SDG Enterprise

Privacy Policy

Last updated: October 27, 2025

SDG Enterprise Limited (“we”, “us”, “our”) respects your privacy. This notice explains how we collect, use, and share personal data when you use our website or engage our Services.

1) Who controls your data?

For the website and contact form, we are the controller. During client engagements, we typically act as a processor to our client (the controller). Contact: [email protected].

2) What data we collect

  • Contact data: name, email, company, industry, and message you submit via forms or email.
  • Technical data: IP address, user‑agent, and basic request logs captured for security and delivery.
  • Engagement data: for clients, project context, configuration details, and audit logs as needed to perform the Services.

We do not use third‑party analytics or advertising trackers by default on this site.

3) How we use data (purposes & legal bases)

  • Respond to inquiries and provide proposals (contractual necessity or legitimate interests).
  • Deliver and support Services (contractual necessity).
  • Secure, monitor, and improve the site and Services (legitimate interests).
  • Comply with legal obligations (legal obligation).
  • Optional communications such as updates (consent where required, and you can opt out at any time).

4) Sharing

We share personal data with service providers that help us operate (e.g., email delivery, hosting). We do not sell or rent personal data. If a solution uses third‑party AI models or APIs, personal data may be processed by those providers under the terms agreed for your project.

5) International transfers

Where data is transferred internationally, we use appropriate safeguards (e.g., standard contractual clauses) as required by law.

6) Retention

We keep personal data only as long as necessary for the purposes above, then delete or anonymize it according to our retention practices and any SOW requirements.

7) Your rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to processing, and to data portability. You may also have rights under GDPR/UK GDPR and certain U.S. state laws. To exercise rights, email [email protected]. We will verify identity as required.

8) Children

Our site and Services are not directed to children under 16. We do not knowingly collect data from children.

9) Security

We employ reasonable technical and organizational measures to protect personal data appropriate to the risk and the size/scope of each engagement.

10) Cookies

We use only essential cookies by default. See our Cookies Policy for details.

11) Changes

We may update this notice. When we do, we will revise the “Last updated” date and, where appropriate, provide additional notice.

12) Contact

Questions or requests: [email protected].