Diimaco Consultants (“we,” “us,” “our”) is committed to complying with the General Data Protection Regulation (GDPR) and ensuring the protection of personal data of individuals within the European Economic Area (EEA). This GDPR Compliance Policy outlines our approach to data protection and the rights of data subjects under the GDPR.
1. Data Controller
Diimaco Consultants is the data controller responsible for processing your personal data. Our contact details are:
2. Personal Data We Collect
We may collect and process the following categories of personal data:
– **Identity Data**: Name, title, date of birth, gender.
– **Contact Data**: Email address, telephone number, postal address.
– **Technical Data**: IP address, browser type and version, time zone setting, operating system and platform, and other technology on the devices you use to access our Website.
– **Usage Data**: Information about how you use our Website and Services.
– **Marketing and Communications Data**: Your preferences in receiving marketing from us and your communication preferences.
3. Legal Basis for Processing
We process personal data based on one or more of the following legal bases:
– **Performance of a Contract**: To fulfill our contractual obligations to you.
– **Consent**: Where you have given consent to the processing of your personal data for specific purposes.
– **Legal Obligation**: To comply with legal obligations.
– **Legitimate Interests**: For our legitimate interests, provided that your interests and fundamental rights do not override those interests.
4. Data Subject Rights
Under the GDPR, you have the following rights regarding your personal data:
– **Right to Access**: You can request access to your personal data and obtain information about how we process it.
– **Right to Rectification**: You can request the correction of inaccurate or incomplete personal data.
– **Right to Erasure**: You can request the deletion of your personal data under certain circumstances.
– **Right to Restriction of Processing**: You can request the restriction of processing of your personal data under certain circumstances.
– **Right to Data Portability**: You can request a copy of your personal data in a structured, commonly used, and machine-readable format.
– **Right to Object**: You can object to the processing of your personal data based on legitimate interests, direct marketing, and profiling.
– **Right to Withdraw Consent**: If we process your personal data based on your consent, you have the right to withdraw your consent at any time.
To exercise any of these rights, please contact us using the contact details provided above.
5. Data Retention
Depending on your jurisdiction, you may have the following rights regarding your personal information:
We will retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. When we no longer need your personal data, we will securely delete or anonymize it.
– **Deletion**: You can request the deletion of your personal information, subject to certain exceptions.
– **Objection and Restriction**: You can object to or request the restriction of the processing of your personal information.
– **Data Portability**: You can request a copy of your personal information in a structured, machine-readable format.
To exercise these rights, please contact us using the information provided below.
6. Data Security
We have implemented appropriate technical and organizational measures to protect your personal data from unauthorized access, use, disclosure, alteration, or destruction. While we strive to protect your personal data, we cannot guarantee its absolute security.
7. Data Transfers
We may transfer your personal data to third-party service providers located outside the EEA. When we do so, we ensure that your personal data is protected by appropriate safeguards, such as standard contractual clauses or other lawful transfer mechanisms.
8. Third-Party Processors
We may share your personal data with third-party processors who perform services on our behalf. These processors are contractually obligated to protect your personal data and process it only according to our instructions.
9. Complaints
If you believe that our processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority in the EEA.
10. Changes to This Policy
We may update this GDPR Compliance Policy from time to time. Any changes will be posted on this page with an updated effective date. Your continued use of our Website and Services after such changes constitutes your acceptance of the new policy.
11. Contact Us
For any questions or concerns about this GDPR Compliance Policy, please contact us at: