Privacy Policy
NNEAT (hereinafter, “NNEAT”) wishes to inform the users (hereinafter, the “Users”) of its website (hereinafter, the “Website”) of this Privacy Policy, in which we transparently and simply provide all the information about the processing of personal data. This Privacy Policy will always be available to Users on the Website.
Who is the Data Controller?
NNEAT S.L., a company incorporated under Spanish law, with registered office at Calle Cardenal Gardoqui, 1 – 3, Bilbao (Bizkaia), is the Data Controller of the personal data collected through the Website.
If you have any questions regarding how we process your personal data, you can contact us at: info@threatlattice.com.
What is Personal Data and Data Processing?
Personal data means any information relating to an identified or identifiable natural person. An identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to that person’s identity. Data processing means any operation or set of operations performed on personal data, such as collection, recording, storage, use, or disclosure.
How Do We Collect Your Personal Data?
- Through forms completed by the User on the Website.
- Through interaction with our contact or user support services.
- Through the use of cookies and similar technologies.
What Processing Do We Carry Out and For What Purpose?
User Account Management (if applicable)
Purposes:
- To register, create, and manage a user account on the Website.
- To provide support in password recovery processes and any issues related to the account.
- To detect and prevent fraud or unlawful actions.
- To comply with legal obligations applicable to NNEAT.
Data processed: name, username, email address, role or position, password.
Legal basis: performance of the Terms of Use accepted by the User.
Retention: while the User maintains an account or until the User requests deletion. Thereafter, data will be kept blocked for the legally prescribed limitation periods and then deleted or anonymized.
User Support
Purposes:
- To provide a user support service and resolve queries or requests.
Data processed: name, email, role, username, any information voluntarily provided in communications.
Legal basis: performance of the Terms of Use, NNEAT’s legitimate interest in providing support, and compliance with legal obligations.
Retention: for the time necessary to resolve the request or query and, subsequently, blocked for the applicable limitation periods.
Website Usage Analysis and Improvement
Purposes:
- Recognize Users when they return to the Website.
- Maintain security and prevent malicious use of the Website.
- Adapt the Website to the type of device used.
- Apply personalization criteria chosen by Users.
- Ensure correct display of content and requested features.
- Analyze use of the Website to optimize usability and implement improvements.
Data processed: IP address, browsing data (pages visited, session duration, browser and device information).
Legal basis: User’s consent for analytical/advertising cookies; NNEAT’s legitimate interest for technical cookies necessary for operation.
Retention: as specified in the Cookie Policy, or until consent is withdrawn. Thereafter, data will be blocked for the applicable limitation periods and then deleted or anonymized.
Your Rights
- Access: to know if we process your data and which ones.
- Rectification: to correct inaccurate or incomplete data.
- Objection: to oppose processing in legally established cases, including withdrawal of consent.
- Erasure: to request deletion of your data, subject to legal obligations.
- Portability: to receive your data or request its transfer to another controller.
- Restriction: to request suspension of processing in certain circumstances.
You may exercise your rights free of charge at any time by emailing info@threatlattice.com, specifying the right exercised. If we cannot identify you, we may ask for ID. If you consider that NNEAT has not handled your request properly, you may file a complaint with the Spanish Data Protection Agency (https://www.aepd.es).
Who Do We Share Your Data With?
We may disclose data when legally required or when necessary to comply with obligations, or in pursuit of a legitimate interest such as legal defense. Recipients may include:
- Legal advisors
- Courts and Tribunals
- Tax authorities
- Spanish Data Protection Agency
- Government and public administration bodies
- Law enforcement agencies
In the event of a merger, acquisition, or transfer of assets, user data may be transferred as part of the business assets.
Access by Service Providers and International Transfers
We may engage third-party service providers who will act as data processors. Contracts with such providers comply with applicable data protection laws.
Data Security
NNEAT applies appropriate procedures and technical and organizational security measures to ensure an adequate level of protection of personal data. Information is stored on secure servers, and strict security procedures are applied to prevent unauthorized access. We also ensure that our service providers maintain appropriate security standards.
Changes to this Privacy Policy
This Privacy Policy may be updated over time due to changes in criteria by data protection authorities, legislative modifications, or case law. NNEAT therefore reserves the right to modify this Privacy Policy to adapt it to such changes.
Last version: 22 September 2025.
