Who are we?
Providing technology solutions globally for more than 3 years. We are based in Pakistan and the UK while most of our clients are spread across the Middle East, South America, Europe and the United Kingdom.
Obsidian Vertex is committed to providing a range of services from small to mid-sized businesses and aid their digital transformation needs for turning their ideas into great software products. In the drive to build long-lasting relationships, we are committed to safeguarding your privacy. This website therefore serves as a marketing and corporate branding tool, any personal data acquired via this website is only intended for marketing and HR purposes. This Policy makes it clear the choices available to you regarding the use of, access to, and how to update and correct your personal information.
What personal data do we collect?
We only gather necessary information that allows you to use the website or to work with us. The information collected by us is used in accordance with this policy
Information we obtain from you:
When you get in touch via the contact us form or the email, you provide us with your name, phone number, email address, company information, communication content and data associated with the communication. Obsidian Vertex occasionally receives information from third parties like LinkedIn but only with your consent. We therefore recommend reviewing the privacy policies of such third-party websites as well before making your information public on their platform.
Information obtained from your use of our website:
- Information about your visits on this site, use of this website, your IP address, your location, browser type and version, referral source, page views and website navigation paths.
- Information about your device(s), in particular, version of the operating system and hardware model.
Cookies:
How do we use and share your personal information?
We process your information by way of obtaining, collecting, organizing, using, retrieving, consulting, aligning or erasing. We may disclose your information to our subsidiaries or affiliates. We may also share it with third party service providers, vendors and agents who facilitate us with website management, technical support, data analysis and hosting. We make sure that they also abide by data protection policies like we do.
We may also disclose your personal data:
- As required by and to the extent of the law.
- In connection with any ongoing or prospective legal proceedings.
- To establish, exercise or defend our legal rights, including providing information to others with the aim of fraud prevention and reducing credit risk.
How long is your information kept for?
We will delete your personal data as soon as we no longer have a need or a legal basis to process it.
What does this mean?
We'll always delete your data when we receive a request from you to do so. In the unlikely event that we are still obliged under the law to keep your data, we'll inform you about that. We will not store or otherwise process your data for an "unlimited period" in other cases. If we rely on legitimate interest for processing, your data will be kept as long as we are in a business relationship with you. If we don't start a business relationship with you, your data will be stored in our systems for some limited time for our analytics to be done. In no case we will keep it for more than 1 year, the period which is necessary for communicating with your company as our potential client and after which we treat old analytics outdated, so your personal data is not needed anymore.
Do we use cookies?
When you visit our website, Obsidian Vertex may place cookies and similar analytical codes (collectively, "Cookies") on your device, browser or the webpage you are viewing, in order to personalize your experience, understand usage patterns and provide, improve, and secure our website. Cookies are small pieces of text that are stored on your device when you visit a website. This allows the website to tailor its content to suit your needs whenever you visit it next. Cookies do not typically contain any information that personally identifies someone, but personal data that we store about you may be linked to the information obtained from cookies.
This may be done for a few reasons:
- Functional: When cookies are used to tailor your experience. These Cookies make sure you can view the websites and use them in a proper way. Examples of functional cookies: SID, PHPSESSID, wp-settings-X, wp-settings-time-X, etc. For instance, cookies permit:
- Our website to remember the details you've provided when filling in forms – so that you don't have to enter the same information multiple times.
- You can share website pages on social networks like Facebook, Twitter and LinkedIn.
- Performance: When cookies are used to analyse how you use our websites and to monitor website performance. This allows us to identify and fix any issues that arise quickly. For example, we use Google Analytics cookies to keep track of which pages are the most popular, collect anonymous information about how visitors use our website and to "remember" what a user has done visiting other pages on the website. We might also use cookies to highlight articles or offerings that we think will be of interest to you based on how you use our website.
- Advertising: When cookies are used to target you with our advertising. We do not allow third-party advertisements on our websites, but we do advertise our offers and services on other sites. Some of the sites on which we advertise may use cookies to store information about offers and services in which you have shown an interest as you browse the web. The information from those cookies allows the third party site to display the most appropriate advertisements for you. Examples of third-party cookies include bcookie, sb, fr, spin, wd, xs, etc.
How to reject and delete cookies?
You can adjust your browser settings to delete some of our cookies or cookies set by third parties. Most web browsers automatically accept cookies. However, you do not have to accept cookies and you can reject or block the use of cookies and delete all cookies currently stored on your device.
Where is your data processed?
Your data is processed in the US and may be transferred to the EU or PK – all entities abiding by the GDPR policies. Nevertheless, your data will always be safe and under GDPR protection, despite where it is processed. Such transfer and processing are possible only as reasonably necessary for the purposes set out in this Policy and within the scope of legitimate interest of Obsidian Vertex, abiding by contractual clauses so that your data does not fall outside the scope of the GDPR.
What are your rights?
As a data subject, you have the right to:
- Request information about whether we hold personal information about you, and, if so, what that information is and why we are holding or using it.
- Request access to your personal information. This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
- Request correction of the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
- Request erasure of your personal information. This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing.
- Object to the processing of your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your personal information for direct marketing purposes.
- Object to automated decision-making, including profiling, that is not to be subject to any automated decision-making by us using your personal information or profiling of you.
- Request the restriction of processing of your personal information. This enables you to ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it.
- Request transfer of your personal information in an electronic and structured form to you or to another party. This enables you to take your data from us in an electronically usable format and to be able to transfer your data to another party in an electronically usable format.
Withdraw consent
You have the right to withdraw your consent to the collection, processing and transfer of your personal information for a specific purpose at any time. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law. The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
Do we profile you?
We will only undertake profiling to the extent if you have given your consent to receive marketing materials from us. We will use your personal information as described in this Policy.
Is your data secured?
Obsidian Vertex is ISO-27001 certified. Therefore we don't allow any unreliable practices regarding the security of the information we deal with. Consequently, we take all appropriate technical and organisational measures to keep your data safe, as required by the GDPR. We do this through:
- All our employees, affiliates, consultants or any recipients of your data are bound by confidentiality (non-disclosure agreement) and are not authorised to process your data for purposes other than described in this Policy. We take full responsibility for that.
- We follow the Information Security Policy, which is mandatory and applies to all our consultants, contractors, and all other individuals who have authorised access to information resources.
- All our security practices and documents are reviewed on a yearly basis, approved by the executive management and are implemented throughout the group as well as are communicated to all our employees and consultants.
- Our Information Security Policy applies to all the information stored on physical or electronic data carriers, as well as any software and hardware that we possess or use temporarily.
- We conduct mandatory training for all our employees and consultants on privacy and security.
- Our servers, workstations and internet gateway devices are updated periodically with the latest antivirus definitions that include zero-day anti-malware protection.
- We ensure authentication and authorisation controls are robust and properly treated.
- We continuously gather and analyse data regarding all the new and existing threats and vulnerabilities, actual attacks on other organisations, as well as the information about the effectiveness of the existing security controls.
- We conduct risk assessment on a yearly basis.
Legal Disclaimer
In certain situations, Obsidian Vertex may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security requirements as well as instances requiring cooperation with law enforcement agencies where mandated by law. As further required by Law (including mergers, acquisitions, divestitures, or asset sales, but only if the acquiring organization agrees to this Policy's protections ), we may also disclose your personal information as required by law, such as to comply with a subpoena or other legal process, when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.