Privacy Policy
Data Protection
Steyer Engineering respects your privacy and handles personal data responsibly and transparently. We collect and use data only for legitimate business purposes and in compliance with the data protection laws of the Republic of Kazakhstan. Where processing relates to the EU, we also comply with the European General Data Protection Regulation (GDPR). We apply the principles of lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, integrity and confidentiality.
What Data We Collect
We may collect identification and contact details (e.g. name, position, email, phone), organisation and project information, and correspondence. For technical and security reasons our systems may log IP addresses, device/browser information, timestamps and visited pages. We generally do not collect sensitive categories of data (e.g. health data). Please avoid sending such information unless strictly necessary and with your consent.
How We Use Your Data
We use your data to respond to inquiries, prepare offers, manage contracts and projects (including on-site and remote services, simulation and commissioning), maintain client relationships and accounts, ensure IT and physical security, comply with legal obligations, and improve our services through non-identifying analytics. Data may be shared with trusted providers such as hosting or IT-security partners, all of whom are bound by confidentiality. Where data is transferred internationally, we apply safeguards such as contractual clauses in line with applicable law.
Legal Basis
Depending on the context, we process personal data on the following legal bases: your consent, performance of a contract or pre-contractual steps, compliance with legal obligations, and our legitimate interests such as communication, security and service improvement. Where processing is based on consent, you may withdraw it at any time with future effect.
Data Storage
We store personal data only as long as necessary for the purposes above or as required by law. Afterwards, data is deleted or anonymised. To protect data, we apply technical and organisational measures such as access controls, encryption in transit, backups and staff confidentiality obligations.
Your Rights
You have the right to request access to your data, rectification, erasure, restriction of processing and, where applicable, data portability. You may object to processing based on legitimate interests and withdraw consent at any time. You also have the right to lodge a complaint with the competent authority in Kazakhstan and, where GDPR applies, with an EU authority.
Contact
For questions regarding data protection or to exercise your rights, please contact Steyer Engineering using the contact details below.