Privacy Policy

Last Updated: January 20, 2025

OceanGuard ("we," "our," or "us") is committed to protecting your privacy and handling your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our website and services.

1. Who We Are

Data Controller: OceanGuard Maritime Cybersecurity
Contact: For any privacy-related inquiries, please contact us via the contact form on our website or reach out to our data protection team.

2. What Information We Collect

We collect personal information that you voluntarily provide to us when you:

• Contact Us: Name, email address, and the content of your message or inquiry
• Apply for Careers: Name, email address, cover letter, and any information you include in your application
• Subscribe to Newsletters: Name, email address, and company name (optional)
• Use Our Website: Technical information such as IP address, browser type, and pages visited (via cookies and analytics)

3. How We Use Your Information

We process your personal data for the following purposes:

Contact Form Submissions

• Purpose: To respond to your inquiries about our maritime cybersecurity services, products, or partnership opportunities
• Legal Basis: Legitimate interest (B2B business communications) and your consent
• Retention Period: Up to 2 years from your last contact with us, or until you request deletion

Career Applications

• Purpose: To evaluate your application for employment and contact you regarding opportunities
• Legal Basis: Your consent and our legitimate interest in recruitment
• Retention Period: Up to 12 months after submission, or until you request deletion

Newsletter Subscriptions

• Purpose: To send you maritime cybersecurity threat intelligence, industry updates, and company news
• Legal Basis: Your explicit consent
• Retention Period: Until you unsubscribe or request deletion

Website Analytics

• Purpose: To understand how visitors use our website and improve user experience
• Legal Basis: Legitimate interest in website optimization
• Tools Used: We may use analytics services that collect anonymized or pseudonymized data

4. Who We Share Your Data With

We do not sell, rent, or trade your personal information to third parties. We may share your data with:

• Service Providers: Trusted third-party services that help us operate our website and business (e.g., email delivery services, hosting providers, reCAPTCHA for spam protection)
• Legal Obligations: Law enforcement or regulatory authorities when required by law
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction

All third-party processors are contractually obligated to protect your data in accordance with GDPR standards.

5. International Data Transfers

As a maritime cybersecurity company operating globally, your data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions recognizing equivalent data protection standards
• Your explicit consent where required

6. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right to Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: Request limitation on how we use your data
• Right to Data Portability: Receive your data in a structured, commonly used format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time where consent is the legal basis

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, destruction, or alteration. These measures include:

• Encryption of data in transit (HTTPS/TLS)
• Secure data storage with access controls
• Regular security assessments and updates
• reCAPTCHA to prevent automated abuse of our forms
• Staff training on data protection best practices

However, no method of transmission over the internet is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.

8. Cookies and Tracking Technologies

Our website uses the following cookies and tracking technologies:

• Essential Cookies: Necessary for website functionality (e.g., session management, security)
• reCAPTCHA: Google reCAPTCHA to protect forms from spam and abuse. This service may collect technical information about your device. See Google's Privacy Policy for more information.

You can control cookie settings through your browser preferences. Note that disabling essential cookies may affect website functionality.

9. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately so we can delete it.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The "Last Updated" date at the top of this page indicates when the policy was last revised. We encourage you to review this page periodically.

11. Complaints and Regulatory Authority

If you believe we have not handled your personal data in accordance with GDPR, you have the right to lodge a complaint with your local data protection authority. In the EU, you can find your Data Protection Authority here: EDPB Member List.