Privacy Policy

IT DECISION, LTD (hereinafter - “we”, “our”, “us”,“ITDecision”) is an Ukrainian company that operates the website itdecision-llc.com (hereinafter - the “Website”) that allows its Customers to know more about our services and products and to contact us.

We, at ITDecision, have created a Privacy Policy that aims to help you understand what data we collect, what we use it for and how you can exercise your rights. It is important to read this Privacy Policy carefully and understand it clearly, so we hope you will give it time and attention.

Privacy and security of our customers and visitors are of paramount importance for us. We are committed to protecting the data you share with us. This Privacy Policy explains how we process information that can be used to directly or indirectly identify individuals (“Personal Data”) collected through the use of our Website.

For the purposes of this Privacy Policy, we define the term “Customer” as a person that concluded agreement with us or intends to conclude it, and the term as a person that concluded agreement with us or intends to conclude it, and the term “Visitor” - as any individual who visits our Website, including Customers. Therefore, the provisions that related to the Visitors are also relevant for Customers.

We adhere to the following principles in order to protect your privacy:

  • principle of purposefulness - we process Personal Data fairly and in a transparent manner only, aiming to achieve determined and lawful objectives, and they shall not be processed in a manner not conforming to the objectives of data processing;
  • principle of minimalism - we collect Personal Data only to the extent necessary to achieve determined purposes. We do not keep Personal Data if it is no longer needed;
  • principle of restricted use - we use Personal Data for all other purposes only with the consent of the data subject or if permitted by a competent authority;
  • principle of data quality - we always keep Personal Data up-to-date and complete in order to achieve the end purpose of the data processing more efficiently;
  • principle of security - security measures shall be applied in order to protect Personal Data from unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical and organisational measures;
  • principle of individual participation - our Customers and Visitors shall be notified of their data collected. They shall be granted access to their Personal Data and have the right to demand a correction of inaccurate or misleading data.
  1. Data we collect and purposes of data processing
    1. 1.1. Website Visitors
      1. 1.1.1. We may collect, record and analyze information of Visitors of our website. Where our website is accessed purely to gain information, i.e. where you do not provide us information in any way, we only collect the personal data provided by your browser to our server. Where you want to view our website, we collect the following data (hereinafter - “Usage Data””) necessary for technical purposes to be able to demonstrate our website to you and to ensure adequate access stability and security (therefore, the legal basis is the legitimate interest of ITDecision):
        • IP address;
        • Enquiry date and time;
        • Time zone difference to Greenwich Mean Time (GMT);
        • Enquiry content (the exact web page accessed);
        • Access status/HTTP status code;
        • Data volume transmitted in each case;
        • Website generating the enquiry;
        • Browser;
        • OS and its interface;
        • Browser language and version.
      2. 1.1.2. We use this information in aggregate to assess the popularity of the web pages on our Website and how we perform in providing content to you. When combined with other information we know about you from previous visits, the data could possibly be used to identify you personally, even if you didn’t provided any information to us. We use Google Analytics and Facebook Pixel to analyze data. Information collected this way is stored for no longer than one year.
      3. 1.1.3. Processing of Usage Data is relied on our legitimate interests. It is necessary for managing and running our business efficiently and effectively, providing quality services including website support, developing and improving products, determining who may be interested in them.
      4. 1.1.4. Our website allows you to contact us by using the contact form. To do so, you need to provide your name, email address, telephone number, company name, as well as the text of your inquiry. We use the collected Personal Data only to communicate with you, as you reasonably expect us to answer you, and we may also record your request and our reply in order to increase the efficiency of the organisation of our support service. Also, this data may be used for creating of Customer’s card in the CRM system that we use (“amoCRM”).
      5. 1.1.5. Also, you can contact us by using the contact form, available at our Facebook page. To do so, you need to provide your name, email address, telephone number, company name, as well as the text of your inquiry. We use the collected Personal Data only to communicate with you, as you reasonably expect us to answer you, and we may also record your request and our reply in order to increase the efficiency of the organisation of our support service. Also, this data may be used for creating of Customer’s card in the CRM system that we use (“amoCRM”).
      6. 1.1.6. If you contact us via online chat on our Website, we may record your request and our reply in order to increase the efficiency of the organisation of our support service. We keep personally identifiable information associated with your message, such as your name, telephone number and email (if you provided such data to us), so as to be able to track our communications with you in order to provide you with high-quality service.
      7. 1.1.7. While processing Personal Data of our Visitors, we rely on your consent to the processing of your Personal Data for the purpose of communicating with you. We use such Personal Data in ways you would reasonably expect and which have a minimal privacy impact. You can withdraw your consent at any time by sending us an email to privacy@itdecision-llc.com with your withdrawal request and your Personal Data will be deleted within seventy-two (72) hours.
      8. 1.1.8. Processing of Personal Data for marketing purposes is also relied on the consent obtained from you. We use data in ways you would reasonably expect and which have a minimal privacy impact.
      9. 1.1.9. Wherever possible, we aim to obtain your explicit consent to process your Personal Data, for example, by asking you to agree to use Cookies.
      10. 1.1.10. Visitors can control the use of Cookies at the individual browser level. If you reject Cookies, you may still use our website, but your ability to use some features or areas of our website may be limited. To learn more and for a detailed Cookie notice, Visitors may refer to our Cookie Policy.
    2. 1.2. Customers
      1. 1.2.1. In order to carry out our obligations under a contract between you and us we need to process the information you give us.
      2. 1.2.2. We collect names, job titles, corporate email addresses and telephone numbers of employees – representatives of the Сustomer. This information is used by us to identify the Customers, provide them with services, mailings, notification, support and marketing actions, and to meet other contractual obligations.
      3. 1.2.3. We rely on our legitimate interests when we reach potential corporate clients by contacting them via Business-to-Business emails that contain marketing materials about the services we offer and/or contacting them by phone. Such an approach to marketing is extremely important for the development of our business. This processing has appropriate safeguards and a minimal privacy impact. You can object to the processing by following the “unsubscribe” link you will find on all the email marketing messages we send you. Alternatively, you can contact us at privacy@itdecision-llc.com.
      4. 1.2.4. If you no longer wish to receive promotional emails, you may opt out of them by replying to one of such emails or send us an email with a request.
      5. 1.2.5. After fulfilling contracts, we store relevant information about our Customers. We rely on our legitimate interests. It is necessary for efficient and effective managing and running of our business, providing quality services including products development and improvement, determining target audience.
  2. Compliance with General Data Protection Regulation (GDPR)
    1. 2.1. For Visitors and Customers located in the European Economic Area (EEA) privacy rights are granted and all processing of Personal Data is performed in accordance with regulations and rules of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data, known as the General Data Protection Regulation (GDPR).
    2. 2.2. We process Personal Data as a Controller, as defined in the GDPR:
      • ITDecision will be the Controller of Customer Data, as outlined above in the “Customer” section.
      • Also, ITDecision will be the Controller for Visitor Data, as outlined above in the “Visitor” section.
    3. 2.3. The processing and transfer of Personal Data is carried out in accordance with the requirements set out in regulations and rules of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data, known as the General Data Protection Regulation (GDPR).
    4. 2.4. Our Privacy Policy is compliant with the laws of every country or legal jurisdiction within which we aim to do business. If you think it fails to satisfy the law of your jurisdiction, we should hear from you. However, ultimately it is your choice as to whether you wish to use our Website.
  3. Your rights as a data subject
    1. 3.1. Visitors and Customers can review, correct, update, delete or transfer their personally identifiable information. For that, contact us directly at privacy@itdecision-llc.com. We will acknowledge your request within seventy-two (72) hours and handle it promptly and as required by law.
    2. 3.2. Right to object to processing of your Personal Data. Visitors and Customers have the right to object to the processing of their Personal Data by us.
    3. 3.3. Right to access to your Personal Data. Visitors and Customers have the right to learn if Personal Data is being processed by Data Controller, obtain disclosure regarding certain aspects of the processing and obtain a copy of the Personal Data undergoing processing.
    4. 3.4. Right to verify and seek rectification. Visitors and Customers have the right to verify the accuracy of their Personal Data and ask for it to be updated or corrected
