Skip to content

Privacy Policy

Last updated 12/30/2025

We respect your privacy and take our responsibility to protect personal information seriously. This Privacy Policy explains how we collect, use, share, and safeguard information when you visit our website or interact with us online.

This policy applies to information collected through our website and related digital channels. Information processed in connection with client engagements is governed by applicable contracts and data protection agreements.

 

Information We Collect

We collect information in a few straightforward ways.

Information You Provide to Us

You may choose to provide personal information when you:

  • Complete a contact form
  • Subscribe to our newsletter or updates
  • Communicate with us directly

This information may include your name, email address, company name, job title, and any details you include in your message.

Information Collected Automatically

When you visit our website, we may automatically collect certain information through cookies and similar technologies, including:

  • IP address
  • Browser type, device type, and operating system
  • Pages viewed and actions taken on the site
  • Referring and exit pages

This information helps us understand how visitors use our site and supports ongoing improvements to performance and content.

 

How We Use Information

We use the information we collect to:

  • Respond to inquiries and requests
  • Communicate with you about our services, insights, and updates
  • Operate, maintain, and improve our website
  • Analyze usage trends and site performance
  • Support marketing and business development activities
  • Comply with legal and regulatory obligations

We do not use personal information in ways that are incompatible with these purposes.

 

Cookies and Analytics

Our website uses cookies and similar technologies to support functionality and analytics.

Cookies help us:

  • Understand how visitors interact with the site
  • Measure site performance and usage patterns
  • Improve user experience

You can control or disable cookies through your browser settings. Limiting cookies may affect certain features of the site.

 

Sharing of Information

We do not sell personal information.

We may share information with trusted third-party service providers that support our operations, including providers of:

  • Website hosting and infrastructure
  • Analytics and performance monitoring
  • Customer relationship management (CRM) systems
  • Marketing, communications, and support tools

These providers are authorized to process personal information only as necessary to provide services to us and are subject to contractual confidentiality and data protection obligations. We work with service providers that are widely used in enterprise environments and apply appropriate safeguards.

We may also disclose information if required by law or to protect our rights, property, or security.

 

International Data Transfers

We operate primarily in the United States, but our website may be accessed globally.

If personal information is transferred outside the country where it was collected, we take steps to ensure appropriate safeguards are in place in accordance with applicable data protection laws.

 

Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required or permitted by law.

We periodically review the information we hold and take reasonable steps to delete or anonymize data when it is no longer needed.

 

Data Security

We use administrative, technical, and organizational measures designed to protect personal information from unauthorized access, disclosure, alteration, or destruction.

While no system can be guaranteed to be completely secure, we take reasonable and appropriate steps to safeguard the information entrusted to us based on its nature and sensitivity.

 

Your Privacy Rights

Depending on where you live, you may have certain rights regarding your personal information.

U.S. State Privacy Rights

Residents of certain U.S. states may have the right to:

  • Request access to personal information we maintain
  • Request deletion of personal information
  • Request correction of inaccurate information

European Economic Area and United Kingdom

If you are located in the EEA or UK, you may have rights under the General Data Protection Regulation (GDPR), including the right to:

  • Access your personal data
  • Request correction or deletion
  • Object to or restrict processing
  • Request data portability

Where GDPR applies, we process personal data based on legitimate business interests, consent where applicable, and compliance with legal obligations.

 

How to Exercise Your Rights

At this time, privacy requests are handled manually.

To submit a request or ask a question about this policy, please contact us at:

infosec@denamico.com

Privacy inquiries are reviewed and handled by designated members of our team. We respond within the timeframe required by applicable law.

 

Children’s Privacy

Our website is not intended for children under the age of 13, and we do not knowingly collect personal information from children.

 

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Updates will be posted on this page with a revised “Last updated” date.

 

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

infosec@denamico.com

 

 

Appendix

This appendix is provided for informational purposes and to support enterprise privacy and procurement reviews. It does not replace or modify any contractual data protection agreements.

Role of the Company

In connection with our website, we act as a data controller for personal information collected directly from visitors.
In connection with client engagements, we typically act as a data processor or service provider, as defined by applicable data protection laws, and process personal data only in accordance with client instructions and contractual obligations.

Data Processing Agreements

We are prepared to enter into Data Processing Agreements (DPAs) with clients where required. DPAs govern:

  • Scope and purpose of processing
  • Confidentiality obligations
  • Security measures
  • Subprocessor requirements
  • Data subject rights support
  • Incident notification obligations

Subprocessors

For website operations, we rely on subprocessors in the following categories:

  • Hosting and infrastructure
  • Analytics and monitoring
  • CRM and marketing systems

Subprocessors are selected based on their security posture, reliability, and alignment with enterprise privacy expectations. Contractual safeguards are applied where appropriate.

International Transfers

Where required, international transfers of personal data are supported by appropriate transfer mechanisms, such as Standard Contractual Clauses or equivalent safeguards, consistent with applicable law.

Security Practices

We maintain safeguards designed to protect personal data, including:

  • Access controls appropriate to role and responsibility
  • Use of reputable, secure cloud platforms
  • Monitoring and logging appropriate to system criticality
  • Incident response procedures aligned with business needs

Additional details can be provided during client security or privacy reviews.

Data Subject Requests

For website-related data, requests are handled through the contact information listed in the Privacy Policy.

For client data processed under contract, data subject requests are handled in coordination with the client, consistent with the applicable agreement.

Questions and Reviews

We welcome privacy, security, and procurement inquiries and aim to work collaboratively with clients to address requirements in a practical and transparent way.