Privacy Policy

Last updated: June 2026 | Effective for all visitors and clients worldwide

1. Overview

Fakto Satori LLC ("We," "Us," "Our," or "Company") is committed to protecting your privacy and ensuring transparent data handling practices. This Privacy Policy explains what personal data we collect, how we use it, your rights, and how you can contact us regarding your data.

This policy applies to all visitors of our website (faktosatori.com) and all clients engaging Fakto Satori LLC for consulting services, regardless of location. For EU residents, we comply with the General Data Protection Regulation (GDPR). For California residents, we comply with the California Consumer Privacy Act (CCPA) and related laws.

2. Data Controller & Jurisdiction

Controller Name: Fakto Satori LLC
Entity Location: Wyoming, United States
Contact Email: d.piontek@faktosatori.com
Responsible Person: Dennis Piontek

Fakto Satori LLC is the data controller for personal data collected through this website and consulting engagements. International data transfers comply with applicable law, including Standard Contractual Clauses for EU–US transfers.

3. What Personal Data We Collect

3.1 Website Visitors

When you visit our website, we may automatically collect:

Technical data: IP address, browser type, operating system, pages visited, time and date
Device data: Device type, screen resolution, referrer URL

We do not use cookies, tracking pixels, or third-party analytics services. No personal identification (name, email, phone) is collected via the website unless you contact us.

3.2 Contact Form & Email Inquiries

If you send an email or contact us through the website, we collect:

Your email address
Your name (if provided)
Company name (if provided)
Content of your message
Date and time of contact

3.3 Consulting Engagements

If you enter into a consulting engagement with Fakto Satori LLC, we collect data necessary to deliver services, including:

Business contact information (name, email, phone, company)
Project-related data (requirements, specifications, deliverables)
Financial information (for invoicing and payment processing)
System access credentials (for client environments, if applicable)
Communications (emails, meeting notes, feedback)

All such data is handled under the terms of your executed Statement of Work (SOW) and subject to confidentiality obligations.

4. How We Use Your Data

We use personal data only for legitimate purposes:

Service delivery: To provide consulting services as requested
Communication: To respond to inquiries and maintain contact
Legal compliance: To meet tax and regulatory obligations (US, Wyoming, international)
Security: To protect against fraud, abuse, or unauthorized access
Improvements: To understand how the website is used (anonymized, non-tracking)
Contract performance: To perform obligations under a consulting agreement

We do not sell, trade, or rent your personal data to third parties. We do not use your data for marketing or promotional purposes without explicit consent.

5. Legal Basis for Processing (GDPR)

For EU residents, we process personal data only under these lawful bases:

Contract: Processing necessary to perform a consulting agreement (Article 6(1)(b) GDPR)
Consent: When you explicitly consent to contact or data use (Article 6(1)(a) GDPR)
Legal obligation: To comply with tax, accounting, or regulatory requirements (Article 6(1)(c) GDPR)
Legitimate interest: To respond to inquiries and maintain business security (Article 6(1)(f) GDPR)

We do not process special categories of data (race, ethnicity, health, sexual orientation, etc.) unless explicitly required by a consulting engagement and subject to strict safeguards.

6. Data Sharing & Third Parties

We minimise sharing of personal data. We may disclose data only:

Service providers: To payment processors, email providers, or cloud storage (under data processing agreements)
Legal requirements: If required by law, court order, or regulatory authority
Client environments: As necessary to deliver consulting services within a client's IT systems (under SOW confidentiality terms)
Successor entity: In the event of merger or acquisition (with notice to affected parties)

All third-party service providers are subject to confidentiality agreements and are instructed to process data only for specified purposes.

7. International Data Transfers

Fakto Satori LLC is based in Wyoming (USA) and may process data in the United States. If you are an EU resident, your data may be transferred to the US, which the European Commission has not deemed to have adequate data protection.

To ensure adequate safeguards, we rely on Standard Contractual Clauses (SCCs) as approved by the European Commission and maintain compliance with GDPR Chapter 5 (Articles 44–50). You may request a copy of our data transfer agreements by contacting us.

8. Data Retention

We retain personal data only as long as necessary:

Website visitors: Technical logs are retained for 30 days
Email inquiries: Retained for 3 years or as required by law
Consulting engagements: Retained per our record-keeping obligations and client agreement (typically 3–7 years)
Financial data: Retained per tax and accounting requirements (7 years)

Upon expiration of retention periods, data is securely deleted or anonymised. You may request deletion of your data, subject to legal and contractual obligations.

9. Your Rights

9.1 General Rights (All Jurisdictions)

You have the right to:

Access your personal data held by us
Request correction of inaccurate data
Request deletion of your data (subject to legal obligations)
Withdraw consent at any time (for consent-based processing)
Request information about our data practices

9.2 Additional GDPR Rights (EU Residents)

If you are an EU resident, you additionally have the right to:

Portability: Receive a copy of your data in a portable format (Article 20 GDPR)
Objection: Object to processing based on legitimate interests (Article 21 GDPR)
Restriction: Request restriction of processing in certain circumstances (Article 18 GDPR)
Complaint: Lodge a complaint with your local data protection authority (e.g., your country's DPA)

9.3 CCPA Rights (California Residents)

If you are a California resident, you have the right to:

Know: Know what personal information is collected, used, and shared
Delete: Request deletion of personal information (subject to exceptions)
Opt-out: Opt out of "sale" of personal information (we do not sell data)
Non-discrimination: Receive non-discriminatory service for exercising your rights
Verification: Verify our data practices upon request

10. Data Security

We maintain reasonable organisational and technical safeguards to protect personal data against unauthorised access, alteration, disclosure, or destruction:

Encrypted communications (HTTPS/TLS for website)
Secure storage of data (encrypted databases, access controls)
Restricted employee access (need-to-know basis only)
Regular security audits and updates
Data processing agreements with all service providers

However, no security is absolute. While we implement industry-standard protections, we cannot guarantee complete security against all threats.

11. Cookies & Tracking

Our website does not use cookies, tracking pixels, or third-party analytics. We do not track your behaviour across the web or use targeted advertising. No browser storage or local tracking mechanisms are employed.

Your web browser may store basic technical information (IP, user-agent, referrer) in server logs for legitimate security and operational purposes only.

12. Third-Party Links

Our website may link to external websites. We are not responsible for the privacy practices of third-party sites. Please review their privacy policies before providing information.

13. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from minors. If we discover that a minor has provided data, we will delete it promptly. Parents or guardians concerned about a child's data may contact us immediately.

14. How to Exercise Your Rights

To access, correct, delete, or exercise any other right regarding your personal data:

Email: d.piontek@faktosatori.com
Subject Line: "Data Request: [Your Name]"
Response Time: We will respond within 30 days (or as required by law)

Please include as much detail as possible about your request so we can identify your data. You may be asked to verify your identity before we process the request.

15. EU Data Protection Authority

If you are an EU resident and have concerns about our data practices, you have the right to lodge a complaint with your local Data Protection Authority (DPA). A list of EU DPAs can be found at: European Data Protection Board

16. Changes to This Policy

We may update this Privacy Policy from time to time to reflect legal changes, operational updates, or other developments. Material changes will be notified via email (for clients) or a prominent notice on our website (for visitors). Continued use of our website or services constitutes acceptance of the updated policy.

17. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal data:

Email: d.piontek@faktosatori.com
Response Time: Within 24 hours (business days)

Effective Date: June 2026
For more information about Fakto Satori LLC, see our Legal Notice.