Privacy Policy

This Privacy Policy applies to Users who register on the INIM SERVICES portal, accessible via the websites inim.it, inimdns.biz, and my.inimcloud.com, which are owned byINIM S.R.L.”, a sole proprietorship (hereinafter INIM).

Pursuant to Articles 13 and 14 of EU Regulation 2016/679 (the “General Data Protection Regulation” or “GDPR”), we wish to inform you that, by registering with the portal, INIM, as the Data Controller (hereinafter the “Controller”), will receive your personal data.

For this reason, INIM is required INIM provide you with the following information in compliance with the obligation set forth in the aforementioned legislation.

This Privacy Policy supplements the general Privacy Policy of INIM and that of theINIM ,”INIM P2P,” “INIMTECH SECURITY,” andINIM apps.

1. THE DATA CONTROLLER AND THE DATA PROTECTION OFFICER (DPO)

The Data Controller isINIM S.R.L.,” a sole proprietorship with its registered office in Monteprandone (AP), in the municipality of Centobuchi, at Via dei Lavoratori 10, Tax ID and VAT No. 01855460448.
INIM appointed a data protection officer (DPO) who can be contacted at the following address: inim.

2. WHAT IS THE LEGAL AND REGULATORY FRAMEWORK FOR THE PROCESSING OF YOUR DATA?

Your data is processed for the creation and management of your personal account in INIM . In addition, INIM process your data as necessary both for the performance of a contract to which you are a party and for the implementation of pre-contractual measures taken at your request.

Whenever INIM and processes your personal data, it ensures its availability, integrity, and confidentiality.

INIM your data in accordance with the following legal grounds established by law:

2.1. Purpose of data processing

INIM will process your personal data INIM the following purposes:

Consent for the purposes referred to in letters b), c), d), e), and f) is optional; your refusal does not in any way affect your existing relationship with INIM, nor the successful completion of the process of creating a personal user account on theINIMwebsite.

2.2. Other purposes of data processing

The data may be processed for purposes related to the management of business relationships between the Data Controller and interested parties in the Installer and Distributor categories, or existing relationships between such parties.

2.3. Categories of recipients to whom the data may be disclosed

To achieve the purposes described in paragraphs 2.1 and 2.2 above, INIM need to disclose your Personal Data to third parties belonging to the following categories: agents and/or regional distributors of products marketed by INIM; entities providing banking, financial, and insurance services; authorities and supervisory and regulatory bodies; and, in general, entities—whether public or private—acting in their capacity as public officials or as entities appointed to public service roles; other companies within the group to which INIM , or parent, subsidiary, or affiliated companies; entities that provide procurement services, entities that perform the data collection and processing services necessary for the fulfillment of orders received from customers; entities that provide services for the management of INIMdata and IT systems and telecommunications networks (including email); entities responsible for IT security and maintenance; entities that carry out data transmission, packaging, transport, and sorting of communications with users; entities that carry out document filing and data entry activities; entities that carry out customer support activities; entities that carry out surveys and companies within the scope of support and consulting relationships; entities that carry out activities for the promotion and sale of products and services on behalf of INIM other companies belonging to the group of which INIM a part.
With reference to the data communicated to them, the subjects belonging to the aforementioned categories will be able to operate, as the case may be, in complete autonomy as separate Data Controllers, or even as data processors or persons in charge of data processing.
At the same time, the Data may also be communicated to other data processors appointed by INIM well as to its employees acting as data processors, always for the purposes indicated in paragraphs 2.1 and 2.2 above.

3. CATEGORIES OF DATA SUBJECTS AND RELATED SPECIFICATIONS REGARDING THE PROCESSING OF PERSONAL DATA

Detailed information is provided to the various categories of data subjects, depending on their involvement and the related processing of personal data.

3.1 Private

Creating a Private account in the Cloud allows the individual who registers to control and manage the associated control panel(s). Registering for a Private account requires entering a series of data, including personal data, into the appropriate online form. The Private individual is informed that, in order to manage the installation and operation of their alarm system for the purposes referred to in section 2.1(c) of this Privacy Policy, they must provide certain data – first and last name and serial number of the control panel – the installer’s reference via a manual procedure (to be performed by accessing the control panel’s keypad) to link the control panel to the respective user account.

We would like to clarify that this authorization is necessary in order to monitor the provision and management of the control panel services via INIM .

Following this notification, the installer will process the data of the private individual as an independent data controller, including through its own subcontractors (if any). Any personal data relating to “private” users, in addition to the user’s first and last name and the control panel’s serial number, will be entered independently by the installer after the control panels have been registered.

A "Private" User may revoke the association of one or more control panels—which they own—with the designated Installer at any time using the function available in the Cloud management panel.

3.2 Installer

The Installer account manages, on behalf of "Private" accounts, the control panels associated with them and the related management and configuration processes.

There are two types of "Installer Account".

Admin Installer Account

The “Admin Installer” account is linked to an individual who, in any capacity, is part of a company or sole proprietorship and is fully responsible for managing that account and the “Auxiliary” accounts.

If there are not yet any accounts associated with the company (VAT-country combination), the first person to register as the “Installer” account automatically becomes the “Admin Installer” account.

Users with the "Admin Installer" account also have the right to:

• control and view all control panels registered directly by the ‘Admin’ as well as those registered by ‘Auxiliaries’;
• manage groups of "Auxiliaries" and restrict their access to and control over the installed control panels;
• decides which group to assign the control panels to.

Registering for the “Admin Installer account” requires entering a series of details, including personal data, into the appropriate online form.

The ‘Admin installer’ is informed that, in order to manage all processes related to the activation of their account for the purposes described in section 2.1(c) of this Privacy Policy, they must complete the registration process.

Auxiliary installer account

An "Auxiliary Installer Account" is subject to the control of the "Admin Installer Account" of the company or sole proprietorship (VAT number/Company).

Registering an “Auxiliary Installer account” requires entering a series of data, including Personal Data, into the appropriate online form. The ‘Auxiliary’ installer is informed that, in order to manage all processes related to the activation of their account for the purposes referred to in section 2.1(c) of this Privacy Policy, they must complete the registration procedure and will simultaneously receive an email containing details regarding the ‘Admin’ (first and last name); the ‘Admin’ is also informed, in the same manner, of the Personal Data of the ‘Auxiliary’ (first and last name).

3.3 Distributor

The Distributor account (provided, along with the relevant password, directly by INIM) manages the relevant installers as assigned under the agreements with the Owner and may display certain data regarding existing relationships between the parties, in order to best ensure the performance of management and support activities.

INIM interested parties, distributors, and installers that INIM retain such data for statistical purposes.

3.4 Data processing specifications for the categories of data subjects “Installer,” “Private,” “Designer,” and “Distributor”

The ‘Admin’ Installer processes the data provided by the ‘Auxiliary’ Installer in its capacity as an independent data controller. It should be noted that this transfer of data from the ‘Auxiliary’ to the ‘Admin’ is necessary in order to follow up on the activation of the specific profile.

An "Auxiliary" installer can control and view only the control panels associated with their group, in accordance with the permissions granted by the "Admin" installer.

For all data processing activities carried out, the “Auxiliary” installer acts under the responsibility of their “Admin” installer, in the capacity of the person authorized (in charge) of processing or the data controller.

For the processing of data relating to “Private” users, the “Main User” acts as an independent data controller, and it is their sole responsibility to inform the “secondary” user (if any) through their own privacy policy and to obtain any necessary consent.

For the “Designer” profile, there are no additional processing specifications beyond what is generally set forth in this Privacy Policy.

For the “Distributor” profile, there are no processing specifications other than those outlined, in general terms, in this Privacy Policy.

3.5 Data Processing Specifications for Participants in INIM and Events

If you enroll in INIM and events, your personal data will be processed in order to fulfill all administrative, logistical, and organizational obligations related to your participation, including the issuance of certificates and the administration of satisfaction surveys, which you are free to complete or not. Upon registration, your personal data may be shared, as provided for in section 2.1, to ensure the proper conduct of the courses.

If your participation in the courses is linked to promotional offers and you have provided consent for commercial activities, your Personal Data may be shared with one or more INIM in your area so that they may contact you and enable you to take advantage of the special benefits. Personal Data will not be disclosed beyond what has been described, unless required by legal obligations or by regulations governing the issuance of certificates for the courses or events you have attended.

3.6 Specifications regarding the processing of personal data for users of the voice assistant services named “MARILYN” and “MARILYN MORE”

If you wish to use, following your consent, the voice assistant services named “MARILYN” and “MARILYN MORE, ” INIM you that it processes the following types of data:

• data collected automatically, such as server logs and data transmitted by the Actions on Google/Dialogflow API during the user’s interaction with Google Actions;
• data collected automatically, such as server logs and data transmitted by the Skill to Amazon servers during the user’s interaction with inim;
• data obtained from the user, either directly or through the Authorization API;
• pre-existing identification data (such as the user ID of the user’s My Inim profile).

The computer systems and software processes used to operate voice commands, during their normal operation, collect certain personal data from the respective servers of service providers that transmit the conversations recorded by the Voice Assistant within the scope of its functional capabilities; the transmission of this data is inherent in the operation of the voice commands. This data is not collected for the purpose of linking it to the identity of the data subjects, but by its very nature allows users to be identified. This category of data includes the commands issued, the Inim systems involved, and, in general, all conversation data that the voice assistants provide to the Inim for the execution of commands and instructions.

This data is stored for a limited period of time, solely for the purpose of providing diagnostic information to resolve any issues related to the operation of the voice assistant features and to keep a record of activities performed via voice commands for purposes required by law (for example, in response to a request from law enforcement, the judiciary, or other competent authorities). The data that Inim for the aforementioned purpose of technical support, relating to actions on voice assistants, are deleted twelve months after their collection.

User data is used to provide the services offered by the Inim and can be activated through the apps or the Inim for the management of the users’ alarm systems and the home automation devices that can be connected to them, and includes the ability to identify and recognize users for subsequent use of the app.

INIM not use any collected data for the purposes of customer profiling, to offer products and services, or for any other commercial purposes.

The personal data INIM by INIM is collected for purposes strictly related to the activation and operation of the voice functions enabled by the user.

However, please be advised that the computer systems and software processes of third parties responsible for certain functions may, in the course of providing their services, collect certain data relating to the user, the transmission of which is implicit in the use of voice assistant functions on smartphones and other compatible devices. Inim not involved in such processing, which is carried out independently and exclusively by the respective data controllers, nor can Inim held responsible for it.

Therefore, before activating the services, we encourage you to review the privacy policies of the Google and Amazon voice assistant services, which are available on their respective websites.

3.7 Processing specifications for users of services dedicated to the management of video surveillance via INIM and INIM

If, after activating the Services (offered via the Cloud and INIM ) for video surveillance management, you wish to use them, INIM you that it processes the following types of data:

• information such as images and short videos (maximum duration of 15 seconds) that are captured and stored solely in response to an automatic presence detection or alarm triggered by the installed systems;
• information regarding the zone in alarm and the event that triggered it.

The IT systems and software procedures responsible for operating the video surveillance system collect this information from users' respective systems during normal operation.

This data is stored for a limited period of time, for the sole purpose of providing users with information about events that may be of interest to them, based on their legitimate interest in the collection and storage of such data. The data that INIM for the aforementioned purposes are deleted at the user’s request or, in any case, thirty days after their collection. INIM access such data exclusively for technical purposes and in response to requests for assistance from the user, thereby fulfilling the role of Data Protection Officer, pursuant to Article 28 of the GDPR. This designation is included in the DPA (Data Processing Agreement).

