Privacy Policy
Alliance Precision Group is committed to protecting your personal data and respecting your privacy rights in accordance with the EU General Data Protection Regulation (GDPR) and applicable international data protection laws.
Table of Contents
Data Controller Information
Alliance Precision Group ("we," "us," or "our") is the data controller responsible for your personal data. We are an engineering-driven contract manufacturing company providing industrial supply chain solutions to international buyers.
For the purposes of GDPR and applicable international data protection legislation, the data controller is:
Data We Collect
We collect personal data only to the extent necessary to deliver our services and maintain business relationships. The categories of personal data we may collect include:
Business Contact Information
Full name, job title, company name, business email address, telephone number, and postal address. Collected when you submit an inquiry, request a quotation, or initiate commercial correspondence.
Technical & Project Data
Engineering drawings, CAD files, technical specifications, product samples, and related project documentation submitted for DFM review or quotation purposes. This data is treated with strict confidentiality.
Transaction & Commercial Data
Purchase orders, invoices, payment records, shipping addresses, and related contractual documentation generated through the course of commercial engagement.
Website Usage Data
IP address, browser type, device information, pages visited, time spent on pages, and referral sources collected automatically when you access our website. This data is used in aggregate form for analytics.
Communication Records
Email correspondence, inquiry form submissions, and any written communications exchanged during pre-sales, project execution, or after-sales support.
Note on Sensitive Data: We do not intentionally collect sensitive personal data (special categories under GDPR Article 9) including health data, biometric data, or political opinions. Please refrain from including such information in any communications or submissions.
Legal Basis for Processing
Under GDPR Article 6, we process personal data only where a valid legal basis exists. Our processing activities are based on the following grounds:
Contractual Necessity
Processing required to perform a contract or take pre-contractual steps at your request (Art. 6(1)(b)).
Legitimate Interests
Pursuing our legitimate business interests in B2B communications, service improvement, and fraud prevention (Art. 6(1)(f)).
Legal Obligation
Compliance with applicable legal requirements including tax, trade, export control, and accounting regulations (Art. 6(1)(c)).
Consent
Where we rely on consent (e.g., marketing communications), you may withdraw it at any time without affecting prior processing (Art. 6(1)(a)).
How We Use Your Data
We use personal data collected for clearly defined, lawful purposes. Your data will not be used in any manner inconsistent with the purposes described at the time of collection. Specific uses include:
- Processing inquiries and RFQs -- Reviewing technical requirements, preparing quotations, and responding to requests for manufacturing proposals.
- Contract execution -- Managing purchase orders, coordinating production schedules, quality control inspections, and shipment logistics.
- Technical communication -- Sending DFM analysis reports, quality inspection documentation, shipping notifications, and after-sales support.
- Account and relationship management -- Maintaining accurate business records, managing long-term supply agreements, and supporting ongoing operational coordination.
- Legal and regulatory compliance -- Meeting obligations under applicable trade, export, customs, and tax regulations in relevant jurisdictions.
- Website improvement -- Analyzing aggregated and anonymized usage patterns to improve website performance and user experience.
- Marketing communications -- Where consent has been obtained, sending relevant industry updates, capability announcements, or service information. Unsubscribe options are always provided.
Data Sharing & Third Parties
We do not sell, rent, or trade personal data to third parties. Data is shared only where necessary for service delivery or where required by law, and only with parties who are contractually bound to maintain appropriate data protection standards.
Categories of third parties with whom we may share data include:
Manufacturing & Production Partners
Vetted production facilities in our manufacturing network who require technical specifications to fulfill production orders. All partners operate under confidentiality and non-disclosure agreements.
Logistics & Freight Partners
Freight forwarders, customs brokers, and shipping carriers who require delivery and contact information to facilitate shipment and customs clearance.
Professional & Legal Advisors
Accountants, legal counsel, and compliance consultants engaged to support business operations, regulatory compliance, or dispute resolution, subject to professional confidentiality obligations.
Regulatory & Government Authorities
Where disclosure is required by applicable law, court order, or governmental regulation, including export control and customs authorities.
International Data Transfers
As an international B2B operation, personal data may be transferred to and processed in countries outside the European Economic Area (EEA), including China and other jurisdictions. We take appropriate safeguards to ensure that all such transfers comply with applicable data protection requirements.
Where we transfer data outside the EEA to countries not recognized by the European Commission as providing an adequate level of protection, we rely on the following mechanisms:
- Standard Contractual Clauses (SCCs) -- The European Commission's approved model clauses for international transfers (2021/914/EU).
- Contractual necessity -- Where transfer is required to perform a contract with you or to take steps at your request prior to entering a contract.
