Legal

Privacy Policy

1. Who we are

Delta Software („we", „us" or „our") provides software engineering team services, including dedicated teams, staff augmentation and project outsourcing. This Privacy Policy explains how we collect, use, store and protect personal data when you visit our website, use our contact form, or engage our services.

2. What data we collect

We only collect data that is necessary to respond to enquiries and deliver our services. This may include:

  • Contact details - name, email address, phone number and company name, provided via our contact form or direct email.
  • Project information - descriptions of your needs, team size, technology stack and timelines, shared during discovery calls or in proposals.
  • Technical data - IP address, browser type and device information, collected automatically for security and website performance (via Cloudflare).
  • Website usage data - pages visited, time on site, interactions and navigation patterns, collected via Google Analytics to improve the website experience. This data is anonymized and processed in aggregate form.
  • Communication records - emails, call notes and messages exchanged during the sales and delivery process.

We do not collect sensitive personal data (such as health information, political opinions or biometric data) and we do not use profiling or automated decision-making.

3. How we use your data

We use your personal data for the following purposes:

  • To respond to enquiries submitted through our website or email;
  • To schedule discovery calls, prepare proposals and enter into service agreements;
  • To deliver the agreed services and communicate about project progress;
  • To send occasional updates about our services (only with your consent);
  • To comply with legal, tax or accounting obligations;
  • To protect our website and systems from fraud, abuse or security threats.

We will never sell your personal data to third parties or use it for purposes incompatible with those described above.

4. Legal basis for processing

Under the GDPR, we process personal data based on one or more of the following legal grounds:

  • Legitimate interest - responding to business enquiries, delivering services, and protecting our systems.
  • Contractual necessity - processing required to enter into or perform a services agreement.
  • Consent - where you have explicitly agreed (e.g. subscribing to updates).
  • Legal obligation - compliance with tax, accounting or regulatory requirements.

5. Data sharing and third parties

We work with trusted partners to deliver certain services (for example, certified hosting providers, accounting firms or legal advisors). We only share personal data with third parties when necessary and under contractual protections that ensure your data is handled securely and in compliance with this Privacy Policy.

We use Google Analytics, a service provided by Google LLC, to analyse website traffic. Google Analytics collects anonymized usage data (such as pages visited, time on site, device information) using cookies. This data is processed by Google in accordance with their Privacy Policy. We have enabled IP anonymization where possible. You can opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.

We may also disclose data if required by law, court order or regulatory authority, or to establish, exercise or defend our legal rights.

6. International transfers

Our teams and some of our partners may be located outside the European Economic Area (EEA). When we transfer personal data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, or we rely on adequacy decisions where applicable.

7. Data retention

We retain personal data only for as long as necessary to fulfil the purposes described in this policy, or as required by law. Typically:

  • Enquiry data is retained for up to 24 months after the last contact, unless you request deletion earlier.
  • Client data related to active agreements is retained for the duration of the contract plus any applicable legal retention period (usually 5–10 years for tax/accounting purposes).

8. Your rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access - request a copy of the data we hold about you.
  • Rectification - request correction of inaccurate or incomplete data.
  • Erasure - request deletion of your data ("right to be forgotten").
  • Restriction - request that we limit how we use your data.
  • Portability - request your data in a structured, machine-readable format.
  • Objection - object to processing based on legitimate interests or direct marketing.

To exercise any of these rights, contact us at sales@deltasoftware.org. We will respond within 30 days.

9. Cookies and tracking

Our website uses strictly necessary cookies (for security and basic functionality) and analytics cookies via Google Analytics. Analytics cookies help us understand how visitors use the site so we can improve it. Google Analytics collects anonymized data using cookies such as _ga, _gid and _gat. For full details about the cookies we use and how to manage them, please see our Cookie Policy.

10. Security measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, alteration or destruction. This includes encrypted communications (TLS), access controls, and regular security reviews. However, no method of transmission over the Internet is completely secure, and we cannot guarantee absolute security.

11. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services or legal requirements. The updated version will be posted on this page with a revised date. We encourage you to review this page periodically.

12. Contact us

If you have any questions, concerns or complaints about this Privacy Policy or how we handle your data, please contact us at: sales@deltasoftware.org.

You also have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.