1. Introduction

SohoWizz Technology Solutions, LLC (“SohoWizz,” “we,” “our,” or “us”) is committed to protecting your privacy and safeguarding personal information in accordance with applicable data protection laws, including GDPR, CPRA/CCPA, and Bermuda PIPA.

This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website or engage our services.

2. Information We Collect

We may collect the following categories of information:

A. Information You Provide

• Name

• Company name

• Email address

• Phone number

• Business details submitted through booking or contact forms

• Support inquiries

B. Automatically Collected Information

• IP address

• Browser type and device information

• Pages visited and time spent

• Cookies and tracking technologies

C. AI Interaction Data

If you interact with our AI chat or booking tools, we may collect conversation data for service delivery, quality assurance, and security monitoring.

3. How We Use Your Information

We use personal information to:

• Schedule and conduct Cyber Risk Reviews

• Respond to inquiries and support requests

• Improve website performance and user experience

• Maintain compliance and security monitoring

• Send service-related communications

• Fulfill legal and regulatory obligations

We do not sell personal data.

4. Legal Basis for Processing (GDPR)

Where applicable, we process personal data based on:

• Consent

• Contractual necessity

• Legitimate business interests

• Legal compliance obligations

5. Cookies & Tracking

Our website uses cookies for:

• Performance and analytics

• Security

• Consent management

• Functional website operations

Users may manage cookie preferences through our cookie banner and settings panel.

6. Data Sharing

We may share data with trusted third-party service providers, including:

• CRM and booking platforms

• Website hosting providers

• Security monitoring services

• Compliance tools

All vendors are required to maintain appropriate security safeguards.

We do not sell personal information to third parties.

7. Data Retention

We retain personal data only as long as necessary to:

• Provide services

• Meet regulatory requirements

• Maintain security records

Retention periods vary depending on the nature of the data.

8. Your Privacy Rights

Depending on your jurisdiction, you may have the right to:

• Access your personal data

• Correct inaccurate information

• Request deletion

• Restrict or object to processing

• Request data portability

9. Data Security

We implement administrative, technical, and organizational safeguards to protect personal information from unauthorized access, disclosure, or misuse.

10. International Transfers

If data is transferred across jurisdictions, we ensure appropriate safeguards are in place consistent with applicable data protection laws.

11. Updates to This Policy

We may update this Privacy Policy periodically. The revised version will be posted with an updated effective date.