Privacy And Document Rules

This page describes the public-facing technical policy for document uploads. The internal authority remains the SKLP Legal Privacy skill and the Living Register privacy schema.

Legal Design Principles

The private area is built around:

• data minimisation;
• purpose limitation;
• storage limitation;
• integrity and confidentiality;
• privacy by design and by default;
• documented review, deletion, quarantine, or legal hold.

The operating implementation maps to the Living Register purposes in lr_privacy_processing_purposes.

Documents That May Be Uploaded When Requested

Only upload a document when ColivingLiguria specifically asks for it.

Allowed categories:

• passport or identity document;
• visa, permit, entry stamp, or immigration document;
• health coverage or travel insurance needed for stay safety;
• deposit or accounting proof;
• signed Sign1 or other requested signed form;
• contract or form file requested by LP/legal operations;
• other supporting document only when explicitly requested.

Documents Or Data That Must Not Be Uploaded

Do not upload:

• passwords, recovery codes, seed phrases, or credential screenshots;
• unrelated full medical records;
• unrelated bank statements or payment histories;
• documents belonging to another person unless ColivingLiguria has expressly requested them for a lawful purpose;
• photos, videos, or social material not connected to a defined onboarding or legal purpose;
• files larger than the stated limit or executable/archive files.

Do not paste these values into the upload note:

• passport number;
• ID card number;
• health-card number;
• bank account number or IBAN;
• card number;
• raw address plus document number combinations;
• raw file paths or source folder names.

Purpose Codes

The upload interface currently exposes these controlled purposes:

• CONTRACT_CORE: contract, onboarding, and stay management.
• NON_EU_HOSPITALITY: non-EU hospitality notice where applicable.
• ALLOGGIATI: public-security registration.
• VISA_SUPPORT: visa or administrative support.
• HEALTH_SAFETY: health, emergency, allergy, or safety coverage.
• LEGAL_ACCOUNTING: deposit or accounting proof.

Retention

Temporary upload staging is not a permanent archive.

Default rule:

• delete or otherwise resolve the staged raw file within 14 days;
• keep only necessary metadata and deletion evidence;
• use quarantine or legal hold only when there is a specific documented reason.

Public Website Rule

The Quartz public website may explain the workflow, but it must not publish personal values, staged upload rows, document hashes tied to a person, passport details, health details, or banking details.