Brand Tinexta Defence

Privacy Policy

Information Notice pursuant to Article 13 ex EU REG. 2016/679 ('GDPR')

Pursuant to Article 13 of Regulation (EU) 2016/679 ('the Regulation' or 'GDPR'), we hereby inform users about how and for what purposes we process the personal data of those who interact with our website: https://www.tinextadefence.it/

This information does not apply to other websites that may be consulted via links present on the domain websites of the owner, who shall not be held responsible in any way for third-party websites

Data controller

The Data Controller of personal data collected through this site is  Tinexta Defence S.p.A. Benefit Corporation and Group companies: DONEXIT, FORAMIL, NEXT Systems Engineering and Innovation Design S.r.l., all all joint controllers, with registered office in Rome, Street Giacomo Peroni, 452, , VAT NUMBER 11065701002, in the person of the l.r.p.t., Tel: (+39) 0645752720E-mailprivacy@defencetech.itPEC: dth@pec.defencetech.it

Data Protection Officer

Pursuant to the General Data Protection Regulation (Art. 37 c.7 GDPR EU Regulation 2016/679), the company has appointed a Data Protection Officer, Dr. Ernesto Barbone, contacted as follows:

Purpose of processing, legal basis, nature of conferment 

For the purposes expressed in this information notice, the following categories of data may be processed:

  • General personal data and contact details (e.g. name, surname, address, tax code, company name, telephone number, e-mail address);
  • Browsing data (e.g. IP addresses, domain names of computers used by users connecting to the site).
  • Special category of personal data ('sensitive data') as defined by Article 9 of EU GDPR 2016/679, such as health-related data (membership of so-called protected labour categories, in case of application on our website) provided voluntarily, with prior and explicit consent;

The personal data provided will be treated in compliance with the conditions of lawfulness pursuant to art. 6 of the Regulation, in order to:

  1. Allowing navigation on this website and the technical management of connections to it

The software systems and procedures required for the smooth functioning of this website acquire, as part of their usual cycle and during connection, some personal data that is sent when internet communications protocols are used. This type of information is not collected for the specific purpose of identifying a user, but - in consideration of its own nature - processed and assembled with other data, could enable the identification of a user. This category of data includes, for instance: IP addresses or the names of the computers used by users who connect to the websites, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the characteristics of the browser used for browsing, the resolution of the screen on which the browser is running on the device being used, and other parameters relating to the user's operating system and computer environment. This category includes, for instance: IP addresses or names with domains of computers used by persons logging onto the site, URI (Uniform Resource Identifier) addresses of the resources required, browser's characteristcics, as well as other parameters related to the users' operative system. This information is only used to prepare anonymous statistics on site use and to ensure the proper operation of the site itself and will be immediately deleted after being processed. The above-mentioned data may also be used to assess liability in the event of IT crimes committed with damage to our Website and/or to Platforms.
Legal Basis: the legitimate interest of the Data Controller (pursuant to Article 6, point f) of EU GDPR 2016/679).The navigation data collected are necessary to allow the data subject to browse the site.

  1. Respond to information or contact requests and other types of inquiries made by customers/users regarding the services offered by the Controller.

The voluntary and explicit sending of emails to the addresses in this website, the filling in of the contact form or the registration to the reserved area in the career page and its use, entail the subsequent acquisition of personal data provided (e-mail, name, surname), this is necessary to comply with any requests from users. This also applies to the management of complaints submitted by users and the feedback given to them.
Legal Basis: the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (pursuant to Article 6, point b) of EU GDPR 2016/679).The conferment of data is optional, any missing data and consent to their processing/ communication will make it impossible for the company to enter into subsequent contact's requests.

  1. Manage the recruitment process in case of application or resumes' spontaneous sending

The user is also free to provide his/her personal and special personal data (exclusively for the purposes described above) through online forms and contact form, to submit his/her resume or apply for specific positions.
Legal Basis: the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (pursuant to Article 6, point b) of EU GDPR 2016/679) and the explicit consent to the processing of special personal data (pursuant to Article 6, point a) of EU GDPR 2016/679).
The required data are necessary for the management of the recruiting process, any missing data and consent to their processing/communication will make it impossible for the company to proceed with the recruitment procedure.

