Privacy Policy.

1. Data Controller Identification

The controller of personal data collected on this site is Ragis Group (hereinafter, "Ragis Group", "we", "our", or the "Company"), with its official headquarters at 12642 Grey Eagle Ct, Suite 41, Germantown, Maryland 20874, United States of America. Any inquiry regarding this policy may be addressed to contact@ragisgroup.com.

2. Data We Collect

We collect only data that the user voluntarily provides through the site's forms. These data include, without limitation: full name, professional role, company name, country, corporate email address, product category, approximate annual revenue range, project description, and any additional information the user chooses to communicate in free-text fields.

We do not collect data from minors. The site is not directed at persons under 18 years of age, and we do not knowingly accept data from minors.

3. Purpose of Processing

The data are used exclusively to: (a) respond to the inquiry or request initiated by the user; (b) manage the download of resources from the public library; (c) send communications voluntarily subscribed to; (d) evaluate the commercial suitability of a potential project; (e) comply with applicable legal obligations. The data shall not be used for purposes other than those declared herein without express additional consent from the user.

4. Legal Basis for Processing

Processing is based on the express consent of the data subject (EU General Data Protection Regulation, Art. 6.1.a), on Ragis Group's legitimate interest in responding to user-initiated communications (GDPR Art. 6.1.f), and on equivalent regulations of applicable jurisdictions (California CCPA/CPRA, Argentine Law 25.326, Venezuelan personal data protection regulations).

5. Recipients and Authorized Processors

Access to data is limited to Ragis Group's internal team under strict role-based access control. Data may be processed by the following processors, with whom Ragis Group maintains data processing agreements: the hosting provider (Hostinger International Ltd., Lithuania, with servers located in U.S. territory), the corporate email provider (Hostinger), and, when used, the form provider (Hostinger Forms or, alternatively, Formspree or Web3Forms).

Ragis Group does not sell, rent, share, or transfer personal data to third parties for own or third-party commercial purposes. We do not use the data for advertising profiling.

6. International Transfers

Data may be stored in infrastructures located in the United States. When data originates from EU residents, international transfers are governed by standard contractual clauses approved by the European Commission or current equivalent mechanisms. Ragis Group adopts reasonable technical and organizational measures to protect data during transfer.

7. Retention Period

Data are retained for the minimum period necessary to fulfill the declared purposes and, thereafter, for the applicable legal period required by accounting, tax, or regulatory obligations. The user may request deletion at any time by writing to contact@ragisgroup.com.

8. Data Subject Rights

The user has the right to: access their personal data, rectify them, delete them, object to their processing, request portability, request limitation of processing, and revoke previously granted consent. These rights may be exercised by writing to contact@ragisgroup.com with reasonable proof of identity. Additionally, the user may file a complaint with the competent supervisory authority of their jurisdiction.

9. Cookies and Similar Technologies

This site does not use tracking cookies by default. Analytics are performed using cookie-free tools that respect user privacy. Should technologies requiring cookies be activated in the future, express consent will be requested in accordance with the Cookie Policy.

10. Information Security

Ragis Group implements reasonable technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. These measures are documented in the Ragis Custody and Encryption Protocol: TLS 1.3 encryption in transit, AES-256 encryption at rest, two-factor authentication, role-based access control, audit log, and redundant backups. No electronic transmission or storage method is completely secure; Ragis Group does not guarantee absolute security of data against all possible risks.

11. Limitation of Liability

To the maximum extent permitted by applicable law, Ragis Group shall not be liable for indirect, incidental, special, consequential, or punitive damages arising from the use of the site or the processing of personal data, including, without limitation, loss of profits, loss of data, business interruption, or loss of commercial opportunity, even if Ragis Group has been advised of the possibility of such damages.

12. Modifications to the Policy

Ragis Group reserves the right to modify this policy at any time, without individual notification to the user. The current version is always the one published at this URL with the update date at the beginning of the document. Periodic review of the policy is recommended.

13. Governing Law and Jurisdiction

This policy is governed by the laws of the State of Maryland, United States of America. Any dispute arising from this policy shall be submitted to the exclusive jurisdiction of the competent courts of the State of Maryland, without prejudice to mandatory legislation applicable to the user by their place of residence.

Legal review notice. This document must be reviewed by an attorney licensed in the applicable jurisdiction before final publication or in case of substantial changes in data processing.