Skip links

Please be alert of scammers pretending to be us

Learn more

Request a trial run and discover the benefits

Learn more
Contact us
drilling_tools 25-cropped
ED-Projects

DTI Privacy Notice

Version: 1.0

Effective date: April 2026

Contact: Privacy Office (privacy@drillingtools.com)

This Privacy Notice explains how Drilling Tools International, Inc. and its affiliated entities within the DTI group (“DTI”, “we”, “us”, or “our”) collect and use personal data when you interact with our websites, contact us, or otherwise engage with our business.

In most cases, the personal data we process relates to business contacts interacting with DTI in a professional capacity, including customers, suppliers, service providers, and individuals submitting enquiries about our products or services.

This Privacy Notice applies when you:

  • visit our websites
  • submit enquiries or contact forms
  • communicate with us as a customer, supplier, or business contact
  • interact with our marketing communications
  • apply for a job with DTI or submit recruitment information
  • interact with us in the course of business communications or professional engagement

This Privacy Notice applies to the following websites operated by DTI (collectively referred to as the “Websites”):

Depending on your location, additional privacy rights may apply under applicable laws such as the EU/UK GDPR or US state privacy laws.

If you have any questions about this Notice or how we handle personal data, you can contact us at: privacy@drillingtools.com

1 Data Controller

The primary data controller responsible for personal data collected is:

Drilling Tools International, Inc.
10370 Richmond Avenue, Suite 1000
Houston, TX 77042
United States

Email: privacy@drillingtools.com

Drilling Tools International operates globally through a number of affiliated companies within the DTI group.

Depending on the nature of your interaction with us, your personal data may be processed by Drilling Tools International, Inc. and one or more affiliated DTI entities as independent or joint data controllers.

For example, personal data relating to customers, suppliers, or business contacts located in the European Union or the United Kingdom may be processed by DTI group entities established in those jurisdictions in connection with local business operations, service delivery, or regulatory obligations.

Where multiple DTI entities jointly determine the purposes and means of processing, they may act as joint controllers in accordance with applicable data protection laws.

You may contact the DTI group regarding any data protection matter at: privacy@drillingtools.com

2 What Personal Data We Collect

We may collect personal data directly from you, automatically through our websites, or from third-party sources.

Information you provide directly

This may include:

  • Name
  • Company name
  • Job title
  • Email address
  • Phone number
  • Business contact details
  • Information submitted through contact forms or enquiries
  • Communications exchanged with DTI

Automatically collected information

When you visit our Websites, we may collect certain information automatically, including:

  • IP address (processed in a truncated or masked form where supported by the technology used)
  • Browser type and device information
  • Pages visited and interaction data
  • Referring website
  • Approximate location derived from IP address
  • Cookie identifiers
  • Interactions with marketing content or advertisements

This information helps us operate and improve our Websites.

Information from third-party sources

In some cases, we may receive professional contact information from:

  • publicly available sources (such as corporate websites or public professional profiles)
  • event or conference organisers
  • third parties where permitted under applicable law

Categories of data obtained from these sources may include name, job title, company affiliation, business contact details, and professional profile information.

3 How We Use Your Personal Data

This may include managing enquiries and lead information submitted through website forms, landing pages, or marketing campaigns. We process personal data for the following purposes:

 

Purpose Lawful Basis
Responding to enquiries and providing information Legitimate interest
Providing information about products and services Legitimate interest (B2B communications permissible under applicable laws) or consent (where required by local marketing regulations)
Managing supplier and vendor relationships Contractual necessity or legitimate interest
Managing customer accounts, orders, and service delivery Contractual necessity or legitimate interest
Operating and improving our Websites Legitimate interest
Website analytics and performance monitoring Legitimate interest (where permitted)
Marketing communications (email or direct outreach) Legitimate interest (where permitted for B2B communications) or consent (where required)
Targeted advertising or remarketing Consent (where required for cookies or tracking technologies)
Managing business relationships and professional engagement Legitimate interest
Compliance with legal, audit or regulatory obligations Legal obligation
Recruitment and evaluation of job applicants Legitimate interest or steps prior to entering into employment contract
Protecting the security of our systems, websites, and business operations Legitimate interest
Processing payments and managing financial transactions Contractual necessity or legal obligation

 

Our legitimate interests include maintaining business relationships, improving our services, ensuring network security, and managing commercial operations.

Where consent is required, you may withdraw consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before the withdrawal.

Where GDPR applies (for example, for individuals located in the EU or UK), the legal bases described above are relied upon. For individuals in other jurisdictions, processing is carried out in accordance with applicable local laws and legitimate business purposes.

If you do not provide certain information, we may be unable to respond to your enquiry, provide requested services, or establish a business relationship.

Legitimate Interests: When relying on legitimate interests, we carry out a Legitimate Interests Assessment to confirm the processing is necessary, proportionate, and does not override your rights and freedoms.

4 Website Analytics and Marketing Technologies

DTI uses analytics and marketing technologies to understand how visitors interact with our Websites and to measure marketing effectiveness.

We use a combination of analytics, marketing, and customer engagement tools to understand website usage, manage enquiries, and support business development activities

The specific technologies currently used on our Websites are listed in the Cookie Declaration accessible through our cookie banner.

These technologies may collect information such as:

  • pages visited
  • interactions with website content
  • navigation behaviour
  • engagement with marketing campaigns

Some technologies may support remarketing or retargeting, meaning users who previously visited our Websites may see DTI advertisements on other platforms.

Advertising platforms may use their own cookies or identifiers in accordance with their own privacy practices.

Some pages on our Websites may include embedded content such as videos or media provided by third-party platforms. These services may set cookies or collect information when the content is loaded.

Where required by law, non-essential tracking technologies are activated only after consent is provided through our cookie management tool. Non-essential cookies are only placed with prior, informed, and freely given consent.

5 Cookies

Our Websites use cookies and similar technologies to ensure proper functionality and improve user experience.

Cookies generally fall into the following categories:

Essential cookies
Necessary for website operation and security.

Functional cookies
Support enhanced website functionality.

Analytics cookies
Help us understand how visitors interact with the Websites.

Advertising cookies
Used to measure marketing effectiveness or support remarketing activities.

Detailed information about cookies used on each site, including their purpose and retention period, is available in the Cookie Declaration accessible via the cookie banner.

You may modify or withdraw your consent at any time using the cookie settings available on our Websites.

6 Who We Share Personal Data With

We may share personal data with trusted third parties that support our business operations, including:

  • website hosting and infrastructure providers
  • IT and cybersecurity service providers
  • analytics and advertising platforms
  • customer relationship management providers
  • professional advisers such as legal or compliance advisers
  • affiliated companies within the DTI group

These organisations process personal data either on our behalf as service providers or as independent controllers depending on the nature of the service provided.

We may also disclose personal data where required to comply with legal obligations, regulatory requirements, or law enforcement requests.

DTI does not sell personal data.

Where we engage service providers who process personal data on our behalf, we enter into data processing agreements in accordance with Article 28 GDPR.

7 International Transfers

In the course of its operations, DTI may transfer your personal data to recipients located outside the UK/EEA, including to DTI group entities and third-party service providers (for example, in the United States).

Where your personal data is transferred to a country or territory outside the UK or EEA that has not been deemed to provide an adequate level of data protection, DTI ensures that appropriate safeguards are in place in accordance with Articles 46-49 of the GDPR. These safeguards may include one or more of the following:

  • The European Commission’s Standard Contractual Clauses (“SCCs”) pursuant to Article 46(2)(c) EU GDPR, and/or the UK International Data Transfer Addendum (“UK IDTA”) pursuant to Article 46(2) UK GDPR;
  • Binding corporate rules approved by a competent supervisory authority pursuant to Article 47 GDPR;
  • An approved certification mechanism together with binding and enforceable commitments (Article 46(2)(f) GDPR), or an approved code of conduct together with binding and enforceable commitments (Article 46(2)(e) GDPR); or
  • In the absence of an adequacy decision or appropriate safeguards, a derogation under Article 49 GDPR, including where the transfer is necessary for the performance of a contract, for important reasons of public interest, for the establishment, exercise, or defence of legal claims, or where you have explicitly consented to the proposed transfer.

Where transfers are made on the basis of SCCs, the UK IDTA, or binding corporate rules, DTI carries out Transfer Impact Assessments (“TIAs”) to evaluate whether the laws and practices of the recipient country may affect the effectiveness of the safeguards relied upon, and implements supplementary measures where necessary (such as encryption, pseudonymisation, or additional contractual commitments) in line with the recommendations of the European Data Protection Board.

You may obtain a copy of the relevant safeguards applied to any transfer of your personal data by contacting the Privacy Office at privacy@drillingtools.com.

Please note that privacy laws in countries outside the EU or UK may differ from those in your jurisdiction.

Personal data may also be shared between DTI group entities located in different jurisdictions. Where this involves international transfers, appropriate safeguards are applied in accordance with applicable data protection laws, including transfers to service providers supporting website hosting, analytics, and marketing activities.

8 How Long We Retain Data

We retain personal data only for as long as necessary to fulfil the purposes described in this Notice. For example:

  • website analytics data may be retained for up to 14–26 months depending on analytics configuration
  • enquiry and contact information may be retained for up to 24 months where no further relationship develops
  • business records may be retained longer where required to comply with legal, tax, or regulatory obligations

Retention periods may vary depending on legal obligations and operational requirements. Retention periods are determined in accordance with DTI’s internal data retention policies and applicable legal requirements.

9 Your Rights (EU/UK Residents)

If you are located in the European Union or United Kingdom, you have the right to:

  • Access your personal data
  • Request correction
  • Request deletion
  • Restrict processing
  • Object to processing
  • Data portability (where applicable)
  • Withdraw consent
  • Not be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you
  • Lodge a complaint with your local data protection authority

To exercise your rights, contact: privacy@drillingtools.com

You may also use the Privacy Rights request form available on our website.

We will respond to your request without undue delay and in any event within one month of receipt. This period may be extended by two further months where necessary, taking into account the complexity and number of requests, in which case we will inform you of any such extension within one month of receipt of your request.

Depending on your location, you may have certain rights regarding your personal data under applicable data protection laws.

Automated decision-making

DTI does not use personal data to make decisions based solely on automated processing that produce legal or similarly significant effects on individuals. If this changes, we will provide specific notice explaining the logic involved, the significance, and the envisaged consequences of such processing, and we will inform you of your rights in relation to such processing, including the right to obtain human intervention, to express your point of view, and to contest the decision.

Complaints

You may lodge a complaint with your local supervisory authority.

UK residents may contact the Information Commissioner’s Office (ICO):

https://ico.org.uk/

EU residents can find their national supervisory authority via:

https://edpb.europa.eu/

10 Data Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, disclosure, alteration, or destruction.

These measures include access controls, encryption, network security, and monitoring of systems.

11 Children’s Data

Our Websites are not intended for children.

We do not knowingly collect personal data from individuals under the age of 13, or under 16 where applicable law requires parental consent.

12 Links to Third-Party Websites

Our Websites may contain links to third-party websites. These websites operate independently from DTI, and we are not responsible for their privacy practices.

We encourage you to review the privacy notices of any external websites you visit.

13 Recruitment Data

If you apply for employment with DTI, personal data submitted during the recruitment process may be processed to evaluate your application.

Recruitment-related data may be subject to additional privacy terms communicated during the application process.

14 Updates to This Notice

We may update this Privacy Notice from time to time to reflect legal, technical, or operational changes. Where changes are material, we will take reasonable steps to notify you.

The latest version will always be available on our Websites.