Privacy Policy

1. Controller details

This website is operated by INBAL AMIRI. For privacy requests, contact us via the contact page or by email at contact@inbal-amiri.com.

2. Information we collect

Depending on how you use the site, we may collect:

• Contact data: name, email, phone, and message content submitted through forms.
• Technical data: IP address, browser type, device information, pages visited, and referral source.
• Marketing attribution data: UTM parameters and landing-page details used for campaign analytics.
• Newsletter data: email address and subscription status if you subscribe.

3. Cookies and similar technologies

We use cookies and local storage to keep the website secure and functional, remember consent preferences, and support analytics and campaign attribution. Cookie categories may include:

You can clear cookies in your browser at any time. Some website functionality may be reduced after clearing strictly necessary cookies.

• Strictly necessary cookies: security, session, and CSRF protection.
• Functional cookies: remembering form and interface preferences.
• Analytics cookies: measuring usage patterns and page performance.

4. Legal bases for processing

We process personal data based on one or more of the following legal bases, as applicable in your jurisdiction:

• Consent, for optional cookies and newsletter subscriptions.
• Legitimate interests, such as site security, fraud prevention, and service improvement.
• Contractual necessity, such as responding to inquiries related to purchases or commissioned work.
• Legal obligations, including record-keeping and lawful requests by authorities.

5. How we use data

Data is used to:

• Respond to messages and provide customer support.
• Operate, secure, and improve the website.
• Analyze campaign and traffic performance.
• Send requested communications, including newsletter updates where subscribed.

6. Data sharing and processors

We do not sell personal information. Data may be shared with trusted service providers only when needed to operate the site, for example hosting, email delivery, analytics, and payment processing. These providers process data under confidentiality and data-protection obligations.

7. Data retention

We keep data only as long as necessary for the purpose it was collected, or as required by law. Contact messages, analytics records, and newsletter records are periodically reviewed and deleted when no longer needed.

8. Security measures

We apply technical and organizational safeguards including HTTPS, CSRF protections, restricted admin access, rate limits, and logging for critical actions. No internet transmission is fully risk-free, but we continuously improve controls.

9. Your rights

Subject to local law, you may have rights to access, correct, delete, restrict, or object to processing of your personal data, and to withdraw consent where processing is consent-based. To exercise rights, contact us using the details above.

10. International transfers

If service providers process data outside your country, we seek to apply appropriate safeguards required under applicable law.

11. Privacy of children

This site is not directed at children under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided personal data, please contact us so we can remove it.

12. Updates to this policy

We may update this policy from time to time. Material changes will be reflected on this page with an updated revision date.