Privacy policy

Last updated: July 13, 2025

Collecting Personal Information

Read this Privacy Policy carefully. It explains how ADVsec (“ADVsec”, “we”, “our”, “us”) collects, uses, discloses and otherwise processes personal data when you visit advsec.tech (the “Website”) or interact with us online.

We are committed to privacy‑by‑design, GDPR compliance and transparency.

1  WHAT IS PERSONAL DATA? “Personal data” means any information relating to an identified or identifiable natural person (GDPR Art. 4). Non‑personal or anonymised data does not identify you.

2  WHY WE COLLECT PERSONAL DATA We collect and process data in order to: • operate, secure and improve the Website;

  • respond to your enquiries and provide support;
  • send you technical or marketing updates if you consent;
  • detect fraud or malicious activity;
  • comply with legal obligations and enforce our rights.

3  WHAT DATA WE COLLECT When you browse publicly available pages you are not required to submit personal data. Depending on how you interact with us we may collect:

3.1 Non‑personal data (automatic)

  • IP address, browser type & version, OS, language;
  • date/time of access, pages visited, referrer URL;
  • click‑stream events, generic geolocation (country).

3.2 Personal data (you provide)

  • name, work e‑mail, company, phone;
  • any content of your message or uploaded file;
  • marketing preferences (newsletter opt‑ins).

4  HOW WE COLLECT DATA • Automatic collection via server logs, security tools, cookies and similar technologies.

  • Direct collection when you voluntarily submit a form or write to us.

5  LEGAL BASES FOR PROCESSING (GDPR Art. 6  COOKIES & SIMILAR TECHNOLOGY We use strictly‑necessary cookies as well as analytics/marketing cookies (Google Analytics 4, Microsoft Clarity heat‑map, HubSpot, LinkedIn Insight Tag). When you first visit the Website, a cookie pop‑up delivered via Webflow lets you “Accept all”, “Reject non‑essential” or customise settings. You can modify or withdraw consent any time through the “Cookie Settings” link in the footer.

7  SHARING PERSONAL DATA  SHARING PERSONAL DATA We do not sell your data. We disclose it only to: • trusted service providers acting on our behalf (Webflow Inc. — hosting & CMS on AWS, Azure EU backup storage, Cloudflare CDN/WAF, Google LLC, Microsoft Corporation — Clarity analytics, HubSpot Inc., LinkedIn Corp.);

  • authorities if required by law or court order;
  • buyers or investors in the event of a corporate transaction;
  • other parties with your explicit permission. All processors are bound by data‑processing agreements and (where relevant) Standard Contractual Clauses (SCC 2021/914).

8  INTERNATIONAL TRANSFERS Where data is transferred outside the European Economic Area, we rely on SCCs and implement additional safeguards such as encryption and access controls.

9  DATA RETENTION • Contact‑form records: 24 months after last interaction;

  • Marketing list: until you unsubscribe or 24 months of inactivity;
  • Server logs: 90 days;
  • Job‑application data: 12 months (unless local law requires longer).

10  SECURITY MEASURES We employ ISO 27001‑aligned controls: TLS 1.2+, MFA for admin access, role‑based permissions, encryption at rest, regular backups, vulnerability scanning and annual penetration tests.

11  YOUR RIGHTS Under GDPR (Arts. 15‑22) you have the right to access, rectify, erase, restrict or object to processing, and to data portability. You may also withdraw consent at any time. To exercise rights, e‑mail privacy@advsec.tech. We respond within 30 days.

12  CHANGES TO THIS POLICY We may revise this Policy occasionally. Material changes will be announced on the Website and the “Effective date” updated. Continued use of the Website after any change signifies acceptance.

13  CONTACT US Questions or requests?
E‑mail: privacy@advsec.tech