Brand Tinexta Defence

IT

/

EN

Brand Tinexta Defence

IT

/

EN

Privacy Policy

Information Notice pursuant to Article 13 ex EU REG. 2016/679 (‘GDPR’)

Pursuant to Article 13 of Regulation (EU) 2016/679 ('the Regulation' or 'GDPR'), we hereby inform users about how and for what purposes we process the personal data of those who interact with our website: https://www.tinextadefence.it/

This information does not apply to other websites that may be consulted via links present on the domain websites of the owner, who shall not be held responsible any way for for third-party websites

Data controller

The Data Controller of personal data collected through this site is Defence Tech Holding S.p.A. Benefit Corporation and Group companies: DONEXIT, FORAMIL, NEXT Ingegneria dei Sistemi and Innovation Design S.r.l., all joint controllerswith registered office in Rome, 452 Giacomo Peroni Street, VAT NUMBER 11065701002, in the person of the l.r.p.t., Tel: (+39) 0645752720E-mailprivacy@defencetech.itPEC: dth@pec.defencetech.it

Data Protection Officer

In accordance with the General Data Protection Regulation (Article 37(7) of EU Regulation 2016/679), the Company has appointed a Data Protection Officer (DPO), who can be contacted using the following methods:

Purpose of processing, legal basis, nature of conferment 

For the purposes expressed in this information notice, the following categories of data may be processed:

  • General personal data and contact details (e.g. name, surname, address, tax code, company name, telephone number, e-mail address);
  • Browsing data (e.g. IP addresses, domain names of computers used by users connecting to the site).
  • any special categories of data ('sensitive data') pursuant to Article 9 GDPR or data concerning health (membership of so-called protected labour categories) in the case of applications on our website

The personal data provided will be treated in compliance with the conditions of lawfulness pursuant to art. 6 of the Regulation, in order to:

  1. Allow navigation on this website and the technical management of connections to it

The software systems and procedures required for the smooth functioning of this website acquire, as part of their usual cycle and during connection, some personal data that is sent when internet communications protocols are used. This type of information is not collected for the specific purpose of identifying a user, but - in consideration of its own nature - processed and assembled with other data, could enable the identification of a user. This category of data includes, for instance: IP addresses or the names of the computers used by users who connect to the websites, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the characteristics of the browser used for browsing, the resolution of the screen on which the browser is running on the device being used, and other parameters relating to the user's operating system and computer environment. This category includes, for instance: IP addresses or names with domains of computers used by persons logging onto the site, URI (Uniform Resource Identifier) addresses of the resources required, browser’s characteristcics, as well as other parameters related to the users' operative system. This information is only used to prepare anonymous statistics on site use and to ensure the proper operation of the site itself and will be immediately deleted after being processed. The above-mentioned data may be also used to assess liability in the event of IT crimes committed with damage to our Website and/or to Platforms.
Legal Basis: the legitimate interest of the Data Controller (pursuant to Article 6, point f) of EU GDPR 2016/679). The navigation data collected are necessary to allow the data subject to browse the site.

  1. Respond to information or contact requests and other types of inquiries made by customers/users regarding the services offered by the Controller.
    The voluntary and explicit sending of emails to the addresses in this website, the filling in of the contact form or the registration to the reserved area in the career page and its use, entail the subsequent acquisition of personal data provided (e-mail, name, surname), this is necessary to comply with any requests from users. This also applies to the management of complaints submitted by users and the feedback given to them.
    Legal Basis: the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (pursuant to Article 6, point b) of EU GDPR 2016/679).The conferment of data is optional, any missing data and consent to their processing/ communication will make it impossible for the company to enter into subsequent contact’s requests.
  2. Manage the recruitment process in case of application or resumes’ spontaneous sending
    The user is also free to provide his/her personal and special personal data (exclusively for the purposes described above) through online forms and contact form 'Work with us', to submit his/her resume or apply for specific positions.
    Legal Basisthe performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (pursuant to Article 6, point b) of EU GDPR 2016/679) and the explicit consent to the processing of special personal data (pursuant to Article 6, point a) of EU GDPR 2016/679).

The required data are necessary for the management of the recruiting process, any missing data and consent to their processing/ communication will make it impossible for the company to proceed with the recruitment procedure.

Furthermore, we inform you that we do not use automated decisions, according to Art 22 GDPR.

  1. Newsletter forwarding

The personal data provided by the data subject (in particular the e-mail address) will be processed by the Data Controller exclusively for the purpose of sending newsletters and information communications.

Legal basis for processing: consent of the data subject, pursuant to (Art. 6(1)(a) of the GDPR).

The provision of data is optional. Consent may be revoked at any time via the unsubscribe link in each newsletter or by contacting the Controller, without affecting the lawfulness of the processing carried out prior to revocation.

Data processing method

Personal data will be processed with paper-based, electronic or telecommunications means and with suitable security measures to safeguard the security and confidentiality of your personal data, pursuant to Articles 6 and 32 of EU GDPR 2016/679.

Data retention

In compliance with the provisions of Article 5 paragraph 1 letter e) of EU Reg. 2016/679, Personal Data will be collected and stored in a form that allows the identification of data subjects for a period of time not exceeding the achievement of the purposes for which the personal data are processed. The retention of data of a personal nature provided depends on the purpose of the processing:

- for contact requests, maximum 1 year;

- for newsletter forwarding, maximum 2 years;

- application process online and personnel selection: maximum 1 year

  1. for the technical profilesmaximum 5 years;
  2. for general profilesmaximum 2 years.
  • For tax obligations maximum 10 years.

After these periods, personal data will be destroyed, cancelled or make them anonymous, unless the further storage is necessary for contract obligations, legal reasons or to comply with orders from Public Authorities and/or Supervisory Bodies.

Nature of data provision

Users are free to provide their personal data. Failure to provide data may make it impossible to obtain what has been requested or to use the web services of the Data Controller.

Recipients of the data or categories of recipients

For the purposes described above , or in cases in which it is strictly necessary or required by law or by authorities empowered to impose said law, the Data Controller may disclose the data to recipients in the following categories:

  • subjects that provide services for the management of the information system used by the Data Controller and telecommunications networks, including e-mail and website management;
  • in relation to the performance of the assigned tasks, by the Data Controller's staff, including interns, temporary workers, consultants, employees of companies external to the Data Controller, all specifically authorized for processing;
  • other companies in the group to which the data controller belongs, or, in any case, parent, subsidiary or associated companies within the meaning of Article 2359 of the Civil Code.
  • Public Bodies or Public Security Authorities in fulfilment of legal obligations.


Data transfer abroad

Defence Tech Holding S.p.A. Società Benefit is committed to restricting the scope of circulation and processing of Personal Data (e.g. storage, archiving, and retention of data on its servers) to countries belonging to the European Union, with an express prohibition on transferring them to non-EU countries that do not guarantee (or in the absence of) an adequate level of protection, or, in the absence of safeguards provided for by Regulation (EU) 2016/679 (third country deemed adequate by the European Commission, group BCRs, standard contractual clauses, consent of the data subjects, etc.).

Data Dissemination

User data will not be disseminated.

Using Social Networks

From the website, it is possible to link to the company page on LinkedIn, via the respective icon.

As is well known, social networks autonomously regulate privacy for those who surf, post and communicate through them, being in this case the main data controllers.

You are therefore invited to visit the following links for more information:

However, when the user is on the social pages managed by LinkedIn and communicates their personal data in various ways (e.g. through a private message, by commenting on a post, or leaving a review), or when the Social Network provides certain statistics on page usage in a non-anonymous manner (and therefore linkable to the activity carried out on the page by the specific person), Defence Tech Holding S.p.A. Società Benefit becomes the Data Controller.

The data processing carried out is exclusively for the ordinary management of the pages (e.g. if a comment is posted insulting other users, Defence Tech Holding S.p.A. Società Benefit may decide to remove it from the page as it is unlawful) and to answer user queries (both public and private) regarding the characteristics of Defence Tech Holding S.p.A. Società Benefit's products.

In such cases, the legal basis for the processing is the legitimate interest of Defence Tech Holding S.p.A. Società Benefit in proposing and illustrating its products and their features to the user, as well as the need to respond to any possible user queries.

The processing of the user's personal data will take place by means of the tools made available by the Social Network itself.

