Privacy Policy

---

1. OBJECT

Through the contact forms of this website, the sending of email and the use of its services, personal data of each user is collected and processed that is necessary for the management and maintenance of the services provided, and whose treatment is governed by this Privacy Policy.

Through this Privacy Policy, NITID AI informs the users of its website, nitid.ai, about the treatment and protection of their personal data that may be collected through their browsing or use of services carried out on this portal. The use of this website by the user implies their acceptance of this Privacy Policy.

For the purposes of this Privacy Policy and its stipulations, users are considered natural persons who use, access, or avail themselves in any other way of the services offered on the website, as they are holders of personal data susceptible to protection.

NITID AI adopts the necessary measures to guarantee the security, integrity and confidentiality of the data in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, relating to the protection of natural persons with regard to the processing of personal data and the free circulation thereof, and in matters not provided for by it, in Organic Law 3/2018 of December 5, on the Protection of Personal Data and guarantee of digital rights , Royal Decree 1720/2007, of December 21, which approves the Regulations for the development of the Organic Law on Data Protection, and Law 34/2002, of July 11, on Society Services of the Information and Electronic Commerce.

2. RESPONSIBLE FOR THE PROCESSING OF PERSONAL DATA

Responsible for processing the personal data that the user provides when accessing and using the website is:

• Name: NITID AI SOLUTIONS S.L.U.
• Address: MODESTO LAFUENTE, 15 - 28003 Madrid (Madrid)NIF/CIF: 
• Telephone: +1 (513) 256 2584
• Email: javier@nitid.ai

3. LEGITIMATION FOR DATA PROCESSING

Under art. 6 GDPR, legitimation is necessary for data processing to be lawful. NITID AI is based on different legitimizing bases in order to process user data:

• Need to operate and provide the communication and messaging services provided through this website.
• By having the consent of the users, which can be canceled at any time.
• When necessary to comply with legal obligations, such as, for example, responding to a request from the authorities.
• When necessary to protect the vital interests of the user and third parties
• When necessary for the legitimate interests of NITID AI (or others), including the interests of NITID AI to offer an innovative, relevant, secure service to its users, unless such interests are overridden by the users' interests or rights and fundamental freedoms that require the protection of personal data, for example, to prevent the services of this website from being used for illegal or harmful activities.
• When necessary for the public interest.

If the interested party does not provide the necessary data or if it is erroneous or inaccurate, the use of the services offered on this website cannot be carried out. Therefore, the responsible for the treatment, NTID AI, will be exonerated from any liability that may arise from the non-execution of the professional assignment or from the consequences arising from this inaccurate or erroneous information.

4. PURPOSE OF DATA PROCESSING

AI CITIZENS uses the information it holds about users (including data about the device you are using, such as IP address, operating system, date and time of visit...) to operate, promote, improve, understand, personalize, support and promote your services. Specifically, user data is used for the following purposes:

• Improvement, correction and personalization of services.
• Protection and security of users, by verifying accounts and activities, combating harmful behavior, protecting users from bad experiences and spam.
• Give content to the provision of services offered through this website.
• Compliance with obligations derived from current legislation.
• Communication with users regarding the services, conditions and updates of the platform.

5. RECIPIENT OF THE DATA

In general, NITID AI will not communicate users' personal data to third parties, with the exception that the provision of a service implies the need for a contractual relationship with a service provider or with a data processor, and this is strictly necessary to manage and maintain the relationship between the user and NITID AI. All of this in accordance with the confidentiality obligations derived from current legislation and any other confidentiality and security measure that may apply.

Likewise, NITID AI may use, share or disclose users' personal data and other security data if this is necessary to comply with a law, regulation, legal procedure or request from authorities (such as the Tax Administration, the Ombudsman, Judges and Courts...), to protect the safety of people and to protect the security and integrity of the platform.

6. DATA CONSERVATION PERIOD

NTIID AI, as the data controller, undertakes to store and manage the personal data and information collected through this website with due confidentiality as long as the relationship that has arisen is maintained and the interested party does not request its deletion. Once the relationship between the user and NITID AI has ended, the data will be kept for a maximum period of 5 years, without prejudice to the current legal retention periods, which range between 4 and 10 years.

However, the person responsible for the treatment may keep, duly blocked, the data to meet possible administrative or jurisdictional responsibilities.

7. RIGHTS OF INTERESTED PARTIES

In accordance with the GDPR, the person whose personal data is processed is considered a data subject, which is why they can benefit from the rights recognized by this fundamental rule on data protection, which are:

• RIGHT OF ACCESS (art. 15): the interested party will have the right to obtain from the data controller confirmation of whether or not personal data that concerns him or her are being processed and, if so, the right to access them.

• RIGHT OF RECTIFICATION (art. 16): The interested party will have the right to obtain from the controller the rectification of inaccurate personal data or that concerns him or her, and to have incomplete data completed by means of an additional declaration.

• RIGHT OF DELETION (art. 17): The interested party will have the right to obtain from the data controller the deletion of personal data that concerns him or her, who will be obliged to delete them without delay. However, he must take into account that the right of deletion is limited when there is a legal obligation to retain or block his data.

• RIGHT TO LIMITATION OF PROCESSING (art. 18): In certain cases, the interested party will have the right to obtain from the controller the limitation of the processing of the data, in which case they will only be kept for the exercise or defense of claims, the protection of third parties or for reasons of important public interest.

• RIGHT TO PORTABILITY (art. 20): The interested party will have the right to receive the personal data that concerns him/her, which he/she has provided to a data controller, in a structured, commonly used and machine-readable format, and to transmit them to another controller. of the treatment without being prevented by the person responsible to whom it was provided.

• RIGHT TO OPPOSITION (art. 21): In certain circumstances, the interested party will have the right to object at any time, for reasons related to their particular situation, to the personal data that concerns them being processed. The person responsible will stop processing the data, except for compelling legitimate reasons, or the exercise or defense of possible claims.

• RIGHT NOT TO BE THE SUBJECT OF AUTOMATED INDIVIDUAL DECISIONS (art. 22): Every interested party will have the right not to be the subject of a decision based solely on automated processing, including profiling, that produces legal effects on them or significantly affects them. similarly.

The user may exercise the aforementioned rights at any time, under the terms established in current legislation. The exercise of these rights, as they are very personal, will be carried out by the owner of the data, duly proving his or her identity (for this, the Passport or equivalent national document will be requested). 

However, they may also be exercised through a representative expressly designated for the exercise of the right. In that case, the identity of the represented person must be clearly proven, by providing a copy of their passport or equivalent national document, and the representation granted by them.

The exercise of rights must be carried out through communication addressed to the person responsible for the treatment, which will contain:

• Name and surname of the interested party
• Photocopy of the National ID, passport or other valid document that identifies the person, or, where applicable, of the person who represents the interested party. The use of an electronic signature will exempt the presentation of said documents.
• Petition in which the request is specified.
• Address for notification purposes, date and signature of the applicant
• Documents accrediting the request that is made, if applicable.

The exercise of these rights can be done by contacting NITID AI at the address indicated above, or by sending an email to the address indicated above. Likewise, the user may complain to the Spanish Data Protection Agency (Control Authority competent in this matter), especially when they have not obtained satisfaction in the exercise of their rights, by writing to it, C/Jorge Juan, nº 6, 28001 - Madrid, or through the website: https://www.agpd.es

8. OBLIGATION TO COLLECT AND PROVIDE DATA

The collection of users' personal data is necessary to be able to carry out the provision of the services offered on this website and to comply with the obligations derived from the legislation in force. In the event of not having the user's consent, the provision of services will not be possible.