ISD Dynamics Privacy Policy

1. Introduction

ISD Dynamics, operating under the trademark of intellismartdigital ("we," "our," or "us"), is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or engage with us in any capacity.

This policy is designed to comply with the European Union General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws worldwide.

By accessing our website or using our services, you acknowledge that you have read and understood this policy. If you do not agree with the terms of this policy, please do not access our website or use our services.

2. Data Controller

For the purposes of the GDPR and other applicable data protection laws, the data controller is:

For any data protection inquiries, requests, or complaints, you may contact us at the email address above. We will respond to all legitimate requests within 30 days.

3. Information We Collect

3.1 Personal Information You Provide

We may collect personally identifiable information that you voluntarily provide to us when you:

• Fill out a contact form or inquiry form on our website
• Subscribe to our newsletter or marketing communications
• Request a consultation or proposal
• Enter into a service agreement with us
• Communicate with us via email, phone, SMS, or other channels

This information may include your name, email address, phone number, company name, job title, and any other information you choose to provide.

3.2 Automatically Collected Information

When you visit our website, we may automatically collect certain information about your device and usage patterns, including:

• IP address and approximate geographic location
• Browser type and version
• Operating system
• Referring website addresses
• Pages viewed and time spent on our website
• Date and time of your visit

3.3 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience and analyze website traffic. Our cookie usage falls into the following categories:

• Essential Cookies: Required for basic website functionality. These cannot be disabled.
• Analytics Cookies: Help us understand how visitors interact with our website. These are only set with your consent.
• Marketing Cookies: Used to deliver relevant advertisements. These are only set with your consent.

You can manage your cookie preferences at any time through the cookie consent banner on our website or through your browser settings. Disabling non-essential cookies will not affect the core functionality of our website.

4. How We Use Your Information

We use the information we collect for the following purposes:

• Service Delivery: To provide, maintain, and improve our services and to fulfill our contractual obligations to you.
• Communication: To respond to your inquiries, send you updates about our services, and provide customer support.
• Marketing: To send you promotional materials and information about our services, only where you have given explicit consent or where we have a legitimate interest to do so. You may opt out at any time.
• Analytics: To analyze website usage patterns, improve our website and user experience, and develop new features and services.
• Legal Compliance: To comply with applicable laws, regulations, and legal processes.
• Security: To protect our website, services, and users from fraudulent, unauthorized, or illegal activity.

5. Legal Basis for Processing (GDPR)

Under the GDPR, we process your personal data based on one or more of the following legal grounds:

• Consent (Article 6(1)(a)): You have given us explicit consent to process your personal data for specific purposes, such as marketing communications or non-essential cookies. You may withdraw consent at any time without affecting the lawfulness of prior processing.
• Contract (Article 6(1)(b)): Processing is necessary for the performance of a contract with you or to take pre-contractual steps at your request.
• Legitimate Interest (Article 6(1)(f)): Processing is necessary for our legitimate business interests (e.g., improving our services, website analytics), provided those interests are not overridden by your rights and freedoms.
• Legal Obligation (Article 6(1)(c)): Processing is necessary to comply with a legal obligation to which we are subject.

6. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following limited circumstances:

• Service Providers: We may share your information with trusted third-party service providers who assist us in operating our website and delivering services (e.g., hosting providers, email services), subject to data processing agreements that ensure GDPR-compliant protections.
• Legal Requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or regulatory agency).
• Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such change.
• Protection of Rights: We may disclose your information to protect and defend our rights, property, or safety, or that of our users or the public.

7. International Data Transfers

As a global company serving clients in over 35 countries, your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States. When transferring data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Transfers to countries with an adequate level of data protection as determined by the European Commission
• Other legally recognized transfer mechanisms

8. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure data storage, and regular security assessments. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

9. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Specific retention periods include:

• Contact form submissions: Retained for up to 24 months after your last interaction, unless a service agreement is in place.
• Client project data: Retained for the duration of the engagement plus 5 years for legal and accounting purposes.
• Website analytics data: Anonymized or deleted within 26 months.

When your information is no longer required, we will securely delete or anonymize it.

10. Your Rights

10.1 Rights Under GDPR (EEA Residents)

If you are located in the European Economic Area, you have the following rights:

• Right of Access (Article 15): Request a copy of the personal data we hold about you.
• Right to Rectification (Article 16): Request correction of inaccurate or incomplete personal data.
• Right to Erasure (Article 17): Request deletion of your personal data ("right to be forgotten"), subject to certain legal exceptions.
• Right to Restrict Processing (Article 18): Request that we restrict the processing of your personal data in certain circumstances.
• Right to Data Portability (Article 20): Receive your personal data in a structured, commonly used, machine-readable format.
• Right to Object (Article 21): Object to the processing of your personal data for direct marketing or based on legitimate interests.
• Right to Withdraw Consent: Withdraw your consent at any time where we rely on consent to process your data, without affecting the lawfulness of prior processing.
• Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in your country of residence if you believe your data protection rights have been violated.

10.2 Rights Under CCPA (California Residents)

If you are a California resident, you have the following additional rights under the CCPA:

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you.
• Right to Delete: Request deletion of your personal information.
• Right to Opt-Out: Opt out of the sale of your personal information. Note: We do not sell personal information.
• Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

To exercise any of these rights, please contact us at info@isddynamics.com. We will respond to all legitimate requests within 30 days (or within the timeframe required by applicable law).

11. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, in accordance with GDPR Article 33. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay.

12. Third-Party Links

Our website may contain links to third-party websites and services that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party websites or services. We encourage you to review the privacy policies of any third-party websites you visit.

13. Children's Privacy

Our website and services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without verification of parental consent, we will take steps to remove that information from our servers.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website with a revised "Last updated" date. For significant changes, we may also notify you by email. We encourage you to review this policy periodically.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: