Privacy Policy

1. Introduction

FocusLab ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

This policy is designed to comply with the General Data Protection Regulation (GDPR) and other applicable privacy laws. By using our services, you consent to the practices described in this policy.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

• Contact Information: Name, email address, phone number
• Newsletter Subscription: Email address for newsletter communications
• Communication Data: Messages sent through our contact forms
• Technical Information: IP address, browser type, operating system, device information

2.2 Automatically Collected Information

We automatically collect certain information when you visit our website:

• Log data (IP address, browser type, pages visited, time stamps)
• Cookies and similar tracking technologies
• Usage patterns and preferences
• Device and connection information

3. How We Use Your Information

We use your personal information for the following purposes:

• Service Provision: To provide, maintain, and improve our services
• Communication: To respond to inquiries and provide customer support
• Newsletter: To send newsletters and updates (with your explicit consent)
• Analytics: To understand website usage and improve user experience
• Legal Compliance: To comply with legal obligations and protect our rights
• Security: To detect, prevent, and address technical issues and security threats

4. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: For newsletter subscriptions and optional cookies
• Legitimate Interest: For website analytics and security
• Contractual Necessity: To provide requested services
• Legal Obligation: To comply with applicable laws

5. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience. Our cookie policy includes:

• Essential Cookies: Required for basic website functionality
• Analytics Cookies: To understand website usage patterns
• Marketing Cookies: For personalized advertising (with consent)
• Functional Cookies: To remember your preferences

You can manage your cookie preferences through our cookie consent banner or your browser settings.

6. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share information in the following circumstances:

• Service Providers: With trusted third-party service providers who assist in operations
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with mergers, acquisitions, or asset sales
• Consent: When you explicitly consent to sharing

7. Data Retention

We retain your personal information for as long as necessary to:

• Provide our services to you
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Fulfill the purposes outlined in this policy

Specific retention periods:

• Contact Form Data: 2 years from submission
• Newsletter Subscriptions: Until unsubscribed
• Analytics Data: 26 months (anonymized)
• Cookie Data: As specified in cookie settings

8. Your Rights Under GDPR

As a data subject, you have the following rights:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Request transfer of your data
• Right to Object: Object to processing based on legitimate interests
• Rights Related to Automated Processing: Protection against automated decision-making

To exercise these rights, please contact us using the information provided below.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication measures
• Employee training on data protection
• Incident response procedures

10. International Data Transfers

If we transfer your personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including:

• Adequacy decisions by the European Commission
• Standard Contractual Clauses (SCCs)
• Binding Corporate Rules (BCRs)
• Certification schemes and codes of conduct

11. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us to have it removed.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

• Posting the updated policy on our website
• Updating the "Last Updated" date
• Sending email notifications for material changes
• Displaying prominent notices on our website

13. Contact Information

For questions about this Privacy Policy or to exercise your rights, please contact us:

14. Supervisory Authority

If you believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local data protection supervisory authority.