Contents

1. Introduction
2. Scope of This Privacy Policy
3. Information We Collect
4. How We Use Your Information
5. Legal Basis for Processing (GDPR)
6. Your Rights Under GDPR
7. Your Rights Under CCPA
8. Do Not Sell My Personal Information
9. How to Exercise Your Rights
10. Sharing and Disclosure of Your Information
11. International Data Transfers
12. Data Retention
13. Cookies and Tracking Technologies
14. Data Security
15. Links to Third-Party Websites
16. Changes to This Privacy Policy
17. Contact Us

1. Introduction

At Machine & Partners, we want to make sure your personal information is handled responsibly and transparently. We understand the importance of your privacy and aim to provide clarity on how we collect, use, and protect your data. This policy applies to all users of our website and services.

Our privacy practices reflect our dedication to complying with the most stringent data protection laws worldwide, including GDPR and CCPA. We strive to empower you with control over your personal data and provide complete transparency regarding how your information is used and shared.

2. Scope of This Privacy Policy

This Privacy Policy applies to all interactions with Machine & Partners, whether through our website, emails, or other digital platforms. It outlines our obligations under GDPR, CCPA, and other applicable laws to ensure your data is processed lawfully and securely.

Key Points:

• This policy applies to all personal data collected via our website, forms, and other communications.
• Covers data collected from users in the EEA, California, and other regions with privacy protections.
• Third-party websites linked to our site operate under their own privacy policies, which we do not control.

3. Information We Collect

We gather information both directly from you and through automated systems. By understanding the data we collect, you can make informed choices about how your information is shared and used.

Categories of Information We Collect:

• Personal Identifiers: Includes your name, email address, phone number, and job title.
• Technical Data: Such as your IP address, browser type, device details, and location data.
• Transaction Details: Records of interactions, including inquiries, purchases, or service requests.
• Cookies and Tracking Data: Data collected to improve functionality and analyze website performance. Refer to our Cookies Policy for full details.

Sensitive Data: We avoid processing sensitive data (e.g., health or financial data) unless legally necessary or explicitly consented to. Where required, we ensure additional safeguards are in place.

4. How We Use Your Information

We process personal data to deliver our services effectively, enhance your user experience, and fulfill our legal obligations. Each use aligns with a lawful basis under GDPR and/or CCPA.

Primary Uses of Data:

• Providing Services: To manage accounts, process transactions, and deliver support.
• Communications: To send updates, respond to inquiries, or share important service changes.
• Marketing: To offer personalized recommendations and promotional content with your consent.
• Compliance: To meet legal obligations, including fraud prevention and audits.

We also anonymize data for research and analytical purposes to improve our services without identifying individual users.

5. Legal Basis for Processing (GDPR)

Under GDPR, we rely on specific legal bases for processing your data. These ensure our practices are lawful and prioritize your rights.

Key Legal Grounds:

• Consent: For optional communications, such as newsletters or surveys.
• Contractual Necessity: To fulfill contracts or provide requested services.
• Legitimate Interests: For fraud detection, website analytics, or service enhancements, unless outweighed by your rights.
• Legal Obligations: To comply with tax, regulatory, or law enforcement requirements.

6. Your Rights Under GDPR

As an EEA resident, you have a range of rights designed to give you control over your personal data. These rights ensure transparency and accountability in data processing.

Your Rights Include:

• Access: View and request a copy of the data we hold about you.
• Correction: Update or correct inaccuracies in your information.
• Erasure: Request deletion of your data when it is no longer needed.
• Restriction: Limit how your data is processed under certain conditions.
• Portability: Receive your data in a format that allows transfer to another organization.
• Objection: Object to data processing based on legitimate interests or marketing.

You can exercise these rights by contacting us using the details in the "Contact Us" section.

7. Your Rights Under CCPA

The CCPA provides California residents with robust privacy rights to ensure greater transparency and control over their data.

Your CCPA Rights:

• Right to Know: Access detailed information on the categories and purposes of data collected.
• Right to Delete: Request the removal of personal data collected about you.
• Right to Opt-Out: Decline the sale of your personal data.
• Non-Discrimination: Exercise your rights without fear of bias or reduced service quality.

8. Do Not Sell My Personal Information

Under the California Consumer Privacy Act (CCPA), California residents have the right to opt-out of the sale of their personal information. While Machine & Partners does not sell personal data in the traditional sense, some data-sharing activities with third-party service providers may be considered a “sale” under the CCPA.

How to Opt-Out: If you wish to exercise your right to opt-out of data sharing activities classified as “sales,” you can submit a request via email at privacy@machineandpartners.com.

We are committed to handling your request promptly and transparently. Please note that opting out of such data sharing will not affect your access to our services or result in discrimination of any kind.

Non-Discrimination Statement: Machine & Partners guarantees that exercising your opt-out rights will not:

• Affect the quality of services provided to you.
• Result in denial of services.
• Lead to increased costs or reduced benefits for our offerings.

For more details on how we use and share your information, please review the relevant sections in this Privacy Policy.

9. How to Exercise Your Rights

Exercising your GDPR and CCPA rights is straightforward. We are dedicated to addressing your requests promptly and transparently.

Steps to Submit a Request:

1. Contact us via email at privacy@machineandpartners.com.
2. Provide necessary details to verify your identity.
3. Receive confirmation of your request within the legally required timeframe (typically 30 days).

10. Sharing and Disclosure of Your Information

We share data only as necessary to deliver services or meet legal obligations. Transparency about data sharing is a cornerstone of our privacy practices.

Who We Share With:

• Service Providers: Such as payment processors, IT support, or analytics providers.
• Legal Entities: When required to comply with laws, subpoenas, or regulations.
• Business Transitions: Data may be shared during mergers, acquisitions, or asset sales.

11. International Data Transfers

When transferring data outside of your jurisdiction, we implement strict safeguards to ensure your information remains protected.

How We Safeguard Transfers:

• Use of Standard Contractual Clauses for EEA transfers.
• Regular reviews and audits of transfer processes.

12. Data Retention

We retain your data only as long as necessary for the purposes outlined in this policy or as required by law.

Retention Policies:

• Data retention durations vary depending on the type of data and purpose of collection.
• Information no longer required is securely deleted or anonymized.

13. Cookies and Tracking Technologies

Cookies are used to enhance user experience, provide functionality, and analyze site performance. For a detailed breakdown of the cookies we use, refer to our Cookies Policy.

Cookie Usage Includes:

• Necessary cookies for website functionality.
• Performance cookies to measure usage and improve services.
• Marketing cookies for personalized content and advertising.

14. Data Security

We employ comprehensive security measures to protect your data from unauthorized access, loss, or misuse.

Our Security Practices:

• Use of encryption technologies to secure sensitive data.
• Regular penetration testing and system monitoring.
• Training staff on data security best practices.

15. Links to Third-Party Websites

Our website may contain links to external sites. Please note that these sites operate independently, and we are not responsible for their privacy practices.

Recommendations:

• Review the privacy policies of third-party websites before sharing your data.
• Exercise caution when interacting with external links.

16. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or technological advancements. Keeping this policy current ensures it accurately reflects how we manage and safeguard your data.

What You Need to Know:

• Any updates will be posted prominently on this page, and the "Last Updated" date at the top of the policy will reflect the most recent revision.
• If changes significantly alter your rights or the way we use your data, we will notify you via email or by posting a notice on our website.
• We encourage you to review this policy regularly to stay informed about how we are protecting your information.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how your personal information is managed, please contact us via email at privacy@machineandpartners.com. We are committed to resolving your inquiries promptly and transparently. We value your trust and are here to ensure that your data remains protected at all times.

‍