Privacy Policy

Last updated: March 1, 2025  |  Effective: March 1, 2025

Matilda Migration, Inc. ("Matilda Migration," "we," "us," or "our") is a cloud migration services company headquartered at 1201 Third Avenue, Suite 1400, Seattle, WA 98101. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at matlidamlgration.com, use our services, or interact with us in connection with our business.

Please read this policy carefully. If you disagree with its terms, please discontinue use of our website and services. If you have questions or concerns about this policy or our practices, contact us at privacy@matlidamlgration.com.

1. Information We Collect

1.1 Information You Provide Directly

We collect information that you voluntarily provide to us when you:

  • Complete contact forms or inquiry forms on our website
  • Request a consultation, assessment, or demo of our services
  • Subscribe to our newsletter or blog content
  • Register for webinars, events, or educational content
  • Apply for employment with our company
  • Enter into a service agreement or contract with us
  • Communicate with us by email, phone, or other channels

The types of personal information we collect in these contexts include: full name, business email address, phone number, company name and size, job title, geographic location, and the specific cloud migration challenge or project you are describing. For employment applicants, we additionally collect resume and work history information, professional references, and skills assessments.

1.2 Information Collected Automatically

When you visit our website, we automatically collect certain technical information through cookies, web beacons, and similar tracking technologies. This information includes:

  • Log data: IP address, browser type and version, operating system, referring URLs, pages viewed, time spent on pages, links clicked, and the date and time of your visit
  • Device information: Device type (desktop, mobile, tablet), screen resolution, browser language settings, and general geographic location derived from IP address (city/region level, not precise location)
  • Usage data: How you interact with our website content, which resources you access or download, and which pages you visit before and after our site
  • Cookie data: Preferences, session identifiers, and consent choices stored in cookies as described in our Cookie Policy

1.3 Information from Third Parties

We may receive information about you from third-party sources, including:

  • Professional networking platforms such as LinkedIn, when you or your organization engages with us through those platforms
  • Business intelligence databases that provide company and contact information for enterprise prospects
  • Event organizers or conference sponsors who provide attendee information when we participate as a speaker or exhibitor
  • Referral partners who introduce you to our services with your knowledge and consent

We use this third-party data only for legitimate business development purposes and handle it with the same protections as information you provide directly.

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 Providing and Improving Our Services

  • Responding to your inquiries and providing information about our cloud migration services
  • Conducting initial assessments, scoping discussions, and proposal development for prospective clients
  • Delivering contracted cloud migration, database migration, and hybrid cloud services to enterprise clients
  • Communicating project status, milestones, and technical details with clients during active engagements
  • Processing payments and managing billing for services rendered
  • Analyzing website usage patterns to improve the functionality and content of our website
  • Conducting research and analysis to improve our service methodology and tooling

2.2 Marketing and Business Development

  • Sending you information about our services, thought leadership content, and company news if you have subscribed or consented to such communications
  • Notifying you about webinars, events, and educational resources relevant to your cloud migration interests
  • Personalizing website content and marketing communications based on your expressed interests and engagement history
  • Conducting account-based marketing activities targeted at enterprise organizations in relevant industries

We will not send you marketing communications without a lawful basis for doing so. You may opt out of marketing communications at any time using the unsubscribe link in any marketing email or by contacting us directly.

2.3 Legal and Compliance Purposes

  • Fulfilling our obligations under contracts with clients, partners, and vendors
  • Complying with applicable laws, regulations, and regulatory requests
  • Protecting our legal rights and interests, including responding to legal claims
  • Preventing fraud, abuse, and unauthorized access to our systems
  • Maintaining security and integrity of our technical infrastructure

3. Legal Bases for Processing (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, we rely on the following legal bases for processing your personal data:

  • Contract performance: Processing necessary to fulfill our obligations under service agreements with clients
  • Legitimate interests: Processing for business development, service improvement, fraud prevention, and security purposes where our interests are not overridden by your rights
  • Consent: Processing for marketing communications, cookies (except strictly necessary cookies), and analytics where you have provided explicit consent
  • Legal obligation: Processing required by applicable law or regulation

4. How We Share Your Information

4.1 Service Providers and Contractors

We share your information with trusted third-party service providers who assist us in operating our business and delivering our services. These providers are contractually bound to use your information only as directed by us and in accordance with appropriate data protection standards. Categories of service providers include:

  • Cloud hosting and infrastructure providers (AWS, Azure, Google Cloud)
  • Customer relationship management (CRM) software providers
  • Email marketing and communications platforms
  • Website analytics providers
  • Document management and e-signature platforms
  • Accounting, billing, and payment processing services
  • Legal, accounting, and professional services firms
  • Cybersecurity and incident response service providers

4.2 Business Transfers

If Matilda Migration undergoes a merger, acquisition, restructuring, sale of all or substantially all of our assets, or similar transaction, your information may be transferred as part of that transaction. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.

