Privacy Policy
1. Introduction
1.1. This Privacy Policy describes how Meridian Ops ("Controller", "we", "us") collects, uses, stores, and protects personal data of individuals ("Data Subjects", "Users") who provide their data through the website meridianops.eu ("Website").
1.2. This Policy has been prepared in accordance with Regulation (EU) 2016/679 (GDPR); Federal Law of the Russian Federation No. 152-FZ of 27 July 2006 "On Personal Data" (where applicable); and other applicable data protection legislation.
1.3. By using the Website and/or providing personal data through any forms on the Website, the User acknowledges that they have read this Policy.
1.4. The Controller reserves the right to amend this Policy. The current version is always available on the Website.
2. Controller
| Name | Meridian Ops |
| Controller's full name | Doksov Georgii Dmitrievich |
| Status | Natural person (self-employed registration in progress) |
| Country | Belgium |
| Address | Brussels, Belgium |
| General contact | info@meridianops.eu |
| Privacy contact | privacy@meridianops.eu |
3. Categories of Personal Data Processed
3.1. Data provided directly by the User
Contact data (name, email, phone), company/project information, quiz/questionnaire responses, ROI calculator data, content of inquiries, and communication preferences — collected via forms, email, and booking tools.
3.2. Data collected automatically
Technical data (IP address, browser type, OS, screen resolution), website usage data (pages visited, session duration, referral source), and cookie data. See our Cookie Policy.
3.3. Special categories of data
The Controller does not intentionally collect special categories of personal data. If such data is inadvertently provided, the Controller will take reasonable steps to delete it.
4. Purposes of Processing
| Purpose | Legal basis (GDPR) |
|---|---|
| Processing service inquiries and responding to requests | Consent (Art. 6(1)(a)); pre-contractual measures (Art. 6(1)(b)) |
| Conducting quiz/questionnaire to assess needs | Consent (Art. 6(1)(a)) |
| ROI calculation and personalised results | Consent (Art. 6(1)(a)) |
| Organising calls | Consent (Art. 6(1)(a)); pre-contractual measures (Art. 6(1)(b)) |
| Communication regarding inquiries | Legitimate interest (Art. 6(1)(f)) |
| Improving the Website | Legitimate interest (Art. 6(1)(f)); cookie consent where required |
| Ensuring security and technical operability | Legitimate interest (Art. 6(1)(f)) |
| Compliance with legal obligations | Legal obligation (Art. 6(1)(c)) |
5. Recipients and Processors
| Processor | Purpose | Location |
|---|---|---|
| Notion Labs, Inc. | Lead and task management | USA |
| Google Workspace | Business correspondence | Global (EU/US) |
| Hetzner Online GmbH | Website hosting | Germany / Finland |
| Cloudflare, Inc. | Privacy-first website analytics | Global |
The Controller does not sell or share personal data with third parties for commercial purposes unrelated to Meridian Ops services.
6. Cross-Border Data Transfers
Personal data may be transferred outside the EEA. The Controller ensures appropriate safeguards are in place, including adequacy decisions, Standard Contractual Clauses (SCCs), or the EU-U.S. Data Privacy Framework.
7. Data Retention Periods
| Data category | Retention period |
|---|---|
| Inquiry data (no contract) | 12 months from last contact |
| Quiz / questionnaire / ROI data | 12 months from submission |
| Correspondence | 24 months from last message |
| Technical logs | 90 days |
| Cookie data | See Cookie Policy |
| Consent records | 36 months after last action or until withdrawal + 12 months |
8. Data Security Measures
The Controller implements appropriate measures including HTTPS/TLS, access restriction, strong passwords and MFA, regular access reviews, and selection of processors with adequate data protection.
9. Data Subject Rights
Under the GDPR, Data Subjects have the right to: access (Art. 15), rectification (Art. 16), erasure (Art. 17), restriction (Art. 18), data portability (Art. 20), objection (Art. 21), protection from automated decision-making (Art. 22), and withdrawal of consent (Art. 7(3)).
10. How to Submit a Request
To exercise your rights, contact privacy@meridianops.eu. Please include your name, email used on the Website, and a description of the requested action. We will respond within 30 days.
11. Withdrawal of Consent
Send a request to privacy@meridianops.eu with "Withdrawal of consent" in the subject line. Withdrawal does not affect the lawfulness of prior processing.
12. Complaints
EEA: Autorité de protection des données (APD/GBA), Rue de la Presse 35, 1000 Bruxelles, Belgium. Russia: Roskomnadzor, Moscow. Data Subjects may also lodge a complaint with their local supervisory authority.
13. Cookies
See our Cookie Policy.
14. Children
The Website is not intended for persons under 16. We do not knowingly collect data from minors.
15. Contact
Privacy: privacy@meridianops.eu | General: info@meridianops.eu
Controller: Doksov Georgii Dmitrievich, Brussels, Belgium