Privacy Policy

OVERVIEW

Protecting your personal data is our highest commitment. You can browse our website without providing any personal information. However, if you wish to access our premium business services through our platform, the processing of your personal data may become necessary. Where such processing is required but lacks a legal basis, we will always obtain your explicit consent first.

All processing of your personal data, including your full name, physical address, email contact details, and phone number, must comply with the General Data Protection Regulation (GDPR) and any other relevant local data protection laws. This Privacy Policy aims to transparently inform you about the nature, scope, and purpose of the personal data we collect, use, and process. Additionally, it outlines your fundamental rights under data protection law.

As the Data Controller, we have implemented rigorous technical and organizational security measures to safeguard the personal data processed through our website. However, please note that data transmission over the Internet is inherently insecure, and we cannot guarantee absolute protection against all potential threats.

NAME AND ADDRESS OF THE CONTROLLER

The Data Controller responsible for the processing of personal data under the GDPR, as well as other applicable data protection laws within the European Economic Area (EEA), is:

Contact Email: support@digitalhorizon.com

Registered Address: 123 Tech Boulevard, Innovation Park, London SW1A 1AA, United Kingdom.

DEFINITIONS

This Privacy Policy uses terminology as defined by the European legislator in the GDPR. We aim for this policy to be clear and easily understandable for our customers, partners, and website visitors. To achieve this, we define the key terms used herein:

  • A.) PERSONAL DATA

    Personal data refers to any information relating to an identified or identifiable natural person (the "Data Subject"). An identifiable person can be directly or indirectly identified, in particular by reference to identifiers such as a name, identification number, location data, online identifier, or by reference to one or more specific physical, physiological, genetic, mental, economic, cultural, or social characteristics of that person.

  • B.) DATA SUBJECT

    A Data Subject is any identified or identifiable natural person whose personal data is being processed by the responsible Controller.

  • C.) PROCESSING

    Processing means any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means. This includes collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.

  • D.) RESTRICTION OF PROCESSING

    Restriction of processing means the marking of stored personal data with the aim of limiting their future processing.

  • E.) PROFILING

    Profiling means any form of automated processing of personal data consisting of using such data to evaluate certain personal aspects relating to a natural person, particularly to analyze or predict aspects such as their performance, economic situation, health, personal preferences, reliability, behavior, location, or movements.

  • F.) PSEUDONYMISATION

    Pseudonymisation is the processing of personal data in such a manner that it can no longer be attributed to a specific Data Subject without the use of additional information, provided that this additional information is kept separately and subject to technical and organizational measures to ensure its non-attribution to an identified or identifiable person.

  • G.) CONTROLLER OR CONTROLLER RESPONSIBLE FOR THE PROCESSING

    The Controller is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

  • H.) PROCESSOR

    A Processor is a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the Controller.

  • I.) RECIPIENT

    A Recipient is a natural or legal person, public authority, agency, or body to whom personal data are disclosed, including third parties. Public authorities acting in response to a specific legal inquiry are not considered Recipients under this policy.

  • J.) THIRD PARTY

    A Third Party is any person, entity, or authority other than the Data Subject, the Controller, the Processor, or individuals authorized by the Controller/Processor to process personal data.

  • K.) CONSENT

    Consent of the Data Subject is any freely given, specific, informed, and unambiguous indication of wishes by which the Data Subject, by a statement or clear affirmative action, signifies agreement to the processing of their personal data.


COOKIES

Our website uses cookies. Cookies are small text files stored on your device's web browser.

Our website and our partners use cookies to enhance your user experience. Many cookies contain a unique identifier (Cookie ID). This allows us to recognize your specific browser when you revisit our site, enabling personalized services and features that would not be possible without them.

By using our website, you consent to the use of cookies. We use cookies for various purposes, including:

  1. Session Management: To keep you logged in as you navigate between pages.
  2. Shopping Cart: To remember items you have placed in your virtual shopping cart.
  3. Analytics: To analyze how you use our website and improve our services.

You have the right to block or delete cookies through your browser settings. If you disable cookies, some features of our website may not function properly.

COLLECTION OF GENERAL DATA AND INFORMATION

When you access our website, our servers automatically collect certain general data, which is stored in server log files. This may include: (1) your browser type and version, (2) your operating system, (3) the website you came from (Referrer), (4) the date and time of access, (5) your IP address, (6) your Internet Service Provider (ISP), and (7) other similar technical data.

We use this anonymous data to (1) ensure our website functions correctly, (2) optimize our content and advertising, (3) maintain the security of our IT systems, and (4) provide information to law enforcement in the event of a cyber-attack. This data is analyzed statistically and stored separately from any personal data you provide.

RIGHTS OF THE DATA SUBJECT

As a Data Subject, you are entitled to the following rights under the GDPR:

  • A.) RIGHT OF CONFIRMATION

    You have the right to confirm whether your personal data is being processed. You may contact us at any time to exercise this right.