In this initial contact phase, Defence Tech Holding S.p.A. Società Benefit will not transfer or disclose the user's personal data to other parties. The user is always free to decide when to unlike, delete a comment, a review, etc., by simply returning to the page of the relevant Social Network and proceeding directly with the deletion. As for private messages, these are retained for a maximum of 6 months from the last contact, after which they are deleted.
Users are always free to provide their personal data. Failure to provide data may make it impossible to obtain what has been requested or to use the Controller's services.

Rights of the data subject

Articles 15, 16, 17, 18, 20, 21 of the GDPR confer on the data subject the exercise of specific rights that may be exercised vis-à-vis the Data Controller.

In particular, as a data subject, you may, under the conditions laid down in the GDPR, exercise the following rights:

  • right of accessThe right to obtain confirmation as to whether or not personal data concerning you are being processed and, if so, to obtain access to your personal data, including a copy thereof;
  • right of rectificationThe right to have inaccurate personal data concerning you corrected and/or incomplete personal data supplemented;
  • right to erasure (right to be forgotten): the right to obtain the deletion of personal data concerning you, if they are no longer necessary for the purposes pursued by the Controller, in case of revocation of your consent (and if there is no other legal basis for the processing) or your objection to the processing, in case of unlawful processing, or if there is a legal obligation to delete.

The right to erasure does not apply insofar as the processing is necessary for the fulfilment of a legal obligation or the performance of a task carried out in the public interest or for the establishment, exercise or defence of legal claims;

  • right of restriction of processing: the right to obtain the restriction of processing when: a) the data subject contests the accuracy of the personal data; b) processing is unlawful and the data subject objects to the erasure of the personal data and requests instead that their use be restricted; c) the personal data are necessary for the establishment, exercise or defence of legal claims;
  • right to data portabilityThe right to receive, in a structured, commonly used and machine-readable format, the personal data concerning you that you have provided to the Controller and the right to transmit them to another controller without hindrance, where the processing is based on consent and is carried out by automated means;
  • right of opposition: the right to object, at any time, to the processing if personal data are processed for purposes other than those for which you have consented to the processing.

Pursuant to Article 77 of the Regulation, you have the right to lodge a complaint with a supervisory authority, namely in the Member State where you habitually reside, work or where the alleged infringement has occurred, which in Italy corresponds to the Italian Data Protection Authority, whose references can be found at www.garanteprivacy.it.

In addition, the GDPR gives you the right to withdraw your consent at any time and as easily as if it had been given.

The exercise of your rights as a data subject is free of charge pursuant to Article 12 GDPR. However, in the case of requests that are manifestly unfounded or excessive, including due to their repetitiveness, the Data Controller may charge you a reasonable fee, in light of the administrative costs incurred in handling your request, or deny satisfaction of your request.

You may exercise your rights by using the attached form which must be sent in hard copy to the Controller's address, or by e-mail or fax to the addresses given in this notice.

This Policy was updated on 23.01.2026

Any updates will always be published on this page.

The Data Controller

Defence Tech Holding S.p.A. Benefit Corporation

Degree in Business Administration from the University of Naples 'Federico II' with an MBA in Business Management achieved with high merit in 2008 by winning a scholarship provided by Invitalia S.p.A. from which she was selected in the first months of attendance as the best MBA profile.

After a brief experience in Invitalia S.p.A., he immediately held increasingly important roles in the management of Administration, Finance and Control of companies operating in the defence sector, theInformation Technology, of Cyber and National Security. In addition, she was Treasury Manager in companies operating in theEnergy.

He obtained an Executive Master in Finance (EMF) at SDA Bocconi in 2020, with a specialisation in Corporate Finance & Control and, in 2022, a further specialisation track in Asset, Wealth Management also at SDA Bocconi.

For over five years it has been the Chief Financial Officer of the Defence Tech Group, whose listing process he followed on the Euronext Growth Milan segment of Borsa Italiana.

From 2017 to 2024, she was a member of the boards of directors of all the legal entity of the Defence Tech Group with delegated powers over their financial management and from October 2021 to October 2024 was a Board Member of the Holding Company.

It is currently also Investor Relations Manager of the listed Defence Tech and follows all ESG issues of the Group.

In July 2021, she was recognised by Federmanager as one of the best talents under 44 at national level, receiving an important award as Young Manager 2020.