Privacy Policy

Data protection first

INTRODUCTION

This Privacy Policy (“Policy”) describes the manner in which Innovative Digital Transformation LLC, a Delaware limited liability company (“Company”, “IDT”, “IDT LLC”, “we”, “us”, or “our”), may collect, receive, process, store, use, disclose, or otherwise handle certain information relating to identifiable individuals acting in their professional or commercial capacity on behalf of business entities.

This Policy applies to all digital properties, systems, communications, and services owned, operated, or controlled by the Company, including, without limitation, the following domains: i-d-t.com, idt-sales.com, idtcloud.com, idt-solutions.com, inno8dt.com, and innovativedigitaltransformation.com, together with any related subdomains, systems, aliases, or communication infrastructure operated by the Company.

The Company maintains its principal place of business at 8 The Green, Suite A, Dover, Delaware 19901, United States.

Questions or requests regarding this Policy or the Company’s data practices may be directed to data@i-d-t.com.

1. PURPOSE OF DATA PROCESSING

Innovative Digital Transformation LLC is an AWS Advanced Tier Partner and a cloud engineering and consulting provider delivering consultative and hands-on professional services to organizations operating within, migrating to, or optimizing cloud infrastructure environments, including, without limitation, Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), and hybrid or multi-cloud architectures.

The Company provides services including, without limitation, artificial intelligence solutions, data and analytics services, application development and modernization, cloud migration and modernization, DevOps enablement, operational automation, security consulting, regulatory compliance advisory, governance architecture, and managed cloud services.

In the course of conducting legitimate business‑to‑business commercial activities, the Company may process limited professional information relating to individuals acting in their capacity as employees, officers, agents, or representatives of business organizations.

Such processing is undertaken solely for legitimate commercial purposes including, without limitation, identifying potential clients or partners, initiating professional communications, responding to inquiries, evaluating potential service opportunities, and maintaining records relating to professional relationships.

The Company does not provide consumer services and does not knowingly collect or process personal information relating to private individuals acting outside a professional or commercial context.

2. CATEGORIES OF INFORMATION PROCESSED

In connection with legitimate business communications and relationship management activities, the Company may collect, receive, or otherwise process certain categories of professional contact information including, without limitation: first and last name, professional or business email address, telephone number (business or publicly available), job title or professional role, employer or affiliated organization, professional profile links including LinkedIn profiles, company domain or website, industry classification, employee count, revenue indicators, funding indicators, publicly available hiring activity or job postings, publicly available technology infrastructure information, and commercially available indicators relating to technology adoption or organizational purchasing intent.

Such information is limited to professional or business‑related information associated with organizations and their representatives.

The Company applies data minimization principles and limits processing to information reasonably necessary for legitimate business-to-business communication and relationship evaluation.

The Company does not intentionally collect or process sensitive personal information including, without limitation, financial account information, government identification numbers, health information, biometric identifiers, or personal data unrelated to an individual’s professional role.

3. SOURCES OF INFORMATION

The Company may obtain professional contact information from lawful and commercially available sources including, without limitation: publicly accessible corporate or business websites, professional networking platforms including LinkedIn, commercial business data providers such as Apollo.io, technology intelligence platforms including TheirStack, and professional referrals or introductions occurring within normal business activities.

The Company does not knowingly obtain information through unlawful data acquisition methods.

4. PURPOSE OF COMMUNICATIONS

Information processed by the Company may be used for purposes including, without limitation, initiating business discussions relating to cloud services or technology consulting, evaluating potential client engagements, responding to requests for information, identifying potential partnership opportunities, and conducting legitimate professional outreach and business development communications directed toward organizations that may benefit from the Company’s services.

All communications are intended for individuals acting in their professional capacity as representatives of organizations.

5. SYSTEMS AND INFRASTRUCTURE USED

Business contact information may be processed or stored within enterprise systems used for customer relationship management, sales engagement, analytics, and operational coordination including, without limitation, Salesforce CRM, Apollo.io, LinkedIn Sales Navigator, and TheirStack.

Electronic communications may be transmitted through systems including Google Workspace and Salesforce email infrastructure.

6. TRACKING TECHNOLOGIES

Electronic communications transmitted by the Company may incorporate technical engagement monitoring mechanisms including, without limitation, email open‑tracking pixels and link interaction tracking technologies.

Such technologies are used solely for the purpose of evaluating communication effectiveness and improving the relevance of professional outreach activities.

7. WEBSITE ANALYTICS AND VISITOR IDENTIFICATION

The Company’s websites and digital properties may use cookies, analytics tools, and visitor identification technologies to understand website usage and improve service offerings. These technologies may include analytics services, visitor identification platforms, and commercially licensed B2B intelligence tools that associate business domain activity with publicly available company information.

In certain cases, these tools may identify the organization associated with a visiting IP address or business domain. Such technologies do not intentionally identify private individuals and are used solely for legitimate business intelligence.

8. DATA STORAGE AND SECURITY

Business contact information may be stored within enterprise‑grade cloud infrastructure operated by trusted service providers including Salesforce Data Cloud and infrastructure providers operating across Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform environments.

Primary operational storage locations are generally located within the United States, though secure backup or disaster recovery infrastructure may exist in multiple geographic regions.

The Company implements reasonable administrative, technical, and organizational safeguards designed to protect information from unauthorized access, alteration, disclosure, or destruction.

9. DATA SHARING

Information may be processed by trusted service providers engaged by the Company to support legitimate operational activities including CRM platforms, infrastructure providers, analytics platforms, and commercial intelligence services.

Such processing occurs pursuant to contractual arrangements designed to maintain appropriate security and confidentiality safeguards. The Company does not sell personal information to third parties.