  • B.) RIGHT OF ACCESS

    You have the right to obtain free confirmation of your personal data we hold, including:

    • The purposes of processing.
    • The categories of data processed.
    • Recipients of your data.
    • The storage period (or criteria used to determine it).
    • Your rights to rectify, erase, or restrict processing.
    • The right to lodge a complaint with a supervisory authority.
    • The source of your data (if not collected directly from you).
    • Information regarding automated decision-making.

  • C.) RIGHT TO RECTIFICATION

    You have the right to request the immediate correction of inaccurate personal data we hold. You may also request the completion of incomplete data.

  • D.) RIGHT TO ERASURE (RIGHT TO BE FORGOTTEN)

    You have the right to request the erasure of your personal data in certain circumstances, such as when the data is no longer necessary, you withdraw consent, or the processing is unlawful.

  • E.) RIGHT OF RESTRICTION OF PROCESSING

    You have the right to request the restriction of processing in cases where you contest the accuracy of the data, oppose its erasure, or need the data for legal claims.

  • F.) RIGHT TO DATA PORTABILITY

    You have the right to receive your personal data in a structured, machine-readable format and to transmit it to another Controller, where technically feasible.

  • G.) RIGHT TO OBJECT

    You have the right to object to processing based on our legitimate interests (Article 6(1)(f)) or for direct marketing purposes at any time.

  • H.) AUTOMATED INDIVIDUAL DECISION-MAKING

    You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you, unless certain exceptions apply.

  • I.) RIGHT TO WITHDRAW CONSENT

    If processing is based on your consent, you have the right to withdraw it at any time.


LEGAL BASIS FOR THE PROCESSING

We process personal data based on one or more of the following legal grounds:

  1. Art. 6(1) lit. a GDPR: Your explicit consent for a specific purpose.
  2. Art. 6(1) lit. b GDPR: Performance of a contract with you, or to take pre-contractual measures.
  3. Art. 6(1) lit. c GDPR: Compliance with a legal obligation we are subject to.
  4. Art. 6(1) lit. d GDPR: Protection of your vital interests or those of another person.
  5. Art. 6(1) lit. f GDPR: Our legitimate business interests, such as improving our services, provided such interests do not override your fundamental rights and freedoms.

ROUTINE ERASURE AND BLOCKING OF PERSONAL DATA

We store your personal data only for as long as necessary to fulfill the purpose for which it was collected or as required by applicable law. Once the purpose is fulfilled or the legal retention period expires, your data is routinely deleted or blocked.

THE CRITERIA FOR DETERMINING THE STORAGE PERIOD

The storage period is determined by applicable legal requirements and the nature of the service provided. Data is deleted routinely after the retention period expires, unless we are required to store it for legal, tax, or accounting purposes.

PROVISION OF PERSONAL DATA: LEGAL OR CONTRACTUAL OBLIGATION

Providing certain personal data may be required by law or as a condition to enter into a contract with us. If you fail to provide this data, we may not be able to enter into a contract or provide the requested service. We will inform you whether the provision of data is mandatory or voluntary before you provide it.

CONTACT POSSIBILITY VIA THE WEBSITE

Our website provides a contact form and email address for direct communication. Any personal data you voluntarily provide via these channels is stored solely for the purpose of responding to your inquiry and will not be transferred to third parties without your consent.

NEWSLETTER SUBSCRIPTION

If you subscribe to our newsletter, we require your valid email address. We use a double opt-in process to confirm your subscription, which involves sending a confirmation email to the address provided. This process verifies your ownership of the email address. We also store your IP address and the date/time of registration for security and fraud prevention purposes.

You may unsubscribe from the newsletter at any time by clicking the "Unsubscribe" link in any email we send you or by managing your preferences on our website.

NEWSLETTER TRACKING

Our newsletters contain tracking pixels to help us analyze email performance. This allows us to determine if an email was opened and which links were clicked. This data is used to improve our marketing communications and is not shared with third parties.

REGISTRATION ON OUR WEBSITE

You may register on our website by providing personal data. Any data you provide is stored for internal use and to provide you with personalized services. We also store your IP address and registration date/time to prevent abuse and ensure security.

Registered users may update or delete their personal account information at any time. We will provide you with access to your data upon request.

PAYMENT METHOD: DATA PROTECTION PROVISIONS ABOUT THE USE OF STRIPE AS A PAYMENT PROCESSOR

We have integrated Stripe as our payment processor. Stripe is a regulated financial service provider. When you choose to pay via Stripe, your payment details are transmitted directly to Stripe's secure servers and are not stored by us.

Stripe's European entity is Stripe Payments Europe, Ltd., with registered offices at 10 South Colonnade, London E14 5PX, United Kingdom.

The data transmitted to Stripe typically includes your name, billing address, email, payment card information, and IP address. This data is processed by Stripe to facilitate the payment transaction and for fraud prevention. We may receive anonymized or aggregated transaction data for our own analytics.

You are subject to Stripe's own Privacy Policy, which can be found on their website. We have a legitimate interest in processing your data for payment processing and fraud prevention (Art. 6(1) lit. f GDPR).