Privacy policy

{ Last updated: February 2026 }

nextaChain (“we”, “us”, “our”) is committed to protecting the personal data of all individuals who visit this website (nextachain.com) and interact with our services. This Privacy Policy explains what data we collect, why we collect it, how we use it, and what rights you have under the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable national law.

Please read this document carefully. By using this website or submitting a contact request, you acknowledge that you have read and understood this Privacy Policy.

1. Data Controller

The data controller responsible for the processing of your personal data is:

nextaChain

[Legal entity name and form — e.g., nextaChain S.r.l. / nextaChain Ltd]

[Registered address]

[VAT/Tax number]

Email: [privacy@nextachain.com]

For any privacy-related inquiry, you may contact us at the email address above.

2. Data we collect and purposes

2.1 Browsing data

When you visit this website, our servers and third-party analytics tools may automatically collect:

  • IP address (anonymized where technically feasible)
  • Browser type and version
  • Operating system
  • Pages visited and time spent on each page
  • Referring URL

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) in monitoring website performance and security. This data is not used to identify individual users and is retained for no longer than 26 months in aggregated form.

2.2 Contact form data

When you submit a contact request via the website form, we collect:

  • First and last name
  • Professional email address
  • Organisation name
  • Role / function
  • Content of your message

Legal basis: Processing is necessary to take steps at the request of the data subject prior to entering into a contract (Art. 6(1)(b) GDPR), or, where no contractual relationship is established, on the basis of our legitimate interest in responding to professional enquiries (Art. 6(1)(f) GDPR).

Retention: Contact form data is retained for 24 months from the date of submission, or for the duration of any contractual relationship and up to 10 years thereafter for compliance purposes.

2.3 Cookies and similar technologies

This website uses cookies. For full details on the types of cookies used, their purposes and how to manage your preferences, please refer to our Cookie Policy, available at [link to Cookie Policy].

3. Data recipients and transfers

We do not sell, rent or trade your personal data to third parties. We may share your data with:

  • Website hosting and infrastructure providers operating within the EU/EEA
  • Analytics service providers (e.g., Google Analytics, operated under a data processing agreement with anonymisation enabled)
  • Professional advisors (legal, tax, accounting) bound by confidentiality obligations
  • Competent authorities, where required by applicable law

Where any provider is located outside the European Economic Area, we ensure that appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission pursuant to Art. 46 GDPR.

4. Your rights under the GDPR

As a data subject, you have the following rights with respect to your personal data:

  • Right of access (Art. 15): You may request a copy of the personal data we hold about you.
  • Right to rectification (Art. 16): You may request correction of inaccurate or incomplete data.
  • Right to erasure (Art. 17): You may request deletion of your personal data where there is no overriding legitimate ground for continued processing.
  • Right to restriction of processing (Art. 18): You may request that we limit how we use your data in certain circumstances.
  • Right to data portability (Art. 20): Where processing is based on consent or contract and carried out by automated means, you may request a copy of your data in a structured, machine-readable format.
  • Right to object (Art. 21): You may object at any time to processing based on legitimate interest, including profiling.
  • Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, please contact us at [privacy@nextachain.com]. We will respond within one calendar month of receipt of your request. In complex cases, this period may be extended by a further two months, with prior notice.

You also have the right to lodge a complaint with a supervisory authority. In Italy, the competent authority is the Garante per la protezione dei dati personali (www.garanteprivacy.it). If you are located in another EU/EEA member state, you may contact the supervisory authority of your country of residence.

5. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration or destruction, in accordance with Art. 32 GDPR. These measures include encrypted data transmission (TLS/HTTPS), access controls and regular security assessments.

No method of transmission over the internet is completely secure. In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay in accordance with Art. 34 GDPR.

6. Children

This website is directed exclusively at professionals and business entities. We do not knowingly collect personal data from individuals under the age of 16. If we become aware that we have inadvertently collected such data, we will delete it promptly.

7. Links to third-party websites

This website may contain links to external websites not operated by nextaChain. We are not responsible for the privacy practices or content of those websites. We encourage you to review their respective privacy policies.

8. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in applicable law, our data processing activities or our organisational structure. The date of the most recent revision is indicated at the top of this document. We encourage you to review this page periodically.

Where changes are material, we will provide a prominent notice on this website.

9. Contact

For any question, request or concern relating to this Privacy Policy or the processing of your personal data, please contact:

[privacy@nextachain.com]

nextaChain — [registered address]

This document was prepared in accordance with Regulation (EU) 2016/679 (GDPR) and applicable Italian data protection legislation. It does not constitute legal advice. nextaChain recommends consulting a qualified data protection professional before final publication.