Privacy and Security

// PROTOCOL: DATA_PROTECTION
Last Updated: January 2026

Who is J.R.SOSA & CO.?

We are a technology and engineering firm dedicated to providing software platforms, consumer applications and services that help public, private, and non-governmental organizations achieve their digital transformation goals.

This Privacy Statement (“Statement”) applies to the processing activities for which J.R.SOSA & CO. and its affiliates act as “data controllers” on their own behalf. This Statement does not cover our customers' processing of personal data using J.R.SOSA & CO. products or services, as we act solely as a “data processor” for such processing activities.

Contact Us

If you are looking to understand more about how we use your information, or to exercise your rights, you may reach us at:

Email: privacy@jrsosa.co

Data Controllers

J.R.SOSA & CO. may be made up of multiple entities that process personal data in the course of conducting business. Depending on where you engage with us, the entity responsible as controller for the processing of your personal data under this Statement may vary. In this Statement, where we refer to “J.R.SOSA & CO.,” “we,” “our,” or “us,” we are referring to the relevant group entity that decides how and why your information is used.

What personal data do we collect?

J.R.SOSA & CO. collects personal data through three main sources:

  • Personal data you provide to us (for example, through forms or correspondence).
  • Personal data we collect automatically (for example, when you visit our websites and as described in the Technical Data set out below).
  • Personal data from other sources (such as our service providers, business partners, and publicly available personal data).

Categories of Data Collected:

  • Contact Data: Name, address, email address, telephone number, mobile phone number, country of residence, and social media handles.
  • Professional Data: Company name, occupation contact details, occupation, employment history, areas of expertise, and your experience with J.R.SOSA & CO. products and services.
  • Transaction Data: Products and/or services purchased, licenses purchased, types of products or services of interest, and eligibility information.
  • Payment Data: Payment or billing information (including tokenized payment details, as necessary).
  • Technical Data: IP address, operating system, browser information, user agent, identifiers such as cookie IDs, mobile device ID, Wi-Fi data, and interactions with J.R.SOSA & CO. websites.
  • Communication Data: Messages, correspondence, and other data created or generated by you when communicating with J.R.SOSA & CO. via post, SMS, email, or third-party platforms.
  • Audiovisual Data: Image and voice recordings collected through security monitoring systems or recorded during events (e.g., if you visit a J.R.SOSA & CO. office or attend a seminar).
  • Inferred Data: Preferences and likelihood of interest in J.R.SOSA & CO. products and/or services generated by combining data collected by us with information obtained from third parties.

Why and how we use your personal data

We use the personal data we collect for the following purposes:

1. To conduct our business operations and provide our products and services:

  • To communicate with you: We use Contact and Communication Data to answer your queries or discuss potential interest in our services.
  • To provide you with our products and services: We use your data to verify your identity, send communications regarding purchases, fulfill our contract with you, and provide access to our platforms.
  • To process financial transactions: We use Transactional and Payment Data to process payments. Note that third-party payment processors (such as Stripe) may collect data directly from you as independent controllers.
  • To analyze activity: We use Technical and Communication Data to understand how you use our websites and platforms to improve user experience.
  • To enable business transfers: We process information in connection with transactions such as mergers, acquisitions, or asset transfers.

2. To ensure compliance and protection:

  • To verify identity: To ensure security and prevent fraud.
  • To protect our business and others: To protect against harm to J.R.SOSA & CO.’s rights and property, and to ensure the safety of our employees, users, and others.
  • To comply with legal obligations: To cooperate with law enforcement, regulators, and court orders.

How we share your personal data

We may share your personal data with:

  • Affiliates: Other companies within the J.R.SOSA & CO. group.
  • Service Providers: Third parties who provide services such as IT infrastructure, marketing, and payment processing.
  • Business Partners: Partners with whom we collaborate to provide services or host events.
  • Legal Authorities: When required by law or to protect our rights.

Your Rights

Depending on your jurisdiction, you may have rights regarding your personal data, including:

  • Access: The right to request a copy of the personal data we hold about you.
  • Correction: The right to request correction of inaccurate or incomplete data.
  • Deletion: The right to request the deletion of your personal data.
  • Objection: The right to object to the processing of your personal data for certain purposes.
  • Withdrawal of Consent: The right to withdraw consent where processing is based on consent.

To exercise these rights, please contact us at privacy@jrsosa.co.

Updates to this Statement

We may make updates to this Statement from time to time. When we do so, we will update the "Last Updated" date at the top of this page. We encourage you to review this Statement periodically to stay informed about how we are protecting your information.