i B L K N

Privacy Policy

Effective Date: April 20, 2026

1. Introduction

At IBLKN, a division of TCP Global headquartered in Romania[cite: 3, 14], we are committed to protecting your privacy and ensuring the highest level of information security. As a premier provider of integrated IT asset lifecycle management and secure data destruction services, safeguarding sensitive information is the core foundation of our business[cite: 109, 110].

This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you visit our website (www.iblkn.eu) or engage with our commercial services. Our operations and data handling practices are fully compliant with the General Data Protection Regulation (GDPR) and are strictly governed by our ISO 27001 (Information Security Management) certification[cite: 133, 208].

2. Our Role: Data Controller vs. Data Processor

Due to the specific nature of our IT Asset Disposition (ITAD) services, IBLKN operates in two distinct capacities regarding personal data:

  • As a Data Controller: When we collect your contact information via our website, manage our business relationship with your company, or handle billing and logistics.
  • As a Data Processor: When we handle, transport, and sanitize decommissioned IT equipment provided by your company that may contain personal or corporate data[cite: 137].

3. Information We Collect (As a Data Controller)

When you interact with our website or contact our team, we may collect the following types of information:

  • Identity & Contact Data: Name, email address, phone number, company name, and job title provided through our contact forms or customer portals.
  • Transaction Data: Information relevant to the services requested, such as logistics pickup addresses, billing details, and Exporter of Record (EoR) customs documentation[cite: 178].
  • Technical Data: IP addresses, browser types, and standard website analytics collected via cookies to optimize our digital presence.

4. Processing of Data on IT Assets (As a Data Processor)

When managing your decommissioned IT equipment, we do not access, read, or mine the data stored on these devices. Our sole processing activity is the complete and permanent destruction of this data[cite: 137]. We guarantee data sanitization through:

  • Certified Software Erasure: We utilize YouWipe, a NATO-approved and Common Criteria EAL+3 certified software, to perform NIST 800-88 compliant data wiping[cite: 129, 131, 133, 142]. Detailed Certificates of Erasure are provided for every processed asset[cite: 62, 142].
  • Physical Destruction: For assets requiring hardware destruction, we offer mobile on-site shredding [cite: 143, 144] and precision mechanical drilling to permanently disable storage media[cite: 145].

5. How We Use Your Information

We use the personal information collected as a Data Controller for the following purposes:

  • To provide quotes, respond to inquiries, and manage your account.
  • To organize secure door-to-door transport and generate real-time GPS tracking manifests[cite: 119].
  • To facilitate Exporter of Record (EoR) customs and tax procedures for cross-border transit[cite: 178].
  • To manage Employee Purchase Programs (EPP) and process transactions for refurbished equipment[cite: 191].
  • To comply with legal, WEEE environmental reporting, and ISO audit requirements[cite: 180].

6. Data Security Measures

We employ rigorous security measures to prevent your personal data and the data on your IT assets from being accidentally lost, used, accessed in an unauthorized way, altered, or disclosed:

  • Secure Logistics: End-to-end transport uses sealed vehicles and real-time GPS tracking to ensure a complete chain-of-custody[cite: 119].
  • Secure Facilities: Our technical laboratories and warehousing hubs are access-controlled and heavily monitored.
  • Compliance: Adherence to ISO 27001 standards ensures that our staff, processes, and IT systems maintain the highest security integrity[cite: 111, 208].

7. Data Sharing and Transfers

We do not sell your personal data. We may share necessary information with:

  • TCP Global Affiliates: Other entities within our corporate group to facilitate regional logistics across Eastern Europe, the Balkans, and Western Europe[cite: 116, 192].
  • Customs & Authorities: To comply with legal obligations when acting as an Exporter of Record (EoR) across non-EU borders[cite: 178, 179].
  • Service Providers: Trusted third-party logistics or audit partners bound by strict data processing agreements.

8. Data Retention

We will only retain your personal data for as long as reasonably necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements. Data audit trails and certificates of erasure are retained as required by ISO and GDPR compliance standards[cite: 46, 47, 62].

9. Your Legal Rights under GDPR

Under certain circumstances, you have rights under data protection laws in relation to your personal data, including the right to:

  • Request access to your personal data.
  • Request correction of the personal data that we hold about you.
  • Request erasure of your personal data.
  • Object to processing of your personal data.
  • Request restriction of processing of your personal data.
  • Request the transfer of your personal data to you or to a third party.
  • Withdraw consent at any time where we are relying on consent to process your personal data.

10. Contact Us

If you have any questions about this Privacy Policy, our data protection practices, or wish to exercise your legal rights, please contact our Data Protection Officer at:

  • Email: contact@iblkn.eu [cite: 106]
  • Headquarters: Romania, EU [cite: 14, 106]
  • Website: www.iblkn.eu [cite: 106]