Skip to content
Nextaplatform

Information notice

Privacy Policy

Last updated:

This notice is provided pursuant to arts. 13 and 14 of Regulation (EU) 2016/679 («GDPR») and Italian Legislative Decree 196/2003 («Privacy Code») to all visitors of nextaplatform.it and nextaplatform.com.

1. Data controller

Nextaplatform S.r.l. a socio unico (single-shareholder Italian limited liability company), Via Tiburtina 912 — 00156 Rome, Italy. Share capital € 10,000.00 fully paid up. Italian VAT, fiscal code and REA registration number: pending assignment (will be indicated upon completion of registration with the Italian Chamber of Commerce). Email: privacy@nextaplatform.com (in activation; in the transitional phase please write to info@nextaplatform.com).

2. Data processed

  • Browsing data: IP addresses, server logs, user agent, requested pages, timestamps. Collected automatically for technical and security purposes.
  • Data provided via contact form: name, email, optional company/organisation, request type, message.
  • Data collected via cookies: see the dedicated Cookie Policy.

3. Purposes and legal basis

  • Operating the website and related services — legal basis: legitimate interest of the Controller (art. 6.1.f GDPR).
  • Responding to requests submitted via the form — legal basis: pre-contractual measures / contract performance (art. 6.1.b GDPR).
  • Fulfilling legal obligations — legal basis: legal obligation (art. 6.1.c GDPR).
  • Aggregated site statistics (only with consent) — legal basis: consent (art. 6.1.a GDPR).

4. Retention

Technical logs: up to 12 months unless extended for security purposes or legal obligations. Contact form data: 24 months from last interaction, unless a contractual relationship is established. Statistical data with consent: retained only for the time strictly necessary for the statistical purpose.

5. Recipients

Data may be processed by parties acting on behalf of the Controller (processors under art. 28 GDPR), including:

  • Hosting and CDN providers (Netlify, Inc. — US-based, with EU Standard Contractual Clauses in place).
  • Email and form processing providers.
  • Professional consultants under contract.

Data is not disseminated and is not used for automated profiling.

6. Transfers outside the EU

Some providers (in particular Netlify) are headquartered in or transfer data to the United States. Such transfers take place under the Standard Contractual Clauses adopted by the European Commission (Decision 2021/914/EU).

7. Data subject rights

Data subjects may exercise the rights set out in arts. 15-22 GDPR: access, rectification, erasure, restriction, portability, objection, withdrawal of consent. To exercise these rights: privacy@nextaplatform.com.

A complaint may also be lodged with the Italian Data Protection Authority (www.garanteprivacy.it).

8. Changes

This notice may be updated. The current version is published on this page with the relevant update date.