chrome, go to the Options section > Advanced > Privacy.
To find out more, visit: http://support.google.com/chrome/bin/answer.py?hl=es&answer=95647 - If you use Opera, you can configure the browser in the Security and Privacy section.
To find out more, visit: https://help.opera.com/en/latest/security-and-privacy/
If you do not use any of the browsers mentioned above, you will need to select the ‘cookies’ option in the ‘Help’ tab to find out where the cookies folder is located.
5. Cookies on social media and internet services
- Twitter: Data Protection and Cookies Policy https://twitter.com/privacy
- LinkedIn: Cookies on the LinkedIn website http://es.linkedin.com/legal/cookie-policy
- YouTube: http://www.google.com/policies/privacy/
- Facebook and Instagram: https://es-es.facebook.com/privacy/policy/?entry_point=facebook_page_footer
- Spotify: https://www.spotify.com/es/legal/cookies-policy/
- TikTok: https://www.tiktok.com/legal/page/global/tiktok-website-cookies-policy/es
6. Updates to this policy
Web platforms and all online tools are constantly evolving, as is the technology they use to maximise the performance of their services. Therefore, it is highly likely that in the future there will be changes relating to the types of cookies, the partners we work with, retention periods or the legal basis for the processing carried out. For this reason, Canaryfly undertakes to keep this cookie policy as up to date as possible, as well as the information provided via the installed cookie management tool.
If any of the changes introduced require your consent, we will inform you of this in advance, or when you access the website itself.
7. Marketing
1. Google Tag Manager
Our website uses Google Tag Manager. “Google” comprises a group of companies, including Google Ireland Ltd (the service provider), with its registered office at Gordon House, Barrow Street, Dublin 4, Ireland; Google LLC, with its registered office at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; and other companies affiliated with Google LLC.
Google Tag Manager is a service that allows you to manage any tracking tags on a website via a user interface.
Google Tag Manager is used to implement tags that measure traffic and user behaviour on our website. It does not access or store personal data, but it may activate other tags that do so, without having access to the information they collect.
Disabling cookies, whether at domain level or for individual cookies, will apply to all tracking tags implemented via Google Tag Manager.
For further information about the Google Tag Manager terms of service and Google’s privacy policy, please visit Google’s website:
https://marketingplatform.google.com/intl/es/about/analytics/tag-manager/use-policy/ https://policies.google.com/privacy?hl=es
2. Google Consent Mode (Advanced)
Canaryfly provides its users, via its cookie consent banner, with the ability to decide how third-party cookies are managed and used.
This banner allows you to decide whether to accept the use of third-party cookies for Performance or Marketing purposes.
Due to the obsolescence of third-party cookies, our website uses “Google Consent Mode V2.0 Advanced”. With this consent mode, users who accept Performance cookies via our banner consent to their information being collected for the purposes of analysis and conversion tracking in an encrypted “User-provided data” format (see point 3.1). On the other hand, for users who reject these cookies, their IP address is anonymised and only an anonymous ping is sent to Google Analytics (Point 3), without any identifiable information, for the purpose of data modelling and report optimisation.
Users who accept Marketing cookies via our consent banner allow personalised adverts to be shown to them and for some of their data to be shared in encrypted form for remarketing purposes (see point 4.1), as well as to improve conversion measurement through “Enhanced Conversions” (see point 4.2). They also agree to be included in customer segmentation, the list of which is shared with Google Ads in encrypted form (see point 4.4). If users do not give their consent, only an anonymous ping will be sent to Google Ads, without any identifiable data, for data modelling and campaign optimisation.
In Google Analytics and Google Ads, data is encrypted rather than stored in plain text. Therefore, anonymisation and the right to erasure do not affect the User-Provided Data and Enhanced Conversions features. The algorithm (SHA-256) ensures that the encrypted data cannot be reversed to its original form, thereby maintaining the integrity, anonymity and privacy of users.
3. Google Analytics
Our website uses Google Analytics, a web analytics service provided by Google Ireland Limited (https://about.google/intl/es_ALL/), Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
This platform collects data from users who visit our website. This data is used to generate reports with performance statistics that are useful to our company. Furthermore, this data is also used for advertising and marketing purposes.
The information collected is subject to the consent given via our cookie consent banner. For a full explanation, please refer to the section entitled “Google Consent Mode (Advanced)” (see point 2).
