Privacy Policy

1. Introduction

QualiNext Consulting ("we," "our," or "us") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.qualinext.com or engage our ISO certification and management consulting services.

We are committed to ensuring that your privacy is protected and that we comply with applicable data protection laws, including the General Data Protection Regulation (GDPR) and other relevant privacy legislation.

2. Information We Collect

2.1 Personal Information You Provide

We may collect the following personal information when you:

• Fill out contact forms on our website
• Request consultations or quotes
• Subscribe to our newsletter
• Engage our consulting services
• Communicate with us via phone, email, or other channels

This information may include:

• Name and contact information (email, phone number, address)
• Company name and industry information
• Job title and professional background
• Service requirements and project details
• Communication preferences
• Business-related information relevant to our consulting services

2.2 Information Automatically Collected

When you visit our website, we may automatically collect:

• IP address and browser information
• Device and operating system information
• Pages visited and time spent on our website
• Referring website information
• Geographic location (general)

2.3 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience. For detailed information about our use of cookies, please see our Cookie Policy.

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Provision

• Provide ISO certification consulting services
• Conduct business process optimization
• Deliver management consulting services
• Communicate about project progress and deliverables
• Process payments and manage client accounts

3.2 Communication and Marketing

• Respond to inquiries and provide customer support
• Send newsletters and industry updates (with consent)
• Inform you about relevant services and offerings
• Conduct client satisfaction surveys

3.3 Business Operations

• Improve our website and services
• Analyze website usage and user behavior
• Comply with legal obligations
• Protect against fraud and security threats
• Maintain business records and documentation

4. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: For marketing communications and newsletter subscriptions
• Contract: To perform our consulting services and fulfill contractual obligations
• Legitimate Interest: For business operations, website improvement, and security
• Legal Obligation: To comply with applicable laws and regulations

5. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

5.1 Service Providers

We may share information with trusted third-party service providers who assist us in:

• Website hosting and maintenance
• Email marketing and communication platforms
• Payment processing
• Data analytics and website optimization
• Cloud storage and backup services

5.2 Professional Partners

With your consent, we may share relevant information with:

• Certification bodies for audit and certification purposes
• Industry experts and specialists when required for project delivery
• Professional advisors (lawyers, accountants) when necessary

5.3 Legal Requirements

We may disclose your information when required by law or to:

• Comply with legal processes or government requests
• Protect our rights, property, or safety
• Protect the rights, property, or safety of our clients or others
• Prevent fraud or security threats

6. Client Confidentiality

As a professional consulting firm, we maintain strict confidentiality regarding:

• All client business information and data
• Proprietary processes and systems
• Internal audit findings and assessments
• Strategic planning and business development information
• Any information marked as confidential or proprietary

Our consultants and staff are bound by professional confidentiality agreements and ethical obligations to protect client information.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

• Encryption of data in transit and at rest
• Secure server infrastructure and hosting
• Access controls and authentication systems
• Regular security audits and updates
• Staff training on data protection and security
• Incident response and breach notification procedures

8. Data Retention

We retain your personal information for as long as necessary to:

• Provide our consulting services
• Maintain business relationships
• Comply with legal and regulatory requirements
• Resolve disputes and enforce agreements

Specific retention periods:

• Contact inquiries: 3 years from last contact
• Client project data: 7 years after project completion
• Marketing data: Until consent is withdrawn
• Website analytics: 26 months (Google Analytics default)

9. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

9.1 GDPR Rights (EU/EEA Residents)

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data ("right to be forgotten")
• Restriction: Request limitation of data processing
• Portability: Request transfer of your data
• Objection: Object to certain types of processing
• Withdraw Consent: Withdraw consent for processing

9.2 Other Jurisdictions

We also respect privacy rights under other applicable laws and will respond to requests in accordance with local requirements.

10. International Data Transfers

As we provide consulting services globally, your personal information may be transferred to and processed in countries other than your country of residence. We ensure that:

• Transfers are made only to countries with adequate data protection
• Appropriate safeguards are in place for international transfers
• We comply with applicable data transfer regulations
• Client consent is obtained when required

11. Children's Privacy

Our services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.

12. Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these websites. We encourage you to read the privacy policies of any third-party websites you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will:

• Post the updated policy on our website
• Update the "Last Updated" date
• Notify you of significant changes via email or website notice
• Obtain consent for material changes where required by law

14. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

15. Data Protection Officer

For GDPR-related inquiries, you may contact our Data Protection Officer at:

Email: dpo@qualinext.com

16. Supervisory Authority

If you are located in the EU/EEA and believe we have not addressed your concerns, you have the right to lodge a complaint with your local data protection supervisory authority.