Free Assessment
Free Assessment

Privacy Policy

Effective 31 March 2026

Who we are

Global Micro IT Solutions Inc (Delaware Corp. 5131525) is the data controller for personal data collected through this website. Our registered address is 8 The Green, Suite R, Dover, Kent County, Delaware 19901, United States.

Global Micro Solutions (GMS) has over 30 years of experience securing more than 1,200 Microsoft 365 tenants across EMEA, with offices in South Africa, Ireland, the United Kingdom, Saudi Arabia, the UAE, and the United States. We deploy and manage Microsoft 365 security and provide ISO 27001 certification as a managed service.

Data we collect and why

Assessment form data

When you complete our security assessment at /assess/, we collect:

  • Email address — to deliver your assessment report and follow up with recommendations
  • Company name — to personalise the report and understand your organisational context
  • Assessment responses — your answers to security posture questions, used to generate your report

Website analytics

We use anonymous analytics tools to understand how visitors use the site and to monitor performance. Neither tool identifies you personally.

  • Microsoft Clarity — anonymous session recordings, heatmaps, and click tracking to improve the user experience
  • Azure Application Insights — page views and performance telemetry to ensure the site runs reliably

No marketing cookies or third-party trackers

We do not use cookies for advertising. We do not employ third-party marketing trackers. Our analytics are focused on improving the site, not tracking you across the web.

How we use your data

  • Deliver services — providing your personalised security assessment report and recommendations
  • Communicate with you — responding to enquiries and following up on assessment results
  • Improve the website — analysing anonymous usage data to enhance functionality and content
  • Monitor performance — ensuring the site operates efficiently and reliably
  • Meet legal obligations — complying with applicable laws and regulations

How we protect your data

  • ISO 27001:2022 certified — our information security management system is independently audited to the international standard
  • Microsoft 365 security controls — your data is protected by the same controls we deploy for our customers
  • Encryption — all data is encrypted in transit (TLS 1.2+) and at rest

Where your data is stored

This website is hosted on Microsoft Azure. All data collected via the site, including assessment data stored in Azure Cosmos DB, is processed and stored within the Microsoft Azure West Europe region.

Data sharing

We do not sell your personal data. We do not share your data with third-party marketing platforms. We may share data with trusted service providers who assist in operating the website and delivering our services (e.g., Microsoft Azure for hosting and analytics). These providers are contractually bound to protect your data and process it only according to our instructions. We may also disclose data if required by law.

Data retention

  • Assessment data — email address, company name, and assessment responses are retained for 12 months, then securely deleted
  • Analytics data — anonymous and retained per Microsoft's default retention policies for anonymised data
  • Contact submissions — retained for the duration of the business relationship or as long as necessary to address your enquiry

Your data protection rights

Your rights depend on applicable data protection legislation. Global Micro IT Solutions Inc processes data under the Applicable US federal and state privacy laws.

Your privacy rights (United States)

Depending on your state of residence, you may have additional privacy rights under applicable state laws. These may include:

  • Access — request information about what personal data we collect and how it is used
  • Deletion — request deletion of your personal data
  • Correction — request correction of inaccurate personal data
  • Opt out of sale — we do not sell your personal data, but you may exercise this right at any time
  • Non-discrimination — we will not discriminate against you for exercising your privacy rights

If you are a California resident, you may exercise rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). We do not sell or share personal information for cross-context behavioural advertising.

How to exercise your rights

Contact us at privacy@globalmicro.com. We will respond within the timeframes required by applicable data protection laws. We may request information to confirm your identity before processing your request.

Changes to this policy

We may update this Privacy Policy to reflect changes in our practices or for legal and regulatory reasons. Any updates will be posted on this page with a revised effective date.

Contact us

If you have questions about this Privacy Policy or our data protection practices: