Legal

Privacy Policy

Last updated: November 20, 2024

Basmar Software ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

GDPR Compliance

We are committed to complying with the General Data Protection Regulation (GDPR) and protecting the rights of individuals in the European Economic Area (EEA).

1. Information We Collect

1.1 Personal Information

We collect information that you provide directly to us, including:

  • Name, email address, and phone number
  • Company name and job title
  • Project details and requirements
  • Payment and billing information
  • Communication preferences and feedback

1.2 Automatically Collected Information

When you access our website, we automatically collect:

  • IP address and browser type
  • Device information and operating system
  • Pages visited and time spent on pages
  • Referring website and search terms
  • Cookies and similar tracking technologies

2. How We Use Your Information

We use your personal information for the following purposes:

  • Service Delivery: To provide, maintain, and improve our services
  • Communication: To respond to inquiries, send updates, and provide support
  • Marketing: To send promotional materials (with your consent)
  • Analytics: To understand how users interact with our website
  • Legal Compliance: To comply with legal obligations and protect our rights

3. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

Consent You have given clear consent for us to process your personal data for a specific purpose (e.g., marketing emails).

Contract Performance Processing is necessary to fulfill our contractual obligations to you.

Legitimate Interests Processing is necessary for our legitimate business interests (e.g., improving our services, fraud prevention).

Legal Obligation Processing is necessary to comply with legal requirements.

4. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third-party vendors who help us operate our business (e.g., hosting, analytics, payment processing)
  • Business Partners: Companies we collaborate with to provide services
  • Legal Authorities: When required by law or to protect our rights
  • Business Transfers: In connection with mergers, acquisitions, or asset sales

We do not sell your personal information to third parties.

5. Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

Right to Access

Request a copy of the personal data we hold about you.

Right to Portability

Receive your data in a structured, commonly used format.

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Restrict Processing

Request limitation of how we process your data.

Right to Object

Object to processing based on legitimate interests or for direct marketing.

How to Exercise Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption of data in transit and at rest
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms
  • Employee training on data protection
  • ISO 27001 and SOC 2 Type II compliance

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Typical retention periods include:

  • Client project data: Duration of project + 7 years
  • Marketing communications: Until consent is withdrawn
  • Website analytics: 26 months

8. International Data Transfers

Your data may be transferred to and processed in countries outside the EEA. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Data Processing Agreements with all vendors
  • Transfers only to countries with adequate data protection laws

9. Children's Privacy

Our services are not directed to individuals under 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

© 2026 Basmar Software. All rights.
reserved | Built with