Privacy Policy

Who we are

Our website address is:

Personal data protection and compliance with the law are of utmost importance to us at Cost2Profit. We take great great complying with the law when we collect, process or use information or personal data.

Our goal is to ensure you feel safe when you visit our website and use our services. Below, you can learn more about our data collection and use of data policy.

This privacy policy sets out how Cost2Profit (“we”, “our”, “us”) handle your data, personal data of our customers, suppliers, employees, workers and other third parties.


Below you will find an explanation of the basic terms used in this Privacy Policy. We gathered them here in order to make it easier for you to navigate through the policy and understand our role and purpose in the collection and the use of Information (as defined below).

“Applicable laws” means all the laws and regulations relevant to the collection, processing and storage of data, especially all the data protection laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and the California Consumer Privacy Act (“CCPA”; California Civil Code Section 1798.100 et seq.).

“Cost2Profit” or “we” or “us” or „our” means

“Cookies” means small text files stored in a web browser by a website (here specifically: Site) or by an ad server. By storing certain information in a cookie, those web browsers, ad servers, and explicitly our Site are able to remember your preferences and recognize websites visited and/or web browsers used from one visit to another.

“Data Protection Officer” means a person appointed by Cost2Profit to, in particular, watch over the security of your Data, monitor our compliance with Applicable laws, and be a point of contact in all matters regarding data protection.

“Legal Grounds” means the legal basis for the collection, processing and storage of your Personal Information, as defined in Applicable laws.

“Log Data” means information that is automatically reported by your browser each time you access our Site or use our Services and which is sent by your web browser that our servers automatically record. Log Data may include information such as your IP address, browser type, web requests, domain names or pages viewed.

“Personal Information” or “Information” or “Data” means any information relating to an identified or identifiable person as defined in Applicable laws, particularly in article 4.1 of GDPR and Section 1798.140 of CCPA.

“Site” means the Cost2Profit website

“Services” means services provided by Cost2Profit via Site in accordance with the Terms and Conditions.

“You” means an individual that uses our Services via the Site or/and an individual who uses the Site but has no access to the areas of the Site and Services.

What personal data we collect and why we collect it

We collect Information about you through:

– your use of our contact and registration forms

– your use of sign-in with different account option

– your use of our newsletter form

– your use of our forms to download our publications, like reports, guides, etc.

– your use of our Services

– your use of Site

– you contacting us, for example via email

The categories of your Data that we collect may include: name and surname, company name, company address, company phone number, cell phone number, tax ID number, e-mail address, payment and invoice details.


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

Anything that you send to us via contact forms will be known as “submissions.” Those submissions include, but are not limited to letters, emails, comments, responses on social media platforms such as Facebook, Youtube, Instagram, and others. As part of your submissions, you knowingly, voluntarily and willingly share your information, such as name, e-mail address, telephone number and/or other identifiable information. We process your information on the basis of our legitimate interest, as defined in Article 6(1)(f) of the GDPR. If you do not provide us with relevant information, we will not be able to perform services to you. Further, you authorize Cost2Profit to use your information for further communication and improvement of the website.

You can object at any time to the processing of your Personal Data when the object is justified by the particular situation in which you have found yourself. We shall no longer process the Personal Data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defense of legal claims. You can exercise your rights by contacting us (contact details in section XVIII of this Privacy Policy). This means you no longer consent to receiving information from us.


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


When you interact with, we may also automatically collect information from your site activities through the usage of Cookies, Log Data and similar technologies on our Site.

This helps us personalize our website to better meet your needs, and to provide you with customized content and to act within our advertising purposes. We may also use this information for the purposes of analytics and monitoring of the effectiveness of our performance, including the collection of the aggregate website usage data (such as the overall number of Site visitors or pages viewed).

The information mentioned above may include but is not limited to the following: information about your interactions with our website, technical information about your computer hardware and software (URL, cookie data, IP address, devices that you use, device ID, language, browser type, etc.).

Who we share your data with

We do not share your data with third-parties in a way as to reveal any of your personal information like email, name, etc. or for marketing purposes. However, some data is transferred and/or stored with third-party services we use, like our website provider and other cloud-based services. Furthermore, we do not share your data, unless:

– doing so is appropriate to carry out your own request;

– we believe it’s needed to enforce our Terms of Service, or that is legally required;

– we believe it’s needed to detect, prevent or address fraud, security or technical issues;

– otherwise protect our property, legal rights, or that of others.

We don’t share your personal information with third parties. Only aggregated, anonymized data is periodically transmitted to external services to help us improve our website and service. We currently use Google Analytics (traffic analysis, SEO optimization) and Contact7Form. We listed below what data these third parties extract exactly. Feel free to check out their own Privacy Policies to find out more.

– Google Analytics: anonymous (ad serving domains, browser type, demographics, language settings, page views, time/date), pseudonymous (IP address)

We provide social media sharing buttons and links to our social media to make the website better and improve communication across our community.

When you use social media platforms with this website, each platform has its own technologies and policies to be aware of. For information on limiting the use of widgets and sharing functions with social networks, see below:

For Facebook widgets, you can find more information here.

For LinkedIn widgets, you can find more information here.

How long we retain your data

We will store your information for a period of time required for the purposes for which it was collected using generally accepted security standards and in compliance with applicable laws. We will not retain your Personal Information for longer than required.

We store Information about you when you have an account on our Site and when you use our Services. Please note that even if you delete your account, Cost2Profit may have the right to process your Data for the purpose of creating statistics, pursuing claims or defending against claims, handling your complaints and chargebacks as well as in order to meet the tax and accounting law requirements, where such processing will last only for the period of time necessary to achieve the intended purposes (e.g. for pursuing claims or defending against claims, the period of retention of your Data is no longer than limitation period for claims as defined in statutory law).

For marketing purposes your Data will be processed until such time you object to it. Where you have consented to marketing communications via e-mail or other telecommunication means for our marketing purposes (e.g. you agree to receive our newsletter or contacting you by phone), you may withdraw your consent at any time by contacting us as well as you may unsubscribe from newsletter at any time by clicking the unsubscribe link in an email from us. In these circumstances, your personal data will be processed until your withdrawal of the consent.

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

The personal data that we collect from you will be stored on servers inside the European Economic Area (“EEA”). We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with the GDPR and our data protection policies. Visitor comments may be checked through an automated spam detection service.

Your contact information

If you have any questions regarding this privacy policy or any other issue, you can contact us using the information below:

Additional information

How we protect your data

We are putting additional safeguards to process personal data securely and safely. For instance, we try to ensure data is encrypted when in transit and storage, and access to this data will be strictly limited to a minimum number of individuals. The data is stored entirely within the European Economic Area.

While we take all reasonable steps to ensure your data is treated securely and in accordance with this policy, the transmission of information via the internet is not completely secure. We do our best to protect your personal data, but we cannot guarantee the security of your data transmitted to our website. Any transmission is at your own risk. Once we receive your transmission, we use strict procedures to limit unauthorized access. We aim to use encryption in data transfers and storage. Furthermore, we have very strict policy who can access information.

What data breach procedures we have in place

Cost2Profit uses a variety of security technologies and procedures that help protect your personal information from unauthorized access, use, disclosure, alteration or destruction.

We are using Secure Sockets Layer (SSL) and Hypertext Transfer Protocol Secure (HTTPS) throughout all our sites. This encrypts our user communications with the servers so personal identifiable information is not captured by third parties without authorization.

Only qualified and authorized personnel is permitted to access personal information, and they may do so only for permitted business functions.

All supplied sensitive/credit Information is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our payment gateway providers database only to be accessible by those authorized with special access rights to such systems, and are required to keep the Information confidential. After a transaction, your private Information (credit cards, social security numbers, financials, etc.) will not be stored on our servers.

In case of a data breach, system administrators will immediately go through affected users and will attempt to reset passwords if needed after informing the user. Furthermore, we will create a fresh backup, scan the site for malware and attempt to identify the breach, removing any associated code and means of access. Subsequently we will look at preventative measures that will prevent a similar breach from happening again, and take action where possible.

What third parties we receive data from

What automated decision making and/or profiling we do with user data

Industry regulatory disclosure requirements