1. Data We Collect and Why It Matters

At Marlonneys Group, our commitment to privacy is grounded in ethical consulting practice and GDPR compliance. We gather only the information required to offer strategic, high-value support to our business clients, in alignment with principles of necessity, transparency, and purpose limitation.

1.1 Professional Identification & Contact Details

We may collect the following data when you interact with us via our website, events, or consultation forms:

• Full Name
• Business Email Address
• Direct Phone Number
• Company Name and Registered Location
• Position/Title within the Organization

1.2 Technical Usage and Interaction Data

To ensure platform reliability and tailor your experience, we process data such as:

• IP address and device/browser signatures
• Operating system and browser version
• Site navigation behavior and time spent on pages
• Language settings and geographic indicators
• HTTP referral data and cookie-based session identifiers

1.3 Consulting Communication History

We retain contextual data for continuity and relevance in our advisory services:

• Prior consultation summaries and follow-up notes
• Email or form-based correspondence
• Strategic documents you access or download
• Workshop registrations and feedback records

2. Why We Process Your Data

We use your information strictly to advance strategic business interactions and deliver meaningful value. This includes:

• Responding to tailored inquiries or partnership proposals
• Creating strategic assessments or proposal drafts
• Sharing project milestones, feedback, and documentation
• Coordinating meeting schedules and touchpoints
• Improving the performance and relevance of our website
• Delivering insights or briefings (if you explicitly subscribe)

We do not engage in profiling, targeted advertising, or unsolicited outreach.

3. Trusted Third Parties & Secure Transfers

We do not sell or lease your data. We may share it with the following GDPR-compliant service partners solely for operational purposes:

• Secure Romanian/EU cloud infrastructure
• Professional communication platforms (e.g., Zoom, Microsoft Teams)
• Encrypted CRM systems
• Digital invoicing and document tools
• Legal authorities upon formal request

All providers are bound by data protection agreements and assessed regularly for compliance.

4. Data Security & Retention Policy

We apply strong safeguards to protect your data:

• AES-256 encrypted storage
• SSL/TLS encryption for all transmissions
• Role-based access controls
• Routine audits and penetration testing
• Hosting exclusively within the EEA

Data is retained only as long as required for contractual or legal purposes. You may request erasure unless legally exempted.

5. Your Data Rights Under GDPR

As a protected EU data subject, you have the right to:

• Access your data
• Rectify inaccurate or outdated data
• Request deletion (“right to be forgotten”)
• Restrict or object to processing
• Receive data in a portable format
• Withdraw consent at any time

To exercise your rights, email: [email protected]

6. Cookie Usage Statement

We use cookies to optimise performance and improve user experience:

• Essential Cookies – Enable core functionality and secure sessions
• Functional Cookies – Remember your preferences
• Analytical Cookies – Provide anonymized usage statistics

Non-essential cookies require your consent, which can be managed through your browser or our cookie settings panel.

7. Changes to this Policy

This Privacy Policy may be updated to reflect legal or operational changes. The latest version will always be posted on this page.

8. Contact Us Regarding Data Privacy

If you have any questions or requests regarding your data, contact our compliance team: