Privacy Policy

This Privacy Policy explains how B-ZERO S.R.L. collects, uses, and discloses user information while providing its service. It also outlines user privacy rights and how they are protected by law. This Policy is governed by EU Regulation 2016/679 (GDPR), Legislative Decree No. 101 of 2018 and practices as expressed by the Authority and the Privacy Guarantor.

By using the service, you agree to the terms of this Policy, which is intended to inform you about the processing of your personal data.

The capitalized words have specific meanings defined under this policy. These definitions apply whether the words are singular or plural.

For the purposes of this Privacy Policy:

• Account referrs to a unique account created for users to access B-ZERO S.r.l.'s services.
• Company/B-ZERO S.r.l.(referred to as “Company”): B-ZERO Srl, registered at Via Vannetti 8, 38068 Rovereto (TN), Italy.
• Consent of the data subject (referred to as “Consent”) referrs to any freely given, specific, informed, clear and explicit indication of the data subject’s wishes by which they agree to the processing of their Personal Data.
• Country: Italy, where B-ZERO S.r.l. is based, and the rest of the world where it may provide services.
• Device referrs to any device that can access B-ZERO S.r.l.'s service such as a computer, cellphone, or digital tablet.
• Personal Data referrs to any information relating to an identified or identifiable natural person (referred to as “Data subject”). An identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
• Navigation Data referrs to any information acquired by the computer systems and procedural software responsible for the operation of this site during their normal operation. This is personal data whose transmission is implicit in the use of Internet communication protocols. This category includes IP addresses, addresses in URI/URL (Uniform Resource Identifier/Locator) notation, the time of the request, the type of request, the size of the outgoing packet, the status of the response given by the server (received, error, etc.) and other parameters related to the operating system.
• Processing referrs to any operation or set of operations performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
• Services referrs to the website (notarify.io), the platform and its tools.
• Service Provider any natural or legal person who processes data on behalf of the Company. This includes third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service, or to assist the Company in analysing how the Service is used.
• Third-party Social Media Service referrs to website or social network website through which a user can log in or create an account to use the Service.
• Usage Data referrs to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (e.g., the duration of a page visit).
• Website: https://www.notarify.io
• Data Controller: depends on the type of service used or data used for navigation, registration, and use of the platform: data controller is B- ZERO SRL, Via Vannetti 8, 38068 Rovereto (TN), Italy.

For data used for navigation, registration and use of the platform, the data controller is B-ZERO SRL, Via Vannetti 8, 38068 Rovereto (TN), Italy. Since its activity does not require regular and systematic user monitoring on a large scale, the Company has not appointed any data protection officer

The data is collected and managed for the purposes and within the times indicated below:

The platform has not been designed to monitor personal data, nor to store "special categories" of personal data, including race or ethnicity, religious or philosophical beliefs, sexual life and orientation, political opinions, trade union membership, health information. We use tracking cookies and monitor user behavior within the site only with the aim of improving the user experience.

Legal Basis for Processing
The Company processes Personal Data on the basis of the contractual relationship accepted during registration. The Company may also process Personal Data on the basis of its legitimate interest and/or to fulfil a legal obligation. Additionally, Personal Data may be processed for specific purposes if the user has given clear and explicit consent.

When using our service, we may ask for certain personally identifiable information, such as your name, email address, phone number, and address. We may also collect information about you through other providers or organizations, as part of their data collection policies and with your consent.

We automatically collect usage data when you use our service, such as your device's IP address, browser type, pages you visit, time and date of visit, and other diagnostic data. When you access our service through a mobile device, we may also collect information such as your mobile device type and unique ID.

We use your personal data for the following purposes:

• to provide and maintain our service, and to monitor its usage;
• to manage your account and provide you with access to different service functionalities;
• to perform a contract, such as a purchase contract for products or services;
• to contact you regarding updates or informative communications related to our service, products, or contracted services;
• to provide you with news, special offers, and general information about our goods, services, and events, unless you opt not to receive such information;
• to manage your requests to our company;
• For business transfers, such as a merger, sale of assets, or acquisition of our business by another company;
• For other purposes, such as data analysis, identifying usage trends, and improving our service, products, services, marketing, and user experience.

