In May 2021, Tacit Knowledge joined forces with Grid Dynamics.


Privacy policy

Your privacy is important to us, and our Privacy Policy outlines how we protect and respect the privacy of our clients and users that visit our website. This policy covers how we collect and use the information you provide us for our advertising promotions, mailings and other services we provide. By using our services, website, and website tools you agree to the collection and use of the information you provide as outlined in this Privacy Policy.

Grid Dynamics uses the information you provide us in the following general ways: service provision, service improvement, contact, research and promotion.

Grid Dynamics will not share or sell your email address and other personal information with any third parties except our designated service providers. These service providers may have access to personal information needed to perform their functions but are not permitted to share or use such information for any other purpose. Grid Dynamics may also receive your information from service providers or partners and will only use it where it has a lawful basis to do so.


E-mail policy

If you provide Grid Dynamics with your email address, you may be contacted by Grid Dynamics for marketing and campaign update purposes. When you become a Grid Dynamics customer, you will be subscribed to our automated campaign update emails. If at any time you do not wish to receive email from Grid Dynamics in the future, you can unsubscribe.

In order to unsubscribe from a mailing list, you may choose any of the following options:

  • Follow the unsubscribe link found at the bottom of the email you’ve received.
  • Contact your client success team or our customer service and ask to be unsubscribed from automated marketing and/or campaign update emails.
  • Remove yourself from Grid Dynamics’s automated campaign update emails by visiting our unsubscribe page. We will promptly update your preferences for this email address.

Please be aware that if you are a Grid Dynamics customer, a member of our client success team may continue to manually contact you via email for administrative or informational purposes, including follow-up messages regarding business transactions between Grid Dynamics and yourself. By law, such messages are not considered to be commercial e-mail.


How your data is stored and when it may be shared

We store your data in a secure database provided by third-party vendors and hosting partners that provide the necessary hardware, software and storage to offer you the services you request. These vendors and partners were verified and approved by our dedicated security team prior to us entering a contractual agreement with them, which includes a strict non-disclosure agreement mandating non-disclosure of any personal information provided to them by Grid Dynamics.

Grid Dynamics has a robust ISO 27001:2013-compliant information security policies and procedures in place to protect personal information from unauthorized access, alteration, disclosure or destruction and have several layers of applicable security measures, including:

  • Strict data classification system that defines all personally identifiable information as Highly Confidential by default with security controls such as listed below applied and enforced
  • Two factor authentication
  • Strong data encryption in transit and at rest
  • Strict password policy enforcement and regular password strength checks
  • Need-to-know access rights only, regularly reviewed for all access types
  • Network separation of systems that hold sensitive data
  • High priority of regular vulnerability scanning of such systems
  • High priority of any alerts originating from these systems
  • Intrusion Detection, centralized logging and monitoring
  • Business antimalware updated in real time at all systems involved
  • Security awareness training and testing of our employees who have access to personal data which includes regular phishing tests

We may disclose personally identifiable information under exceptional circumstances, such as to comply with court subpoenas, warrants, and other valid legal processes. It may be necessary to share such information with law enforcement authorities in order to investigate, prevent, or take action regarding suspected or actual illegal activities, including without limitation, fraud, situations involving potential threats to the physical safety of any person, or as otherwise permitted or required by law.


Use of Cookies & Other Technologies

Grid Dynamics uses cookies, tags, and other similar technologies. We only employ essential cookies that help us provide you with the service. The data we collect includes internet protocol (IP) addresses, browser type, web pages, operating system, date/time stamp. To collect this information, a cookie is set on your computer or device when you visit Grid Dynamics website. Cookies contain a small amount of information that allows our web servers to recognize you. We store the information that we collect through cookies.

We use this information to enhance your experience of using Grid Dynamics website and online services, and may use it to provide you promotional information regarding our services.

You may elect to refuse cookies. Please refer to your browser Help instructions to learn more about cookies and how you can opt out and delete these cookies.


Data Retention

We retain personal information we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with a service you have requested or to comply with applicable legal requirements).

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

As per Grid Dynamics Data Retention, Archiving and Destruction Policy all personal information is done in a secure manner conformant to, or equivalent to the current recommendations of NIST SP 800-88 Guidelines for Media Sanitization.


Visiting our Website from Outside the United States

This Privacy Policy is primarily intended to cover collection of information on our website from residents of the United States. Nevertheless, as we have offices in Europe Grid Dynamics are fully GDPR-compliant, with the relevant details covered in our GDPR Compliance Statement. Please consult this statement if you are based in the EU, or are a citizen of any EU/EEA state. Further relevant details including GDPR provisions are outlined in Grid Dynamics Data Protection Policy.

If you are visiting our website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located and our central database is operated. The data protection and other laws of the United States might not be as comprehensive as those in your country. Please be assured that we seek to take reasonable steps to ensure that your privacy is protected. By using our services, you understand that your information may be transferred to our facilities and those service providers with whom we might share it as described in this privacy policy.


Children Under 16

Our website and online services are not directed to children under sixteen and do not knowingly collect personally identifiable information from children under the age of sixteen. If we learn that we have collected personal information of a child under sixteen, we will take the appropriate steps to irreversibly delete such information from our records as soon as possible. If you learn that a child has provided us with personal information in violation of this Privacy Policy, you can alert our Data Protection Officer at


Third Party Processors

Our carefully selected partners and service providers may process personal information about you on our behalf as described below:

  • Digital Marketing Service Providers
    We periodically appoint digital marketing agents to conduct marketing activity on our behalf, such activity may result in the compliant processing of personal information.  Our appointed data processors include:
    (i) Prospect Global Ltd (trading as Sopro) Reg. UK Co. 09648733. You can contact Sopro and view their privacy policy here:  Sopro are registered with the ICO Reg: ZA346877 their Data Protection Officer can be emailed at:


Changes to Privacy Policy

We may make changes and updates to our Privacy Policy. We will post all changes on We encourage you to review this policy frequently so that you are aware of any changes in how we collect and use the information you provide us. This policy was last updated in April 2019.



If you have any unresolved questions in relation to personal data protection at Grid Dynamics this Privacy Policy does not answer, please review our Data Protection Policy and GDPR Compliance Statement. If your question is still unanswered, please direct it to our Data Protection Officer at