Home Terms

Privacy Policy

InTheEU  ·  Last updated: June 2026

1. Controller

This policy applies to the websites and services operated under intheeu.com and its subdomains, including ecosystem.intheeu.com. The data controller is WIDE di D. Papa, Sant'Antimo (NA), Italy, operating under licence from ae Aeonian Engineering Limited, Hong Kong.

Contact: support@intheeu.com

2. Data We Collect

We collect only the data strictly necessary to provide our services:

  • Contact and registration data you provide voluntarily through forms (name, company, email, sector).
  • Usage data collected automatically by our servers (IP address, browser type, pages visited, timestamps). This data is stored in server logs on infrastructure located within the European Union.
  • Data you enter into compliance products (Ecosystem) to fulfil regulatory obligations. This data is stored exclusively on servers within the EU and is never sold or shared with third parties for commercial purposes.

3. Legal Basis

We process personal data on the following legal bases under GDPR (Regulation EU 2016/679):

  • Consent: for contact form submissions and pilot registration.
  • Legitimate interest: for server log data necessary to operate and secure our infrastructure.
  • Legal obligation: for compliance product data required under applicable Italian and EU regulations including D.Lgs. 152/2006 (RENTRI).
  • Contract performance: for data processed to deliver services you have subscribed to.

4. Data Retention

Contact form data is retained for 24 months from the date of submission. Server logs are retained for 90 days. Compliance product data is retained for the period required by applicable regulation, and deleted upon contract termination subject to any mandatory retention obligations.

5. Data Sharing

We do not sell personal data. We do not share personal data with advertising networks. Data may be shared with:

  • Infrastructure providers operating within the EU, bound by data processing agreements.
  • Regulatory authorities when required by applicable law.

6. Cryptographic Identity Products

Products built on the Identity Suite (Parta Tag, Parta IoT, Parta Identity) use device-bound cryptographic keypairs. Private keys are generated on the user device and never transmitted to our servers. We do not store passwords, biometric data, or identity credentials in any central database. Verification is performed through cryptographic proof without requiring disclosure of identity.

7. Cookies

We use a single first-party cookie to store your theme preference (dark or light mode). We do not use tracking cookies, advertising cookies, or third-party analytics. No data is transmitted to external services through cookies.

8. Your Rights

Under GDPR you have the right to access, correct, delete, restrict processing of, and port your personal data. You have the right to object to processing based on legitimate interest. To exercise any of these rights, contact support@intheeu.com. We will respond within 30 days.

9. Supervisory Authority

You have the right to lodge a complaint with the Italian data protection authority (Garante per la protezione dei dati personali, www.garanteprivacy.it) or with the authority in your EU member state of residence.

10. Changes

We may update this policy to reflect changes in our services or applicable law. The current version is always available at intheeu.com/privacy.html. Material changes will be communicated to registered users by email.

ae Aeonian Engineering Limited  ·  WIDE di D. Papa  ·  © 2026