Privacy Policy

Privacy Policy

Data Sanitization (“we”, “our”, “us”) is committed to protecting your privacy and handling your personal data with transparency and care. This Privacy Policy outlines how we collect, use, store, disclose, and protect your personal information when you interact with us, in accordance with applicable Indian laws, including:

  • Information Technology Act, 2000
  • Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
  • Digital Personal Data Protection Act, 2023 (DPDP Act)
  • And, where applicable, global data privacy standards like GDPR and CCPA

By using our website or services, you agree to the terms outlined in this Privacy Policy.

Information We Collect

We collect the following types of information from users, clients, and partners:

Personal Information

This includes identifiable data such as:

  • Name
  • Contact number
  • Email address
  • Postal address
  • Designation or job title
  • Company name
  • Identification or verification documents (as required for enterprise clients)
  • IP address and geolocation

Sensitive Personal Data or Information (SPDI)

Under Indian law, SPDI includes:

  • Financial details (bank account, card info, etc.)
  • Passwords
  • Biometric information (only when needed for device support or secure identity access)
  • Any information related to health, sexual orientation, or medical records (we generally do not collect this unless explicitly required and with consent)

Non-Personal/Technical Information

Browser type, device info, OS

  • Site usage statistics and interaction logs
  • Referral sources and browsing behavior via cookies

Legal Basis for Processing (India)

We collect and process personal data on the following grounds:

  • Consent: You have explicitly consented to data collection for specific purposes (e.g., contact form, service booking).
  • Contractual Obligation: To fulfill your request or provide the agreed services.
  • Legal Obligation: To comply with Indian laws, tax obligations, or law enforcement requests.
  • Legitimate Interest: To improve our services, prevent fraud, and maintain IT security.

Purpose of Data Collection

We use your data to:

  • Deliver our core services (e.g., data wiping, erasure certification, compliance support)
  • Communicate with you about services, updates, or inquiries
  • Issue reports, billing, and service documentation
  • Ensure regulatory compliance (IT Act, DPDP Act, etc.)
  • Improve our website, tools, and operations
  • Monitor misuse or breaches and secure our systems

Consent and Withdrawal

Your data is collected with your full knowledge and consent. You have the right to withdraw this consent at any time by emailing us at ( support@datasanitization.in ). However, withdrawal of consent may impact our ability to provide certain services.

Cookies and Tracking Technologies

We use cookies to:

  • Understand user behavior and preferences
  • Improve website functionality and loading performance
  • Run analytics and manage traffic
  • Offer secure login and session management

You can manage or delete cookies via your browser settings.

Data Sharing and Disclosure

We do not sell your personal data. However, we may share information with:

  • Trusted third-party service providers (hosting, cloud storage, analytics, payment gateways)
  • Government or law enforcement authorities (when legally obligated)
  • Business partners (only with consent or under NDA)
  • Employees or contractors under strict confidentiality obligations

Data Security Measures

We follow reasonable security practices and procedures as per Rule 8 of the SPDI Rules and implement:

  • Firewalls, antivirus, and threat detection tools
  • Encryption during transmission (SSL/TLS)
  • Role-based access and multi-factor authentication
  • Periodic audits and penetration testing
  • Data retention and secure disposal policies in line with NIST 800-88

Data Retention

We retain data for as long as:

  • Necessary to fulfill service agreements
  • Required by law or compliance frameworks
  • Needed to resolve disputes or enforce contracts

Post-termination, data is either securely destroyed or anonymized.

Your Rights Under Indian Law

You have the right to:

  • Request access to your personal information
  • Correct or update your personal details
  • Withdraw consent at any time
  • Request deletion, subject to legal obligations

To exercise any of these rights, contact us at ( support@datasanitization.in ).We will respond within the timeframes specified under Indian law.

International Data Transfers

If your data is processed outside of India (e.g., on cloud platforms), we ensure such data transfers comply with applicable Indian laws and are secured through appropriate contractual and technical safeguards.

Childrenโ€™s Privacy

Our services are not designed for users under 18. We do not knowingly collect personal information from minors. If discovered, such data will be promptly deleted.

Updates to This Policy

We reserve the right to update this Privacy Policy at any time. We encourage you to review this policy periodically.

Contact Us

If you have questions, requests, or complaints regarding this Privacy Policy or your data, you may contact us at:

Data Sanitization
๐Ÿ“ง Email:ย  support@datasanitization.in
๐Ÿ“ž Phone:ย  +91 8527709690
๐Ÿ“ Office Address:ย  704, Meghdoot Building, Nehru Place, New Delhi โ€“ India.
๐ŸŒ Website: www.datasanitization.in