Notice for Users of the "InimTech Security" App

‘INIM ELECTRONICS S.R.L’ Sole Proprietor Company (henceforth also ‘INIM’ or ‘Supplier’) thanks you for your interest in this App. Protecting your privacy as a User of the Installer App (henceforth ‘User’ or ‘Users’ or ‘Installer(s)’) is an important concern for ‘INIM’.
Hereinafter “INIM” informs you about the processing of personal data carried out in relation to the App. “Personal data” is information that refers to an identified or identifiable natural person.
This Policy supplements that of the INIM CLOUD to which reference should be made for everything not mentioned in detail herein.

1. THE DATA CONTROLLER AND THE DATA PROTECTION OFFICER (DPO)

The Holder is “INIM Electronics S.R.L.” Sole Proprietor Company with registered office in Monteprandone (AP), Locality Centobuchi, Via dei Lavoratori n.10. Tax Code and VAT no. 01855460448.
INIM has appointed a data protection officer (DPO) who can be contacted at the address: dpo@inim.it.

2. WHAT IS THE LEGAL AND REGULATORY FRAMEWORK FOR THE PROCESSING OF YOUR DATA

2.1 Categories of data

“INIM” processes the personal data the User provides when registering on the INIM CLOUD with an Installer User profile and the installation and use of the App. Consent to the transmission of such data is not mandatory by law, nor necessary for the purposes of entering into a contractual agreement, however, any refusal or withdrawal of consent, may compromise the proper functioning of the App or limit its use. The User can deactivate or activate data transmission at any time via their profile settings in the INIM CLOUD.

2.2 Purpose of processing data

“INIM” processes the previously described personal data in compliance with the principles of the data protection regulations currently in force. Processing is carried out for the purposes described below.

a) Management of the services offered by the APP

‘INIM’ processes personal data for the purpose of executing the request of registration of the User for the use of the App (preparation of the App and its functions) to the extent strictly necessary. Generally, personal data will be deleted as soon as the need for further processing of the same ceases. Any further storage or processing of data will be allowed only under the conditions referred to in point 5. Please remember that, as provided for in the INIM CLOUD, the data of Private Users with control panels connected to the Installer profile are processed by the Installer as an independent Data Holder.
In regard to the video surveillance, it is to be noted that:

  • the relevant service is activated by the Installer in the Cloud and in the App
  • the information collected is exclusively images and short videos (saved in the Cloud with a maximum duration of 15 seconds) relating to the event that generated the alarm and the area involved which only the Installer can view if his/her supervision is active and solely to verify the correct functioning of the system. Such images and videos remain available in the App for a limited period and configured by the Main private User in the ‘Cloud space and privacy’ section of the INIM HOME App.

b) Consent to the processing of personal data

Where the User has given consent to the Supplier for the processing of their personal data for further purposes (see point 4), such data processing will take place on the basis of this consent. The declarations of consent are always optional and can be revoked freely at any time also by e-mail in writing to privacy@inim.it.
The withdrawal of consent does not affect the legitimacy of any data processing carried out up to that moment on the basis of the consent previously issued, nor the right to further processing of the aforementioned data by virtue of another legal basis, for example for the fulfillment of legal obligations legal (see point d).

c) Pursuit of legitimate interests

Where necessary, ‘INIM’ processes the personal data of the User to protect the legitimate interests of themselves or third parties. The maintaining of functionality and security of the ‘INIM’ IT systems falls within the sphere of these legitimate interests. The maintaining of functionality and security of the “INIM” IT systems falls within the sphere of these legitimate interests.
Generally, personal data will be deleted when further processing or storage of the same is no longer necessary for the protection of the legitimate interests pursued from time to time. Any further storage or processing of data will be allowed solely under the conditions referred to in point 5.

d) Fulfillment of legal obligations or related to purchases made by the user

“INIM” is subject to compliance with legal obligations and provisions, such as obligations related to data retention in accordance with the regulations of the Commercial and Tax law. Therefore “INIM” processes the personal data of the User also to the extent necessary for the fulfillment of legal obligations, it being understood however that the personal data of a single User will be disclosed only in the presence of a legal obligation towards public order and judicial authorities.

3. PUSH NOTIFICATIONS

The User can consent to the receipt of push notifications on their devices, at the time of registration or subsequently, by activating the appropriate features on the control panel of the INIM CLOUD or in the App.

The push notifications the App sends to the Installer may concern:

  1. Technical information:

    • deriving from events that are recorded on the control panels connected to the account (e.g. faults, anomalies);
    • relating to alarms from the control panel and, if inspection is active, from a video surveillance device (N.V.R. – network video recorder);
    • related to the management of the Cloud account of the User (e.g. out of Cloud space, expiry of services);
    • related to the more general operational management of the Cloud (e.g. the Cloud will not be operational date... hour...)
    • relating to new product features, firmware and software updates, etc.

