Effective Date: March 18, 2024
1. Our Commitment to Data Protection and Compliance
Matrix Agency is committed to processing personal data in a lawful, fair, and transparent manner in compliance with applicable data protection laws, including:
- General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA) and United Kingdom (UK).
- California Consumer Privacy Act (CCPA) for users in California, USA.
- Other relevant data protection laws applicable in the jurisdictions where we operate.
We ensure that:
- Personal data is processed fairly, lawfully, and transparently.
- Data collection is limited to what is necessary for the intended purposes.
- Personal data is kept secure and protected from unauthorized access or disclosure.
- Data subjects' rights are respected and upheld.
2. Information We Collect
We may collect and process the following types of information:
2.1. Information You Provide to Us
- Contact details (e.g., name, email address, phone number).
- Business-related information (e.g., company name, job title).
- Communications with us (e.g., inquiries, customer support interactions).
2.2. Information Collected Automatically
When you visit our Website, we may automatically collect certain information, including:
- Usage data: IP address, browser type, pages visited, and other analytics.
- Cookies and tracking technologies: We use cookies and similar technologies to enhance your experience and analyze website usage.
2.3. Information We Receive from Third Parties
We process Platform Data received from advertising service providers, such as Meta, TikTok, and Google, including:
- Advertising and analytics data (e.g., ad engagement, conversion tracking).
- User interactions and preferences based on advertising campaigns.- Aggregated or anonymized data shared by our clients.
3. Limitation of Liability for Employees and Contractors
Matrix Agency takes appropriate security and compliance measures but limits liability for:
- Unauthorized actions of employees, contractors, or service providers beyond their official duties.
- Data breaches caused by external threats or third-party mismanagement.
- Clients’ misuse of data outside our agreed terms.
We enforce strict internal security policies and require all employees and contractors to complete data protection training.
4. Legal Basis for Processing (GDPR Compliance)
Our legitimate interests include:
- Providing and improving our services.
- Conducting marketing and advertising analytics.
- Detecting and preventing fraud and security threats.
For individuals in the EEA and UK, we process personal data under the following legal bases in accordance with GDPR:
- Performance of a contract – When processing is necessary to fulfill our contractual obligations.
- Legitimate interests – When processing is necessary for business operations, without overriding user rights.
- Consent – When legally required, such as for cookies or certain marketing activities.
- Compliance with legal obligations – When required to meet regulatory requirements.
5. International Data Transfers
Your personal data may be transferred outside the EEA/UK. We ensure that:
- Standard Contractual Clauses (SCCs) or other legal safeguards are in place.
- We apply encryption, pseudonymization, and access controls for security.
For details, contact to contact@mtrx.agency.6. Data Retention
We retain data only as long as necessary for:
- Business operations and contractual agreements.
- Compliance with legal obligations.
7. Your Rights Under GDPR
If you are in the EEA or UK, you have the right to:
- Access, rectify, or delete your personal data.
- Restrict or object to data processing.
- Withdraw consent at any time.
- Request data portability in a structured format.
To exercise your rights, contact to contact@mtrx.agency.
8. Government and Law Enforcement Requests
Where permitted by law, we will **challenge and resist** any overbroad or unlawful requests from government authorities that seek access to personal data without sufficient legal justification.
Matrix Agency will only provide personal data to government authorities when:
- Legally required via a subpoena or court order.
- Necessary to comply with applicable laws.
We will notify affected individuals where legally permitted before disclosing any information.
9. Data Breach Notification Policy
In case of a data breach, we will:
- Investigate and take corrective action.
- Notify affected users if there is a risk to their rights.
- Inform regulatory authorities as required by GDPR and other laws.
10. Data Controller vs. Data Processor
Matrix Agency may act as either a:
- Data Controller – for data collected through our website and direct interactions.- Data Processor – when processing data on behalf of clients in line with contractual agreements.
We comply with GDPR and contractual obligations in both roles.
11. Use of Subprocessors
We currently work with the following Subprocessors for data processing:
- **Google BigQuery** (data storage and analytics) – Canada
- **Airbyte** (data integration and processing) – Netherlands
- **Amazon AWS** (cloud storage and hosting) – United States
This list may be updated periodically.
We engage third-party service providers (Subprocessors) for data
processing. These Subprocessors:- Have appropriate security measures in place.
- Comply with GDPR and data protection laws.
- Have signed a Data Processing Agreement (DPA) with us.
A list of our Subprocessors is available upon request.
12. Security Measures
We also ensure that our **subprocessors and contractors** follow industry security standards, including:
- Encryption of data at rest and in transit.
- Multi-factor authentication (MFA) for access control.
- Regular employee security training and awareness programs.
We implement:
- Encryption of sensitive data.
- Access control mechanisms to prevent unauthorized access.
- Regular security audits and updates.
However, no system is 100% secure.
13. Cookies and Tracking Technologies
We use cookies to:
- Improve user experience.- Analyze website traffic.
- Deliver personalized advertising.
Users in the EEA/UK will be presented with a cookie consent banner to manage preferences.
14. Third-Party Links
We are not responsible for the privacy practices of third-party websites
linked from our Website. We recommend reviewing their privacy policies before providing any personal data.
Our Website may contain links to third-party sites. We are not responsible for their privacy policies.
15. Disclaimer and Limitation of Liability
Matrix Agency disclaims liability for:
- Unauthorized access or data breaches caused by third parties.
- Errors, omissions, or delays caused by service providers.
- Client misuse of advertising data outside agreed terms.
To the fullest extent permitted by law, Matrix Agency is not liable for indirect or consequential damages.
16. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The updated version will be posted with a revised "Effective Date."
17. Contact Us
For privacy-related inquiries, contact us at:
Matrix Agency Limited Liability Company
571 S Washington, Afton, Wyoming 83110
Email: contact@mtrx.agency
