Privacy Policy

1. Who we are

ConformIT Pro (“we”, “us”, “our”) provides consulting services in IT Governance, Risk & Compliance (GRC), IT Service Management (ITSM) and Agile transformation.
This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit our website www.conformitpro.com or interact with us.

2. What data we collect

We may collect the following categories of personal information:

  • Identification data: name, job title, company name.
  • Contact data: email address, phone number, country, city.
  • Professional information: area of responsibility, interests in our services.
  • Technical data: IP address, browser type, device information, pages visited, time and date of visit, referring URL.
  • Communication data: messages you send via contact forms, email, or scheduling tools.

We do not intentionally collect sensitive personal information unless you voluntarily provide it and it is strictly necessary (for example, information included in a CV you send us).

3. How we collect your data

We collect data in the following ways:

  • Directly from you: when you fill out forms, subscribe to a newsletter, request a consultation, or contact us by email or phone.
  • Automatically: through cookies and similar technologies when you browse our website.
  • From third parties: analytics providers, advertising networks, or tools embedded on our site (for example, calendar or form tools).

4. Why we use your data

We use your personal information for the following purposes:

  • To respond to your inquiries and provide our consulting services.
  • To manage meetings, proposals, and ongoing client relationships.
  • To improve our website, content, and user experience.
  • To send you relevant updates, resources, or marketing communications (where permitted by law and your preferences).
  • To comply with legal obligations and protect our rights (for example, record keeping, security, and fraud prevention).

We rely on legitimate interest, performance of a contract, your consent, and/or legal obligations as our main legal bases, depending on the situation.

5. Cookies and tracking technologies

Our website may use cookies and similar technologies to:

  • Remember your preferences (for example, language).
  • Collect anonymous statistics about website usage (analytics).
  • Improve performance and security.

You can manage or disable cookies through your browser settings, but this may affect some features of the website.

6. Who we share your data with

We do not sell your personal information.

We may share your data with the following categories of recipients, only when necessary:

  • Service providers and processors: hosting providers, email services, analytics tools, CRM, and scheduling tools.
  • Professional advisors: legal, accounting, or business advisors under confidentiality obligations.
  • Public authorities: if required by law, regulation, or legal process.

All third parties that process your data on our behalf are required to protect it and use it only according to our instructions and applicable law.

7. International transfers

Depending on where our service providers are located, your data may be transferred and processed outside of your country, including outside the European Economic Area (EEA).

When we do this, we take appropriate measures to protect your information, such as using standard contractual clauses or equivalent safeguards where required.

8. How long we keep your data

We keep personal information only as long as necessary for the purposes described above, or as required by law:

  • Contact and inquiry data: kept for the duration of our interaction and a reasonable period afterward for follow-up and record keeping.
  • Client data: kept for the duration of the contract and for the retention period required by law (for example, tax or accounting rules).
  • Analytics data: kept for the period defined by our analytics provider, in anonymized or pseudonymized form when possible.

After these periods, we delete or anonymize your data.

9. Your rights

Depending on your location and applicable law (for example GDPR or PIPEDA), you may have some or all of the following rights:

  • Right to access: know what personal data we hold about you.
  • Right to rectification: correct inaccurate or incomplete data.
  • Right to erasure: ask us to delete your data in certain circumstances.
  • Right to restriction: limit how we use your data.
  • Right to data portability: receive your data in a structured, commonly used format where applicable.
  • Right to object: object to certain types of processing, including direct marketing.
  • Right to withdraw consent: where processing is based on consent, you can withdraw it at any time.

To exercise your rights, contact us. We may need to verify your identity before responding.

10. How we protect your data

We use technical and organizational measures designed to protect personal information against unauthorized access, loss, misuse, or disclosure, such as:

  • Secure hosting and encryption where appropriate.
  • Access controls and strong authentication for accounts.
  • Limited access to personal data on a need-to-know basis.
  • Regular updates and security measures for our systems.

However, no system is completely secure, and we cannot guarantee absolute security of your data.

11. Third‑party websites

Our website may contain links to external websites.

We are not responsible for the privacy practices or content of those third-party sites, and we encourage you to review their privacy policies before providing any personal information.

12. Children’s privacy

Our services and website are not directed to children under 16, and we do not knowingly collect personal information from them. If you believe a child has provided us with personal information, please contact us so we can delete it.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements.

When we make changes, we will update the “Last updated” date at the top of this page. We encourage you to review this page regularly.

Scroll to Top