4.3 Legal Requirements

We may disclose your information when required by law, court order, subpoena, or other legal process; when we believe disclosure is necessary to protect our rights, prevent fraud, or ensure the safety of any person; or when disclosure is required or permitted by applicable regulatory requirements.

4.4 We Do Not Sell Your Data

Matilda Migration does not sell, rent, or trade your personal information to third parties for their independent marketing or commercial purposes. We do not engage in cross-context behavioral advertising based on personal information obtained from other websites or services.

5. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required by law or contract. Our general retention principles are:

  • Prospect and lead data: Retained for up to 3 years from last interaction, or until you request deletion
  • Client contract records: Retained for 7 years after contract conclusion to comply with financial record-keeping requirements
  • Employee and applicant records: Retained per applicable employment laws; applicant data for non-selected candidates is retained for 1 year then deleted or anonymized
  • Website analytics data: Retained for 26 months in aggregate form; raw session data retained for 90 days
  • Marketing consent records: Retained for 3 years after withdrawal of consent as evidence of compliance

When personal information is no longer required, we securely delete or anonymize it in accordance with our data disposal procedures.

6. Your Privacy Rights

Depending on your location and applicable law, you may have the following rights regarding your personal information:

6.1 Rights Available to All Users

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete personal information
  • Deletion: Request deletion of your personal information where we have no legitimate basis to retain it
  • Opt-out of marketing: Unsubscribe from marketing communications at any time
  • Cookie preferences: Manage your cookie preferences using the cookie management tool on our website

6.2 Additional Rights for EEA/UK Residents

  • Restriction: Request restriction of processing of your personal data in certain circumstances
  • Portability: Receive your personal data in a structured, machine-readable format and request transfer to another controller
  • Object: Object to processing based on legitimate interests, including profiling for direct marketing
  • Withdraw consent: Withdraw consent for consent-based processing at any time without affecting the lawfulness of prior processing
  • Lodge a complaint: File a complaint with your national data protection authority

6.3 California Privacy Rights (CCPA/CPRA)

California residents have additional rights under the California Consumer Privacy Act and California Privacy Rights Act, including the right to know what personal information is collected and how it is used, the right to delete personal information, the right to correct inaccurate personal information, the right to opt out of the sale or sharing of personal information (note: we do not sell personal information), and the right to non-discrimination for exercising privacy rights.

To exercise any of your privacy rights, contact us at privacy@matlidamlgration.com or write to us at Matilda Migration, Inc., 1201 Third Avenue, Suite 1400, Seattle, WA 98101. We will respond to verified requests within 30 days (or 45 days where permitted by applicable law).

7. Data Security

We implement industry-standard technical and organizational security measures to protect your personal information against unauthorized access, disclosure, alteration, or destruction. Our security measures include:

  • Encryption of data in transit using TLS 1.2 or higher for all web communications
  • Encryption of sensitive data at rest using AES-256 or equivalent
  • Access controls and role-based permission management for internal systems
  • Multi-factor authentication required for all employee access to systems containing personal information
  • Regular security assessments, penetration testing, and vulnerability management
  • Employee security training and awareness programs
  • Vendor security assessments for third-party service providers handling personal information
  • Incident response procedures for detecting and responding to data security incidents

Despite these measures, no transmission or storage system is completely secure. If you believe your information has been compromised, contact us immediately at security@matlidamlgration.com.

8. International Data Transfers

Matilda Migration is based in the United States. If you are accessing our services from outside the United States, your information will be transferred to, stored, and processed in the United States. We also work with service providers that may process information in other countries.

For transfers of personal data from the EEA, UK, or Switzerland to countries not recognized as providing adequate data protection, we rely on Standard Contractual Clauses approved by the European Commission or equivalent transfer mechanisms to ensure appropriate protection.

9. Children's Privacy

Our website and services are directed exclusively to enterprise business users and are not intended for individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If we become aware that we have collected personal information from a minor without appropriate consent, we will take steps to delete that information promptly.

10. Third-Party Links and Services

Our website may contain links to third-party websites, resources, or services. These third-party sites have their own privacy policies and we have no responsibility for their content or data practices. We encourage you to review the privacy policy of any third-party site you visit through links on our website.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. When we make material changes, we will notify you by email (if you have provided an email address) and by posting a prominent notice on our website. The "Last updated" date at the top of this policy reflects the most recent revision. Your continued use of our website or services after the effective date of a revised policy constitutes your acceptance of the revised policy.

12. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact us:

  • Email: privacy@matlidamlgration.com
  • Mail: Matilda Migration, Inc., Attn: Privacy Team, 1201 Third Avenue, Suite 1400, Seattle, WA 98101
  • Website: Contact Us

For EEA or UK data subjects who wish to contact our data protection representative or lodge a complaint, please use the email address above and include "GDPR" in the subject line. We are committed to resolving privacy complaints promptly and will acknowledge your request within 5 business days.

Terms of Service Cookie Policy