Effective Date: 2024.10.01

At DigitalEra Group (DEG) (referred to as "we," "us," or "our"), we are committed to protecting your privacy. This privacy policy explains how we collect, use, and safeguard personal data when you interact with our website and services. Our practices are designed to comply with global privacy regulations, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable data protection laws. We also align with recognized industry standards such as SOC 2, ISO 27001, and NIST guidelines to ensure robust data protection in our operations.

1. Information We Collect

We collect personal data to provide and improve our managed security services. This may include:

• Personal Identification Data: Name, email address, phone number, and job title.

• Technical Data: IP addresses, device type, browser type, operating system, and log files.

• Usage Data: Data on your interactions with our website and services (e.g., pages visited, time spent).

• Service Data: Information related to the security services we provide, such as incident logs, network data, and threat intelligence.

2. How We Collect Data

We collect personal data in the following ways:

• Direct Interactions: When you provide data via forms, subscriptions, or direct communications with us.

• Automated Technologies: Through cookies, server logs, and analytics tools integrated into our website (powered by HubSpot’s tracking technologies).

• Third-Party Integrations: We may collect data from third-party services such as security platforms and analytics tools that are integrated into our services.

3. How We Use Your Personal Data

We use the personal data collected to:

• Provide managed security services, including incident response, vulnerability management, and threat detection.

• Communicate with clients, manage accounts, and process payments.

• Ensure compliance with legal obligations, such as security reporting and regulatory requirements.

• Improve our services through analytics and client feedback.

4. Cookies and Tracking Technologies

Our website uses essential cookies to ensure its proper functioning and to enhance your experience. These cookies are necessary for the operation of the site and do not collect personal information that could be used for marketing or tracking purposes.

We use HubSpot’s cookie management tools to comply with privacy regulations such as GDPR. Upon visiting our site, you have the option to either accept essential cookies or choose not to be asked again about cookie preferences.

• Essential cookies: These cookies are required for the basic functionality of our website, such as enabling page navigation and ensuring access to secure areas. Without these cookies, the website cannot function properly.

As essential cookies are necessary for the website to work, no other cookie choices are available. You can manage your preferences through the consent banner that appears when you first visit our site.

5. Sharing and Disclosure of Information

We do not sell your personal data. However, we may share your personal data with:

• Third-Party Service Providers: To assist in providing our services (e.g., cloud hosting, analytics providers like HubSpot, and security monitoring tools).

• Regulatory Authorities: When required to comply with legal obligations or in response to lawful requests.

• Business Transfers: In the event of a merger, acquisition, or sale, your personal data may be transferred as part of the transaction.

We ensure that all third-party service providers meet strict security standards and comply with applicable data protection laws, such as GDPR or CCPA.

6. Data Security

We take industry-standard security measures to protect personal data from unauthorized access, disclosure, alteration, or destruction. Our security practices align with the SOC 2 Type II, ISO 27001 frameworks, and NIST recommendations, ensuring your data is secure throughout the entire processing lifecycle.

7. Data Retention

We retain personal data only as long as necessary to fulfill the purposes for which it was collected or as required by applicable laws and regulations. When data is no longer needed, it will be securely deleted or anonymized.

8. Your Rights

Depending on your location and applicable data protection laws, you may have the following rights:

• Right to Access: Request a copy of the personal data we hold about you.

• Right to Rectification: Correct any inaccurate or incomplete personal data.

• Right to Erasure: Request the deletion of personal data in certain circumstances.

• Right to Restriction of Processing: Request that we limit the processing of your personal data.

• Right to Data Portability: Request the transfer of your personal data to another service provider.

• Right to Object: Object to our processing of your personal data for specific purposes.

To exercise your rights, please get in touch with us at privacy@digitaleragroup.com.

9. International Data Transfers

As a global service provider, we may transfer your personal data to countries outside your jurisdiction. We ensure that appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place to protect your personal data when transferred internationally.

10. Changes to This Privacy Policy 

We may update this privacy policy periodically. Any updates will be posted on this page with the new effective date. We encourage you to review this policy regularly to stay informed about how we are protecting your personal data.

11. Contact Us

If you have any questions or concerns about this privacy policy or how your personal data is handled, please get in touch with our Data Protection Officer (DPO) at:

DigitalEra Group

8750 NW 36th Street, Suite 270

Doral, FL 33178

privacy@digitaleragroup.com