Ximpal Group

Privacy Policy

Last Updated: December 21, 2025

Ximpal Group ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or engage with our services.

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site or use our services.

1. Information We Collect

Personal Data

We may collect personally identifiable information that you voluntarily provide to us when you:

  • Contact us through our website forms
  • Apply for employment or career opportunities
  • Subscribe to our newsletters or communications
  • Engage with our consulting services
  • Request information about our services

This information may include:

  • Name and contact information (email address, phone number, mailing address)
  • Company name and professional information
  • Job application materials (resume, cover letter, references)
  • Business communication preferences
  • Any other information you choose to provide

Automatically Collected Information

When you visit our website, we may automatically collect certain information about your device, including:

  • IP address and browser type
  • Operating system and device information
  • Pages visited and time spent on pages
  • Referring website addresses
  • Geographic location data

2. How We Use Your Information

We use the information we collect to:

  • Respond to your inquiries and provide customer service
  • Process employment applications and recruitment activities
  • Deliver and manage our consulting services
  • Send you marketing communications (with your consent)
  • Improve our website and service offerings
  • Comply with legal obligations and protect our legal rights
  • Prevent fraud and enhance security
  • Analyze website usage and optimize user experience

3. Disclosure of Your Information

We may share your information with:

  • Service Providers: Third-party vendors who perform services on our behalf, including website hosting, email delivery, analytics, and customer relationship management
  • Business Partners: Partners with whom we collaborate to deliver services, subject to confidentiality agreements
  • Legal Compliance: Government authorities when required by law or to protect our legal rights
  • Business Transfers: In connection with a merger, acquisition, or sale of business assets
  • With Your Consent: Other parties when you have provided explicit consent

We do not sell your personal information to third parties.

4. International Data Transfers

As a global organization with offices in New Jersey (USA), San Francisco (USA), Toronto (Canada), AsunciĆ³n (Paraguay), Manila (Philippines), Bangalore (India), and Lilongwe (Malawi), we may transfer your information across borders to our various locations.

We implement appropriate safeguards to ensure your data is protected in accordance with this Privacy Policy and applicable data protection laws, including:

  • Standard contractual clauses approved by relevant authorities
  • Data processing agreements with service providers
  • Technical and organizational security measures
  • Compliance with applicable privacy frameworks

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication mechanisms
  • Employee training on data protection practices
  • Incident response and breach notification procedures

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including:

  • Providing our services to you
  • Complying with legal, accounting, or reporting requirements
  • Maintaining business records
  • Resolving disputes and enforcing our agreements

When personal information is no longer needed, we will securely delete or anonymize it.

7. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

  • Access: Request access to the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Restriction: Request restriction of processing your information
  • Portability: Request transfer of your information to another service provider
  • Objection: Object to our processing of your personal information
  • Withdraw Consent: Withdraw consent for marketing communications

To exercise these rights, please contact us at privacy@ximpalgroup.com. We will respond to your request within the timeframe required by applicable law.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your website usage. Cookies are small data files stored on your device that help us:

  • Remember your preferences and settings
  • Understand how you use our website
  • Improve website performance and user experience
  • Deliver relevant content and advertisements

You can control cookies through your browser settings. However, disabling cookies may affect your ability to use certain features of our website.

9. Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

10. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately so we can delete it.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date at the top of this page
  • Sending email notification for significant changes (where we have your email address)

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Ximpal Group
Email: privacy@ximpalgroup.com
Global Headquarters: New Jersey, USA
Email: newjersey@ximpal.com

13. Jurisdiction-Specific Information

For European Economic Area (EEA) Residents

If you are located in the EEA, you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with your local data protection authority.

For California Residents

California residents have specific rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete personal information, and the right to opt-out of the sale of personal information (though we do not sell personal information).

For Canadian Residents

Canadian residents have rights under the Personal Information Protection and Electronic Documents Act (PIPEDA), including the right to access and correct personal information and to file complaints with the Privacy Commissioner of Canada.

Return to Home