Privacy Policy » Digital Transformation Solutions » DM Blocks

Privacy Policy

Reviewed in September 2019. GDPR version 1.1

Who are we?

DM Blocks S.A. registred in Costa Rica is the controller. Our address is Urbanización Río Oro, Santa Ana, San José, Costa Rica. 10904.

DM Blocks is providing a broad spectrum of technology services to businesses around the globe. This website is our marketing tool and generally speaking, any personal data processed on this website is used for marketing purposes as described in this Policy in more details.privacy(at) is the right email to contact us about any privacy issues.

The right email to contact us about any privacy issues is privacy(at)

Why do we process your data?

Generally, we use your data for marketing purposes.

  1. If you leave a contact request or approach us by email, we’ll use the personal data you’ve provided to contact you regarding your request. In this case, we process your personal data based on our legitimate interest to build client relations with your company.
  2. If you download a whitepaper from our website, we’ll need to collect your personal data to know who have downloaded our marketing materials and conduct some marketing analytics based on that information. Also, we may contact you to learn whether there is a business opportunity for us with your company. We do that based on our legitimate interest to stick to effective marketing practices and to know how to promote our services in future as well as to build client relations with your company. The same applies to the information about what website has referred you to us.
  3. If you tick the box to receive news and updates from us, we’ll send you emails with some information about our expertise, latest work and relevant technology trends. We are relying on your consent which you provide by ticking that box. Also, we’ll personalise these emails based on the information we have about you, such as the division of your company, so it is more relevant to your business and more useful for you.
  4. Also, we may add your contact information, received from you through our website or by email, together with some publicly available information about you and your company to our CRM system for marketing analytics. We do that based on our legitimate interest to know our client’s profile and conduct some market analytics as well.

Please keep in mind that you can always withdraw your consent by leaving us a clear note at privacy(at) at any time or by clicking the Unsubscribe button under any email received from us.

Also, you may always object to our processing activities based on the legitimate interest and have your data completely erased from all our systems. Just write us about your intent at privacy(at)

In both cases, we’ll stop the processing of your data as soon as we find your note in our Inbox, which shall not take more than 2 business days.

Please also not that if you withdraw your consent for direct marketing by clicking Unsubscribe button, we will not delete the rest of your data automatically. But you may request us to do so by sending us an email to the address above.

What information do we process?

Here is a complete list of the personal data we may want to know about you:

  • Your name
  • Your email
  • Your phone number
  • The company you work at
  • Where is your company located
  • Your job title
  • The fact that you’ve visited our website
  • What website refered you to
  • Have you downloaded any marketing materials from our website
  • Your LinkedIn profile address

Most of the information comes directly from you. We could add some information that is not a secret, like your job title or address to LinkedIn profile, if you’ve made those publicly available.

Who will we share your data with?

DM Blocks

We may disclose your information to our affiliates or subsidiaries, which may help us to process it.

Service Providers

We may disclose your data to third party vendors, service providers, contractors or agents who perform functions on our behalf, such as website management, hosting, technical support and marketing analytics. We’ll make sure that they treat it as protective as we do.

Where is your data processed?

Your data is processed in Costa Rica and may be transferred to the EU or the US. Nevertheless, your data will always be safe and under GDPR protection, despite where it is processed.

We treat your data as protective as the GDPR requires from the moment we’ve received it. If we transfer your data inside or outside our group, we’ll use appropriate safeguards, such as standard contractual clauses, for personal data not to get outside of the GDPR scope.

How long will my data be kept?

We will delete your personal data as soon, as we no longer have a need or a legal basis to process it. What does it mean?

  1. We’ll always delete your data when we receive a request from you to do so. Please take a look here, to learn how to make such a request. In the unlikely event that we are still obliged under the law to keep your data, we’ll inform you about that.
  2. We will not store or otherwise process your data for “unlimited period” in other cases. If we rely on legitimate interest for processing, your data will be kept as long as we are in a business relationship with you. If we don’t start a business relationship with you, your data will be stored in our systems for some limited time for our analytics to be done. In no case we will keep it for more than 1 year, the period which is necessary for communicating with your company as our potential client and after which we treat old analytics outdated, so your personal data is not needed anymore.

Don’t forget that you may always request us to delete all the information have about you as described here.

What are my rights?

We treat all our visitors equaly according to the rules offered by the GDPR, which is believed to be the most progressive and extensive piece of privacy legislation as for now.

