Privacy Policy

Information You Provide Directly

When you interact with our website or services, you may choose to provide us with certain information:

• • Contact Information: Name, email address, phone number, and company details when you fill out contact forms or request information about our services
• • Communication Content: Messages, questions, or feedback you send to us through our contact forms or email
• • Service Information: Details about your business needs, data challenges, and project requirements when you engage with our consulting services

Information Collected Automatically

When you visit our website, certain information is collected automatically through cookies and similar technologies:

• • Usage Data: Pages visited, time spent on pages, links clicked, and navigation patterns within our website
• • Device Information: Browser type, operating system, device identifiers, and screen resolution
• • Location Data: General geographic location based on IP address (country and city level)
• • Referral Information: The website or search term that directed you to our site

Legal Basis for Data Processing

We process your personal data based on the following legal grounds:

• • Consent: When you voluntarily provide information through forms or accept cookies
• • Contractual Necessity: To fulfill service agreements and respond to your inquiries
• • Legitimate Interests: To improve our services, ensure website security, and conduct business operations
• • Legal Obligations: To comply with applicable laws and regulations

Data Retention Periods

We retain personal data only as long as necessary to fulfill the purposes outlined in this policy. Contact form submissions are typically retained for three years unless you request deletion sooner. Analytics data is aggregated and anonymized after 26 months. Service-related data is kept for the duration of our business relationship plus seven years for legal compliance purposes.

Primary Uses

Your personal data helps us provide and improve our services in several ways:

• • Service Delivery: Responding to your inquiries, providing consultations, and delivering the business intelligence services you've requested
• • Communication: Sending you information about our services, responding to your questions, and maintaining our professional relationship
• • Website Improvement: Understanding how visitors use our site to enhance user experience, content, and functionality
• • Security: Protecting our website and services from fraud, abuse, and security threats

Third-Party Data Sharing

We share your personal data only when necessary and with appropriate safeguards:

• • Service Providers: We work with trusted third-party providers for website hosting, email services, and analytics. These providers are contractually obligated to protect your data and use it only for specified purposes
• • Analytics Platforms: With your consent, we use analytics services to understand website traffic and user behavior. These services may collect anonymized or pseudonymized data
• • Legal Requirements: We may disclose information when required by law, legal process, or governmental request
• • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity

We do not sell your personal data to third parties for marketing purposes.

Marketing Communications

If you've provided your email address through our contact form, we may occasionally send you information about our services, industry insights, or company updates. These communications are sent only with your consent or based on legitimate interest where permitted by law. Every email includes an unsubscribe option, and we honor all opt-out requests promptly.

Analytics and Website Improvement

We use analytics tools to understand how visitors interact with our website. This helps us identify which content is most valuable, where users encounter difficulties, and how we can improve the overall experience. Analytics data is typically aggregated and anonymized, meaning individual users cannot be identified from this information.

Security Measures

We implement comprehensive security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction:

• • Encryption: All data transmitted between your browser and our servers is encrypted using industry-standard SSL/TLS protocols
• • Secure Storage: Personal data is stored on secure servers with restricted access and regular security updates
• • Access Controls: Only authorized personnel have access to personal data, and access is limited to what's necessary for their role
• • Regular Audits: We conduct periodic security assessments to identify and address potential vulnerabilities

Data Encryption and Storage

Personal data you provide through contact forms is encrypted during transmission and stored on secure servers located within the European Union. We use industry-standard encryption methods for data at rest and in transit. Our hosting providers maintain ISO 27001 certification and comply with GDPR requirements.

Access Controls and Monitoring

Access to personal data is restricted based on role-based permissions. We maintain audit logs of data access and modifications. Our systems are monitored for unusual activity that could indicate a security incident. All staff members with data access undergo privacy and security training.

Breach Notification Procedures

In the unlikely event of a data breach that affects your personal information, we will notify you and relevant supervisory authorities within 72 hours, as required by GDPR. The notification will include details about the nature of the breach, the data affected, and steps we're taking to address the situation. We maintain an incident response plan that outlines procedures for detecting, responding to, and recovering from security incidents.