User consent forms the legal basis for the use of Google Analytics tracking. This consent may be withdrawn at any time via the cookie settings on our website.
3.1 User-provided data collection
In Google Analytics, the collection of user-provided data (“User-provided data collection”) will be enabled only if consent has been given for Performance and Marketing cookies. This feature uses a secure, one-way hash algorithm (SHA-256) to encrypt the data before it is sent to Google Analytics. The primary purpose of this functionality is to improve the accuracy of measurement data and optimise the enhanced features of Google Analytics, without relying on third-party cookies, which are expected to be phased out in the future.
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
The collection of the data provided will allow us to gain a more comprehensive view of measurement and attribute conversions more fully, as well as link your encrypted data to identify interactions with Google Ads that might not be detected in the future without cookies or other user identifiers.
If consent has not been given via the cookie banner, this advanced option will only send an anonymous ping to the Google Analytics tool for the purpose of data modelling and report optimisation, and will not collect any encrypted data. The Google Analytics Help Centre contains a summary of data usage in Google Analytics and the measures Google implements to protect that data.
You can find further information on the Google Analytics Terms of Service and on data protection at Google in the respective documents.
4. Google Ads (formerly Google AdWords)
On our website, we use Google Ads, a service provided by Google Ireland Limited, based at Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads is a paid online advertising tool that allows us to create adverts and display them to users when they are actively searching for services such as those we offer.
The user’s consent forms the legal basis for the use of Google Ads tracking. This consent may be withdrawn at any time via the cookie settings on our website.
This tool may be used on our website for the following purposes:
4.1 Remarketing
On our website, we use the Google Ads remarketing feature to display adverts based on visitors’ interests on other sites within the Google network, such as YouTube, Display, etc. We analyse visitors’ interactions so that we can show them targeted advertising even after they have left our website. To do this, users will be included in audience lists within Google Ads. This feature will only be activated if the user consents to Marketing cookies (see point 2).
No user information will be sent to Google Ads if the user has not given their consent via the cookie banner to marketing cookies, nor will they be included in these audiences.
4.2 Enhanced conversions
Due to the obsolescence of third-party cookies, Canaryfly has implemented the Google Ads “Enhanced Conversions” feature for its paid advertising campaigns. This feature shares your encrypted personal data to ensure that adverts reach the target audience and to measure the impact of campaigns on the platform more accurately.
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
Before your data is shared, it is encrypted using the SHA-256 algorithm so that it can be matched against an existing customer database and to prevent its use for other purposes.
This data will only be shared with Google Ads if you have accepted marketing cookies. This consent will be transmitted to Google Ads via “Google Consent Mode (Advanced)” (see point 2).
Only an anonymous ping will be sent to the Google Ads tool, without including any information that could identify the user, for those users who have not given their consent via the cookie banner. This is done for the purpose of data modelling and optimising paid campaigns (see point 2).
4.3 Offline conversions
If you have given your consent for marketing purposes via the cookie banner, you agree that your data may be shared in encrypted form with Google Ads using the SHA-256 algorithm. This will allow us to improve the accuracy of our offline conversion measurement by uploading click-through conversions containing encrypted user identifiers and some optional additional details that may help link the conversion to the advert that generated the lead.
The data that may be collected and shared is as follows: (email, telephone number, first name, surname, street, town, region, country or postcode).
No user information will be sent to Google Ads if the user has not given their consent via the cookie banner for Marketing cookies.
4.4 Customer Match
By giving your consent for marketing purposes via the cookie banner, the Google Ads Customer Match functionality will be activated. This means that your data will be shared in encrypted form with Google Ads using the SHA-256 algorithm. The aim is to create user segmentation lists to offer you personalised adverts, include you in remarketing audiences and optimise our Google Ads advertising campaigns.
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
No user information will be sent to Google Ads if the user has not given their consent via the cookie banner for marketing cookies.
For further details on how Google manages data in its adverts and how it uses cookies in them, please refer to Google’s Privacy Policy and the ‘Technologies’ section of the Google website, respectively.
5. Meta Ads (formerly Facebook Ads)
We use Meta Ads as Meta’s paid advertising tool for advertising campaigns on Facebook, Instagram, WhatsApp, Messenger, Threads, and others.
