Privacy Policy

How we collect, use and protect your personal data.

Last updated: 19 February 2026

1. Data controller

The data controller for this website is PromoDigy ("we", "us", "our"), a B2B provider of sensory marketing solutions (audio, digital signage, aroma). We operate from Israel (Middle East office) and Gdańsk, Poland (Europe office). Contact: Israel +972-50-8989302, Gdańsk +48-502-499-007, or use the contact form on this site. For privacy requests use the same channels.

2. What data we collect

We collect and process only the following:

Contact form data

When you submit the contact form we receive: your name, email address, company name, phone number (optional), service interest (Audio / Visual / Scent / All), office choice (Middle East or Europe), and your message. This data is not stored in a database: it is sent by email to our team (contact@promodigy.com for Middle East, biuro@promodigy.pl for Europe) so we can respond to your enquiry. We do not use it for marketing unless you have agreed to that separately.

Technical data

Our hosting provider (and any standard web server) may log technical data such as IP address, browser type, device information, and access times. We do not use this for profiling or analytics. We do not run third-party analytics or advertising scripts on this site.

Cookies

We do not set any first-party cookies. Language is chosen via the URL (?lang=) or your browser language, not stored in a cookie. See section 7 for third-party resources.

We do not use your data for automated decision-making or profiling.

3. Legal basis and purposes

We process your data only where we have a valid legal basis (including under the EU General Data Protection Regulation – GDPR):

Consent

By submitting the contact form you consent to us using the data you provide to respond to your enquiry and, where relevant, to provide our services. The data is sent by email to our offices and is not stored in a separate database.

Legitimate interests

We (or our hosting provider) may process technical and log data for security, to operate the website, and to prevent abuse.

Contract

If you become a client, we process your data as necessary to perform our contract and provide our services.

Legal obligation

Where we are required to retain or disclose data by law.

4. How long we keep your data

Contact form data is held in our email systems (inbox and archives) for as long as needed to handle your enquiry and any follow-up (typically up to 24 months after last contact), or longer if we have an ongoing contract or legal obligation. We do not keep a separate database of contact form submissions. Server and access logs are retained according to our hosting provider's policy (typically a few weeks to 12 months).

5. Your rights

Under the GDPR (if you are in the European Economic Area) and similar laws, you have the right to:

  • Access: obtain confirmation as to whether we process your data and a copy of that data.
  • Rectification: have inaccurate personal data corrected.
  • Erasure: request deletion of your data in certain circumstances ("right to be forgotten").
  • Restriction: request that we limit how we use your data in certain cases.
  • Data portability: receive your data in a structured, machine-readable format where applicable.
  • Object: object to processing based on legitimate interests or for direct marketing.
  • Withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal.
  • Lodge a complaint: you have the right to lodge a complaint with a supervisory authority in your country.

To exercise any of these rights, contact us using the details in section 1. We will respond within the time limits required by law (typically one month).

Where to complain: in the European Economic Area you can find your supervisory authority via the European Data Protection Board (edpb.europa.eu). Examples: Poland – President of the Personal Data Protection Office (UODO). In Israel – the Privacy Protection Authority (PPA).

6. Sharing and international transfers

We do not sell your personal data. Contact form submissions are sent by email to our offices (Israel or Poland, depending on your office selection). Our hosting and email providers process data only to deliver the website and emails; we choose providers that respect confidentiality. We may disclose data where required by law or to protect our rights. Our operations are in Israel, and Poland.

Where we transfer data from the EEA to a country outside it, we rely on legally required safeguards. Israel is recognized by the European Commission as providing an adequate level of data protection; transfers to our Israeli office are made on that basis. For other destinations we use adequacy decisions or appropriate safeguards (e.g. standard contractual clauses) as required by the GDPR.

7. Cookies and third-party resources

We do not set first-party cookies on this website. Language preference is determined by the URL (?lang=) or your browser language, not by a cookie.

Third-party resources

We load fonts from Google Fonts and animation libraries from CDNjs (Cloudflare). These third-party providers may process technical data (like your IP address) as described in their own privacy policies. We do not use analytics, advertising, or social plug-in cookies.

You can control or delete cookies in your browser settings. Blocking third-party cookies may affect how fonts load; the site will remain usable.

8. Security

We rely on our hosting provider's security measures to protect the website. Contact form data is transmitted over the internet and stored in our email systems. We do not request sensitive data (e.g. passwords or payment details) via the contact form; please do not send such information there.

9. Data breach

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the competent supervisory authority without undue delay and, where required by law (e.g. under GDPR Articles 33 and 34), the affected individuals. We do not process data in a way that would typically create high risk to individuals; our main processing is contact form correspondence held in our email systems.

10. Minors

This website and our services are directed at businesses, not minors. We do not knowingly collect personal data from individuals under 16. If you believe we have received such data, please contact us and we will delete it promptly.

11. Changes to this policy

We may update this privacy policy from time to time. The "Last updated" date at the top will be revised when we make material changes. We encourage you to review this page periodically. Where required by law, we will seek your consent or notify you of significant changes.

12. Applicable law

This policy and our processing of personal data are governed by the EU General Data Protection Regulation (GDPR) in respect of data subjects in the European Economic Area, and by the Israeli Protection of Privacy Law, 5741-1981, and regulations thereunder where applicable. We are not required to designate a Data Protection Officer for our current processing activities.

13. Contact

For questions about this privacy policy or to exercise your rights, contact us via the contact form on this website or at the phone numbers and offices listed in the footer.

Let's Talk.