Furthermore, we inform you that we do not use automated decisions, according to Art 22 GDPR.

Data processing method

Personal data will be processed with paper-based, electronic or telecommunications means and with suitable security measures to safeguard the security and confidentiality of your personal data, pursuant to Articles 6 and 32 of EU GDPR 2016/679.

Data retention

In compliance with the provisions of Article 5 paragraph 1 letter e) of EU Reg. 2016/679, Personal Data will be collected and stored in a form that allows the identification of data subjects for a period of time not exceeding the achievement of the purposes for which the personal data are processed. The retention of data of a personal nature provided depends on the purpose of the processing:

- for contact requests, maximum 1 year;

- application process online and personnel selection: maximum 1 year

  1. technical profiles, maximum 5 years;
  2. general profiles, maximum2 years.

- For tax obligations, maximum 10 years.

After these periods, personal data will be destroyed, deleted or make them anonymous, unless the further storage is necessary for contract obligations, legal reasons or to comply with orders from Public Authorities and/or Supervisory Bodies.

Recipients of the data or categories of recipients

For the purposes described above, or in cases in which it is strictly necessary or required by law or by authorities empowered to impose said law, the Data Controller may disclose the data to recipients in the following categories:

  • subjects that provide services for the management of the information system used by the Data Controller and telecommunications networks, including e-mail and website management;
  • relationships;
  • in relation to the performance of the assigned tasks, by the Data Controller's staff, including interns, temporary workers, consultants, employees of companies external to the Data Controller, all specifically authorised for processing;
  • other companies of the group of which the Data Controller is part, or in any case parent, controlled or associated companies, pursuant to art. 2359 of the Civil Code;
  • professional firms or companies in the context of assistance and consultancy
  • Public Bodies or Public Security Authorities in fulfilment of legal obligations.

Data transfer abroad

 Tinexta Defence S.p.A. Benefit Corporation undertakes to restrict the areas of circulation and processing of Personal Data (e.g. storage, archiving and preservation of data on its servers) to countries that are part of the European Union, with an express prohibition to transfer them to non-EU countries that do not guarantee (or in the absence of) an adequate level of protection, or, in the absence of the protection tools provided by EU Regulation 2016/679 (third country judged adequate by the European Commission, group BCR, model contractual clauses, consent of the data subjects, etc.).

Data Dissemination

User's personal data will not be disseminated.

Using Social Networks

The website provides link to the company's LinkedIn page, via the respective icon.

 Social networks independently manage privacy for users who browse, post, and communicate through their platforms, acting as autonomous data controllers. You are therefore invited to visit the following links for more information:

However, when user is on social pages managed by LinkedIn and communicates, in various ways, his or her personal data (e.g. through a private message or by commenting on a post or leaving a review), or when the social network provides certain statistics on the use of the pages in a non-anonymous way (and thus traceable to the activity carried out on the page by the specific person), it is Tinexta Defence S.p.A. Società Benefit to become a data controller.

The data processing that is carried out occurs exclusively for the ordinary management of the pages (e.g., if a comment is posted in which it insults other users, Tinexta Defence S.p.A. Società Benefit may decide to remove it from the page as unlawful) and to answer user questions (both public and private) about the characteristics of the products of Tinexta Defence S.p.A. Società Benefit.

In this case, the legal basis for the processing is the legitimate interest of Tinexta Defence S.p.A. Società Benefit to propose to the user and illustrate their products and their characteristics, as well as on the need to answer any possible user queries.

The processing of the users' personal data will take place by means of the tools made available by the Social Network itself.

At this stage of simple contact, Tinexta Defence S.p.A. Società Benefit will not transfer or disclose the users' personal data to third parties. The user is always free to decide when to remove a like, delete a comment, review, etc., simply by going back to the relevant Social Network page and deleting it directly.

 Private messages will be retained for a maximum of six months from the last contact, after which they will be deleted.

Users are always free to provide their personal data. Failure to provide data may make it impossible to obtain what has been requested or to use the Controller's services.

Rights of the data subject

Persuant to Articles 15, 16, 17, 18, 20 and 21 of the GDPR, data subjects are granted specific rights that may be exercised in relation to the Data Controller.