If you have given your consent for marketing purposes via the cookie banner, our website will use the Meta pixel, Meta Conversion API and the custom audience pixel from Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (Facebook)). These pixels automatically collect and store data (IP address, time of visit, device and browser information, and information about your use of our website) based on specific events defined by us (such as visiting a webpage or signing up for our newsletter). This data is used to generate performance reports for our campaigns and analyses for marketing purposes. The use of the Meta pixel and the Conversion API is based on your consent, which can be withdrawn at any time via the cookie settings on our website.
5.1 Remarketing
If you have given your consent for marketing purposes via the cookie banner, you will be included in audiences within this platform, which will allow us to show you personalised adverts and to optimise our campaigns.
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
If you have not given your consent via the cookie banner, no user information will be sent to Meta Ads.
5.2 Advanced matching
Meta’s conversion tracking pixel tracks the actions of users who have consented to marketing cookies via the cookie banner. This tracking takes place after users click on an advert and is used to optimise advertising campaigns on Meta, as well as for statistical purposes.
As part of what is known as ‘Advanced matching’, information is also collected and stored in hashed form for matching purposes, which can be used to identify individuals (e.g. names, email addresses and telephone numbers). For this purpose, the Meta pixel automatically sets a cookie when you visit our website, which enables automatic recognition of your browser when you visit other websites using a pseudonymous cookie identifier.
Meta combines information from the pixels or the Conversion API with other data from the user’s Meta account to create reports on website activity and provide other services related to website usage. These services include personalised and targeted advertising. We have no control over the data processing carried out by Meta; we only receive statistical data based on Meta’s pixels or the Conversion API.
The data that may be collected and shared is as follows: (email, telephone number, first name, surname, street, town, region, country or postcode).
If you have not given your consent via the cookie banner, no identifiable user information will be sent to Meta Ads.
5.3 Offline conversions
If you have given your consent via the cookie banner, your data will be shared in encrypted form with Meta Ads for marketing purposes. This will allow us to increase the accuracy of our offline conversion measurement by uploading click-through conversions containing hashed user identifiers and other optional details that help link the conversion to the advert that generated the lead. This encryption method converts the data into random codes that cannot be reversed or decrypted, ensuring that the information provided remains unreadable.
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
If you have not given your consent via the cookie banner, no identifiable user information will be sent to Meta Ads.
Meta processes data in accordance with Facebook’s Data Policy.
6. Spotify Ads
We use Spotify Ads as a paid advertising tool for advertising campaigns on the Spotify platform. The provider of this service is Spotify AB, Regeringsgatan 19 SE-111 53, Stockholm, Sweden. According to Spotify, the data collected is also transferred to the US (Spotify Ad Analytics, 4 World Trade Center, 150 Greenwich Street, New York, pursuant to the Standard Contractual Clauses or the EU-US Adequacy Decision).
If you have given your consent for marketing purposes in the cookie banner, our website will use the Spotify pixel and the Spotify Conversion API. These pixels automatically collect and store data (IP address, time of visit, device and browser information, and information about your use of our website) based on specific events defined by us (such as visiting a webpage or subscribing to our newsletter). This data is used to generate performance reports for our campaigns and analyses for marketing purposes.
The use of the Spotify pixel and the Conversion API is based on your consent, which can be withdrawn at any time via the cookie settings on our website.
As site operators, we have no influence over how Spotify uses the data, and Spotify is responsible for its own data protection practices.
6.1 Remarketing
If you have given your consent for marketing purposes in the cookie banner, you will be included in audiences within this platform, which will allow us to show you personalised adverts and to optimise our campaigns.
The data that may be collected and shared is as follows: (email, telephone number, first name, surname, street, town, region, country or postcode).
If you have not given your consent via the cookie banner, no user information will be sent to Spotify Ads.
6.2 Alias matching
The Spotify conversion tracking pixel tracks the actions of users who have consented to marketing cookies via the cookie banner. This tracking takes place after users click on an advert and is used to optimise advertising campaigns on Spotify Ads, as well as for statistical purposes.
As part of what is known as “alias matching”, information is also collected and stored in hashed form for matching purposes, which can be used to identify individuals (e.g. names, email addresses and telephone numbers). For this purpose, the Spotify pixel automatically sets a cookie when you visit our website, which enables automatic recognition of your browser when you visit other websites using a pseudonymous cookie identifier.
Spotify combines information from the pixels or the Conversion API with other data from the user’s Spotify account to generate reports on website activity and provide other services related to website usage. These services include personalised and targeted advertising. We have no control over the data processing carried out by Spotify; we only receive statistical data based on the Spotify pixels or the Conversion API.
