We don’t share your personal information with anyone except to comply with the law. We don’t store personal information on the computer or any server, except your emails, which we delete every 5 years, and invoices, which we are legally obliged to keep for book keeping purposes for 10 years.
We do not collect any personalized data automatically (i.e. through cookies). We only collect data via contact form available on the website and emails you send us. We use the data you’ve sent us to prepare an offer for you. We sometimes use email marketing to communicate with customers and potential customers. All email lists and campaigns are “opt-in” meaning we will not send you these sorts of emails unless you indicated that you wish to receive them on our website.
We do not disclose potentially personally-identifying and personally-identifying information to anyone. This information isn’t stored in any way and it is only used for tour organization purposes. We may be required to disclose an individual’s personal information in response to a lawful request by public authorities to meet national security or law enforcement requirements. If we are ever to engage in any onward transfers of your data with third parties for a purpose other than which it was originally collected or subsequently authorized, we will provide you with an opt-out choice to limit the use and disclosure of your personal data.
Typically the data will be your email address, name and surname. For paying customers, this will also include payment history. You can also request “to be forgotten” and we will erase any personally identifiable data we have about you. Of course, this excludes data we need for administrative or security purposes or if we are required by law to retain some of the data. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data, should direct his/her query to firstname.lastname@example.org. We will respond within a reasonable timeframe, not to exceed six days.
Should any event occur where customer data has been lost, stolen, or potentially compromised, our policy is to alert the customers via email no later than 48 hours of becoming aware of the event. We will also report such incident to any required data protection authority. We will work closely with any customers affected to determine next steps such as any end-user notifications, needed patches, and how to avoid any similar event in the future.