This policy outlines the guidelines that JSmIT Infrastructure & Security follows in processing personal data, in compliance with the General Data Protection Regulation (GDPR), specifically Regulation (EU) 2016/679 of April 27, 2016, of the European Parliament and the Council on the protection of natural persons with regard to the processing of personal data and the free movement of such data.

JSmIT Infrastructure & Security, located at Smidsvuur 17, 2421 MG, Nieuwkoop, acts as a processor of personal data and places great importance on protecting your privacy. We kindly ask you to read this privacy policy carefully, as it contains essential information about how we handle your personal data.

1. General

JSmIT Infrastructure & Security confirms compliance with current privacy legislation, including the General Data Protection Regulation (GDPR).

2. Definitions

• Personal Data: Any information relating to an identified or identifiable natural person. A person is considered identifiable when they can be identified directly or indirectly, such as by name, identification number, location data, or other identifiers.
• Processing: Any operation performed on personal data, such as collecting, storing, updating, accessing, using, or destroying it.
• Data Controller: The natural or legal person who determines the purposes and means of processing personal data.
• Processor: The natural or legal person who processes personal data on behalf of the data controller.
• Personal Data Breach: A security incident that leads to the accidental or unlawful destruction, loss, alteration, or unauthorized access to personal data.
• GDPR: The General Data Protection Regulation (EU 2016/679).

3. Processing of Personal Data

While providing our services, we process the following personal data:

• Your first and last name
• Your address
• Your phone number
• Your email address

These data are processed for the execution of agreements you have entered into with us, such as delivering services, invoicing, and payment monitoring.

When using our website, we may process the following data:

• Your IP address
• Your browsing behavior
• Your email address (if logged in)
• Your username and profile picture (if applicable)

These data help us optimize the content and functionality of our website. The legal basis for this processing is our legitimate interest in improving our services.

Additionally, we process personal data for direct marketing purposes, including sending newsletters, provided you have given explicit consent. When you subscribe to our newsletter, we collect and store your email address to send cybersecurity updates, product reviews, and promotional offers.

4. Direct Marketing and Newsletters

Your personal data will only be used for direct marketing, including newsletters, if you have explicitly given consent. By subscribing to our newsletter, you agree that we may send you cybersecurity updates and promotional content. You may withdraw this consent at any time by clicking the “unsubscribe” link in our emails or by contacting us through the contact form on our website.

5. Retention Period

We retain your personal data for as long as necessary for the purpose for which it was collected or as long as there is a legal obligation to retain it. Email addresses collected for newsletter purposes will be retained until you unsubscribe.

6. Rights of Data Subjects

You have the following rights regarding your personal data:

• Right of Access: You may request at any time which personal data we process about you.
• Right to Rectification and Erasure: You may request us to correct incorrect data or delete your data unless this conflicts with a legal retention obligation.
• Right to Object: You may object to the processing of your personal data, including the use of your email address for newsletters.
• Right to Data Portability: You may request the transfer of your data to another data controller.

To exercise these rights, you may contact us via the contact form on our website.

7. Transfer to Third Parties

We do not sell or share your personal data with third parties unless required by law or necessary for providing our services. Email addresses collected for newsletter purposes are only used internally and are not shared with third-party marketing agencies.

8. Security and Confidentiality

JSmIT Infrastructure & Security takes appropriate technical and organizational measures to protect your personal data against loss, misuse, or unauthorized access. This includes encryption and secure storage of newsletter subscriber data.

9. Changes

JSmIT Infrastructure & Security reserves the right to amend this privacy policy. In the event of substantial changes, we will take reasonable steps to notify you, including updates through our newsletter if applicable.