Privacy Policy

Introduction

Your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and protect your information in accordance with GDPR and relevant American privacy laws such as the California Consumer Privacy Act (CCPA).

1. Information We Collect

We collect different types of information from you, including:

– Personal Data: such as your name, email address, phone number, IP address, and any other information that can directly or indirectly identify you.
– Usage Data: collected automatically when you interact with our Service, including information like your Device’s Internet Protocol address (e.g., IP address), browser type, browser version, the pages of our Service you visit, the time and date of your visit, the time spent on those pages, and other diagnostic data.
– Cookies and Tracking Data: we use cookies and similar tracking technologies to track your activity on our website and store certain information. This includes browser cookies, web beacons, tags, and scripts.
– Third-Party Data: we may receive personal data about you from third parties, such as social media services, business partners, analytics providers, and advertising networks.

2. How We Use Your Information

We use your personal data for the following purposes:

– To provide and maintain our Service.
– To manage your registration as a user of the Service.
– To perform contractual obligations, including the purchase of products or services.
– To contact you with newsletters, marketing, or promotional materials if you have provided explicit consent.
– To manage your requests, such as customer service inquiries.
– To analyze and improve our Service, including monitoring usage trends and determining the effectiveness of our campaigns.
– To prevent and address technical issues or fraudulent activities.
– To comply with legal obligations, including financial regulations and responses to lawful requests by public authorities.
– To provide personalized services, including recommendations based on your preferences and usage history.
– Automated Decision-Making: We may use your data for automated decision-making processes, including profiling, to provide certain services (e.g., personalized marketing). You have the right to object to automated decision-making, including profiling, where it produces legal effects or significantly affects you.

3. Legal Basis for Processing Personal Data

Under GDPR, we process personal data based on one or more of the following:

– Your consent: where you have given explicit consent for processing your personal data for one or more specific purposes.
– Performance of a contract: where processing is necessary for the performance of a contract with you.
– Legitimate interests: where processing is necessary for our legitimate interests or those of a third party, provided they do not override your rights.
– Compliance with legal obligations: where we need to process your data to comply with applicable laws.

4. Sharing Your Information

We may share your personal data under the following circumstances:

– With Service Providers: to facilitate our Service, provide services on our behalf, perform related tasks, or assist in analyzing how our Service is used. These providers are contractually obligated to adhere to privacy standards similar to those described in this Policy.
– For Business Transfers: in the event of a merger, acquisition, or asset sale, your personal data may be transferred.
– With Affiliates: we may share your information with affiliates, in which case we require them to respect this Privacy Policy.
– With Business Partners: we may share your information to provide you with certain products, services, or promotions.
– With Authorities: where required by law or to comply with a legal process, such as responding to court orders or government regulations.
– With Your Consent: if you have given explicit consent to share your information for specific purposes.

5. Your Rights

You have various rights regarding your personal data:

– Access, Correction, and Deletion: You can request access to your personal data, corrections, or deletions.
– Data Portability: You have the right to request a copy of your personal data in a structured, machine-readable format.
– Restrict Processing: You can ask us to restrict how we process your personal data.
– Object to Processing: You can object to certain uses of your personal data, such as direct marketing.
– Withdraw Consent: If you have given consent for processing, you have the right to withdraw it at any time without affecting the lawfulness of processing based on consent before its withdrawal.
– California Consumer Rights: California residents can request information on data collection, deletion, and opt-out of data sales.
– Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if you believe your data has been mishandled.

6. Data Retention

We retain your personal data for as long as necessary to provide our services, comply with our legal obligations, resolve disputes, and enforce our policies. Retention periods vary depending on the type of data and the purpose of its processing.

7. Security

We take the security of your personal data seriously and implement industry-standard measures to protect it from unauthorized access, disclosure, alteration, or destruction. This includes encryption, access controls, and regular security audits.

8. International Transfers

Your personal data may be transferred to — and maintained on — computers located outside of your country. We use Standard Contractual Clauses or equivalent safeguards to protect your personal data during such transfers, and you may request further information on these safeguards.

9. Cookies and Tracking Technologies

We use cookies, web beacons, and similar technologies to track your activity on our Service and enhance user experience. You may choose to disable cookies through your browser settings, but some parts of our Service may not function properly.

10. Data Protection Officer (DPO)

In accordance with GDPR requirements, we have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this Privacy Policy. If you have any questions or requests regarding your personal data, you can contact our DPO at: privacy@cyadviso.com.

11. Contact Us

If you have questions or concerns regarding this Privacy Policy, please contact us at:

– Company Name: CyAdviso
– Address: Rīga, Ganību dambis 26A, LV-1005
– Email: privacy@cyadviso.com

12. Supervisory Authority Contact

If you are not satisfied with our response or believe we are processing your personal data in a way that is not lawful, you have the right to lodge a complaint with a supervisory authority. For EU users, this is your local data protection authority.

13. California Consumer Rights

If you are a California resident, you have the right to request details on the categories of personal information we collect, its purposes, and the third parties with whom it may be shared. You may also request the deletion of your personal data or opt-out of its sale.

14. GDPR Specific Rights

Under GDPR, you have the right to access your personal data, rectify inaccuracies, request erasure, restrict processing, and lodge a complaint with a supervisory authority.

15. Tracking Technologies and Cookies

We use cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze Our Service. You can manage your cookie preferences through your browser settings. Some cookies are necessary for the operation of the site, while others are optional and help improve your experience.

16. Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use Your Personal Data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.

17. Children’s Privacy

Our Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child without verification of parental consent, we take steps to remove that information from our servers.

18. Data Breach Notification

In the event of a data breach, we will notify affected individuals and the relevant supervisory authority within 72 hours of becoming aware of the breach, where required by law. We will also provide details of the breach, its impact, and steps taken to mitigate it.

19. Updates to This Privacy Policy

We may update this Privacy Policy from time to time in response to legal, technical, or business developments. We will notify you about significant changes by posting the new Privacy Policy on this page and updating the “Last Updated” date.