THEOSINT ROOM

Privacy Policy

Last Updated: March 23, 2026

1. Introduction

The OSINT Room provides open-source intelligence services to institutional clients. This Privacy Policy explains how we collect, use, process, and protect personal data in compliance with the EU General Data Protection Regulation (GDPR) and applicable data protection laws.

2. Data Controller

The OSINT Room, located in France (European Union), acts as the data controller for personal data processed through our website and client engagements.

Contact: contact@theosintroom.com

3. Data We Collect

3.1 Contact and Consultation Requests

When you submit a consultation request, we collect: name, organization, work email, professional role, engagement type, jurisdictions of interest, timeline, budget range, and message content.

3.2 Website Usage Data

We may collect standard web server logs, including IP addresses, browser type, pages visited, and access times for security and performance purposes.

3.3 Client Engagement Data

During active engagements, we process data necessary to deliver OSINT research services as agreed in client contracts. This is limited to data required for lawful, open-source intelligence collection.

4. Legal Basis for Processing

We process personal data on the following legal bases:

  • Consent: When you submit contact forms or consultation requests
  • Contract: To perform services under client agreements
  • Legitimate Interests: For business operations, security, and service improvement
  • Legal Obligation: To comply with applicable laws and regulations

5. Data Use and Purpose

We use collected data to:

  • Respond to consultation requests and assess engagement fit
  • Deliver contracted OSINT research services
  • Maintain client communication and project management
  • Ensure website security and functionality
  • Comply with legal and regulatory obligations

6. Data Sharing and Disclosure

We do not sell or rent personal data. We may share data only in the following circumstances:

  • Service Providers: With trusted third parties who assist in delivering our services, under strict confidentiality agreements
  • Legal Requirements: When required by law, court order, or regulatory authority
  • Client Authorization: With explicit client consent for specific purposes

7. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. This includes encryption, access controls, and secure data storage.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Consultation request data is retained for up to 2 years. Client engagement data is retained per contractual agreements and legal obligations.

9. Your Rights (GDPR)

Under GDPR, you have the following rights:

  • Access: Request access to your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your data (right to be forgotten)
  • Restriction: Request limitation of data processing
  • Portability: Request transfer of your data
  • Objection: Object to data processing in certain circumstances
  • Withdraw Consent: Withdraw consent for data processing at any time

To exercise these rights, contact: contact@theosintroom.com

10. International Data Transfers

As an EU-based entity, we process data primarily within the European Economic Area. Any international transfers are conducted in compliance with GDPR, using appropriate safeguards such as Standard Contractual Clauses.

11. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated effective date.

12. Supervisory Authority

You have the right to lodge a complaint with the French data protection authority (CNIL) or your local EU data protection authority.

13. Contact

For questions about this Privacy Policy or to exercise your rights:

Email: contact@theosintroom.com
Location: France, European Union

THEOSINT ROOM

OSINT advisory firm providing financial crime intelligence, compliance intelligence services, and OSINT-based due diligence for institutional clients.

Contact

France, European Union

contact@theosintroom.com

Service Scope & Compliance

The OSINT Room provides public-source intelligence advisory services. All research uses exclusively lawful, open-source methods. Our deliverables are intelligence support materials for professional decision-making—not legal advice, regulatory advice, investigative services, or filing recommendations. Data handling designed with GDPR and data protection principles in mind.

GDPR-Conscious

Data handling designed with EU Data Protection Regulation principles in mind

Regulatory Awareness

Methodologies informed by AML, sanctions, and financial crime compliance standards

© 2026 The OSINT Room. All rights reserved.

Cookie Notice

We use essential cookies to ensure our website functions properly. We'd also like to use optional cookies to enhance your experience and analyze site traffic. You can customize your preferences or reject optional cookies.