Privacy Policy

Introduction

TDXC Digital Solutions FZ-LLC ("we", "our", "us") is committed to protecting your personal data and privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website or use our services.

This Privacy Policy is designed to comply with the EU General Data Protection Regulation (GDPR) and Romanian Law 190/2018 on the implementation of GDPR. We are the data controller for the personal data we process about you.

Data Controller Information

What Personal Data We Collect

We may collect and process the following categories of personal data:

Information You Provide Directly

• Contact Information: Name, email address, phone number, company name, job title
• Communication Data: Any information you provide when contacting us through forms, email, or phone
• Service Information: Details about the services you request or purchase from us
• Marketing Preferences: Your preferences for receiving marketing communications

Information We Collect Automatically

• Technical Data: IP address, browser type, operating system, referring website
• Usage Data: Pages visited, time spent on site, click patterns, search queries
• Device Information: Device type, screen resolution, browser settings
• Location Data: General location based on IP address (country/city level)

Information from Third Parties

• Social Media Data: Information from social media platforms when you interact with our content
• Analytics Data: Information from Google Analytics and other analytics services
• Advertising Data: Information from advertising platforms for targeted advertising

How We Use Your Personal Data

We use your personal data for the following purposes:

Service Provision

• To provide and deliver our social media marketing services
• To communicate with you about our services
• To process payments and manage billing
• To provide customer support

Marketing and Communications

• To send you marketing communications (with your consent)
• To personalize content and advertisements
• To conduct market research and analysis
• To improve our services and website

Legal and Compliance

• To comply with legal obligations
• To prevent fraud and protect security
• To enforce our terms and conditions
• To resolve disputes

Legal Basis for Processing

Under GDPR, we must have a lawful basis for processing your personal data. Our legal bases are:

• Consent: When you have given us explicit consent to process your data for marketing purposes
• Performance of Contract: When processing is necessary to fulfill our service obligations to you
• Legitimate Interest: When we have a legitimate business interest that doesn't override your privacy rights
• Legal Obligation: When we must process your data to comply with legal requirements

Data Sharing and Disclosure

We may share your personal data with the following categories of recipients:

Service Providers

• Cloud hosting providers (for website and email hosting)
• Analytics providers (Google Analytics, etc.)
• Marketing platforms (email marketing, social media management tools)
• Payment processors (for billing and payments)

Legal Requirements

• Law enforcement agencies (when required by law)
• Regulatory authorities (when required by law)
• Courts and legal advisors (in case of legal proceedings)

Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the new owner, subject to the same privacy protections.

International Data Transfers

Some of our service providers may be located outside the European Economic Area (EEA). When we transfer your personal data to countries outside the EEA, we ensure appropriate safeguards are in place:

• The European Commission has decided the country ensures an adequate level of protection
• We use Standard Contractual Clauses approved by the European Commission
• The recipient is certified under an approved certification mechanism

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

• Client Data: For the duration of our business relationship plus 5 years for accounting purposes
• Marketing Data: Until you withdraw consent or opt-out
• Website Analytics: 26 months (Google Analytics standard retention)
• Legal Obligations: As required by Romanian and EU law

Your Rights Under GDPR

You have the following rights regarding your personal data:

Access and Portability

• Right of Access: Request a copy of your personal data we hold
• Right to Portability: Request your data in a structured, machine-readable format

Correction and Deletion

• Right to Rectification: Request correction of inaccurate personal data
• Right to Erasure: Request deletion of your personal data (right to be forgotten)

Control and Objection

• Right to Restriction: Request limitation of processing in certain circumstances
• Right to Object: Object to processing based on legitimate interests or for direct marketing
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise these rights, please contact us at privacy@tdxc-official.com. We will respond to your request within one month.

Data Security

We implement appropriate technical and organizational measures to protect your personal data:

• Encryption: Data is encrypted in transit and at rest
• Access Controls: Limited access to personal data on a need-to-know basis
• Regular Updates: Security systems are regularly updated and monitored
• Staff Training: Regular privacy and security training for employees
• Incident Response: Procedures for detecting and responding to data breaches

Data Breach Notification

In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you without undue delay and within 72 hours of becoming aware of the breach, as required by GDPR Article 34.

Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will delete such information immediately.

Complaints

If you have concerns about how we handle your personal data, please contact us first. If you are not satisfied with our response, you have the right to lodge a complaint with the Romanian Data Protection Authority (ANSPDCP):

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by:

• Posting the updated Privacy Policy on our website
• Sending you an email notification (if you have provided your email address)
• Providing prominent notice on our website

The updated Privacy Policy will be effective from the date specified in the "Last Updated" section above.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: