MD Strategy Group ("we," "us," or "our") values your privacy and is committed to protecting your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you visit our website www.md-strategy-group.com (the "Site") and interact with us. By using the Site, you agree to the collection and use of information in accordance with this Privacy Policy.
1. Information We Collect
We collect the following types of information:
- Personal Information: Information you provide to us directly, such as through contact forms, newsletter sign-ups, or inquiries. This may include your name, email address, company name, job title, phone number, and any other information you choose to provide.
- Server Log Data: When you visit the Site, our hosting provider automatically processes standard technical data such as your IP address and browser type in server logs, solely to deliver the website securely and reliably. We do not use this data to identify, profile, or track individual visitors, and we do not combine it with other data.
- Cookies & Analytics: This website uses Google Analytics 4, a web-analytics service provided by Google, to understand how visitors use the Site on an aggregated, anonymous basis. Analytics cookies are only set after you actively consent via the cookie banner shown on your first visit. Until you consent, no analytics cookies are stored and no analytics data is collected — analytics storage is denied by default through Google Consent Mode v2. You may decline, and you can change your choice at any time by clearing your browser storage for this site. We do not use any advertising or cross-site tracking technologies.
2. How We Use Your Information
- To provide and improve our services, including responding to inquiries and supporting business development efforts.
- To send you newsletters, promotional materials, and other information you may be interested in, based on your preferences.
- To maintain and improve the content and structure of the Site.
- To ensure the security and proper functioning of the Site.
Legal basis & retention (enquiries): When you submit an enquiry through our contact or sourcing form, we process the data you provide (such as your name, company, email, phone, and the details and technical specifications of your enquiry) to respond and to prepare a non-binding offer. The legal basis is the performance of pre-contractual measures at your request (Art. 6(1)(b) GDPR) and our legitimate interest in handling business enquiries (Art. 6(1)(f) GDPR). We keep enquiry data only as long as needed to handle your request and for a reasonable period thereafter, and then delete it. Enquiry submissions are handled through our hosting provider, Netlify.
3. Data Sharing and Disclosure
We do not sell or rent your personal data to third parties. However, we may share your data in the following situations:
- Service Providers: We rely on trusted service providers to operate the Site — our hosting provider (Netlify, which also processes and temporarily stores the submissions from our contact and sourcing forms), our web-font provider (Bunny Fonts, an EU-based service), and, subject to your consent, Google Analytics (Google Ireland Limited) for website analytics. These providers process technical data such as IP addresses only to the extent necessary to deliver and measure the website, and are contractually obligated to protect it. Google may process data on servers outside the EEA under appropriate safeguards such as the EU–US Data Privacy Framework and Standard Contractual Clauses.
- Sourcing enquiries & suppliers: To prepare a sourcing offer, we may share the technical details of your enquiry (for example the component specification and volumes) with qualified suppliers or partners in our network. We do not transfer your personal contact details to suppliers outside the EEA for this purpose. Detailed or confidential technical documents (e.g. drawings) are only shared after a mutual non-disclosure agreement (NDA) is in place.
- Legal Requirements: We may disclose your information if required by law or to comply with legal processes, such as responding to court orders or regulatory investigations.
4. Data Security
We implement appropriate technical and organisational measures to protect your personal information from unauthorised access, disclosure, alteration, or destruction. However, no method of transmission over the internet or electronic storage is 100% secure.
5. Your Data Protection Rights
Under applicable data protection laws, you have the right to:
- Access: Request a copy of your personal information that we hold.
- Correction: Request the correction of any inaccurate or incomplete data.
- Deletion: Request the deletion of your personal data, subject to certain conditions.
- Opt-out: Opt out of receiving marketing communications at any time by contacting us directly.
To exercise these rights, please contact us at peter@md-sg.com.
6. International Transfers
If you are located outside the European Economic Area (EEA), your information may be transferred to and processed in countries that do not have the same data protection laws as your country. By using the Site, you consent to the transfer of your data as described in this Privacy Policy.
7. Third-Party Links
The Site may contain links to other websites that are not operated by us. We are not responsible for the privacy practices or the content of third-party websites. We encourage you to review their privacy policies before providing any personal information.
8. Children's Privacy
The Site is not intended for use by children under the age of 16. We do not knowingly collect personal information from children.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any updates.
10. Contact
MD Strategy GmbH
Mariatrosterstrasse 18/2 · 8043 Graz · Austria · FN 661466 w
peter@md-sg.com · +43 664 8842 1434