    These notifications can be enabled by the User in their personal area of ​​the CLOUD.

  2. Data of a commercial nature.
    These notifications make provision for the consent, given by the interested party, when registering on the CLOUD, for the receipt of such information.

Push notifications can be managed, deactivated and reactivated at any time directly via the pages of the INIM CLOUD account belonging to the User.

4. RECIPIENTS OF PERSONAL DATA

4.1 Transfer to third parties

If within the App the User takes advantage of services from service providers and other third parties, “INIM” may transfer the personal data of the User to such third parties but only to the extent necessary for the preparation and use of the App and its respective functions (see point 2.2 a), for the purpose of pursuing legitimate interests of their own or third parties (see point 2.2 c), or where the User has previously consented to such transfer (see point 2.2 b). Service providers, carefully selected by “INIM”, are regularly checked by the same, in particular from the point of view of the accuracy of the processing and protection of personal data made accessible from time to time. All service providers are bound by “INIM” to the obligation of secrecy and to compliance with current laws in force.

4.2 Recipients of data in third Countries

The personal data of the User will not be transmitted by the Supplier to recipients based in States outside the EU/EEA.

4.3 State institutions or authorities

The transmission of personal data to state institutions or authorities takes place only within the limits of binding laws (see point 2.2 d).

5. TERMS OF STORAGE AND CANCELLATION

“INIM” stores and processes the personal data of the User solely for the period strictly necessary for the respective purpose (see point 2.2). Beyond this period, the storage and processing of personal data take place exclusively within the terms allowed for further purposes pursuant to point 2.2, such as for the fulfillment of legal obligations (e.g. retention obligations according to Tax and Commercial law). In such cases, the Supplier limits the further processing of data to the aforementioned purposes and the legal basis of the further processing.

6. SUPPLEMENTARY REGULATIONS FOR THE EUROPEAN UNION

In addition to the aforementioned regulations, in accordance with the provisions of the European Union Data Protection Regulation (GDPR) and within the limits of the respective field of application, the following provisions apply.

6.1 Legal basis

The processing of personal data described in point 2.2 is based on the legal bases listed below.

  • Data processing for the execution of the contract: art. 6 c. 1 b) GDPR
  • Data processing on the basis of the consent of the interested party: art. 6 c. 1 a) GDPR
  • Data processing for the purpose of pursuing legitimate interests: art. 6 c. 1 f) GDPR
  • Data processing for the purpose of fulfilling legal obligations: art. 6 c. 1 c) GDPR

6.2 Protection in the case of suppliers in third Countries

Where, in the opinion of the European Union, an “adequate level of protection” for the processing of personal data compliant with EU standards cannot be guaranteed, as suitable guarantee pursuant to art. 46 GDPR in the event of use of service providers (see point 4), the standard data protection clauses approved and issued by the European Commission, binding internal data protection rules or approved codes of conduct apply. An electronic copy of the relative extracts can be provided on a specific request to be presented to the Data Protection Officer.

6.3 Rights of the interested party

As the interested party in the processing of personal data, the User has the right of access to information (art.15 GDPR), correction (art.16 GDPR) and deletion of personal data (art.17 GDPR), limitation of processing (art 18 GDPR) and data portability (art.20 GDPR).

6.4 Right to object

For reasons related to their particular situation, the User has the right to object at any time to the processing of their personal data carried out on the basis of art. 6 c. 1 e) GDPR (data processing necessary in public interest) or art. 6 c. 1 f) GDPR (data processing based on a balancing of interests). In the event of opposition by the User, the related personal data will be processed by the Supplier where it is possible to demonstrate binding and justified reasons that prevail over the interests, rights and freedoms of the User, or where processing is necessary for the purposes of the claim, the exercise or defence of legal rights.

6.5 Complaints

If the User believes that the processing of their personal data may represent a violation of the law, they have the right to lodge a complaint with a competent data protection authority (art. 77 GDPR).

7. EXERCISE OF RIGHTS

The User can exercise the rights referred to in point 6 by e-mail in writing to privacy@inim.it.

8. UPDATING OF THIS PRIVACY POLICY RELATED TO THE PROTECTION OF PERSONAL DATA

The Supplier reserves the right to amend or simply update, in whole or in part, this privacy policy, also in consideration of changes in the laws or regulations governing the protection of personal data. Such amendments/updates to this Privacy Policy will be made known to Users as soon as they are adopted and will become binding in the moment they are published on the Website. “INIM”, therefore, invites Users to access this page regularly and check for the publication of the most recent and updated version of the Privacy Policy. For this purpose, the document indicates the date when last updated.

Last updated: 30 January 2025