Gargantua Group Logo Gargantua Group

Privacy Policy

Effective date: September 2025

1. Introduction

Gargantua Group ("Gargantua", "we", "us", or "our") provides websites, software, and professional services (the "Services"). This Privacy Policy describes how we collect, use, disclose, and protect personal information in connection with the Services.

2. Scope and Roles

We act as a controller/business when we determine the purposes and means of processing personal information (e.g., website analytics, marketing). We act as a processor/service provider when we process data on behalf of customers under a separate agreement (e.g., a statement of work or data processing addendum). This Policy applies to our controller/business activities; customer data we process as a processor/service provider is governed by the applicable agreement.

3. Personal Information We Collect

  • Identifiers and Contact Data: name, email, phone, company, job title, and communications.
  • Commercial and Usage Data: engagement with the Services, pages viewed, referring URLs, IP address, device and browser characteristics, and general location.
  • Customer-Provided Content: data provided by customers for processing on their behalf.
  • Inferences: preferences or interests derived from other data, where permitted by law.
  • Cookies/Similar Technologies: see the Cookies section below.

4. Sources of Information

We collect information directly from you, automatically through your use of the Services, and from third parties such as analytics, advertising, and referral partners, as permitted by law.

5. How We Use Information

  • Provide, maintain, and improve the Services and develop new features.
  • Process transactions, administer accounts, and provide support.
  • Personalize experiences, perform analytics, and measure performance.
  • Detect, prevent, and investigate security incidents and abuse.
  • Comply with applicable laws and enforce our agreements.

Where required (e.g., EEA/UK), our legal bases include: performance of a contract, legitimate interests (such as security and product improvement), consent (for specific marketing or cookie uses), and compliance with legal obligations.

6. Sharing and Disclosure

We share information with: (a) service providers who process data for us under contractual safeguards; (b) affiliates subject to this Policy; (c) parties to a corporate transaction; (d) authorities or other parties as required by law or to protect rights; and (e) other parties with your direction or consent. We do not sell personal information. We may disclose de‑identified or aggregated data that does not identify you.

7. Cookies and Similar Technologies

We use cookies, pixels, and similar technologies for essential site functionality, analytics, and (where applicable) marketing. You can control certain cookies through browser settings or preferences tools. Where required, we obtain consent for non‑essential cookies.

8. Data Retention

We retain personal information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods depend on the type of data and the purposes for which it was collected.

9. Security

We implement administrative, technical, and physical safeguards designed to protect personal information. Nevertheless, no method of transmission over the Internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.

10. International Data Transfers

We may transfer personal information to countries other than your own. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) to protect personal information transferred internationally.

11. Your Rights

Depending on your location, you may have rights to request access, correction, deletion, portability, restriction of processing, or to object to processing, as well as the right to withdraw consent where processing is based on consent. You may also have the right to opt out of targeted advertising or profiling. We will verify requests as required by law and respond within statutory timelines.

We will not discriminate against you for exercising your privacy rights. If we deny your request, you may have the right to appeal our decision by replying to our response.

12. Children’s Privacy

The Services are not directed to children under 13 (or the age defined by law in your jurisdiction), and we do not knowingly collect personal information from children.

13. Changes to this Policy

We may update this Privacy Policy periodically. We will post the updated version and revise the effective date at the top of this page.