10. DATA RETENTION

Business contact information may be retained for so long as reasonably necessary to maintain legitimate commercial relationships or evaluate potential business opportunities.

The Company may retain limited suppression or opt-out records indefinitely for the sole purpose of ensuring that individuals who have requested removal are not contacted again in future communications.

11. PROFESSIONAL OUTREACH DISCLOSURE

The Company conducts professional outreach activities directed toward organizations that may benefit from cloud infrastructure, artificial intelligence, or technology consulting services.

Individuals may receive communications from the Company where their professional contact information is publicly available, provided through business networking platforms, or obtained through commercial business data providers.

Such communications are intended solely for professional or organizational purposes and are relevant to the recipient’s role within their organization.

Recipients who do not wish to receive further communications may request removal at any time using the opt-out mechanism described below.

12. OPT‑OUT RIGHTS

Recipients of Company communications may request to cease receiving communications at any time.

Such requests may be submitted by replying to a communication with statements including “No Thanks”, “Unsubscribe”, or “Not Interested”. The Company will honor such requests and will make commercially reasonable efforts to cease further communications in accordance with applicable law.

13. ACCESS OR DATA REQUESTS

Individuals may submit requests relating to information associated with them by contacting data@i-d-t.com.

The Company will review and address such requests in accordance with applicable legal obligations and commercially reasonable operational practices.

14. CHILDREN’S DATA

The Company’s services, communications, and commercial activities are directed exclusively toward businesses and professionals.

The Company does not knowingly collect, solicit, or process information relating to individuals under the age of sixteen (16).

15. UNITED STATES COMMERCIAL EMAIL COMPLIANCE (CAN-SPAM ACT)

The Company conducts electronic communications in accordance with the Controlling the Assault of Non‑Solicited Pornography and Marketing Act of 2003 (“CAN‑SPAM Act”), 15 U.S.C. §§7701–7713. The Company complies with the requirements set forth in 15 U.S.C. §7704, including accurate header information, non‑deceptive subject lines, identification of commercial electronic messages, and the maintenance of a functioning opt‑out mechanism. Opt‑out requests will be honored within ten (10) business days in accordance with 15 U.S.C. §7704(a)(5).

16. CALIFORNIA PRIVACY RIGHTS (CCPA / CPRA)

Residents of the State of California may have certain rights under the California Consumer Privacy Act (“CCPA”), as amended by the California Privacy Rights Act (“CPRA”). Subject to applicable limitations and identity verification requirements, California residents may request disclosure of categories of personal information collected, sources of such information, purposes for processing, and categories of third parties with whom such information may be shared, as well as request deletion or correction of certain personal information. The Company does not sell personal information as defined under the CCPA or CPRA.

17. CALIFORNIA COMMERCIAL EMAIL COMPLIANCE

The Company conducts electronic communications in accordance with California Business and Professions Code §17529.5 governing commercial electronic mail. The Company does not knowingly transmit commercial email messages that contain materially misleading header information, materially deceptive subject lines, or that obscure the origin of the sender.

18. EUROPEAN ECONOMIC AREA AND UNITED KINGDOM (GDPR)

Where information relating to individuals located within the European Economic Area or the United Kingdom is processed, the Company relies on legitimate interests pursuant to Article 6(1)(f) of the General Data Protection Regulation (“GDPR”). A legitimate interest balancing assessment has been conducted to ensure such processing does not override the rights and freedoms of individuals. Individuals have the right to object to processing of personal data for direct outreach purposes pursuant to Article 21 of the GDPR.

For purposes of applicable data protection laws, including the General Data Protection Regulation (GDPR), Innovative Digital Transformation LLC acts as the Data Controller with respect to personal data processed in connection with its outreach and commercial relationship management activities.

Individuals located in the European Economic Area or the United Kingdom may also have the right to request access to personal data held about them, request correction of inaccurate information, request deletion of personal data where appropriate, or request restriction of certain processing activities. Requests may be submitted using the contact information provided in this Policy.

Individuals located in the European Economic Area or the United Kingdom have the right to object at any time to the processing of their personal data for direct marketing purposes, and upon such objection we will cease processing their data for these purposes.

19. INTERNATIONAL DATA TRANSFERS

Information processed by the Company may be transferred to or stored in jurisdictions outside the country in which an individual resides, including the United States. The Company relies on reasonable contractual, organizational, and technical safeguards designed to ensure appropriate protection of such information.

20. CANADIAN PRIVACY LAW (PIPEDA)

Where information relating to individuals located in Canada is processed, the Company conducts such processing in accordance with applicable Canadian privacy legislation, including the Personal Information Protection and Electronic Documents Act (PIPEDA). Individuals may request access to information associated with them or request correction of inaccurate information by contacting data@i-d-t.com. We do not intentionally target commercial outreach to individuals located in the Province of Quebec, Canada.

21. CANADIAN ANTI‑SPAM LAW (CASL)

Commercial outreach communications are conducted in accordance with Canada’s Anti-Spam Legislation (“CASL”), S.C. 2010, c. 23. The Company may communicate with individuals in their professional capacity where contact information has been publicly published in a business context and where the communication is relevant to the recipient’s professional role. We do not intentionally target commercial outreach to individuals located in the Province of Quebec, Canada.

Company communications include clear identification of the sender, the Company’s mailing address, and a functional unsubscribe= or opt-out mechanism allowing recipients to withdraw from further communications in accordance with CASL requirements.

22. POLICY UPDATES

The Company reserves the right to update or modify this Policy from time to time to reflect operational, legal, regulatory, or technological developments.

Updated versions will be published on the Company’s website together with a revised effective date. Continued interaction with Company services following publication of such updates constitutes acceptance of the revised Policy.

This Policy shall be governed by and interpreted in accordance with the laws of the State of Delaware, United States, without regard to conflict of law principles.