The data that may be collected and shared is as follows: (email, telephone number, first name, surname, street, town, region, country or postcode).
If you have not given your consent via the cookie banner, no personally identifiable user information will be sent to Spotify Ads.
Data processing by Spotify is carried out in accordance with Spotify’s Data Policy.
7. Display & Video 360 (DV360)
Our website uses Display & Video 360 (DV360), a programmatic advertising management platform owned by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). DV360 enables us to manage advertising campaigns on Google’s display and video network, including audience targeting, bid optimisation and performance measurement.
The user’s consent (via the cookie banner for marketing cookies) forms the legal basis for the use of DV360. This consent may be withdrawn at any time via the cookie settings.
7.1 Remarketing
On our website, we use the Display & Video 360 remarketing feature to display adverts based on visitors’ interests on other sites within the Google network, such as YouTube, Display, etc. We analyse visitors’ interactions so that we can show them targeted advertising even after they have left our website. To do this, users will be added to audience lists within Display & Video 360. This feature will only be activated if the user consents to Marketing cookies (see point 2).
No user information will be sent to Display & Video 360 if the user has not given their consent to marketing cookies via the cookie banner, nor will they be included in these audiences.
7.2 Enhanced Conversions
To improve the accuracy of conversion measurement and compensate for the obsolescence of third-party cookies, we use the Enhanced Conversions feature in DV360. This type of measurement allows encrypted personal data to be shared with Google using the SHA-256 algorithm, ensuring that the information cannot be reversed to its original form.
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
This data is used to:
- Attribute conversions more accurately.
- Optimise advertising campaigns on the DV360 network.
- Create custom audiences for remarketing.
This feature is only activated if the user accepts Marketing cookies in the cookie banner. If consent is not given, DV360 will only receive an anonymous ping for data modelling.
7.3 Customer Match
If you have given your consent for marketing purposes via the cookie banner, the Display & Video 360 Customer Match feature will be activated. Upon acceptance, your data will be shared in encrypted form with DV360 using the SHA-256 algorithm. This will allow us to include you in user segmentation lists to offer you personalised adverts, include you in remarketing audiences, and optimise our DV360 advertising campaigns.
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
No user information will be sent to DV360 if the user has not given their consent via the cookie banner for marketing cookies.
For further details on how Google manages data in its adverts and how it uses cookies in them, please refer to Google’s Privacy Policy and the “Technologies” section of the Google website, respectively.
8. Campaign Manager 360
We use Campaign Manager 360 (formerly DoubleClick Campaign Manager), a service provided by Google Ireland Limited, to manage and measure the performance of our advertising campaigns across multiple channels. This tool allows us to:
- Track ad impressions and clicks.
- Measure conversions attributed to specific campaigns.
- Generate consolidated performance reports.
User consent (for marketing cookies) is the legal basis for their use. If consent is not given, Campaign Manager 360 will be limited to processing anonymous data for statistical modelling.
8.1 Data collected
If consent is given via the marketing cookie banner, the following data will be collected:
- Cookie ID.
- Interactions with adverts (clicks, impressions).
- Conversion data (encrypted using SHA-256, if Enhanced Conversions are enabled). The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
For further details, please visit Google’s Partner Policy.
9. TikTok Ads
Our website uses TikTok Ads, an advertising platform operated by TikTok Technology Limited (10 Earlsfort Terrace, Dublin, D02 T380, Ireland). TikTok Ads allows us to display personalised adverts on the TikTok platform and measure their effectiveness.
User consent (for marketing cookies) is the legal basis for the use of the TikTok pixel and the conversion API. It can be withdrawn at any time via the settings on our cookie banner.
9.1 Features
- Remarketing: Displaying adverts to users who have visited our website, provided they have accepted marketing cookies.
- Enhanced conversions: Using SHA-256 encryption of data such as email or phone number to attribute conversions more accurately.
- Audience targeting: Creating custom lists based on interactions with our site.
9.2 Data collected
If consent is given via the marketing cookie banner, the following data will be collected:
- Conversion events.
- Demographic data (age, gender, approximate location).
- Conversion data (encrypted using SHA-256, if Advanced Matching is enabled).
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode). If Marketing cookies are not accepted, TikTok Ads will not receive any data.
