GDPR Policy

1. Introduction

At Xpecto® IT Solutions, we are dedicated to ensuring the safeguarding and confidentiality of the information of our clients, partners and staff. This Private Policy is intended for purposes of defining the relevant laws regarding personal data. We ensure the safe and ethical processing of any and all personal information.

2. Data Controller and Data Processor

In respect to the personal data that comes in when carrying out its commercial activities, Xpecto® IT Solutions is the data controller. It is possible for us to act as a data processor for certain solutions and services, but this is only possible when allowed by our clients.

3. Examples of Personal Information We Gather

We may collect and process the following types of personal data:

  • Contact Details: Physical and postal addresses, email addresses, phone numbers, company names, addresses, etc.

  • Billing Information: credit/debit card details, the billing address, etc.

  • Technical Data: data gathering includes IP addresses, browser types, device data, and other technical information collected when the user visits our website or uses any of our services.

  • Usage Data: details concerning user's behavior when accessing our website, services or products.

  • Any other information: Any additional personally identifiable information that is offered by the users during their interactions.


4. Reasons for Processing Personal Data

We are engaged in the processing of personal data on the following legal bases:

  • Consent: this is where we ask your permission to process your data.
  • Performance of a Contract: this applies if something has to be done to perform the contract.
  • Legitimate interests: in processing, it is legitimate to pursue our interests in so far as these do not infringe on the rights of the subject of the data.
  • Legal requirements: this applies when failure to process data being information could result in legal or even regulatory breaches.


5. Objectives of Data Collection

Xpecto® acquires and utilizes personal data for the following reasons:

  • To provide the products and services we offer.
  • To interact with customers, business partners, and prospect clients.
  • For invoicing, maintaining accounts, or any other back office operations.
  • To enhance our website, services, and helpdesk operations.
  • To meet any applicable legal and regulatory obligations.


6. Duration of Information Retention

We keep personal data for no longer than it is needed for the administrative purposes for which it was obtained or as the law prescribes. When the purpose is achieved or the retention period lapses, the data shall be securely disposed of or anonymized.


7. Protection of Data

Xpecto® takes appropriate technical as well as organizational measures to protect personal data processing against unauthorized access, loss or misuse of personal data. For this, we use such security means as encryption, access control and regular security audits.


8. Rights of the Individual Data Subjects

In regards to their private data, individuals are entitled to the following rights:

  • Right to Access: You may ask for details of all personal data regarding you which is held by Xpecto®.
  • Right to Rectification: You can ask for modification of any wrong or incomplete information.
  • Right to Erasure: Under some circumstances, you may ask for the erasure of your personal data.
  • Right to Restriction: You may ask for the cessation of the processing of your data under certain circumstances.
  • Right to Data Portability:You have the right to request the transfer of your data to another entity.
  • Right to Object:You can raise objections concerning the processing of your data under certain limitations.
  • Right to Withdraw Consent:If processing is based on consent, you have the right to withdraw that consent at anytime.


9. Third-Party Disclosure

Personal data may be disclosed to:

  • Reliable external vendor who helps us to perform our obligations under the contractual agreement between parties.
  • Government agencies, regulatory authorities and law enforcement agencies where permitted by applicable legislation.
  • Customers for whom we provide services and process data as their subcontractor.

    • We do not sell or exchange personal information to any other party.



10. Global Transfers of Data

Xpecto® may, in certain instances, export personal information outside of the EEA area which may expose the data to countries that do not offer comparable levels of data protection. In such instances however, we will put in place suitable additional measures such as Standard Contractual Clauses.

11. Data Breaches

With regards to a personal data breach, Xpecto® shall inform the competent supervisory authority as well as the concerned participants without undue delay, in accordance with the provisions of the GDPR.

12. Changes to this Policy

From time to time We may revise this GDPR Policy. Any such changes will be posted on our website and where deemed appropriate you will be informed by email.

13. Contact Us

For any questions, concerns, or requests regarding your personal data or this GDPR Policy, please contact us at support@xpectoitsolutions.com

Our Partners