The Bite-Sized Productivity Blog The BSP Blog

Privacy Policy

Current

1. Introduction

This Privacy Policy describes how we collect, use, disclose, and safeguard your personal information when you visit our website and use our services. This policy is designed to comply with the General Data Protection Regulation (GDPR) and the Personal Data Protection Act (PDPA).

By using our services, you consent to the data practices described in this policy.

2. Information We Collect

Personal Data

We may collect the following types of personal information:

  • Name and contact information (email address)
  • Usage data and analytics (pages visited, time spent, interactions)
  • Device information (IP address, browser type, operating system)

Legal Basis for Processing (GDPR)

We process your personal data under the following legal bases:

  • Consent: You have given explicit consent for processing your personal data
  • Legitimate Interests: Processing is necessary for our legitimate business interests
  • Legal Obligation: Processing is necessary to comply with legal requirements

3. How We Use Your Information

We use your personal information for the following purposes:

  • To provide and maintain our services
  • To improve and personalize user experience
  • To communicate with you about updates and service changes
  • To analyze usage patterns and optimize our website
  • To comply with legal obligations
  • To protect against fraud and unauthorized access

We will not use your personal data for purposes other than those described without obtaining your explicit consent.

4. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties.

We may share your information only in the following circumstances:

  • Service Providers: With trusted third-party service providers who assist in operating our website (e.g., hosting, analytics)
  • Legal Requirements: When required by law or to protect our legal rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly authorize us to share your information

All third-party service providers are contractually obligated to maintain data confidentiality and security.

5. Your Rights (GDPR & PDPA)

Under GDPR and PDPA, you have the following rights regarding your personal data:

  • Right to Access: Request a copy of your personal data we hold
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restriction: Request restriction of processing your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing of your personal data
  • Right to Withdraw Consent: Withdraw consent at any time without affecting lawful processing

To exercise any of these rights, please contact us using the contact information provided at the end of this policy.

6. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

Security measures include:

  • Encryption of data in transit (SSL/TLS)
  • Secure hosting infrastructure
  • Regular security assessments
  • Access controls and authentication
  • Employee training on data protection

However, no method of transmission over the internet is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

Retention periods vary depending on:

  • The nature of the data collected
  • Legal and regulatory requirements
  • Business and operational needs

When personal data is no longer needed, we will securely delete or anonymize it.

8. International Data Transfers

Your personal data may be transferred to and processed in countries outside your country of residence. When we transfer data internationally, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequate data protection agreements with service providers
  • Compliance with GDPR and PDPA requirements

We ensure that any international transfers comply with applicable data protection laws.

9. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16.

If you believe we have collected information from a child under 16, please contact us immediately, and we will take steps to delete such information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements.

When we make material changes:

  • We will update the "Effective Date" at the top of this policy
  • We will notify you via email or prominent notice on our website
  • The updated policy will be available in our version history

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

11. Contact Information

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:

Contact Information

Email: admin@atomi.cloud Data Protection Officer: ernest@atomi.cloud

We will respond to your request within 30 days as required by law.