  • The right to be informed
    You have the right to know, what is going on with your data.
  • The right of the access
    You have the right to request us to provide you with information that we have about you.
  • The right to rectificate
    You have the right to command us to correct your personal data, if the information we store is for some reason inaccurate or outdated.
  • The right of erasure
    You have the right to request us to delete all your data.
  • The right to restrict processing
    You have the right to ask us to stop processing your data if it is unclear whether we must delete your data.
  • The right for data portability
    You have the right to ask us to transfer your data that we are processing based on your consent to another controller. However, this right will not apply in the case of interaction between you and us, because it is only applicable when personal data is processed based on the consent or contract, while we rely on your consent only to provide you with our direct marketing materials.
  • The right to object – You have the right to object to our processing based on legitimate interest, as described here.
  • Your rights in relation to automated decision making and profiling
    You have the right not to be subject to a decision based solely on theautomated means, incase the decision has a legal effect on you or significantly affects you in a similar way. However, we don’t do anything like that.
  • The right to withdraw your consent as described here
  • The right to lodge a complaint with a supervisory authority
    You have the right to complain either to a supervisory authority in the Member State where you live/work or to the Costa Rican Data Protection Authority.

If you reside in the European Union, you can review about your rights and how to exercise them we recommend visiting this perfect resource from the European Commission, which is available in many languages.

Do you profile me?

If you’ve consented to receive marketing materials from us, we’ll use the information we have about you, as described in this Policy, to provide you with more relevant materials. That’s all the profiling we do.

What about cookies?

If you’ve read this Policy up to this moment, we believe that you’ve deserved to have yourself a delicious cookie. Also, we want to believe that we deserve to place some of those tasty bits of data on your device.

What are cookies?

Cookies are small pieces of text that are stored on your device when you visit a website. During your further visits to that website, the information stored in the cookie is sent back to the site. This allows the website to recognise you and tailor its content to your needs.

Why do we use cookies?

Basically, almost every website places some cookies on your device, unless you’ve blocked cookies in your browser.

This may be done for few reasons:

  1. Functional, when cookies are used to tailor your experience. For instance, cookies permit:
    • Our website to remember the details you’ve provided when filling in forms – so that you don’t have to enter the same information multiple times.
    • You to share website pages on social networks like Facebook, Twitter and LinkedIn.
  2. Performance, when cookies are used to analyse how you use our websites and to monitor website performance. This allows us to identify and fix any issues that arise quickly. For example, we use Google Analytics cookies to keep track of which pages are the most popular and to “remember” what a user has done visiting other pages on the website. We might also use cookies to highlight articles or offerings that we think will be of interest to you based on how you use our website.
  3. Advertising reasons, when cookies are used to target you with our advertising. We do not allow third-party advertisements on our websites, but we do advertise our offers and services on other sites. Some of the sites on which we advertise may use cookies to store information about offers and services in which you have shown an interest as you browse the web. For example, if you read some articles on Retail Technology at DM Blocks websites, then this might suggest that you are interested in this topic. The information from those cookies allows the third party site to display the most appropriate advertisements for you.

How to reject and delete cookies?

Most web browsers automatically accept cookies. However, you do not have to accept cookies and you can reject or block the use of cookies and delete all cookies currently stored on your device. You can find out how to do this for your particular browser by clicking “help” on your browser’s menu, or by visiting this useful resource.

Is my data secured?

DM Blocks is ISO-27001 certified. Therefore we don’t allow any unreliable practices regarding the security of the information we deal with. Consequently, we take all appropriate technical and organisational measures to keep your data safe, as required by the GDPR. Below are the examples of how we do that.

  1. All our employees, consultants or any recipients of your data are bound by confidentiality and are not authorised to process your data for the purposes other than described in this Policy. We take full responsibility for that.
  2. We follow the Information Security Policy, which is mandatory and applies to all our consultants, contractors, and all other individuals who can have authorised access to information resources.
  3. Our Information Security Policy applies to all the information stored on physical or electronic data carriers, as well as any software and hardware that we possess or use temporarily.
  4. All our security practices and documents are reviewed on a yearly basis, approved by the executive management and are implemented throughout the group as well as are communicated to all our employees and consultants.
  5. We conduct mandatory training for all our employees and consultants on privacy and security.
  6. We ensure authentication and authorisation controls are robust and properly treated.
  7. We continuously gather and analyse data regarding all the new and existing threats and vulnerabilities, actual attacks on other organisation, as well as the information about the effectiveness of the existing security controls.
  8. Our servers, workstations and internet gateway devices are updated periodically with the latest antivirus definitions that include zero-day anti-malware protection.
  9. We conduct risk assessment on a yearly basis.

Still have some questions?

You can reach us at privacy(at), if you:

  1. Want to know more about privacy of your information
  2. Want to make any kind of claim or request with regard to your personal data
  3. Want to say that we are wrong in any privacy issue
  4. Want to share your thought how we could make our privacy practices better
  5. Just bored and want to talk about privacy

We promise that we’ll reply. At least once, if you are just bored.