1. Preliminary remarks

We at MONEYHOUSE take care of your data and process them according to the above mentioned European Regulation better known as GDPR. The site and our systems comply with the regulations regarding data acquisition and processing. For a more in-depth understanding of the regulations and activities relating to personal data, you can read:

http://ec.europa.eu/justice/smedataprotect/index_it.htm.

However, in compliance with the provisions of the regulations, we provide clear, concise, transparent and easily accessible information containing a summary of the most important aspects in order to facilitate the user's understanding of the processing of his/her personal data.

2. Data Controller and Data Processor

The data controller and data processor is MONEYHOUSE Sh.p.k.. The contact details are indicated on the website in the relevant sections. An email box is available for any communication by this method: info@moneyhouse.vip, for all other methods of contact you can refer to the contact details updated and indicated on the website. As the owner and responsible for the treatment, MONEYHOUSE will make every effort to treat and preserve the personal data of its clients and users according to the regulations.

3. Persons authorised to process data

The data are processed not only by MONEYHOUSE and all its collaborators, but also by external companies and partners engaged to provide and guarantee the continuity of the services and to manage the information systems. The subjects can also be partner companies or companies related to the group, as well as companies managing marketing platforms and systems connected to the management of the acquired information. Authorised parties are all those who may come into contact for dispatch, accounting, financial, administrative and legal management activities.

4. Non-personal and aggregate technical navigation data collected

The computer systems for the use of this website acquire some data that cannot be properly defined as personal, the transmission of which is however implicit in the use of Internet communication protocols. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and IT environment.

These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check that it is functioning correctly, and are deleted immediately after processing.

Among these data, IP addresses are the only data that, although not associated with directly identified data subjects, can by its very nature, through processing and association with data held by third parties, allow users to be identified. Where possible, our company, as provided for by the Regulations, has arranged for anonymisation and masking in the collection of IP addresses as specified below. The data, however, could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site: except for this eventuality, at present web IP data do not persist for more than 3 months.

5. Consent and type of processed data voluntarily provided by the User

Consent to the processing of data is freely and voluntarily provided by the user via the web forms by means of specific approval for the different purposes and recorded for verification by the authorities or a request by the data subject. The data subject has the right to revoke his or her consent at any time. Consent may also be requested in writing if the particular actions require it, otherwise the above-described computer modalities apply. The data are those provided, also collected as an addition to previously collected data in order to keep them up-to-date.

6. Cookies and profiling/tracking data

Please refer to the extended privacy statement on the use of technical and profiling/tracking cookies for marketing purposes at the following link: https://www.moneyhouse.vip/cookies-regulation.

7. Purpose of data processing

Data are collected for the purposes of providing services, for the processing of requests received, for marketing communications or for possible analysis and for transfer to third parties. All required authorisations are diversified by type of purpose in the various collection forms, with a clear indication of the data processed and their purpose. Each type of data processing requires specific authorisation based on the purpose expressed above.

Authorisation requests are differentiated, at the collection stage, according to the different purposes of data processing as set out below:

A. Processing of mandatory data for the provision of the service [mandatory]

This is compulsory consent to enable us to provide the requested services. Processing may also include the transfer of data to third party companies for the purpose of managing information and the provision of services in order to guarantee greater security and control over the data and the activities covered by the services provided. It also includes communications regarding the various requirements linked to the provision of services such as: sending deadlines, payments, invoices, technical and service communications, notices and information on the status of systems, sending service notes, data recovery in the event of accidental loss, backups. Revocation of authorisation, although possible, prevents further service provision. Data may also be transferred to third parties residing outside the European Union.

B. Processing for marketing purposes [optional]

Concerns optional consent on marketing purposes related to products and or services purchased or of interest. It provides for the authorisation to send emails, sms, and communications also via other computer and paper means of advertising. The data will be processed internally for communications from MONEYHOUSE about the activities expressed above. The data could be given and/or supplied to third partner companies or external subjects both for the management of the communications themselves and for marketing activities, survey and/or survey related, as well as for further purposes. Processing by third party companies may concern activities aimed at helping to manage improved analysis on performance and conversions. You may revoke or rectify your consent at any time.

8. Modalities and duration of data processing

Data are collected in full compliance with current legislation. In particular, the data is collected using encryption with an SSL protection certificate. Data are stored on cloud storage with backup and redundancy and kept for the period necessary for the provision of services and related activities. The disks on which the data is stored are encrypted. The data processed may be subject to periodic verification of correctness. In such cases, the person concerned will receive a notice of adjustment of his or her data in our archives. Physical access to the servers is protected with anti-intrusion systems and data room access control. The data are also replicated geographically for greater protection against accidental deletion due to natural disasters or physical theft of the data. There is a log of data logs and consents given and of the authorisations granted during data entry and management and the information linked to these authorisations. The aim is to quickly identify activities related to the management of the data of the individual users concerned. The data is stored securely and any unauthorised access is limited to a minimum by the implementation of all security activities required by technology. In any case of access, those affected will be promptly informed and the data, in the case of accidental deletion, immediately restored.

9. Rights of the data subject regarding data processing

The data subject may at any time request the rectification, supplementation or total deletion of data. Such requests may be made directly to the contact details on www.moneyhouse.vip. The data subject may also request the revocation of processing authorisations for the various purposes. If the revocation concerns the mandatory purpose of data processing for the provision of services, the services may no longer be provided and may be suspended without refund.

It is possible to request a copy of the data processed and the purpose of the processing, in accordance with the Regulations. It is possible to lodge a complaint with info@moneyhouse.vip or directly with the Personal Data Protection Authority or one of the supervisory authorities in the event of non-compliance that goes against the provisions of the GDPR Regulation.

All data entered on the site through the forms, managed and processed for the purposes of requests for quotations, assistance, newsletters and in general contact, even sent by email on domains of our company or traceable to it, or through third party systems and otherwise sent to us, are treated in accordance with Law no. 9887 of 10.03.2008 "On the Protection of Personal Data" of the Republic of Albania and the EU Regulation 2016/679 GDPR for the Processing of Personal Data.

The data entered and managed is processed in accordance with Law no. 9887/08 "On the Protection of Personal Data" of the Republic of Albania.

The website www.moneyhouse.vip complies with the EU Regulation 2016/679 GDPR for the Processing of Personal Data.