Privacy Policy

1. Who we are

ASJ IT Solutions OPC ("ASJ IT Solutions", "we", "our", or "us") is an IT consultancy registered under Philippine law, with its principal place of business in Lucena City, Calabarzon, Philippines (postal code 4310). We provide custom software development, AI workflow automation, hardware procurement, and managed technology partnership services to businesses globally.

This Privacy Policy explains how we collect, use, disclose, and safeguard personal data when you visit asjitsolutions.com or contact us through it.

2. Applicable law

Our primary legal framework is the Republic Act No. 10173 — Data Privacy Act of 2012 (DPA) and its Implementing Rules and Regulations, enforced by the National Privacy Commission (NPC) of the Philippines.

Because we also serve clients and website visitors located globally, we additionally comply — where applicable — with:

• EU General Data Protection Regulation (GDPR) — Regulation (EU) 2016/679
• UK GDPR — as retained in UK domestic law
• California Consumer Privacy Act / CPRA (CCPA) — for California residents

3. What we collect

Information you give us directly

When you submit our contact or inquiry form, we collect:

• Full name
• Business email address
• Company name
• Phone number (optional)
• The content of your message
• Your consent acknowledgment (checkbox timestamp)

Information collected automatically

When you visit our website, we (or third-party tools we use, with your prior consent) may collect:

• IP address (truncated/anonymised where applicable)
• Browser type and version
• Operating system and device type
• Pages visited and time spent
• Referring website or link
• Country-level geographic location derived from IP

Automatic analytics collection is only activated after you accept cookies via our consent banner. If you decline, only essential session cookies necessary for the site to function are set.

What we do not collect

We do not knowingly collect government ID numbers, financial account information, biometric data, health data, or special categories of personal data as defined under GDPR Article 9 and the DPA.

4. How we use your information

We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects on you.

5. Legal bases for processing

6. Third-party service providers

We use the following third-party services that may process personal or technical data. We have data processing agreements or equivalent safeguards in place with each provider.

We do not sell your personal data to any third party. We do not permit our service providers to use your data for their own independent marketing or commercial purposes.

7. International data transfers

ASJ IT Solutions is based in the Philippines. When you interact with our website from the EU, UK, or other jurisdictions, your personal data may be transferred to and processed in the Philippines or the United States (where providers such as Google LLC operate servers).

For transfers from the EEA or UK, we rely on the following safeguards:

• Standard Contractual Clauses (SCCs) incorporated into our processor agreements (e.g., Google's Data Processing Addendum using current 2021 EU SCCs).
• Adequacy decisions where applicable.

For transfers involving Philippine personal data sent internationally, we comply with Section 21 of the DPA and applicable NPC circulars.

You may request a copy of the applicable transfer safeguards by contacting us at the address in Section 14.

8. Data retention

After the applicable retention period, personal data is deleted or anonymised. We review retention schedules annually.

9. Your rights

To exercise any of the rights below, contact us at info@asjitsolutions.com with the subject line "Privacy Rights Request". We will respond within 30 days (or within the shorter period required by applicable law). We may ask you to verify your identity before acting on a request.

All users — Philippines (RA 10173)

• Right to be informed — to know how your data is collected and used (this policy fulfils that obligation).
• Right of access — to obtain a copy of your personal data we hold.
• Right to rectification — to correct inaccurate or incomplete personal data.
• Right to erasure — to request deletion of your personal data, subject to legal retention requirements.
• Right to data portability — to receive your personal data in a structured, machine-readable format.
• Right to object — to object to processing based on legitimate interest or direct marketing.
• Right to complain — with the National Privacy Commission (NPC), 5/F Delegation Building, PICC Complex, Pasay City, Philippines.

EU / UK users (GDPR / UK GDPR)

In addition to the rights above, EU and UK residents also have:

• Right to restriction of processing — to request we pause processing of your data in certain circumstances.
• Right not to be subject to automated decisions — we do not engage in automated decision-making producing legal effects.
• Right to complain to a supervisory authority — EU residents may contact their local Data Protection Authority. UK residents may contact the Information Commissioner's Office (ICO).

California residents (CCPA / CPRA)

• Right to know — categories and specific pieces of personal information collected about you.
• Right to delete — request deletion of your personal information.
• Right to correct — request correction of inaccurate personal information.
• Right to opt-out of sale or sharing — We do not sell or share personal information for cross-context behavioural advertising. No opt-out is required but you may contact us to confirm.
• Right to non-discrimination — we will not discriminate against you for exercising your CCPA rights.

10. Cookies

We use cookies and similar tracking technologies on this website. Details about each cookie, its category, and how to manage your preferences are set out in our Cookie Policy.

Non-essential cookies (including Google Analytics) are only loaded after you give consent via our cookie banner. You can withdraw consent at any time by clearing your cookies or adjusting your browser settings.

11. Children's privacy

Our website and services are directed at businesses and professionals. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that a minor has submitted personal data to us, we will delete it promptly. If you believe we have collected data from a minor, please contact us immediately at info@asjitsolutions.com.

12. Third-party links

Our website contains links to external websites, including LinkedIn, Facebook, and partner sites. This Privacy Policy does not apply to those external sites. We are not responsible for the privacy practices or content of third-party sites and encourage you to read their policies before providing personal data.

13. Policy updates

We may update this Privacy Policy from time to time to reflect changes in our practices, applicable law, or our services. We will update the "Last updated" date at the top of this page. For material changes, we will endeavour to provide additional notice via a prominent notice on our website or direct communication to known contacts. Your continued use of our website after the effective date of any update constitutes your acknowledgment of the revised policy.

14. Contact & Data Protection Officer

For all privacy queries, rights requests, or concerns, please contact us:

ASJ IT Solutions OPC
Lucena City, Calabarzon 4310
Republic of the Philippines
Email: info@asjitsolutions.com
Phone: +63 969 133 4089

In compliance with the Philippines Data Privacy Act of 2012, we have designated a Data Protection Officer (DPO) responsible for our data protection practices. You may reach the DPO through the contact details above, using the subject line "Attn: Data Protection Officer".

If you are located in the EU or UK and have an unresolved concern, you also have the right to contact your local data protection supervisory authority.