DATA PRIVACY POLICY

(External)

SHUJAA CONSULTING LLC ("we", "us", or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website, use our services, or otherwise interact with us. Please read this Privacy Policy carefully and contact us if you have any questions.

What personal data do we collect?

We may collect and process the following personal data about you:

Personal Identifiable Information: such as your name, email address, phone number, company name, job title, and other information you provide when you fill out a form on our website, request a quote, sign up for our newsletter, or contact us.
Technical and usage data: such as your IP address, browser type, device type, operating system, referral source, pages visited, time spent, and other information collected by cookies and similar technologies when you access our website or use our services.
Marketing and communication data: such as your preferences for receiving marketing communications from us, and your communication preferences.
Service-related data: such as your project details, requirements, feedback, invoices, payments, and other information related to the services we provide to you or that you provide to us.
Any other personal data that you choose to share with us.

How do we collect your data?

You directly provide us with most of the data we collect. We collect data and process data when you:

Use the company’s services and provide us with service-related data via email, interviews or other methods.
Fill out a form on the company’s website, request a quote, or contact the company.
Use or view our website via your browser’s cookies.
Voluntarily complete a customer survey or provide feedback on any of our message boards or via email.

How will we use your data?

We may use your personal data for the following purposes:

To provide you with our services and fulfill our contractual obligations to you.
To communicate with you about our services, respond to your inquiries, requests, or complaints, and provide you with customer support.
To send you marketing communications that may be of interest to you, such as newsletters, promotions, offers, surveys, or events, with your consent or where permitted by law.
To improve our website, services, marketing, and customer relationships, by analyzing your usage of our website and services, conducting market research, and soliciting your feedback.
To comply with our legal obligations, such as tax reporting, accounting, auditing, or responding to lawful requests from authorities.
To protect our rights and interests, such as enforcing our terms and conditions, preventing fraud or abuse of our website or services, resolving disputes, or defending ourselves from legal claims.

What is the legal basis for processing your personal data?

We will only process your personal data when we have a valid legal basis to do so. The legal basis will depend on the purpose for which we process your personal data. Generally, we will rely on one of the following legal bases:

Consent: when you have given us your clear and explicit consent to process your personal data for a specific purpose. You can withdraw your consent at any time by contacting us or following the instructions in our communications.
Contract: when we need to process your personal data to perform a contract that we have with you or that you have requested from us before entering into a contract.
Legal obligation: when we need to process your personal data to comply with a legal or regulatory obligation that we are subject to.
Legitimate interest: when we have a legitimate business interest to process your personal data that is not overridden by your rights and interests. For example, we may process your personal data to improve our services, protect our security, or prevent fraud.

How do we share your personal data?

We may share your personal data with the following parties, globally, for the purposes described above:

Subcontractors: We may engage subcontractors to assist us with providing our services to you. We will ensure that any subcontractors that we work with are bound by contractual obligations to protect your personal data and comply with applicable laws.
Other service providers: We may use other third-party service providers to support our business operations, such as hosting our website, sending emails, processing payments, providing analytics, or performing audits. We will only share your personal data with service providers that have adequate security measures in place and that agree to use your personal data only for the purposes we specify.
Other third parties: We may disclose your personal data to other third parties if we have your consent or if we are required or permitted by law. For example, we may disclose your personal data to comply with a legal obligation or request from authorities; to protect our rights or interests; to prevent or investigate fraud or abuse; to enforce our terms and conditions; or to facilitate a merger, acquisition, sale, reorganization, or other business transaction involving our company or assets.

Is Your Information Transferred Internationally?

Possibly. We are based in the United States and our servers are located in the United States. In order to provide our services to you, please be aware that your information may be transferred to, stored, and processed in other countries. If you are located in the European Economic Area (EEA) or United Kingdom (UK), then other countries may not necessarily have data protection laws or other similar laws as comprehensive as those in your country. However, will we use appropriate safeguards, such as sending personal information with a two-step verification system, and under a valid contract with the recipient, if we transfer your information, to help ensure your personal information remains protected and to comply with applicable data protection laws.

How do we protect your personal data?

We take appropriate technical and organizational measures to protect your personal data from unauthorized access, use, disclosure, alteration, or destruction. These measures include:

Using encryption, firewalls, and other security technologies to protect your personal data in transit and at rest.
Limiting access to your personal data to our employees, subcontractors, and service providers who need to know it for the purposes we describe and who are subject to confidentiality obligations.
Training our staff on data protection and privacy best practices and policies.
Implementing policies and procedures to detect, report, and resolve any data breaches or incidents.

How long do we keep your personal data?

We will only retain your personal data for as long as necessary to fulfill the purposes for which we collected it or to comply with our legal obligations, accounting requirements, or contractual obligations. The retention period will depend on the type and nature of the personal data and the purpose for which we process it. When we no longer need your personal data, we will securely delete or anonymize it.

