Privacy Policy

We collect information you provide directly to us, such as when you fill out our contact form, request a quote, or communicate with our team. This includes:

Personal Identification Information: Name, email address, phone number, company name, job title.

Communication Data: Messages, project briefs, requirements, and feedback you share with us.

Technical Data: IP address, browser type, device information, pages visited, and time spent on our website (collected via cookies and analytics tools).

Business Information: Details about your organisation, industry, and project requirements that you share during consultations.

We do not collect sensitive personal information (such as racial origin, health data, financial account credentials) unless explicitly required and consented to for specific services.

We use the information collected for the following purposes:

Service Delivery: To provide, maintain, and improve our IT services and respond to your enquiries.

Communication: To send you project updates, meeting confirmations, and respond to your support requests.

Marketing (with consent): To send newsletters, case studies, or promotional materials — only if you have opted in. You may unsubscribe at any time.

Analytics & Improvement: To understand how our website is used and improve user experience using aggregated, anonymised data.

Legal Compliance: To comply with applicable laws, regulations, court orders, or government authority requests.

Security: To detect, prevent, and address fraud, security vulnerabilities, or technical issues.

We do not sell, rent, or trade your personal information. We may share data with trusted third parties only in the following circumstances:

Service Providers: Subprocessors who help us operate our business (hosting providers, email platforms, analytics tools, payment processors). All are bound by data processing agreements.

Professional Advisors: Lawyers, accountants, and auditors under confidentiality obligations.

Legal Requirements: Where required by law, court order, or regulatory authority.

Business Transfers: In the event of a merger, acquisition, or sale of assets, subject to standard confidentiality protections.

Current service providers include: Vercel (hosting), Google Analytics (analytics), SendGrid (email), and Stripe (payment processing).

We retain personal data only for as long as necessary to fulfil the purposes outlined in this policy, unless a longer retention period is required by law.

Contact & Enquiry Data: Retained for 3 years from last contact, or for the duration of a contractual relationship plus 2 years.

Client Project Data: Retained for 7 years from project completion (for legal and accounting purposes).

Marketing Data: Retained until you unsubscribe or withdraw consent.

Website Analytics: Aggregated data retained for 26 months (Google Analytics default).

After the retention period, data is securely deleted or anonymised.

Depending on your location, you may have the following rights regarding your personal data:

Right of Access: Request a copy of the personal data we hold about you.

Right to Rectification: Request correction of inaccurate or incomplete data.

Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to legal retention obligations.

Right to Restriction: Request that we limit how we process your data.

Right to Data Portability: Receive your data in a structured, commonly-used format.

Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent: Withdraw consent at any time where processing is consent-based.

To exercise any of these rights, email us at hello@marcuric-it.com. We respond within 30 days. EU/UK residents may also lodge a complaint with their national supervisory authority.

We use cookies and similar tracking technologies to enhance your browsing experience. See our full Cookie Policy at /cookie-policy for details.

In brief, we use: - Essential cookies: Required for website functionality (session management, security). - Analytics cookies: Google Analytics for understanding website usage (can be opted out). - Preference cookies: To remember your settings and preferences.

You can manage cookie preferences via your browser settings or our cookie consent banner.

Marcuric IT Service operates globally with offices in the USA, UK, Germany, France, Spain, Estonia, Canada, Australia, and Bangladesh. Your data may be transferred to and processed in countries with different data protection laws.

For transfers from the EEA/UK, we rely on: - Standard Contractual Clauses (SCCs) approved by the European Commission. - UK International Data Transfer Agreements (IDTAs) for UK data. - Adequacy decisions where applicable.

All international transfers are subject to appropriate safeguards to protect your privacy.

We implement industry-standard technical and organisational measures to protect your personal data:

- Encryption: Data in transit is encrypted using TLS 1.3. Data at rest is encrypted using AES-256. - Access Control: Strict role-based access controls limit who can access personal data. - NDA: All team members and contractors sign Non-Disclosure Agreements. - Regular Audits: Periodic security assessments and vulnerability testing. - Incident Response: Documented procedures for data breach detection and notification within 72 hours (as required by GDPR).

No security system is 100% impenetrable. In the event of a breach affecting your rights, we will notify you as required by applicable law.

Our services are not directed at children under 16 years of age, and we do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately at hello@marcuric-it.com and we will delete it promptly.

We may update this Privacy Policy periodically to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes via email (if you are a client) or by posting a prominent notice on our website.

The "Last Updated" date at the top of this page indicates when the policy was last revised. Your continued use of our services after changes are posted constitutes acceptance of the updated policy.

For any privacy-related questions, requests, or complaints, please contact our Data Protection Officer:

Marcuric IT Service Email: hello@marcuric-it.com Phone: +1 (888) 555-0199 Address: 340 5th Avenue, Suite 620, New York, NY 10001, USA

For EU/EEA residents, you may also contact our EU representative at the same email address, or lodge a complaint with your local Data Protection Authority.