User data is used to provide the services offered by Inim , which can be activated through the apps themselves or in the Inim , for the management of users’ video surveillance systems. This includes the ability to identify and recognize users for subsequent use of the apps.

The personal data INIM by INIM are collected for purposes strictly related to the functions activated by the User.

Please note, however, that the IT systems and software procedures of third parties responsible for the operation of the entire system may, in the course of providing their services, collect certain data that can be traced back to the User; the transmission of such data is implicit in the use of the functions available on smartphones and other compatible devices. INIM not involved in such processing, which is carried out independently and exclusively by the respective data controllers, nor can INIM held responsible for it.

Therefore, we encourage you to review the privacy policies of your hardware, software, and related service providers and operators before activating the services.

3.8 Specifications for the processing of personal data for users of the INIM service dedicated to file management and sharing

If the Installer User uses the Service for file management and sharing (via the Cloud and INIM ), INIM process the following types of data:

• files uploaded to the general Drive environment, which can be shared with other company accounts (administrator and auxiliary installer accounts) registered under the same VAT number;
• files uploaded to the checklist and storage areas associated with individual systems, which can be shared with other accounts within the relevant company organization and/or with private user accounts registered on a specific system.

The files located in the INIM space are the exclusive property of the Installer User. The data that INIM for the aforementioned purposes are managed and shared exclusively at the discretion of the Installer User. INIM access such data exclusively for technical purposes and in response to requests for assistance from the Installer User, thereby acting as a Data Processor, pursuant to Article 28 of the GDPR. This appointment is set forth in the specific Data Processing Agreement (DPA) for the service, which can be viewed in the dedicated area of the INIM .

4. WHERE DO WE PROCESS YOUR DATA?

The data processing operations related to the web services of this website are carried out at INIM headquarters, as mentioned above, INIM are handled exclusively by technical staff responsible for or in charge of data processing, or by other individuals responsible for or in charge of occasional maintenance operations.

5. Will your data be transferred abroad?

INIM processes your personal data without transferring it to countries outside the European Union or to countries that do not ensure an adequate level of personal data protection. The General Data Protection Regulation (GDPR) permits the transfer of personal data abroad with the User’s consent, or where there is a legal basis for such transfer and an adequate level of data protection is ensured. INIM to ensure that if data is transferred abroad, it will be done in full compliance with the principles and requirements of local and European Union law, and that appropriate security measures will be implemented to protect personal data in such countries or territories.

6. HOW IS YOUR DATA PROCESSED AND FOR HOW LONG?

Data processing:

INIM will retain your personal data INIM for as long as is strictly necessary to fulfill the purposes for which it was collected and processed, unless required to retain it longer in accordance with specific legal provisions.

The personal data processed for the creation of your personal account and for the use of the services available to personal account holders will be stored and processed until your personal account is closed.

With regard to system logs, INIM handles them INIM follows:

• System logs related to user activities and the intrusion detection devices/NVRs connected to them in the cloud, which are collected for support and maintenance purposes as well as to improve the services offered, are retained by INIM a period of 12 months from the date of collection;
• System logs related to user activities and the fire protection devices connected to them in the cloud, collected for security, technical support, and maintenance purposes, as well as to improve the services offered, are retained by INIM a period of 24 months from the date of collection;
• System logs, collected for statistical purposes, are deleted or anonymized by INIM 12 months of their collection;
• System logs related to user activities in the Cloud are retained by INIM 12 months from the date of collection, unless retention is required to comply with laws or regulations pertaining to the specific services used;
• System logs related to the activities of users who use the MARILYN and MARILYN MORE voice assistants are retained by INIM 12 months from the date of collection for the purposes of support and maintenance, as well as to improve the services offered;
• System logs related to communications with users for the purpose of managing the services offered are retained by INIM 12 months from the date of collection, unless there is a need to retain them in the legitimate interest of the data controller for legal protection purposes or to comply with current regulatory requirements.

Please note that any requests for an extension of the retention period, made for valid reasons, should be directed to the contact information provided in section 10 of this privacy notice.

The data processed for marketing and profiling purposes (provided, of course, that you have given your express consent) will be stored in accordance with applicable law and, in any case, until you withdraw your consent to the processing of your personal data.

The data processed following your purchase of products will be used exclusively for sending emails in accordance with the provisions of Article 130, paragraph 4, of the Data Protection Act.

In all cases, the User has the right to withdraw consent to the processing of personal data for marketing and profiling purposes at any time: each marketing communication includes a section that allows the User to easily withdraw their consent.

Upon revocation of consent—even if such consent was given prior to the expiration of the retention period for data collected for the aforementioned purposes—the data will be automatically deleted or permanently anonymized, and our Company may ask the User to renew consent to its processing.

The data transmitted to any service providers will be processed by them for the time strictly necessary to perform the tasks entrusted to them.

With regard to data backup management, it should be noted that:

• the data is backed up in the cloud;
• Backup is activated automatically upon login;
• The user can disable data backup before configuring their security system;
• The user can disable data backup after configuring their security system via the appropriate option in the app: ‘Settings’ > ‘Data backup to the cloud’ and uncheck ‘Backup active’;
• Once the backup is disabled, the user can choose whether or not to cancel the backup via the Cloud.

Specific security measures will be in place at all times to prevent data loss, unauthorized or improper use, and unauthorized access.

7. WHAT ARE YOUR RIGHTS?

The privacy legislation (Articles 15–22 of the Regulation) guarantees you the right at all times to access data concerning you, as well as to correct and/or supplement such data if it is incorrect or incomplete, to request erasure or restriction of processing if the conditions are met, to object to processing for reasons related to your particular situation, and to data portability regarding the data you provided, where processed automatically for the services you requested, within the limits of the provisions of the Regulation (Art. 20).

8. Does INIM data relating to minors?

As a general rule, we do not intentionally collect personal data from minors. If it is discovered that personal data from such individuals has been collected inadvertently, INIM the right to take steps to delete such data as soon as possible, unless applicable law requires us to retain it.

9. OPTIONALITY OF DATA SUPPLY

Apart from the registration data required to create your account and manage the requested services, you are free to provide the personal data contained in the request forms or otherwise indicated in the contact sections to request, for example, the sending of informational materials or other communications. Failure to provide such data may make it impossible to fulfill your request. For the sake of completeness, it should be noted that in certain cases (not related to the ordinary management of this Website), the authorities may request information for the purpose of verifying the processing of personal data. In such cases, a response is mandatory, subject to an administrative penalty.

In particular, please note that if you decide not to consent to the processing of your personal data for marketing purposes, INIM not be able to include you in its promotional initiatives, including periodic updates via the newsletter service.

If you decide not to consent to the processing of your personal data for profiling purposes, this will not affect your participation in Inim communications program; it will simply prevent INIM you personalized promotional communications.

10. EXERCISE OF THE RIGHTS OF THE DATA SUBJECT

The data subject may at any time exercise the rights set forth in Articles 15 through 22 of the Regulation by contactingINIM S.R.L.”, a sole proprietorship, at its registered office in Monteprandone (AP), in the municipality of Centobuchi, at Via dei Lavoratori No. 10. Tax ID and VAT No. 01855460448, email: inim.

11. UPDATES TO THIS POLICY

This Privacy Policy governs the processing of your Personal Data provided when registering on the INIM SERVICES portal and may be amended or updated, in whole or in part, including in light of changes to the laws or regulations governing the protection of Personal Data. Any changes or updates to this Privacy Policy will be communicated to Users as soon as they are adopted and will become effective upon publication on the Website. INIM therefore encourages Users to visit this page regularly to check for the publication of the most recent and updated version of the Privacy Policy. For this purpose, the document indicates the date of its last update.

Last updated: April 7, 2026