Privacy Policy

01 Who We Are

ByteMarkGrow Ltd ("BMG", "we", "our", "us") is a technology and digital marketing company incorporated under Irish law, with its registered office in Dublin, Ireland. We operate globally, with regional offices across Germany, Egypt, the UAE, Saudi Arabia, and the United States.

ByteMarkGrow is the data controller for personal data collected through this website (bytemarkgrow.com) and our associated services. For data processing inquiries, contact us at hello@bytemarkgrow.com.

02 Data We Collect

We collect the following categories of personal data, depending on how you interact with us:

• Identity Data: First name, last name, company name, job title/role.
• Contact Data: Email address, phone number, postal address.
• Project Data: Information provided in enquiry forms — service interest, budget range, project description.
• Technical Data: IP address, browser type and version, time zone setting, device identifiers, and other technology on the devices you use to access our website.
• Usage Data: Information about how you use our website, products, and services (page visits, session duration, click behaviour).
• Marketing Data: Preferences in receiving marketing from us and your communication preferences.

We do not collect any Special Categories of personal data (e.g., health, religion, political opinions) nor do we collect data about criminal convictions.

03 How We Use Your Data

• To respond to enquiries and provide services you have requested.
• To manage our relationship with you, including notifying you about changes to our terms or privacy policy.
• To deliver and improve our website functionality and user experience.
• To send you marketing communications (only where you have opted in or where we have a legitimate interest, with opt-out available at all times).
• To comply with legal and regulatory obligations.
• To detect, prevent, and address technical issues and security threats.

04 Legal Basis (GDPR)

Under GDPR, we process your personal data under the following lawful bases:

• Contractual necessity — to fulfil a contract with you or take pre-contractual steps at your request.
• Legitimate interests — for business development, fraud prevention, and improving our services, where these interests are not overridden by your rights.
• Legal obligation — where we must comply with applicable laws.
• Consent — for marketing emails and non-essential cookies, which you can withdraw at any time.

05 Data Sharing

We do not sell, trade, or rent your personal data to third parties. We may share data with:

• Service providers acting as data processors on our behalf (e.g., cloud hosting on AWS/GCP, CRM, email delivery) bound by GDPR-compliant data processing agreements.
• Professional advisors (lawyers, auditors, insurers) under confidentiality obligations.
• Regulatory authorities where required by law.
• Group companies within the ByteMarkGrow group where necessary for service delivery.

Where data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place (EU Standard Contractual Clauses or adequacy decisions).

06 Data Retention

We retain personal data only for as long as necessary for the purposes collected. Typical retention periods:

• Enquiry and contact form data: 3 years from last contact.
• Client project data: duration of engagement plus 7 years (for legal/tax purposes).
• Marketing consent records: until consent is withdrawn.
• Website analytics data: 26 months (aggregated/anonymised after 14 months).

07 Your Rights

Under GDPR, you have the following rights regarding your personal data:

• Right of access — to receive a copy of the personal data we hold about you.
• Right to rectification — to have inaccurate data corrected.
• Right to erasure — to request deletion of your data ("right to be forgotten").
• Right to restrict processing — to limit how we use your data.
• Right to data portability — to receive your data in a machine-readable format.
• Right to object — to processing based on legitimate interests or for direct marketing.
• Rights related to automated decision-making — not to be subject to solely automated decisions with significant effect.

To exercise any of these rights, contact us at hello@bytemarkgrow.com. We will respond within 30 days. You also have the right to lodge a complaint with the Irish Data Protection Commission (DPC) at dataprotection.ie.

08 Cookies

Our website uses cookies to distinguish you from other users and to improve your browsing experience. We use:

• Strictly necessary cookies — essential for website functionality (always active).
• Performance/analytics cookies — to analyse site usage (requires consent).
• Marketing cookies — to deliver relevant advertising (requires consent).

You can manage your cookie preferences at any time via our cookie banner or your browser settings.

09 Security

We implement appropriate technical and organisational security measures to protect your personal data against accidental loss, unauthorised access, alteration, or disclosure. These include encryption in transit (TLS 1.3), encryption at rest, role-based access controls, and regular security audits.

Where we suspect a personal data breach, we will notify the Irish DPC within 72 hours and affected individuals where required by GDPR Article 33-34.

10 Children's Privacy

Our services are directed at businesses and professionals. We do not knowingly collect personal data from individuals under the age of 16. If we become aware that we have collected data from a child under 16 without parental consent, we will delete it immediately.

11 Changes to This Policy

We may update this Privacy Policy from time to time. The "Last Updated" date at the top of this page reflects the most recent revision. We will notify existing clients of material changes by email. Continued use of our services after changes constitutes acceptance of the updated policy.

12 Contact & DPO