1. Data Controller
The data controller is Daniele Antonio Iunco, owner of GiDiNet (GiDiNet di Iunco Daniele Antonio), VAT no. IT03239430964, e-mail: info@gidinet.com, hereinafter “GiDiNet”.
2. Personal Data Collected
We only collect the data strictly necessary to register and invoice users: name, surname or company name, address, tax code and/or VAT number, and email address.
We also store technical data such as IP addresses and access logs. The contents of uploaded files are not accessible to GiDiNet as they are encrypted end-to-end (E2EE).
3. Data Encryption
All uploaded files are encrypted end-to-end before transfer. Users can optionally enable additional server-side encryption: if the server-side keys are destroyed, the files become irreversibly inaccessible—even for those with E2EE keys.
4. Purpose of Processing
Personal data is processed for the following purposes:
– creating and managing the user account
– fulfilling tax and legal obligations
– ensuring service security
– preventing abuse and asserting GiDiNet’s legal rights
5. Legal Basis and Data Requirement
Providing personal data is required to use the service. If you do not provide the necessary data, we cannot activate the service.
6. Data Sharing
Personal data is not shared with third parties, except as required by law. GiDiNet and its suppliers have no access to encrypted user content.
7. Geographical Scope
All data is processed exclusively within the European Union.
8. Data Retention
Billing and account data are retained for 10 years, in compliance with applicable regulations.
Encrypted files uploaded by the user are retained until manually deleted or until the service expires.
Technical logs related to access, system operations, and service usage are retained for a maximum of 12 months from the time of generation. These logs are not deleted when the account is removed and are retained for the purposes of security, abuse prevention, and investigation of potential unlawful activity. If requested by judicial authorities, such logs may be retained for longer periods as permitted by law.
Each object on PsiBlocks maintains a complete and permanent log of all operations performed (e.g., creation, move, edit, share, delete), including the action type, a technical reference (GUID), and a timestamp. This log is visible to the user via the service interface and is retained for the entire lifetime of the object. When the object is deleted, the associated log is permanently erased.
9. Cookies
The website uses only technical cookies to manage user sessions. No third-party or profiling cookies are used.
10. Data Subject Rights
You may request access to your data, rectification, deletion, restriction of processing, or withdraw consent. In case of violation, you may file a complaint with the data protection authority.
11. Changes to This Policy
This policy may be updated due to legal or technical reasons. Last update: 18/06/2025.