In particular, as a data subject, you may, under the conditions laid down in the GDPR, exercise the following rights:

  • right of access: The right to obtain confirmation as to whether or not personal data concerning you are being processed and, if so, to obtain access to your personal data, including a copy thereof;
  • right of rectification: The right to have inaccurate personal data concerning you corrected and/or incomplete personal data supplemented;
  • right to erasure (right to be forgotten)The right to obtain the deletion of personal data concerning you, if they are no longer necessary for the purposes pursued by the Controller, in case of revocation of your consent (and if there is no other legal basis for the processing) or your objection to the processing, in case of unlawful processing, or if there is a legal obligation to delete (The right to erasure does not apply insofar as the processing is necessary for the fulfilment of a legal obligation or the performance of a task carried out in the public interest or for the establishment, exercise or defence of legal claims);
  • right of restriction of processingThe right to obtain the restriction of processing when: a) the data subject contests the accuracy of the personal data; b) processing is unlawful and the data subject objects to the erasure of the personal data and requests instead that their use be restricted; c) the personal data are necessary for the establishment, exercise or defence of legal claims;
  • right to data portability: The right to receive, in a structured, commonly used and machine-readable format, the personal data concerning you that you have provided to the Controller and the right to transmit them to another controller without hindrance, where the processing is based on consent and is carried out by automated means;
  • right of oppositionThe right to object, at any time, to the processing if personal data are processed for purposes other than those for which you have consented to the processing.

Pursuant to Article 77 of the Regulation, you have the right to lodge a complaint with a supervisory authority, namely in the Member State where you habitually reside, work or where the alleged infringement has occurred, which in Italy corresponds to the Italian Data Protection Authority, whose references can be found at www.garanteprivacy.it.

In addition, the GDPR gives you the right to withdraw your consent at any time and as easily as if it had been given.

The exercise of your rights as a data subject is free of charge pursuant to Article 12 GDPR. However, in the case of requests that are manifestly unfounded or excessive, including due to their repetitiveness, the Data Controller may charge you a reasonable fee, in light of the administrative costs incurred in handling your request, or deny satisfaction of your request.

You may exercise your rights by using the attached form which must be sent in hard copy to the Controller's address, or by e-mail or fax to the addresses given in this notice.

This Policy was updated on 2.4.2025

Any updates will always be published on this page.

The Data Controller
Tinexta Defence S.p.A. Benefit Corporation

Contact us

Privacy Policy
Accessibility Statement
Tinexta Defence logo

Next | Donexit | Foramil | Innodesi

Tinexta Defence S.p.A. Benefit Corporation - Sole Shareholder Company - VAT n. 11065701002 - REA n. 1276114 - Rome Companies Register n. 11065701002 - Share Capital € 2,554,285.70 fully paid | Copyright © Tinexta Defence - All Rights Reserved.

Tinexta Defence S.p.A. Benefit Corporation - Share Capital € 25,000.00 i.v. - VAT No. 17105861003 - REA Rome No. 1696120. Copyright © Tinexta Defence - All Rights Reserved.

Degree in Business Administration from the University of Naples 'Federico II' with an MBA in Business Management achieved with high merit in 2008 by winning a scholarship provided by Invitalia S.p.A. from which she was selected in the first months of attendance as the best MBA profile.

After a brief experience in Invitalia S.p.A., he immediately held increasingly important roles in the management of Administration, Finance and Control of companies operating in the defence sector, theInformation Technology, of Cyber and National Security. In addition, she was Treasury Manager in companies operating in theEnergy.

He obtained an Executive Master in Finance (EMF) at SDA Bocconi in 2020, with a specialisation in Corporate Finance & Control and, in 2022, a further specialisation track in Asset, Wealth Management also at SDA Bocconi.

For over five years it has been the Chief Financial Officer of the Defence Tech Group, whose listing process he followed on the Euronext Growth Milan segment of Borsa Italiana.

From 2017 to 2024, she was a member of the boards of directors of all the legal entity of the Defence Tech Group with delegated powers over their financial management and from October 2021 to October 2024 was a Board Member of the Holding Company.

It is currently also Investor Relations Manager of the listed Defence Tech and follows all ESG issues of the Group.

In July 2021, she was recognised by Federmanager as one of the best talents under 44 at national level, receiving an important award as Young Manager 2020.