Privacy Policy for the Processing of Personal Data by Hoda S.r.l. ("Hoda S.r.l.")

The document you are about to read has a simple but fundamental purpose: to inform you about what happens to your Personal Data (hereinafter also "Data") when you decide to use Weople.

A - Data Controller and Data Protection Officer

The Data Controller is the entity that determines the purposes and means of the processing. If you decide to use Weople, the Data Controller is Hoda S.r.l., based in Via Giovanni Enrico Pestalozzi, 10 int. 14/1 – 20143 Milan (MI). You can contact the Data Controller at the following email address: support@weople.space.

We are available to clarify any doubts you may have regarding this document and, more generally, about the actual processing of Data and the parties involved.

We have appointed a Data Protection Officer (DPO), whom you can contact at: dpo@hoda.digital for any information regarding the processing of personal data.

B - What Data We Use and Why

To provide our services, we use a significant amount of personal data. Not all data are necessary, and you will decide whether and which data to provide to us.


1. Account Creation
To use our services, you must create an account on Weople.
Why do we use your data? To create your account.
What data do we use? We collect your identifying and contact details and personal characteristics, such as name, surname, address, country, nationality, phone number, email address, date of birth, and gender (the latter is optional).
Why can we use them? Because processing is necessary for the performance of a contract or pre-contractual measures.
Are you required to provide the data? Yes, if you do not create an account with the required data, we will not be able to provide our services. Optional data can be omitted, and you can still create your account.
How long do we use the data? We retain the information provided during account creation for 10 years after account closure.


2. Data Acquisition for the Creation of Probabilistic Models and Enrichment
Weople is designed to allow you to invest your personal data in a controlled and protected manner. The goal of Weople is to enhance the personal data you store in the safes to redistribute the proceeds from investment activities, as explained in the Terms & Conditions of Service. Hoda aggregates and processes user data using analytical tools and profiling algorithms to derive anonymous statistical samples for commercial purposes. Starting from personal data, these are de-identified— meaning identifying data that could associate the information with you are removed—then summarized into homogeneous classes or cohorts. In essence, we create profiles from your information and consumption habits, but then combine them with those of other people with similar characteristics, so as to obtain a typical user model that no longer has the information of a single person, but those statistically most probable of a group of people. This process allows us to create valuable models for companies without providing them with personal data or unique individual profiles. We protect your privacy by creating a high-value product for companies.

Why do we use your data? We acquire your data to create anonymous statistical samples to generate economic returns.
What data do we use? We collect personal characteristics (city, country, nationality, age, gender) and consumption and preference information that you choose to share by inserting them into the safes available to you.
Attention: We are not interested in special categories of data, such as information about your health, racial or ethnic origin, religion, philosophical beliefs, trade union membership, political opinions, or information about your sex life. We therefore ask you not to insert this information into the safes. In any case, our system is calibrated to use only information relevant to the profiling purpose, and therefore we may not be able to control the data of all users and may end up retaining special data, even if unintended. For this reason, we ask for your prior consent to store any special data you voluntarily choose to share. Security procedures are in place to protect the confidentiality of your data, and we use encryption to protect your information, regardless of the type of data processed.
Why can we use them? We can do so only if you provide your consent. For special data, we can do so if you provide consent for storage purposes.
Are you required to provide the data? You are not required to provide the data, but if you do not activate the safes by giving consent for profiling, we will not be able to enhance your data and provide you with the economic return that the Weople service aims to offer its users.
How long do we use the data? We retain identifying information for this purpose for up to 12 months from the time of provision.


3. Data Storage
When you revoke consent for processing for enrichment purposes, for the data contained in all or some safes, Hoda allows you to leave your data in Weople, offering a mere information storage service.

Why do we use your data? To store your data.
What data do we use? The data you have deposited in the safes.
Why can we do this? We can do this only if you provide your consent.
Are you required to provide the data? You are not required to leave the data stored in Weople when you revoke consent for profiling; if you wish, you can delete them all by following the instructions in the App.
How long do we use the data? We retain the information for this purpose until you revoke consent or decide to delete your account.


4. Exercise of Your Rights
For the safes indicated in the app, you can, if you wish, ask Hoda to exercise the right to data portability on your behalf. To do this, you must delegate Hoda within the Application, as indicated in the Terms and Conditions of Service. For this purpose, in some circumstances, Weople may need to request further identification details, such as a photograph and/or scan of your identity document, as well as the use of identity verification procedures.

Why do we use your data? To allow the exercise of your rights through delegation.
What data do we use? The data required to exercise the right to portability.
Why can we do this? We can do this only if you provide your consent.
Are you required to provide the data? You are not required to delegate Hoda to exercise the right to portability. However, if you use the delegation, you must provide the requested data to obtain the data from the relevant data controllers.
How long do we use the data? We retain the information necessary for the delegation for the time needed to exercise it. The uploaded identity document may be retained for an additional 2 months after the delegation expires, to facilitate the generation of new delegations. In the absence of new delegations, this document will also be permanently deleted.


5. Sending Promotional and Commercial Communications Within the Application Based on Profiling
Within Weople (in the "Gain&Relax" area), you can decide to receive communications and/or promotional material tailored to your interests or based on profiling activities carried out by Hoda.

Why do we use your data? To send you advertising or promotional communications.
What data do we use? The data you have deposited in the safes.
Why can we use them? We can do this only with your consent, which you will provide before accessing the "Gain&Relax" area.
Are you required to provide the data? No, you are not required. Without it, you can still use the App, but you will not receive the economic return linked to participation in this activity, as indicated in the Terms and Conditions of Service.
How long do we use the data? For 24 months from the granting of consent. Upon expiration, we will ask if you intend to renew your consent for this processing.


6. Responding to Requests Within Weople
If you contact us or request assistance to resolve problems or for any need, we will use your data to fulfill your requests.

Why do we use your data? To respond to and fulfill your requests.
What data do we use? Your account data and data related to the requests you make.
Why can we use them? To perform the contract or pre-contractual measures.
Are you required to provide the data? Yes, otherwise we will not be able to respond to and fulfill your requests.
How long do we retain the data? We retain the data for the time necessary to fulfill the requests, and in any case no longer than 24 months, unless specific needs are communicated to users from time to time.


7. Managing Navigation and Use of Weople
When you use Weople, we directly collect some information for the correct use of the Application.

Why do we use your data? For the correct use of the Application.
What data do we use? This includes information such as: IP addresses (both static and dynamic) or domain names of the devices used by those who connect, URI ("Uniform Resource Identifier") addresses, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server response (success, error, etc.), the country of origin, the characteristics of the browser and operating system used, etc.
Why can we use them? To perform the contract or contractual measures.
Are you required to provide the data? The data is collected directly through the use of the Application.
How long do we use the data? Until your account is closed.


8. Communicating Service Updates or Community Activities to Registered Users
In short, we can use your contact data to communicate service updates or information about the application and the community.

Why do we use your data? To communicate with registered users who have chosen to use the email communication channel for service updates or information about the application and the community.
What data do we use? Your contact and registration data.
Why can we use them? Because it is in Hoda's legitimate interest to update the user on improvements or changes to the services offered in order to retain them.
Are you required to provide the data? The data is already present within the Application. At any time, you can choose to opt out of receiving such communications by unsubscribing directly from the service via a request to the address indicated in all communications sent.
How long do we use the data? Until your account is closed.


9. Processing Statistical Data in Anonymous and Aggregated Form
These are analyses carried out on data to obtain completely anonymous results that allow us to understand, for example, the modes of use of the application, the most viewed content, and to conduct market research and statistical surveys.

Why do we use your data? To process statistical data in anonymous and aggregated form.
What data do we use? The data comes from registration and that contained in the safes but, before being used, it is made totally anonymous so that it cannot be subsequently attributed to you.
Why can we use them? Because it is in Hoda's legitimate interest to acquire information on the use of the Application to improve it.
Are you required to provide the data? The data is already present within the Application. You can object to the use of this data, for reasons related to your particular situation, from the beginning or later by contacting Hoda at the DPO's address.
How long do we use the data? Until your account is closed.


10. Fulfilling Legal Obligations
We use your data because we are required to do so to fulfill the obligations provided by current legislation.

What data do we use? The data comes from registration and that contained in the safes.
Why can we use them? Because it is necessary to fulfill legal obligations.
Are you required to provide the data? The data is already present within the Application.
How long do we use the data? For 10 years after account closure.


