Privacy Policy

Last Updated: 10 September 2024

1. Introduction

At Altosight (“we,” “us,” or “our”), we take the privacy and security of your personal data seriously. This Privacy Policy describes how we collect, use, disclose, and protect your personal information in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. We are committed to ensuring your data is handled lawfully, fairly, and transparently.

For any questions or concerns regarding this Privacy Policy, or to exercise your data protection rights, please contact our Data Protection Officer:
Email: [email protected]
Data Protection Officer: Alex Chaidaroglou
Address: 41 Agiou Dimitriou, Piraeus, 18546, Greece.

2. Information We Collect

We may collect the following categories of personal data:

  • Business Contact Information: Including names, company email addresses, business telephone numbers, and mobile phone numbers. This data is collected for the purpose of providing our services, responding to inquiries, and facilitating communications.
  • Website Interaction Data: Such as IP addresses, browser types, and usage data gathered via cookies to optimize our services and website functionality.
  • Client-Specific Extracted Data: As part of our data extraction services, we collect publicly available information, including product pricing, descriptions, and other publicly accessible data on behalf of our clients.

3. Use of Your Data

Your personal data is processed for the following purposes:

  • To deliver our data extraction services and fulfill contractual obligations.
  • To improve and customize our services and offerings.
  • To comply with legal and regulatory obligations, including GDPR and CCPA compliance.
  • For customer support and communication.
  • To conduct internal research and statistical analysis using anonymized data.

4. Legal Basis for Processing (GDPR)

In compliance with the GDPR, we process personal data under the following lawful bases:

  • Performance of a Contract: When the processing of personal data is necessary for the performance of a contract with you.
  • Consent: For specific processing activities where you have given explicit consent.
  • Legitimate Interests: Where processing is required to improve our services, ensure the security of our systems, and prevent fraud.

5. Your Rights Under CCPA

If you are a California resident, you have the right to:

  • Access the personal information we hold about you.
  • Request deletion of your personal information.
  • Opt out of selling your personal information (we do not sell personal data).
  • Non-discrimination for exercising your rights under the CCPA.

To exercise any of these rights, please contact us at [email protected].

6. Your Rights Under GDPR

If you are located in the European Economic Area (EEA), you have the following rights:

  • Right of Access: You may request access to the personal data we hold about you.
  • Right to Rectification: You can request the correction of inaccurate or incomplete personal data.
  • Right to Erasure: You have the right to request that your personal data be erased, subject to legal obligations.
  • Right to Restrict Processing: You can ask us to suspend the processing of your personal data in certain circumstances.
  • Right to Data Portability: You may request that we provide your personal data in a structured, commonly used format.
  • Right to Withdraw Consent: Where consent is the basis for processing, you have the right to withdraw your consent at any time.

To exercise your rights, please contact us at [email protected].

7. Amazon Seller API Compliance

In compliance with Amazon’s Seller API requirements, Altosight adheres to strict data security and privacy standards, ensuring that:

  • Data Minimization: We collect and process only the necessary data required for the agreed services.
  • Security Measures: We implement appropriate technical and organizational measures to protect Amazon-related data, including encryption, access controls, and periodic audits.
  • Data Retention and Deletion: Data from Amazon’s Seller API is retained only as long as necessary for service fulfillment, after which it is securely deleted.
  • Non-Disclosure: We do not disclose any Amazon-related data to third parties without express consent, except where required by law.

8. Data Security

We employ a range of security measures to safeguard your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption: We utilize encryption technologies to protect personal data during transmission and storage.
  • Access Control: We limit access to your personal data to authorized personnel only.
  • Regular Security Audits: Our systems undergo regular security assessments to ensure compliance with best practices and industry standards.

9. Data Retention

We retain personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Specifically:

  • Business Contact Information: Retained for the duration of our business relationship or until you request its deletion.
  • Extracted Data: Retained according to the specific contractual terms, after which it is securely deleted.

10. Data Sharing

We do not sell or share your personal data with third parties, except in the following limited circumstances:

  • Service Providers: We may share data with trusted third-party service providers who assist us in delivering our services, under strict contractual confidentiality obligations.
  • Legal Obligations: We may disclose your data to comply with legal requirements, such as in response to a court order or a government request.

11. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance user experience and track website performance. You may adjust your browser settings to reject cookies; however, this may limit certain functionalities of our website.

12. Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy at any time to reflect changes in our practices or applicable legal requirements. Any changes will be posted on this page, and we encourage you to review it periodically.

13. Contact Information

For any inquiries regarding this Privacy Policy, or to exercise your data protection rights, please contact:

Email: [email protected]
Data Protection Officer: Alex Chaidaroglou
Address: 41 Agiou Dimitriou, Piraeus, 18546, Greece.