Privacy Policy
Comprehensive overview of our data protection and privacy practices
Last updated: 2/25/2025
This Privacy Policy explains in detail how Datomni ("we", "us", or "our") processes personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable privacy laws. We are committed to transparency and the protection of your privacy rights.
Overview & Definitions
About Us
- Datomni ("we", "us", "our")
- Contact: org@datomni.com
Key Terms
- Personal Data: Any information relating to an identified or identifiable natural person
- Processing: Any operation performed on personal data
- Data Subject: The individual to whom the personal data relates
- Consent: Freely given, specific, informed and unambiguous indication of wishes
Data Collection & Processing
Types of Data Collected
- Identity Data: name, title, company, position
- Contact Data: email, phone, address
- Technical Data: IP address, browser type, device information
- Usage Data: website interaction, page views, features used
- Marketing Data: preferences, campaign responses
- Analytics Data: behavior patterns, conversion data
Collection Methods
- Direct collection through forms and inputs
- Server-side tracking infrastructure
- Client-side tracking (with consent)
- Third-party integrations
- API connections
- Public sources
Legal Basis for Processing
Consent (Art. 6(1)(a) GDPR)
- Marketing communications
- Non-essential cookies and tracking
- Personalization features
- Third-party data sharing
Contract (Art. 6(1)(b) GDPR)
- Service provision
- Account management
- Payment processing
- Support services
Legal Obligation (Art. 6(1)(c) GDPR)
- Tax compliance
- Business records
- Legal requirements
- Government requests
Legitimate Interests (Art. 6(1)(f) GDPR)
- Service improvement
- Security measures
- Fraud prevention
- Analytics and research
Data Processing Infrastructure
Server Locations
- Primary servers located in Frankfurt, Germany (EU)
- Backup servers in Amsterdam, Netherlands (EU)
- Content Delivery Network (EU endpoints)
- No data transfer outside EEA without safeguards
Processing Systems
- Server-side tracking infrastructure
- Data warehousing (EU-hosted)
- Analytics processing engines
- Machine learning models
- Real-time processing pipelines
- Backup and recovery systems
Security Measures
Technical Measures
- End-to-end encryption (AES-256)
- SSL/TLS encryption for data in transit
- Regular security audits and penetration testing
- Multi-factor authentication
- Access logging and monitoring
- Automated threat detection
Organizational Measures
- Regular staff training on data protection
- Access control policies
- Data protection impact assessments
- Incident response procedures
- Regular compliance audits
- Documentation of processing activities
Third-Party Integrations
Marketing & Analytics
- Google Analytics 4 (EU servers)
- Meta Conversion API
- Omni Analytics
- Omni Identity
- LinkedIn Insight Tag
- Snowplow Analytics
- Segment
- Pipedrive
- Cookiebot
Data Processing Agreements
- GDPR-compliant DPAs with all processors
- Regular vendor assessments
- Data transfer impact assessments
- Standard contractual clauses where required
Your Privacy Rights
GDPR Rights
- Right to access (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure (Art. 17 GDPR)
- Right to restrict processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object (Art. 21 GDPR)
Exercise Your Rights
- Email: privacy@datomni.com
- Response within 30 days
- No fee charged
- Identity verification required
Cookie Management
Cookie Types
- Essential: Always active
- Analytics: Requires consent
- Marketing: Requires consent
- Preferences: Requires consent
Consent Management
- Powered by Cookiebot
- Granular consent options
- Consent withdrawal available
- Regular cookie scans
- Cookie policy updates
Data Retention
Retention Periods
- Account data: Duration of service plus 6 months
- Marketing data: Until consent withdrawal
- Analytics data: 26 months
- Technical logs: 90 days
- Backup data: 30 days
Deletion Procedures
- Automated deletion workflows
- Secure erasure methods
- Backup purge procedures
- Third-party data removal
International Transfers
Transfer Mechanisms
- Standard Contractual Clauses (SCCs)
- Adequacy decisions
- Transfer impact assessments
- Additional safeguards where required
Transfer Locations
- Primary processing: EU only
- Limited transfers to: US, UK
- Appropriate safeguards in place
- Regular transfer reviews
Contact & Complaints
Contact Information
- Privacy Team: privacy@datomni.com
- Response time: Within 2 business days
Supervisory Authority
- Right to lodge a complaint
- Contact details provided upon request
- Independent handling of complaints
Policy Updates
We regularly review and update this Privacy Policy to ensure it accurately reflects our data processing practices. Any significant changes will be communicated to you directly. Continue to check this page for the latest version.