    5. 3.5. Right to restrict the processing of your Personal Data. Visitors and Customers have the right, under certain circumstances, to restrict the processing of their Personal Data. In this case, Data Controller will not process their Personal Data for any purpose other than storing it.
    6. 3.6. Right to have your Personal Data deleted or otherwise removed. Visitors and Customers have the right, under certain circumstances, to obtain the erasure of their Personal Data from Data Controller.
    7. 3.7. Right to receive your Personal Data and have it transferred to another controller. Visitors and Customers have the right to receive their Personal Data in a structured, commonly used and machine-readable format and, if technically feasible, to have it transmitted to another controller without any hindrance.
    8. 3.8. You can withdraw your consent at any time by replying to the email with your withdrawal request and your Personal Data will be deleted within seventy-two (72) hours.
    9. 3.9. Also, you have the right to lodge a complaint with a supervisory authority if you think that we violate your rights. But we kindly ask you to contact us first so that we can help you.
    10. 3.10. When we receive any request to access, edit or delete personally identifiable information, we shall first take reasonable steps to verify your identity before granting you access or otherwise taking any action. This is important to safeguard your information.
  4. Promotional offers, newsletters or marketing communications from us
    1. 4.1. We deliver marketing and event communications to Customers and Visitors across various platforms such as email, text messaging and online. Where required by law, we will ask you to explicitly opt in to receive marketing from us. If we send you a marketing communication it will include instructions on how to opt out of receiving these communications in the future.
    2. 4.2. We may use your data to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which products, services and offers may be relevant for you (we call this marketing).
    3. 4.3. You will receive marketing communications, newsletters, and other news and information about our services from us if you have requested information from us or purchased services from us or if you provided us with your details when you contacted us and explicitly opted in to receive such information.
    4. 4.4. We may send the following commercial communications by email to a targeted selection of individuals from our marketing database: invitations to industry events we are hosting or attending; newsletters; industry updates; updates about our company and the services we offer; other information that we reasonably think may be interesting to our Customers and Visitors.
    5. 4.5. We may also inform you of products or services available from carefully selected partners. We may also contact you via surveys to conduct research about your opinion of our services.
    6. 4.6. We do not give or provide in any way Customer and Visitor lists to third parties, except as set forth hereunder.
  5. Data Retention
    1. 5.1. Personal Data shall be processed and stored only for as long as required for the purpose they have been collected for.
    2. 5.2. We will keep your Personal Data for the period that you are our Customer or Visitor. If you are no longer a Visitor or Customer of ITDecision, we will keep your Personal Data for the minimum length of time required to comply with the purposes set out in this Privacy Policy and relevant legal or regulatory obligations, but not more than twelve (12) months. Personal Data collected and processed with your consent shall be retained as long as we have your consent.
    3. 5.3. Information obtained via contact forms is deleted on an annual basis. Your information will be deleted if you did not communicate with the support team for more than twelve (12) months.
    4. 5.4. Any Usage Data collected for the purpose of analytics will be deleted in not more than twelve (12) months after being collected.
    5. 5.5. Once the retention period expires, Personal Data shall be deleted. Therefore, the right to access, the right to erasure, the right to rectification and the right to Personal Data portability cannot be enforced after expiration of the retention period.
  6. Contractors
    1. 6.1. We work with third party service providers which provide hosting, maintenance, sending emails, cyber security services. These contractors may have access to, or process Personal Data on behalf of us, as part of providing those services to us. We limit the information provided to these service providers to the extent it is reasonably necessary for them to perform their functions.
    2. 6.2. We use Google Analytics to monitor and analyze web traffic. Google Analytics is a web analysis service provided by Google LLC. (hereinafter - “Google”). Google utilizes the Data collected to track and examine the use of our website, to prepare reports on its activities and share them with other Google services. Google may use the Personal Data collected to contextualize and personalize the ads of its own advertising network. Personal Data collected: Cookies and Usage Data. Place of processing: USA – Privacy PolicyOpt Out. Privacy Shield participant.
    3. 6.3. We use Facebook Pixel to monitor and analyze web traffic. Facebook pixel is a web analysis service provided by Facebook Ireland Ltd (“Facebook”). Facebook utilizes the Data collected to track and examine the use of our Website, to prepare reports on its activities and share them with other Facebook services. Facebook may use the Personal Data collected to contextualize and personalize the ads of its own advertising network. Personal Data collected: Cookies and Usage Data. Place of processing: the Republic of Ireland – Privacy PolicyOpt Out. Privacy Shield participant.
    4. 6.4. We use amoCRM provided by QSOFT LLC as customer relationships management system, that allows us to manage our interaction with current and potential customers. This service process on our behalf the data about our Customers. Place of processing: USA - Privacy Policy.
    5. 6.5. We use UniSender provided by Ecomz Holding Limited to communicate with our Customers and Visitors (i.e. to send marketing emails to them). This service process on our behalf the data about our Customers. Place of processing: the Republic of Cyprus – Privacy Policy.
    6. 6.6. We use HOSTiQ provided by Ukrainian individual-entrepreneur Skurikhin Serhii Mykolaiovych as secure hosting facilities. Place of processing: Ukraine - Privacy Policy. The infrastructure is secured through a defense-in-depth layered approach.
    7. 6.7. We may need to share your Personal Data with the third parties that provide those services. Where your Personal Data are transferred outside of the European Economic Area (“EEA”), we require that appropriate safeguards are in place.
    8. 6.8. We guarantee that we have Data Processing Agreements in place with our service providers, ensuring compliance with the GDPR and our contracts with them requiring to maintain the confidentiality of Personal Data. All data transfers inside and outside of the EEA are being done in accordance with these Data Processing Agreements. All data transfers are performed in accordance with the strictest security regulations.
    9. 6.9. For more detailed information about the international information transfers to our business partners, service providers and developers outside of the EU/EEA, please contact us using the details given in the “Contact us” section below.
  7. Information Security
    1. 7.1. We care to ensure the security of your Personal Data. We follow generally accepted industry standards to protect the information submitted to us, both during transmission and once we receive it. We maintain technical, physical, and administrative security measures to provide reasonable protection for your Personal Data. When we process your information, we also make sure that your information is protected from unauthorized access, loss, manipulation, falsification, destruction or unauthorized disclosure. This is done through appropriate administrative, technical and physical measures.
    2. 7.2. There is no 100% secure method of transmission over the Internet or electronic storage. We, therefore, cannot guarantee its absolute security.
    3. 7.3. We never process any kind of sensitive data and/or criminal offense data. Also, we never undertake profiling of Personal Data.
  8. Use of site by children
    1. 8.1. We do not provide services to children. Visitors declare themselves to be adult according to their applicable legislation.
    2. 8.2. Our website is not directed to persons under the age of 16. Minors may use our website only with the assistance of a parent or guardian. Under no circumstance persons under the age of 13 may use the website.
    3. 8.3. We collect data about all Customers and Visitors regardless of age. We do not anticipate that some of those Customers and Visitors will be children.
  9. Application of this Privacy Policy
    1. 9.1. This Privacy Policy is applicable only to our Website. This version of the Privacy Policy is effective from 01/04/2020.
    2. 9.2. Please be aware while visiting our Website. Our Website may contain links to other websites. Once redirected to another website, this Policy is no longer applicable. We are not responsible for the content or privacy policies of these other websites.
  10. Acceptance of these Conditions
    1. 10.1. We assume that all Visitors and Customers have carefully read this document, understand its contents and agree to the terms and conditions stated in the Privacy Policy above. If you do not agree with this Privacy Policy, you should refrain from using our website.
  11. Changes and Updates to our Privacy Policy
    1. 11.1. We may update this Privacy Policy from time to time, so please review it frequently. All changes to this Privacy Policy are effective upon being posted on this page.
    2. 11.2. If any material changes are made to this Privacy Policy, we will use reasonable endeavours to inform you in advance by email or notice on the website. When we change this Privacy Policy in a material manner, we will let you know via email prior to the changes becoming effective and update the effective date at the top of this page.
  12. Contact us!
    1. 12.1. If you have any questions about the practices of this website or your dealings with this website, please contact us at privacy@itdecision-llc.com.

IT DECISION, LTD
a company duly incorporated under the laws of Ukraine
Registered address: Ukraine, 69037, Zaporizka obl., Zaporizhzhia, 20-A REKORDNA Str., cabinet 6
Registration number: 43524267