How do we store your data?

On Salesforce products and services: The company may use Salesforce products and services, such as Salesforce Platform, Sales Cloud, Service Cloud, Marketing Cloud, Tableau, Slack, or MuleSoft, to store and process data from its clients or employees. These products and services may involve cloud-based storage, databases, applications, analytics, integrations, or collaborations that enable the company to provide its services, manage its operations, and communicate with its clients or employees. The company may also use Salesforce AppExchange, Tableau Extension Gallery, or Slack App Directory to access third-party applications that run on or integrate with Salesforce products and services. The company may store data on Salesforce products and services in countries outside of the European Economic Area (EEA), such as the United States. Salesforce has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework https://www.salesforce.com/company/privacy/full_privacy/

On other third-party service providers: The company may use other third-party service providers to support its business operations, such as hosting its website, sending emails, processing payments, providing analytics, or performing audits. The company may share data with these service providers only for the purposes specified by the company and under contractual obligations to protect the data. The company may store data on other third-party service providers in countries outside of the EEA, depending on the location of the service provider. The company will ensure that any service provider that it works with has adequate security measures in place and complies with applicable laws and regulations.

On the company's own devices and systems: The company may store data on its own devices and systems, such as laptops, phones, tablets, servers, or networks. The company may use encryption, firewalls, passwords, or other security technologies to protect the data on its own devices and systems. The company may also limit access to the data to its authorized employees, subcontractors, or partners who need to know it for the purposes described by the company. The company may store data on its own devices and systems in countries where it operates or where its employees, subcontractors, or partners are located. The company will ensure that any device or system that it uses has adequate security measures in place and complies with applicable laws and regulations.

What are your data protection rights?

We would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access: You have the right to request a copy of the personal data that we hold about you and information about how we process it.
The right to rectification: You have the right to request that we correct any inaccurate or incomplete personal data that we hold about you.
The right to erasure: You have the right to request that we delete your personal data when it is no longer necessary for the purposes for which we collected it or when you withdraw your consent or object to our processing.
The right to restriction: You have the right to request that we restrict our processing of your personal data when you contest its accuracy, legality, or necessity, or when we no longer need it but you need it for legal claims.
The right to data portability: You have the right to request that we transfer your personal data to you or another controller in a structured, commonly used, and machine-readable format, when our processing is based on your consent or contract and is carried out by automated means.
The right to object: You have the right to object to our processing of your personal data when it is based on our legitimate interest or for direct marketing purposes.
The right to withdraw consent: You have the right to withdraw your consent at any time when our processing is based on your consent. This will not affect the lawfulness of our processing before you withdrew your consent.

How can you exercise your rights?

To exercise any of your rights regarding your personal data, please contact us using the details below. We will respond to your request within one month, unless we need more time due to the complexity or number of requests. We may ask you to verify your identity before fulfilling your request.

Email: [email protected]

Call: 1-888-475-0317

Or write to us at: 8344 12th Ave NW Seattle 98117-3341 WA, USA

What are cookies?

Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our website, we may collect information from you automatically through cookies or similar technology.

For further information, visit allaboutcookies.org.

How do we use cookies?

We use cookies in a range of ways to improve your experience on our website, including:

Allowing us to ensure the security of our website and your data.
Keeping you signed in.
Understanding how you use our website.

What types of cookies do we use?

There are a number of different types of cookies, however, our website uses:

Functionality: We use these cookies so that we recognize you on our website and remember your previously selected preferences. These could include what language you prefer and location you are in. A mix of first-party and third-party cookies are used.
Advertising: We use these cookies to collect information about your visit to our website, the content you viewed, the links you followed and information about your browser, device, and your IP address. We sometimes share some limited aspects of this data with third parties for advertising purposes. We may also share online data collected through cookies with our advertising partners. This means that when you visit another website, you may be shown advertisements based on your browsing patterns on our website.

How to manage cookies?

You can set your browser to accept cookies, and the above website tells you how to remove cookies from your browser. However, in a few cases, some of our website features may not function as a result.

Privacy policies of other websites

The Shujaa Consulting website contains links to other websites. Our privacy policy applies only to our website, so if you click on a link to another website, you should read their privacy policy.

Changes to our privacy policy

We keep our privacy policy under regular review and places any updates on this web page. This privacy policy was last updated on June 15, 2024.

How to contact us?

If you have any questions about our privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us.

Email: [email protected]

Call: 1-888-475-0317

Or write to us at: 8344 12th Ave NW Seattle 98117-3341 WA, USA

Shujaa Consulting reserves the right to make changes to this Policy at any time, which shall take effect immediately upon publication.

ADMINISTRATION: Shujaa Consulting Management
Version No: 1
Date Adopted: June 15, 2024