11. Protecting Our Rights
We may use the data you have provided to protect our rights in case of disputes.

What data do we use? We may use any data entered within the Application.
Why can we use them? Because it is in Hoda's legitimate interest to exercise, ascertain, or defend a right.
Are you required to provide the data? The data is already present within the Application.
How long do we use the data? For 10 years after account closure.


12. Meeting Organizational and Security Needs
To ensure the security of our systems, we must ensure that the activities carried out by users are lawful and correct.

What data do we use? We use registration data and data acquired during the use of the Application (log-in, log-out, IP address).
Why can we use them? Because it is in Hoda's legitimate interest to ensure the security of its systems.
Are you required to provide the data? The data is acquired directly through the use of the Application. You can object to the use of this data, for reasons related to your particular situation, from the beginning or later by contacting Hoda at the DPO's address.
How long do we use the data? For 10 years after account closure.


Data categories: registration data, rights exercise data, third-party data, automatically collected data
Details of data collected by category:
Data entered during the registration procedure

Data entered during the registration procedure. For example, name, surname, address, country, nationality, phone number, email address, date of birth, gender (the latter is optional).

Data requested for the exercise of your rights through Weople

Data requested for the exercise of your rights through Weople. You can use Weople to exercise your rights against platforms owned by third parties (social networks, service providers, e-commerce, etc.). For this purpose, in some circumstances, Weople may need to ask you for further identification details, such as a photograph and/or scan of your identity document, as well as the use of identity verification procedures. None of this data is mandatory for the functioning of the Application.

Data entered following the exercise of your rights against other Data Controllers

Data entered following the exercise of your rights against other Data Controllers. This category includes the information acquired following the exercise of your rights. The Data is stored in the various directories of the application ("Safes")

Data collected automatically as a result of using Weople

Data collected automatically as a result of using Weople. This includes information such as: IP addresses (both static and dynamic) or domain names of the devices used by those who connect, URI ("Uniform Resource Identifier") addresses, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server response (success, error, etc.), the country of origin, the characteristics of the browser and operating system used, etc. This data is necessary for the correct functioning of the Application

C - To Whom We Disclose the Data

The processing is carried out directly by the Data Controller, through expressly authorized personnel, and/or by external parties to its organization, who are in any case bound to it as Data Processors by virtue of a specific data processing agreement (e.g., service companies, professionals, and consultants). You can request the list of all parties involved in the processing at any time. We may also disclose data to third parties, public or private, if we are required to do so by laws or orders from authorities.

D - Where Your Data Is Located

To carry out our activities, we also use suppliers located outside the European Union or who access data from countries outside the European Union, such as the email provider. In these cases, the transfer of data takes place in the presence of the guarantees required by current legislation, i.e., to countries for which an adequacy decision exists or based on the standard contractual clauses ("SCCs") approved by the European Commission. If you wish to know more about the transfers, you can contact our DPO at dpo@hoda.digital.

E - Rights of the Data Subject

We remind you that you have the right to:

  1. obtain access and rectification of inaccurate data, as well as the integration of incomplete personal data;
  2. obtain the erasure of processed data in the cases provided for by the legislation;
  3. obtain the restriction of data processing if the circumstances indicated by the current legislation occur;
  4. request and obtain that the personal data held by Weople be communicated in a commonly used format ("data portability") or transmitted directly to another controller, when the processing is based on consent or contract and is automated;
  5. revoke at any time the consent previously given, without affecting the lawfulness of the processing carried out before the revocation;
  6. lodge a complaint with the supervisory authority or take legal action to protect your rights.
You also have the right to object, for reasons related to your particular situation, to the processing of data necessary for the pursuit of the legitimate interest of the Company or third parties. The Company may continue to process the data if it demonstrates the existence of compelling legitimate reasons for the processing that override the rights, interests, and freedoms of the data subject or for the establishment, exercise, or defense of legal claims. The data subject may also object to the processing of data for direct marketing purposes, including profiling insofar as it is related to such direct marketing.

All requests from the data subject can be addressed to Hoda at support@weople.space or to the DPO at dpo@hoda.digital.

F - Changes to This Privacy Policy

Hoda reserves the right to make changes to this privacy policy through direct communication to the data subject using the available means of communication (email, regular mail, telephone, etc.).

