Privacy Policy

Comprehensive overview of our data protection and privacy practices

Last updated: 2/25/2025

This Privacy Policy explains in detail how Datomni ("we", "us", or "our") processes personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable privacy laws. We are committed to transparency and the protection of your privacy rights.

Overview & Definitions

About Us

  • Datomni ("we", "us", "our")
  • Contact: org@datomni.com

Key Terms

  • Personal Data: Any information relating to an identified or identifiable natural person
  • Processing: Any operation performed on personal data
  • Data Subject: The individual to whom the personal data relates
  • Consent: Freely given, specific, informed and unambiguous indication of wishes

Data Collection & Processing

Types of Data Collected

  • Identity Data: name, title, company, position
  • Contact Data: email, phone, address
  • Technical Data: IP address, browser type, device information
  • Usage Data: website interaction, page views, features used
  • Marketing Data: preferences, campaign responses
  • Analytics Data: behavior patterns, conversion data

Collection Methods

  • Direct collection through forms and inputs
  • Server-side tracking infrastructure
  • Client-side tracking (with consent)
  • Third-party integrations
  • API connections
  • Public sources

Legal Basis for Processing

Consent (Art. 6(1)(a) GDPR)

  • Marketing communications
  • Non-essential cookies and tracking
  • Personalization features
  • Third-party data sharing

Contract (Art. 6(1)(b) GDPR)

  • Service provision
  • Account management
  • Payment processing
  • Support services

Legal Obligation (Art. 6(1)(c) GDPR)

  • Tax compliance
  • Business records
  • Legal requirements
  • Government requests

Legitimate Interests (Art. 6(1)(f) GDPR)

  • Service improvement
  • Security measures
  • Fraud prevention
  • Analytics and research

Data Processing Infrastructure

Server Locations

  • Primary servers located in Frankfurt, Germany (EU)
  • Backup servers in Amsterdam, Netherlands (EU)
  • Content Delivery Network (EU endpoints)
  • No data transfer outside EEA without safeguards

Processing Systems

  • Server-side tracking infrastructure
  • Data warehousing (EU-hosted)
  • Analytics processing engines
  • Machine learning models
  • Real-time processing pipelines
  • Backup and recovery systems

Security Measures

Technical Measures

  • End-to-end encryption (AES-256)
  • SSL/TLS encryption for data in transit
  • Regular security audits and penetration testing
  • Multi-factor authentication
  • Access logging and monitoring
  • Automated threat detection

Organizational Measures

  • Regular staff training on data protection
  • Access control policies
  • Data protection impact assessments
  • Incident response procedures
  • Regular compliance audits
  • Documentation of processing activities

Third-Party Integrations

Marketing & Analytics

  • Google Analytics 4 (EU servers)
  • Meta Conversion API
  • Omni Analytics
  • Omni Identity
  • LinkedIn Insight Tag
  • Snowplow Analytics
  • Segment
  • Pipedrive
  • Cookiebot

Data Processing Agreements

  • GDPR-compliant DPAs with all processors
  • Regular vendor assessments
  • Data transfer impact assessments
  • Standard contractual clauses where required

Your Privacy Rights

GDPR Rights

  • Right to access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restrict processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)

Exercise Your Rights

  • Email: privacy@datomni.com
  • Response within 30 days
  • No fee charged
  • Identity verification required

Cookie Management

Cookie Types

  • Essential: Always active
  • Analytics: Requires consent
  • Marketing: Requires consent
  • Preferences: Requires consent

Consent Management

  • Powered by Cookiebot
  • Granular consent options
  • Consent withdrawal available
  • Regular cookie scans
  • Cookie policy updates

Data Retention

Retention Periods

  • Account data: Duration of service plus 6 months
  • Marketing data: Until consent withdrawal
  • Analytics data: 26 months
  • Technical logs: 90 days
  • Backup data: 30 days

Deletion Procedures

  • Automated deletion workflows
  • Secure erasure methods
  • Backup purge procedures
  • Third-party data removal

International Transfers

Transfer Mechanisms

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions
  • Transfer impact assessments
  • Additional safeguards where required

Transfer Locations

  • Primary processing: EU only
  • Limited transfers to: US, UK
  • Appropriate safeguards in place
  • Regular transfer reviews

Contact & Complaints

Contact Information

  • Privacy Team: privacy@datomni.com
  • Response time: Within 2 business days

Supervisory Authority

  • Right to lodge a complaint
  • Contact details provided upon request
  • Independent handling of complaints

Policy Updates

We regularly review and update this Privacy Policy to ensure it accurately reflects our data processing practices. Any significant changes will be communicated to you directly. Continue to check this page for the latest version.