Privacy Policy

Effective Date: November, 2025
Last Updated: November, 2025
Entity: Multilink Consulting PLC
Website: [www.multilinkconsult.com]

---

1. Introduction

Multilink Consulting PLC (“Multilink,” “we,” “our,” or “us”) respects your privacy and is committed to protecting your personal data.
This Privacy Policy explains how we collect, process, store, share, and safeguard personal information in compliance with:

• The General Data Protection Regulation (GDPR – EU 2016/679); and

• The Ethiopian Personal Data Protection Proclamation No. 1221/2021 (PDP).

By using our website or submitting your information, you consent to the practices described herein.

---

2. Data Controller

The data controller responsible for your personal data is:

Multilink Consulting PLC
Head Office: Addis Ababa, Ethiopia
Email: [info@multilinkconsult.com]
Phone: [+251-911207364]

We ensure that all personal data processing activities are lawful, transparent, and limited to legitimate business purposes.

---

3. What Personal Data We Collect

We collect and process personal data necessary for our consulting, advisory, and communication services. This includes:

• Identification and contact data: full name, email, phone, company name, title, and position.

• Communication data: messages, inquiries, project details, or documents you share with us.

• Technical and analytics data: IP address, browser type, access time, referring pages, cookies, and device information.

• Contractual data: project agreements, invoices, and billing information (where applicable).

We do not collect sensitive data such as health, ethnicity, or religious beliefs unless strictly necessary and explicitly consented to.

---

4. Purpose of Processing

Your personal data is processed for the following legitimate and lawful purposes:

1. To respond to your inquiries, proposals, and service requests.

2. To manage consulting contracts, client relationships, and projects.

3. To send updates, marketing information, or invitations with your consent.

4. To improve our website, services, and user experience.

5. To comply with applicable laws, accounting, and regulatory obligations.

---

5. Legal Basis for Processing

Processing of your data is based on the following legal grounds:

• Consent (GDPR Art. 6(1)(a), PDP Art. 9): when you voluntarily provide data through forms or email.

• Contractual necessity (GDPR Art. 6(1)(b)): when processing is required to perform or prepare a contract.

• Legal obligation (GDPR Art. 6(1)(c), PDP Art. 10): when we must comply with tax, accounting, or regulatory duties.

• Legitimate interest (GDPR Art. 6(1)(f)): for service improvement, quality assurance, and website functionality.

---

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes stated above or as required by law.
When data is no longer needed, it will be securely deleted, anonymized, or archived in compliance with Ethiopian and EU standards.

---

7. Data Sharing and Disclosure

We do not sell, rent, or trade personal data.
We may share data only with:

• Service providers: web hosting, IT maintenance, analytics, or email delivery partners, under confidentiality agreements.

• Professional partners and subcontractors: when collaborating on projects, subject to data processing agreements.

• Public authorities: when legally required under Ethiopian or EU regulations.

In all cases, we ensure data processors comply with GDPR and the Ethiopian PDP Proclamation.

---

8. Cross-Border Data Transfers

When personal data is transferred outside the European Economic Area (EEA) or Ethiopia, we ensure appropriate safeguards such as:

• Standard Contractual Clauses (SCCs) under GDPR; or

• Adequacy or reciprocity arrangements recognized by Ethiopian authorities; or

• Explicit consent from the data subject.

---

9. Cookies and Analytics

Our website uses cookies and analytics tools to understand visitor behavior and improve user experience.

• Essential cookies: required for website operation.

• Analytical cookies: used for performance tracking (e.g., Google Analytics).

• Marketing cookies: used only with your explicit consent.

You can manage or disable cookies via your browser settings. For more details, see our [Cookie Policy].

---

10. Your Rights (GDPR & PDP Proclamation)

You have the following rights regarding your personal data:

To exercise these rights, contact us at privacy@multilinkconsult.com.

---

11. Data Security

We maintain strict administrative, technical, and physical measures to protect personal data from unauthorized access, loss, misuse, or alteration.
This includes encryption, access control, firewalls, data backups, and staff confidentiality commitments.

---

12. Processing Children’s Data

Our services and website are not intended for children under 18 years of age.
We do not knowingly collect data from minors. If such data is discovered, it will be promptly deleted.

---

13. Third-Party Links

Our website may contain links to third-party sites.
We are not responsible for their content or privacy practices. Please review their privacy policies before sharing personal data.

---

14. Changes to This Policy

We may update this policy periodically to reflect legal or operational changes.
The revised version will be posted on this page with the “Last Updated” date. Continued use of our website signifies acceptance of the updated policy.

---

15. Contact Information

For privacy concerns, data requests, or questions about this policy:

Multilink Consulting PLC
📧 Email: info@multilinkconsult.com
🌍 Website: [www.multilinkconsult.com]
📍 Addis Ababa, Ethiopia

---

✅ Compliance Summary

• Legal Frameworks: GDPR (EU 2016/679) & Ethiopian Personal Data Protection Proclamation No. 1221/2021

• Supervisory Authority (Ethiopia): Data Protection Commission (to be established under PDP)

• Supervisory Authority (EU): Data Protection Authority of your country of residence

---