- Your explicit consent -- Where you have been informed of the transfer risk and consented to the processing.
You may request information about the specific safeguards applied to a particular transfer by contacting us at the address provided in Section 11.
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable legal, regulatory, or contractual obligations. Our retention periods are determined by the following criteria:
| Data Category | Retention Period |
|---|---|
| Inquiry & contact records | 3 years |
| Contractual & order documents | 7 years |
| Technical drawings & CAD files | Duration of relationship + 2 years |
| QC inspection reports | 5 years |
| Website analytics data | 26 months |
| Marketing communications consent | Until withdrawal of consent |
Upon expiry of applicable retention periods, data is securely deleted or anonymized in accordance with our internal data disposal procedures.
Your Rights Under GDPR
If you are located in the European Economic Area or a jurisdiction with equivalent data protection legislation, you have the following rights with respect to your personal data. We are committed to honoring these rights without undue delay and within the applicable statutory timeframes (generally 30 days).
Right of Access
Request a copy of all personal data we hold about you, along with information about how it is processed.
Right to Rectification
Request correction of inaccurate or incomplete personal data we hold about you.
Right to Erasure
Request deletion of your personal data ("right to be forgotten") where no overriding legal basis for continued processing exists.
Right to Restriction
Request that processing of your data be restricted in certain circumstances, such as while accuracy is contested.
Right to Data Portability
Receive your personal data in a structured, machine-readable format, or have it transferred directly to another controller where technically feasible.
Right to Object
Object to processing based on legitimate interests or for direct marketing purposes at any time.
How to Exercise Your Rights: Submit a written request to privacy@allianceprecision.com. We will respond within 30 days. We may request verification of identity before processing your request. Exercising your rights is free of charge unless requests are manifestly unfounded or excessive.
Cookies & Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance user experience and analyze website traffic. We comply with the EU ePrivacy Directive and applicable cookie consent requirements.
Strictly Necessary Cookies
Always ActiveEssential for website functionality including session management, security tokens, and load balancing. These cannot be disabled as they are required for the site to operate properly. No consent is required for these cookies.
Analytics Cookies
Consent RequiredUsed to collect aggregated and anonymized information about how visitors interact with our website (e.g., Google Analytics with IP anonymization enabled). Helps us improve content and navigation. Activated only with your prior consent.
Preference Cookies
Consent RequiredRemember user preferences such as language selection or previously filled form fields to improve usability across visits. Activated only with your prior consent.
Marketing & Retargeting Cookies
Consent RequiredWe do not currently deploy third-party advertising or retargeting cookies. Should this change, this policy will be updated and fresh consent will be sought prior to deployment.
Managing Cookies: You may control cookie preferences via our cookie consent banner displayed on your first visit. You may also manage cookies through your browser settings. Please note that disabling certain cookies may affect website functionality.
Most browsers allow you to view, block, and delete cookies. For detailed instructions, refer to your browser's help documentation or visit www.allaboutcookies.org.
Data Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, alteration, or destruction, in accordance with GDPR Article 32 and industry best practices.
Our security measures include, but are not limited to:
- TLS/SSL encryption for all data transmission via our website and email communications.
- Access controls and role-based permissions limiting personal data access to authorized personnel only.
- Non-disclosure agreements (NDAs) executed with all staff, manufacturing partners, and third-party service providers who handle personal or technical data.
- Regular review of data handling procedures and access logs.
- Secure storage and disposal of physical documents containing personal or confidential information.
In the event of a personal data breach that is likely to result in risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and affected individuals without undue delay, as required by GDPR Article 33-34.
Contact & Complaints
If you have any questions about this Privacy Policy, wish to exercise your data subject rights, or have concerns about how we handle your personal data, please contact us directly:
Privacy Contact
Data Protection Contact
We aim to respond to all data protection inquiries within 5 business days, and will fulfill subject access requests within 30 calendar days.
Right to Lodge a Complaint
If you believe we have not handled your personal data in accordance with applicable data protection law, you have the right to lodge a complaint with your local supervisory authority.
For EU residents, this is the data protection authority in your member state. For UK residents, the relevant authority is the Information Commissioner's Office (ICO) at ico.org.uk.
We encourage you to contact us first so we can attempt to resolve your concern directly.
Policy Updates
We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. When we make material changes, we will update the "Last Updated" date at the top of this page. Where required by applicable law, we will provide more prominent notice or seek fresh consent. We encourage you to review this policy periodically. Continued use of our website or services after any update constitutes acceptance of the revised policy.
Questions About Your Data?
Our team is committed to transparent, compliant data handling. Reach out directly.