Privacy policy

Summary

We collect only the information you give us — name, email, role, and the message you submit. We use it to reply to your enquiry, send the newsletter if you subscribed, and improve our editorial. We never sell your data, and we never share it with third parties for marketing purposes.

This document explains everything in detail. The summary above is the part most readers actually need.

Who we are

Business Infomatics is a B2B editorial publication operated by Magrofy. Our website is businessinfomatics.com. For questions about this policy or your data, contact us at editor@businessinfomatics.com or via our contact page.

What we collect

We collect three categories of information:

Information you give us directly

• Your name (first and last) when you submit a form.
• Your work email address when you contact us, subscribe, or download a resource.
• Your role, company, and country when those fields are part of a form you submit.
• Phone number, only when relevant to a specific resource form.
• The contents of any message or enquiry you send us.

Information we collect automatically

• IP address (used for rough geo-routing and to mitigate abuse).
• Browser user-agent (used for browser compatibility diagnostics).
• Referring page (so we know which campaigns drive traffic).
• Anonymised page-view data for our internal analytics.

Cookies and local storage

• A theme preference (light/dark) stored in your browser's local storage.
• A small number of recent searches stored locally so the search box can suggest them back to you. None of this is sent to us.
• An authentication cookie if you have an editor or admin account.

How we use your information

We use your information for these specific purposes:

• To reply to your enquiry. When you submit a contact, partnership, or resource form, we use your details to respond.
• To deliver the newsletter, if you have subscribed.
• To send relevant editorial content tied to a resource you specifically asked for.
• To improve our editorial by understanding which topics are read most.
• To prevent abuse, spam, and fraudulent submissions.
• To meet our legal obligations when required by law.

We do not run programmatic advertising, we do not sell your data, and we do not share it with third parties for their marketing.

Legal basis (UK / EU readers)

If you are reading from the UK or EU, our legal basis under GDPR is:

• Consent — when you opt in to the newsletter or tick the “I agree to be contacted” box on the contact form.
• Legitimate interest — when we use minimal log data to keep the site secure and operational.
• Contract — when you have an editor or admin account with us.
• Legal obligation — when we have to retain data to meet a legal requirement.

Who we share data with

We share data with a small number of trusted service providers, purely for the technical operation of the site:

• MongoDB Atlas — encrypted database hosting for content and lead submissions.
• Vercel — application hosting and content delivery.
• Resend — transactional email delivery (lead notifications and newsletter).
• Google reCAPTCHA / form-spam services — only where used, to mitigate automated submissions.

Each provider is bound by a data-processing agreement. They process data on our behalf only and may not use it for their own purposes.

We may disclose data when legally required (court order, regulator request, fraud investigation), or as part of a corporate transaction such as a merger or acquisition (in which case, you will be notified and offered the right to object).

How long we keep your data

• Newsletter subscribers — until you unsubscribe.
• Contact and partnership enquiries — up to 24 months after the last interaction, then deleted unless you become an active commercial contact.
• Resource downloads — up to 24 months, then deleted.
• Authentication / staff accounts — for the lifetime of the account, deleted within 30 days of account closure.
• Server logs — typically 30 days.

You can request earlier deletion at any time. See “Your rights” below.

Your rights

Wherever you are based, you have the right to:

• Ask what data we hold about you (a “subject access request”).
• Ask us to correct or update your data.
• Ask us to delete your data.
• Ask us to stop sending you the newsletter or any communications.
• Ask us to export your data in a portable format.
• Object to specific uses of your data.
• Withdraw consent at any time, where consent is the legal basis.

Email editor@businessinfomatics.com from the email address we have on file. We will respond within 30 days. UK / EU readers can also lodge a complaint with your local supervisory authority.

Security

We host the site on encrypted infrastructure, transmit all data over HTTPS, store passwords using industry-standard hashing, and follow principle-of-least-privilege for staff access.

That said, no system is perfectly secure. If a data incident affects your information we will notify you within 72 hours of becoming aware, consistent with GDPR breach-notification timelines.

International transfers

Our service providers may process data outside your home country (typically in the EU, UK, or US). Each provider has appropriate safeguards in place — Standard Contractual Clauses, the EU-US Data Privacy Framework, or equivalent — to protect your data when it crosses borders.

Children

Business Infomatics is not directed at children under 16, and we do not knowingly collect data from anyone under that age. If you believe a child has submitted personal data to us, contact us and we will delete it promptly.

Changes to this policy

If we materially change how we handle your data, we will update this page and, where appropriate, notify you by email. The “Last updated” date at the top of the page is the source of truth.

Contact us

Questions, requests, or concerns about your data: info@businessinfomatics.com or use our contact page. We aim to reply within one business day.