You can view TikTok’s Privacy Policy.
10. Microsoft Advertising (formerly Bing Ads)
We use Microsoft Advertising or Microsoft Ads on our website. This service is operated by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521.
Microsoft Ads is an online advertising system that we use to promote and optimise our services. We track specific actions taken by users who click on our Microsoft Bing ads via the Microsoft Ads conversion and tracking tool. Please note that this tool will only be activated if you have accepted our marketing cookies via our cookie consent banner.
User consent forms the legal basis for the use of Microsoft Ads tracking. This consent may be withdrawn at any time via the cookie settings on our website.
We may use Microsoft Ads for the following purposes:
10.1 Remarketing
On our website, we use the Microsoft Ads remarketing feature to display personalised adverts to visitors, based on their interests, on other websites within the Microsoft advertising network. This is achieved by creating remarketing lists that allow us to target audiences and optimise our Microsoft Ads campaigns. This functionality will only be activated if you consent to the use of marketing cookies.
For users who have not given their consent via the cookie banner, no user information will be sent to Microsoft Ads.
10.2 Enhanced Conversions
Due to the obsolescence of third-party cookies, we have implemented the Microsoft Ads “Enhanced Conversions” feature for our paid advertising campaigns. This feature shares encrypted personal data to ensure that adverts reach the target audience and to measure the impact of paid advertising campaigns on the Microsoft Ads platform more accurately.
The data that may be collected and shared includes your email address or telephone number, which will be encrypted using the SHA-256 algorithm before being shared. This encryption ensures that your personal data is only compared against existing customer databases and is not used for any other purposes. Data will only be shared with Microsoft Ads if you have accepted marketing cookies.
For users who have not given their consent via the cookie banner, no user information will be sent to Microsoft Ads.
10.3 Offline conversions
If you have given your consent for marketing purposes via the cookie banner, you agree to your data being shared in encrypted form using the (SHA-256) with Microsoft Ads, which will allow us to improve the accuracy of our offline conversion measurement by uploading click-through conversions containing hashed user identifiers and some optional additional details that may help link the conversion to the advert that generated the lead.
The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
For users who have not given their consent via the cookie banner, no user information will be sent to Microsoft Ads.
10.4 Customer Match
If you have given your consent for marketing purposes via the cookie banner, the Microsoft Ads Customer Match feature will be activated. Upon acceptance, your data will be shared in encrypted form with Microsoft Ads using the SHA-256 algorithm. This will allow us to include you in user segmentation lists to offer you personalised adverts, form part of remarketing audiences and optimise our Microsoft Ads advertising campaigns. The data that may be collected and shared is as follows: (email address, telephone number, first name, surname, street, town, region, country or postcode).
For users who have not given their consent via the cookie banner, no user information will be sent to Microsoft Ads.
Please refer to Microsoft’s privacy policy for more information on how Microsoft Ads protects your data and uses cookies: https://privacy.microsoft.com/es-es/privacystatement
11. Microsoft Clarity
Microsoft Clarity, a web analytics tool from Microsoft Corporation (One Microsoft Way, Redmond, WA 98052-6399, USA), is integrated into this website. Microsoft Clarity processes data and transfers it to the USA, where there is no adequate level of data protection. To comply with European data protection regulations, Microsoft uses Standard Contractual Clauses.
Microsoft Clarity processes data every time someone visits our website. This includes information on how users interact with the site, such as where they click and how they scroll through the page. Microsoft may receive, process and use this information to analyse user behaviour.
Data processing is carried out only with your consent, via the Performance cookies in our cookie banner. Microsoft Clarity adheres to European data protection standards, although the transfer of data to countries without a level of data protection equivalent to that of the EU entails risks.
For more detailed information on how Microsoft Clarity collects, uses and protects data during the analysis process, please refer to Microsoft’s privacy statement. This statement describes Microsoft’s privacy practices and how they apply to data processed by Microsoft Clarity, including details on data collection, use, storage and disclosure. By reviewing the privacy statement, you can better understand how your data is handled and what security measures are in place to protect your privacy when you use services that incorporate Microsoft Clarity.
Is this policy subject to change?
This policy may be amended in line with new legal requirements or obligations. Should any significant changes be made, users will be notified via a notice on the website.
Last modified: 08/05/26
Download now the Canaryfly App!
Canaryfly © 2012-2026
Secure SSL
