1. Who we are

INC48 operates the website at inc48.eu. In this policy, "INC48", "we", "us" and "our" refer to the company operating the site. For privacy-related enquiries, contact us via inc48.eu/contact.

2. What this policy covers

This policy explains what personal data we collect when you visit inc48.eu, what we do with it, and what rights you have under the EU General Data Protection Regulation (GDPR) and equivalent laws.

3. Personal data we collect

We collect only what we need to provide the site and respond to your enquiries.

  • Waitlist data: when you join the INC48 EU INC waitlist, we collect the information you submit — typically your name, work email, company (optional), country or region, and stage.
  • Contact form data: when you send us a message, we collect your name, email, topic and the content of your message.
  • Technical data: when you visit the site, our hosting provider may automatically log information such as IP address, browser type and pages visited. This is used for security, diagnostics and aggregated analytics.
  • Cookies: we use only strictly necessary cookies and, where relevant, aggregated analytics cookies. We do not use advertising or cross-site tracking cookies.

4. How we use your data

  • To operate the waitlist — to send you EU INC regulation updates and notify you when filings open.
  • To respond to messages you send us via the contact form or by email.
  • To maintain and improve the site, including security and performance.
  • To comply with legal obligations.

5. Legal basis

We rely on the following GDPR legal bases:

  • Consent for waitlist subscriptions and marketing-style updates.
  • Legitimate interest for responding to messages and operating and securing the site.
  • Legal obligation where the law requires retention or disclosure.

6. Who we share data with

We share personal data only with service providers that help us operate the site (for example, our hosting provider and email delivery service). We do not sell personal data and we do not share it for advertising or profiling purposes.

7. International transfers

Where any processor is located outside the European Economic Area, we use appropriate safeguards (such as Standard Contractual Clauses) to ensure your data is protected to EU standards.

8. Retention

We keep waitlist data until you unsubscribe or request deletion. We keep contact form messages for up to 24 months unless you ask us to delete them sooner. Technical/access logs are retained for short periods consistent with security best practice.

9. Your rights

Under the GDPR you have the right to access, correct, delete, restrict or object to processing of your personal data, and the right to data portability. You also have the right to withdraw consent at any time and to lodge a complaint with your national data protection authority. To exercise any of these rights, contact us at inc48.eu/contact.

10. Security

We use appropriate technical and organisational measures to protect your data, including TLS encryption in transit, restricted access, and a minimum-data approach. No system is perfectly secure; if you become aware of a vulnerability, please tell us.

11. Changes to this policy

We may update this policy from time to time. Material changes will be announced on this page and, where appropriate, by email to waitlist members. The "last updated" date at the top reflects the current version.

12. Contact

Questions or requests relating to privacy: https://inc48.eu/contact.