Privacy Policy

1. Introduction

WeControl Business Services ("WeControl," "we," "us," or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and safeguard your personal information when you visit our website https://wecontrol.io or use our fintech consultancy services.

This policy complies with the General Data Protection Regulation (GDPR) and Estonian data protection laws, including the Estonian Personal Data Protection Act.

2. Information We Collect

2.1 Personal Data You Provide

• Contact Information: Name, email address, phone number, company name, job title
• Communication Data: Messages, inquiries, feedback sent through our contact forms or email
• Professional Information: Business requirements, project details, technical specifications

2.2 Automatically Collected Data

• Technical Data: IP address, browser type and version, device information, operating system
• Usage Data: Pages visited, time spent on pages, click patterns, referral sources
• Cookies and Tracking Technologies: As described in our Cookie Policy

3. Legal Basis for Processing

We process your personal data based on:

• Legitimate Interest: For business development, service improvement, and marketing communications
• Contract Performance: To provide consultancy services and fulfill contractual obligations
• Consent: Where you have explicitly agreed to specific processing activities
• Legal Compliance: To meet regulatory and legal requirements

4. How We Use Your Information

4.1 Primary Uses

• Responding to inquiries and providing customer support
• Delivering fintech consultancy and development services
• Processing service requests and managing client relationships
• Improving our website functionality and user experience

4.2 Secondary Uses

• Sending relevant business communications and service updates
• Analyzing website traffic and user behavior for optimization
• Compliance with legal and regulatory requirements
• Preventing fraud and ensuring platform security

5. Information Sharing

5.1 Service Providers

• Cloud hosting providers (AWS, Microsoft Azure)
• Analytics services (Google Analytics)
• Email marketing platforms
• Payment processors
• Legal and professional advisors

5.2 Legal Requirements

We may disclose your information when required by law, court order, or to protect our rights and safety.

5.3 Business Transfers

In case of merger, acquisition, or sale of assets, your data may be transferred to the new entity.

6. International Data Transfers

We may transfer your data to countries outside the European Economic Area (EEA). When we do so, we ensure adequate protection through:

• European Commission adequacy decisions
• Standard Contractual Clauses (SCCs)
• Certification schemes or codes of conduct

7. Data Retention

We retain personal data only as long as necessary for the purposes outlined in this policy:

• Contact inquiries: 3 years from last contact
• Client data: Duration of service agreement plus 7 years for legal compliance
• Website analytics: 26 months (Google Analytics default)
• Marketing communications: Until you unsubscribe or object

8. Your Rights Under GDPR

You have the following rights regarding your personal data:

8.1 Access and Portability

• Right to access your personal data
• Right to receive data in a portable format

8.2 Correction and Deletion

• Right to rectify inaccurate or incomplete data
• Right to erasure ("right to be forgotten")

8.3 Processing Controls

• Right to restrict processing
• Right to object to processing
• Right to withdraw consent

8.4 Automated Decision Making

You have the right not to be subject to automated decision-making, including profiling.

To exercise these rights, contact us at: contact@wecontrol.io

9. Cookies and Tracking

We use cookies and similar technologies to:

• Ensure proper website functionality
• Analyze traffic and user behavior
• Personalize content and advertisements
• Remember user preferences

You can control cookies through your browser settings. However, disabling cookies may affect website functionality.

10. Data Security

We implement appropriate technical and organizational measures to protect your data:

• SSL encryption for data transmission
• Access controls and authentication
• Regular security assessments
• Staff training on data protection
• Secure data storage and backup systems

11. Third-Party Links

Our website may contain links to third-party sites. We are not responsible for their privacy practices. We recommend reviewing their privacy policies before providing personal information.

12. Data Protection Officer

For data protection inquiries, contact our designated representative:
Email: dpo@wecontrol.io

13. Complaints

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with:

14. Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal data from children under 16.

15. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy regularly.

16. Contact Information

For questions about this Privacy Policy or our data practices: