GDPR Privacy Policy

Home GDPR Privacy Policy

At PrajnaBytes International Private Limited, we respect your privacy and are committed to complying with the General Data Protection Regulation (GDPR). This policy explains how we collect, process, and protect personal data of users from the European Union (EU) and European Economic Area (EEA).

1. What is GDPR?

The General Data Protection Regulation (GDPR) is a data protection law enacted by the European Union to safeguard individuals’ privacy and personal data. GDPR grants users rights regarding how their personal information is collected, used, and stored.

2. Legal Basis for Data Processing

Under GDPR, we process personal data based on the following legal grounds:

  • Consent: When you give explicit permission to process your data.
  • Contractual Obligation: When data processing is necessary to fulfill a service agreement.
  • Legal Compliance: When required by law for taxation, fraud prevention, or regulatory compliance.
  • Legitimate Interest: When processing is necessary for operational efficiency, analytics, or security purposes.

3. Data We Collect

  • Personal Information: Name, email, phone number, business details, and user account information.
  • Usage Data: IP address, browser type, location, and website interaction.
  • Cookies & Tracking Technologies: We use cookies for analytics and personalized user experience. See our Cookies Policy for more details.

4. How We Use Your Data

  • To provide and improve our services.
  • To process transactions and deliver requested services.
  • To comply with legal obligations and regulatory requirements.
  • To analyze website traffic and user interactions.
  • To prevent fraud, enhance security, and improve customer support.

5. Data Sharing & Third-Party Services

We do not sell or trade personal data. However, we may share your data with:

  • Service Providers: Secure payment processors, analytics tools, and cloud hosting providers.
  • Legal Authorities: When required by law or regulatory compliance.
  • Business Transfers: In case of mergers, acquisitions, or asset sales.

6. Your GDPR Rights

If you are an EU or EEA resident, you have the following rights under GDPR:

  • Right to Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request corrections to inaccurate or incomplete data.
  • Right to Erasure (“Right to be Forgotten”): Request the deletion of your personal data.
  • Right to Restrict Processing: Request limitations on how we process your data.
  • Right to Data Portability: Request transfer of your data to another service.
  • Right to Object: Object to data processing based on legitimate interests.
  • Right to Withdraw Consent: Withdraw consent at any time when data processing is based on consent.

7. How to Exercise Your Rights

To request access, modifications, or deletion of your personal data, please contact us through our Contact Page. We will respond within 30 days as required by GDPR.

8. Data Security & Retention

  • We implement security measures to prevent unauthorized access, data loss, or breaches.
  • Personal data is retained only as long as necessary for business operations and legal compliance.

9. Cross-Border Data Transfers

As we operate globally, we may store and process personal data outside the EU. We ensure such transfers comply with GDPR through:

  • Data Protection Agreements (DPAs) with third-party service providers.
  • Standard Contractual Clauses (SCCs) for international data transfers.

10. Cookies & Tracking Technologies

We use cookies and similar tracking technologies to enhance user experience and analyze website performance. You can manage your cookie preferences by referring to our Cookies Policy.

11. Updates to This Policy

We may update this GDPR Privacy Policy from time to time to reflect changes in regulations or our practices. Please review this page periodically for updates.

12. Contact Us

If you have any questions about this GDPR Privacy Policy or how we handle your data, please visit our Contact Page.