Privacy Policy

1. INFORMATION WE COLLECT

We collect the following personal data through our website:

• Name: To identify and address you appropriately

• Email address: For communication and responding to inquiries

• Business information: Including company name, role, and professional details

• Address: When necessary for service provision or contractual purposes

We only collect personal information that is necessary for the purposes outlined in this policy.

2. HOW WE COLLECT YOUR DATA

We collect data through the following methods:

2.1 Direct Collection

• Contact forms: When you submit an inquiry or request support through our website

• Email correspondence: When you communicate with us directly

• Service agreements: When you engage our consulting services

2.2 Automated Collection

• Cookies and tracking technologies: To enhance your browsing experience and analyze website usage

• Analytics tools: Including Google Analytics, to understand how visitors interact with our website

3. PURPOSE OF DATA COLLECTION

We collect and process your personal data for the following purposes:

• Service delivery: To provide consulting services, EU funding support, and research innovation expertise

• Customer support: To respond to your inquiries and provide assistance

• Communication: To keep you informed about our services, projects, and relevant opportunities

• Website improvement: To analyze usage patterns and enhance user experience

• Legal compliance: To meet our legal and regulatory obligations

• Contract performance: To fulfill our contractual obligations when you engage our services

4. LEGAL BASIS FOR PROCESSING

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you provide explicit consent for specific processing activities

• Contract performance: When processing is necessary to fulfill a contract with you

• Legitimate interests: For business operations, provided your rights are not overridden

• Legal obligation: When required by law to process your data

5. USE OF COOKIES & TRACKING TECHNOLOGIES

We use cookies and similar tracking technologies, including Google Analytics, to enhance your browsing experience and analyze website traffic.

5.1 Cookie Management

Upon visiting our website, you will see a cookie consent banner allowing you to manage your preferences. You can also control cookie settings through your browser settings.

5.2 Types of Cookies

• Essential cookies: Necessary for website functionality

• Analytics cookies: Help us understand how visitors use our site

• Preference cookies: Remember your settings and choices

5.3 Third-Party Analytics

Google Analytics may collect anonymized data about your interactions with our website. This helps us improve our services and user experience.

6. DATA SHARING AND DISCLOSURE

Timbi does not share your personal data with third parties for marketing purposes.

We may share your information only in the following circumstances:

• Service providers: With trusted third-party service providers who assist in our operations (e.g., cloud storage, email services), under strict confidentiality agreements

• Legal requirements: When required by law, court order, or government regulation

• Business transfers: In the event of a merger, acquisition, or sale of assets, with appropriate safeguards

• With your consent: When you have given explicit permission for specific sharing

7. YOUR RIGHTS UNDER GDPR

As an EU user, you have the following rights regarding your personal data:

7.1 Right of Access

Request a copy of the personal data we hold about you.

7.2 Right to Rectification

Request corrections to inaccurate or incomplete data.

7.3 Right to Erasure (Right to be Forgotten)

Request deletion of your personal data under certain conditions.

7.4 Right to Restriction of Processing

Request that we limit the processing of your data under specific circumstances.

7.5 Right to Object

Object to data processing based on legitimate interests or for direct marketing purposes.

7.6 Right to Data Portability

Request a transfer of your data to another service provider in a structured, commonly used format.

7.7 Right to Withdraw Consent

Withdraw your consent at any time where processing is based on consent.

7.8 Right to Lodge a Complaint

File a complaint with your national data protection authority if you believe your rights have been violated.

To exercise any of these rights, please contact us at info@timbi.eu

8. DATA SECURITY

We implement strong security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. Our security practices include:

• Encryption: Data transmission is encrypted using industry-standard protocols

• Access controls: Limited access to personal data on a need-to-know basis

• Secure storage: High-quality cloud storage solutions with robust security features

• Regular audits: Periodic review of security practices and vulnerabilities

• Staff training: All personnel are trained on data protection and confidentiality

While we take reasonable precautions, no method of transmission or storage is 100% secure. We continuously work to enhance our security measures.

9. DATA RETENTION

We retain your personal data only as long as necessary for the purposes outlined in this policy or as required by law.

Specific retention periods:

• Client data: Retained for the duration of the business relationship plus 7 years for accounting and legal purposes

• Inquiry data: Retained for up to 2 years if no service engagement occurs

• Marketing communications: Until you unsubscribe or request deletion

• Website analytics: Anonymized data may be retained indefinitely for statistical purposes

After the retention period expires, personal data will be securely deleted or anonymized.

10. INTERNATIONAL DATA TRANSFERS

As a company based in Ireland (EU), your data is primarily stored and processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the European Commission

• Adequacy decisions confirming the recipient country provides adequate protection

• Your explicit consent for the transfer

11. CHILDREN'S PRIVACY

Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information promptly.

12. UPDATES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. The "Last Updated" date at the top of this document indicates when the policy was last revised.

We encourage you to review this page periodically for any changes. Continued use of our website after changes constitutes acceptance of the updated policy.

13. CONTACT INFORMATION

For any questions regarding this Privacy Policy, to exercise your data protection rights, or to raise concerns about your personal data, please contact us at:

Timbi Ltd.
Data Protection Contact
Email: info@timbi.eu
Website: www.timbi.eu

For complaints or concerns about our data practices, you may also contact the Irish Data Protection Commission:

• Website: www.dataprotection.ie

• Email: info@dataprotection.ie