In the event that the changes concern activities carried out on the basis of consent, before proceeding with any further form of processing, Hoda S.r.l. will request new consent from the data subject.

***

Cookie Notice

Manage your cookies

This notice is intended to explain the procedures followed to collect, through cookies and/or other tracking technologies, the information provided by users when they use Weople or visit its website weople.space.

Introduction to cookies and other tracking tools

Cookies are files that store information about your navigation on the website. Cookies will store some details that may help you enjoy your browsing experience (for example, it allows us to ensure that the information on the site in your future visits responds to your preferences).

At the same time, cookies help us to understand some relevant details about the use of our site - for example, to identify most visited pages and contents, and for how long. Through these tools, we can make the site more responsive to your requests and more comfortable to navigate.

Consent to the installation of cookies

European legislation requires operators of websites that use cookies or other similar technologies to inform the user about the types of cookies. In certain cases, the law requires us to request an express consent from you.

There are three types of cookies.

The website operator usually installs technical cookies o guarantee the usual browsing and use of the website (allowing, for example, to make a purchase or authenticate to access restricted areas). Analytics cookies, similar to technical cookies when used directly by the site operator, are used to collect information in an aggregate form on the number of users and how often they visit the site. Profiling cookies are used to create user profiles and to send advertising messages in line with the preferences expressed by the user when surfing the web.

Cookies can also be distinguished between first-party and third-party cookies (it depends on the subject who manage the cookie and receive the information).

We have a first-party cookie if the tool is controlled by the owner of the site, who is then responsible for providing information and indicating how to block the tracking. We talk about third-party cookie when they are managed by a third party other than the site owner. For these cookies, the obligation to inform and indicate the methods for any blockage lies with the third party, while the owner of the site is obliged to insert on the site the link to the site of the third party where these elements are available.

In our case, Hoda uses certain tools that allow the installation of technical and analytics cookies. In particular, the following services are concerned:

Weople Cookies

These are first-party cookies developed and managed directly by Hoda S.r.l. If the User click on an advertisement regarding Weople, and lands on our website, we install a cookie, called “_campaign_source” in order to store his/her origin. If you want to delete such cookie, just use the relevant functionality of your browser.

Google Analytics (Google Ireland Limited.) Google Analytics is a web analysis service provided by Google Ireland Limited. ('Google'). Google uses the Personal Data to track and examine the use of the site, fill in reports and share them with other services developed by Google. The cookies used are the following: "__atuvc"; "__atuvs"; "__utma"; "__utmb"; "__utmc"; "__utmt"; "__utmz". To give website visitors the opportunity to prevent the use of their data by Google Analytics, you can download and install the browser add-on (Opt Out) for deactivation of Google Analytics JavaScript (ga.js, analytics.js, dc.js), available at https://tools.google.com/dlpage/gaoptout?hl=en.

Google Tag Manager

Google Tag Manager is a service provided by Google Ireland Limited. This service allows us to quickly and easily obtain information about the operation, expression of interest and use of certain parts or pages of the Application and/or the Website. We also use the Google Search Console service, which allows us to monitor the performance of our initiatives within the Google search engine.

Weborama

Weborama Italia S.r.l. is a service which makes statistical analysis on Weople users who are also users of Weborama’s network. Weborama does not use the data generated on our site for advertising or profiling purposes. If you wish to find out more, please click here http://weboramaitalia.it/privacy/come-funzionano-i-cookie-di-weborama/.

Zendesk

Zendesk is a user support and assistance service offered by Zendesk, Inc. With Zendesk, we can integrate the Application or the Site with an interface to support any question from you. Once received, the request is transformed into a so-called "ticket", which allows our operators to understand the problem, organize their work and make the service more efficient. More information on how Zendesk works and any cookies that may be installed can be found at the following link: https://help.zendesk.com/hc/en-us/articles/360001863368.

Some final indications

Since the Owner cannot technically control the installation of Cookies and other tracking systems operated by third parties through the services used within the Site, any specific reference to Cookies and tracking systems installed by third parties is indicative. To obtain complete information, please review the privacy policy of any third-party services listed in this document.

Given the complexity related to the identification of technologies based on cookies and their very close integration with the operation of the web, the User is invited to contact the Data Controller if he or she would like to receive any further information on the use of cookies and any use of the same - for example by third parties - made through this site.

***