Privacy Policy

How ParityMZPA collects, uses, and protects your personal data in compliance with GDPR and applicable privacy laws.

Last Updated: December 2024

Data Controller: ParityMZPA B.V.

Contact: privacy@paritymzpa.live

1. Introduction

ParityMZPA B.V. ("we", "us", "our", or "ParityMZPA") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website, services, or interact with us. As a business operating in the Netherlands and serving clients across the European Union, we comply with the General Data Protection Regulation (GDPR) and applicable Dutch privacy laws.

2. Data Collection

The data we collect includes personal information that you provide directly to us and information we collect automatically when you use our services. We collect the following types of personal data:

  • Contact Information: Name, email address, phone number, company name, job title, and business address
  • Communication Data: Messages, enquiries, and correspondence you send to us
  • Website Usage Data: IP address, browser type, pages visited, time spent on pages, and referring websites
  • Technical Data: Device information, operating system, and browser settings
  • Marketing Data: Your preferences for receiving marketing communications and your communication history with us
  • Professional Information: Business requirements, project details, and strategic challenges you share with us

3. How We Use Your Information

We explain how we use your information in this section. We process your personal data for the following purposes, based on legitimate legal grounds under GDPR:

  • Service Delivery: To provide business strategy consulting services and respond to your enquiries (Legal Basis: Contract performance and legitimate interests)
  • Communication: To communicate with you about our services, projects, and business matters (Legal Basis: Contract performance and legitimate interests)
  • Website Functionality: To operate and improve our website and user experience (Legal Basis: Legitimate interests)
  • Marketing: To send you relevant business information and marketing communications, with your consent (Legal Basis: Consent)
  • Legal Compliance: To comply with legal obligations and protect our legitimate business interests (Legal Basis: Legal obligation and legitimate interests)
  • Analytics: To analyse website usage and improve our services (Legal Basis: Legitimate interests)

4. Data Sharing and Disclosure

We do not sell, trade, or rent your personal data to third parties. We may share your information in the following limited circumstances:

  • Service Providers: Trusted third-party providers who assist us in operating our website and delivering services
  • Legal Requirements: When required by law, regulation, or legal process
  • Business Protection: To protect our rights, property, or safety, or that of our clients or others
  • Business Transfers: In connection with any merger, acquisition, or sale of business assets

5. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with legal obligations. Our standard retention periods are: contact enquiries (3 years), client project data (7 years after project completion), marketing communications (until you unsubscribe), and website analytics data (26 months). We regularly review our data retention practices and securely delete or anonymise data when it is no longer needed.

6. Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data in certain circumstances
  • Right to Restrict Processing: Request limitation of how we process your data
  • Right to Data Portability: Request transfer of your data to another organisation
  • Right to Object: Object to processing based on legitimate interests or for marketing purposes
  • Right to Withdraw Consent: Withdraw consent for processing where consent is the legal basis

7. Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest, secure hosting environments, regular security assessments, access controls and authentication, staff training on data protection, and incident response procedures. While we strive to protect your personal data, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. International Data Transfers

ParityMZPA is based in the Netherlands within the European Union. If we transfer your personal data outside the EU/EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses or transfers to countries with adequacy decisions. We will inform you of any such transfers and the safeguards applied.

9. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and analyse website usage. For detailed information about our use of cookies, including types of cookies, purposes, and how to manage your preferences, please refer to our Cookie Policy.

10. Marketing Communications

We may send you marketing communications about our services and industry insights if you have consented or where we have a legitimate interest. You can opt out of marketing communications at any time by clicking the unsubscribe link in our emails or contacting us directly. Even if you opt out of marketing, we may still send you service-related communications.

11. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. We encourage you to review this policy periodically to stay informed about how we protect your privacy.

13. Contact Us

If you have questions about this Privacy Policy, want to exercise your rights, or need to contact us regarding data protection matters, please contact us using the following information:

ParityMZPA B.V.

Data Protection Officer

Nieuwstraat 216, 1331 XO Almere, Netherlands

Email: privacy@paritymzpa.live

Phone: +31 10 694 5808

Registration Number: 79162048 | VAT: NL846509327B01

14. Supervisory Authority

If you believe we have not handled your personal data in accordance with this Privacy Policy or applicable data protection laws, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens): https://autoriteitpersoonsgegevens.nl