We may share your personal data with the following parties:

• service providers to monitor and analyse service usage, and to contact you;
• business partners to offer you certain products, services, or promotions;
• Affiliates, such as our parent company or subsidiaries, who are required to honour this privacy policy;
• other users, if you share personal data or interact in public areas. If you register through a third-party social media service, your contacts on that service may see your name, profile, pictures, and activity description.
• with your explicit consent, for any other purpose.

We will retain your personal data only as long as necessary to comply with legal obligations, resolve disputes, enforce our agreements and policies, and to maintain service security and functionality.

We will also retain usage data for internal analysis purposes. Usage data is generally retained for a shorter period of time, except when needed for security or legal reasons.

The user's Personal Data will be processed in a manner that ensures sufficient security and confidentiality, preventing unauthorized access or use of the Data and the instruments used for processing. The processing and storage of Personal Data will comply with the principles of necessity, data minimization, and limitation of storage periods, using technical and organizational measures appropriate to the level of risk involved.

Regarding the biometric data required to perform the biometric signature, the service makes use of some archival capabilities offered by Amazon.com Inc, and Amazon Web Services: in this regard, please refer to the privacy policy of the third party (https://aws.amazon.com/privacy/). Before using such a service, the user is asked for express consent to the transfer of biometric data on the basis of such agreement and notice.

The user's information, including Personal Data, may be processed at the Company's operating offices or other locations where the parties involved in the processing are located. This means that the information may be transferred to computers located outside the user's state, province, country, or other governmental jurisdiction, where the Data protection laws may differ from those in the user's jurisdiction. By consenting to this Privacy Policy and submitting their information, users agree to such transfers. The Company will take all reasonable steps to ensure that the Data is treated securely and in accordance with this Privacy Policy, and no transfer of the user's Personal Data will occur to an organization or country without adequate controls in place, including security measures.

If the Company is involved in a merger, acquisition, or asset sale, the user's Personal Data may be transferred. The Company will provide notice befo's transfer occurs and before the user's Personal Data becomes subject to a dif's Privacy Polic's Under certain circumstances, the Company may be required to disclose the user's Personal Data if required to do so by law or in response to valid reque's public authorities. The Company may also disclose the Data in good fa's comply with a legal obligation, protect and defend the rights or property 's Company, prevent or investigate possible wrongdoing, protect the personal 's of users or the public, or protect against legal liability.

The Company agrees to use administrative, physical, and technical safeguards designed to protect the user's Data from unauthorized access, disclosure, acquisition, destruction, use, or modification. The Company shall also adhere to any applicable law relating to Data security and implement an adequate cybersecurity framework based on nationally recognized standards. If the user is under 18 years old, the Company will not knowingly collect personally identifiable information, and if the Company becomes aware of such information being collected, it will take steps to remove it from their servers.

The Service may contain links to third-party websites, and the Company advises users to review the Privacy Policy of every site visited. The Company has no control over the content, privacy policies, or practices of any third-party sites or services neither assume any responsibility over the data usage.

Users have several rights in relation to their personal data. They have the right to request access, rectification, or deletion of this information, the right to restrict or object to processing, and, under certain circumstances, the right to data portability. If a user has given consent to the processing of their data, they have the right (under certain circumstances) to withdraw that consent at any time. A data subject who wishes to exercise the above rights is requested to send an e- mail to legal@notarify.io.

The Company may update this Privacy Policy from time to time and will notify users of any changes by posting the new Policy on the website. The Company will also let users know via email prior to any change becoming effective and update the "Last updated" date at the top of the Privacy Policy. Users are advised to review the Policy periodically for any changes, and if they have any questions, they can contact the Company at legal@notarify.io.