Privacy Policy for Sweeft Agency

At Sweeft, accessible from www.sweeftdigital.com, one of our main priorities is the privacy of our visitors. This Privacy Policy document contains types of information that is collected and recorded by Sweeft and how we use it.

If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us at data.ms.georgia@group.makingscience.com .

This Privacy Policy applies only to our online activities and is valid for visitors to our website with regards to the information that they shared and/or collect in Sweeft. This policy is not applicable to any information collected offline or via channels other than this website.

Consent

Upon entering our website, you are asked to consent to our terms and conditions, based on which we process your data.

Legal basis

The legal basis of processing your data primarily is your voluntary consent.

As Sweeft is present at multiple jurisdictions, the processing of personal data is conducted in adherence to the local laws applicable at the respective places of our operations. We ensure that our data handling practices conform to one of the legally recognized grounds for processing (which varies according to the particular data processing activity), as stipulated by the relevant laws at the place of our operation.

Categories of personal data processed

The personal information that you are asked to provide, and the reasons why you are asked to provide it, will be made clear to you at the point we ask you to provide your personal information. Among others, the following personal data are processed in accordance with this policy:

• Information You Give Us - name, email address, phone number, the contents of the message and/or attachments you may send us, and any other information you may provide through search for services through this website;
• Automatic Information - we automatically collect and store certain types of information about your use of this website, including information about your interaction with content and services available through this website. Like many websites, we use "cookies" and other unique identifiers, and we obtain certain types of information when your web browser or device accesses our Site. Check our Cookie Policy for additional information;
• Information from Other Sources - we might receive information about you from other sources, such as updated delivery and address information from our carriers, which we use to correct our records and facilitate the delivery of your next purchase.

How we use your information

We use the information we collect in various ways, including to:

• Provide, operate, and maintain our website;
• Improve, personalize, and expand our website;
• Understand and analyze how you use our website;
• Develop new products, services, features, and functionality;
• Communicate with you, either directly or through one of our partners, including for customer service;
• Subject to your separate consent, provide you with updates and other information relating to the website, and for marketing and promotional purposes;
• Send you emails when requested by you;
• Find and prevent fraud;
• Provide consulting and digital marketing services;
• Manage your job applications and candidacies, as applicable;
• Provide you with offers of products and services of your interest when requested by you;
• Send information with a view to initiating a project with or investing in Sweeft when requested by you.

Technical and organizational measures taken to protect personal data

The protection of your privacy and personal data is very important to SWEEFT. Therefore, SWEEFT does everything in its power to prevent your data from being used inappropriately. Your data can only be accessed by authorised personnel.

SWEEFT maintains adequate security for the protection of personal data in accordance with the applicable regulations and has established all the technical means at its disposal to avoid the loss, misuse, alteration, unauthorised access and theft of the data provided by you through this website, without prejudice to informing you that security measures on the Internet are not impregnable.

SWEEFT undertakes to comply with the duty of secrecy and confidentiality with respect to the personal data in accordance with the applicable laws.

Automated decision-making

Personal data is not used for automated decision-making.

Access to personal data

Only those persons who need the data to ensure the functioning of relevant information systems and to perform their work have access to the data. Within Sweeft, the following parties have access to personal data:

Marketing & Communications,

People & Culture,

Others to the extent necessary for the functioning of relevant information systems and to perform their work.

Log Files

Sweeft follows a standard procedure of using log files. These files log visitors when they visit websites. All hosting companies do this and a part of hosting services' analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analyzing trends, administering the site, tracking users' movement on the website, and gathering demographic information.

Duration of Processing and location of the personal data

Sweeft retains your personal data as required under the applicable laws. Sweeft ensures physical, technical and organizational guarantees to protect your data.

Sweeft determines the data retention periods for personal data categories on a per-category basis in accordance with the following principles:

• adherence to respective legislation, regulations, guidelines, best practices and similar applicable standards to the operations of Sweeft and defining the minimum or maximum retention period for certain categories of personal data;
• the principle of data minimization, based on which data will not be stored for longer than is necessary for the conclusion of the processing purpose that has been set forth on the part of that category of personal data.

Third Party Privacy Policies

We may share your personal data with our affiliates, service providers, partners and other third parties for the following purposes:

• to help us offer and provide the services;
• to fulfil applicable legal requirements;
• to measure the effectiveness of advertising campaigns;
• to personalize the advertising or other content that you see on websites when you visit;
• to improve, personalize, and expand our website.

Third parties may use technologies like cookies, JavaScript, or Web Beacons that are used in their respective advertisements and links that appear on Sweeft, which may be sent directly to users' browser. They may automatically receive your IP address when this occurs.

Such third parties may not use the information for any purposes other than those described in this policy and determined by Sweeft.

Note that Sweeft has no access to or control over these technologies that are used by third-party partners.

CCPA Privacy Rights (Do Not Sell My Personal Information)

Under the CCPA, among other rights, California consumers have the right to:

Request that a business that collects a consumer's personal data disclose the categories and specific pieces of personal data that a business has collected about consumers.

Request that a business delete any personal data about the consumer that a business has collected.

Request that a business that sells a consumer's personal data, not sell the consumer's personal data.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

GDPR Data Protection Rights

We would like to make sure you are fully aware of all your data protection rights, the source, purpose, and basis for its processing. Every user is entitled to the following:

The right to access – You have the right to request copies of your personal data free of charge. If you require copies in a different format than the one we use for storage, we may charge you a small fee for this service. This fee reflects the administrative costs associated with providing the data in the requested format.

The right to rectification – You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.

The right to erasure – You have the right to request that we erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that we restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you feel that your data has been processed unlawfully, you also have the right to lodge a complaint regarding the processing activity with the respective supervisory authority: the Personal Data Protection Service of Georgia.

If you make a request, we have 10 working days to respond to you, unless prescribed otherwise by the respective local laws. In case you have questions about your rights or would like to exercise any of these rights, please contact data.ms.georgia@group.makingscience.com

Children's Information

Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity.

Sweeft receives consent for data processing from children above 16 directly. For children between the ages 13-16, parental consent is required. Sweeft does not knowingly collect any Personal Identifiable Information from children under the age of 13. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.

International Transfer of Personal Data

Sweeft may transfer your personal data to international organizations and/or persons based in other countries, including private or public organizations, if the requirements for data processing provided for by the relevant law and appropriate safeguards in the relevant state or international organisation are in place for ensuring data protection and the protection of your rights.