top of page

PRIVACY STATEMENT

Last Updated: 27 May 2026

Privassure Consulting LLP (hereafter referred to as “Privassure” or “we” or “us”) provides consulting services related to Data Protection and Privacy, Security Assurance, AI Governance, and Industry Standard Services (such as ISO, SOC, PCI-DSS). Additionally, we also provide customized training services to suit your business requirements. We collect and process personal data for providing these services to our customers (“you” or “your”). We at Privassure understand the importance of your privacy and are dedicated to securing your personal data.

This Privacy Statement applies to personal data collected by Privassure in its capacity as a controller, since it determines the purposes and means of processing personal data. The aim of this Privacy Statement is to inform you on how we collect, use, disclose, and store your personal data.

 

1. HOW DOES PRIVASSURE PROTECT YOUR PERSONAL DATA?

 

Privassure is committed to protecting your privacy and safeguarding your personal data. We strive to ensure that you can engage with us with confidence, knowing that your personal data is handled with the highest standards of care and security. We process and protect personal data in strict accordance with applicable laws, as well as our established data privacy policies and procedures.

In addition, Privassure maintains the appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing and/or against accidental loss, alteration, disclosure or access, or accidental or unlawful destruction of or damage thereto.

 

2.  WHAT PERSONAL DATA DO WE COLLECT?

 

  • Basic information such as full name, identifiers, contact details (e-mail, phone number, address)

  • Commercial information such as history and records of services obtained from Privassure, correspondence via email or other electronic communication for account receivables and commercial follow-ups

  • Marketing and research information such as IP address, social media handle, browser/web history and preferences, mobile device information

  • Employment-related information such as job title, current position, employer, location, and official contact details

  • Cookies and geolocation data as per the Cookies Policy

 

3.  FOR WHAT PURPOSES DO WE USE YOUR PERSONAL DATA?

 

Privassure uses your personal data only where required for specific purposes. 

  • To administer our website, and for internal operations, including troubleshooting, data analysis, and testing purposes, improve our website to ensure that content is presented in the most effective manner for you and your device on the basis of our legitimate interests in ensuring proper website management, enhancing user experience and website functionality.

  • To contact you regarding the services that you have purchased or shown interest in, based on our legitimate interests in business development and customer retention.

  • We will not use your personal data for purposes that are incompatible with the purposes of which you have been informed, unless it is required or authorized by law, or it is in your own vital interest (e.g. in case of a medical emergency) to do so.

 

4. WITH WHOM DO WE SHARE YOUR PERSONAL DATA?

 

We may transfer personal data to our service providers, public and governmental authorities, or third parties in connection with Privassure’s operation of its business, including any (potential) corporate or commercial transaction and including clients if the data has been processed to provide client services. Such third parties may be in other countries. Before we do so, we shall take the necessary steps to ensure that your personal data will be given adequate protection as required by relevant data privacy laws and Privassure’s internal policies.

We share and disclose information (including personal data) about our customers in the following limited circumstances:

 

  • Vendors, consultants, and other service providers:

We may share your information with trusted third-party vendors, consultants, and service providers who perform services on behalf of Privassure, including website analytics and operational support. Additionally, where reasonably necessary, personal data may be shared with other tools and platforms used by our marketing and sales teams.

Transaction-related data is shared with our payment service providers strictly to facilitate payments, process refunds, and address any related queries or concerns.

Where personal data originating from the European Union is transferred to third-party agents or service providers, Privassure ensures that such parties adhere to the standards required under applicable data protection laws, including the General Data Protection Regulation. These transfers are carried out on the basis of our legitimate interests or in accordance with contractual arrangements.

 

  • Disclosures for national security and law enforcement:

In certain circumstances, Privassure may be required to disclose your personal data in response to valid requests from public authorities, where such disclosure is necessary to comply with legal or regulatory obligations or to support our legitimate interests. This may occur without prior notice or consent where permitted by applicable law.

 

  • Such circumstances may include, but are not limited to:


-Compliance with applicable legal or regulatory requirements
-Requests related to national security or law enforcement including situations where disclosure is necessary to meet our legitimate interests or legal obligations

 

  • Transfer of Business:

In the event of a merger, acquisition, restructuring, or other change in control, your personal data may be transferred as part of the business assets to the relevant third party. In such circumstances, Privassure will ensure, through appropriate contractual safeguards, that the receiving party maintains the security and protection of your personal data in accordance with applicable data protection requirements.

 

5. YOUR SENSITIVE PERSONAL DATA

 

Privassure does not generally seek to collect sensitive personal data (also referred to as special categories of data within the EEA) through this website or otherwise. In the limited instances where such data is collected, it will be done in strict compliance with applicable data protection laws and, where required, with your explicit consent.

“Sensitive data” refers to specific categories of personal data that require enhanced protection under applicable data privacy laws, often including a requirement to obtain explicit consent prior to processing. 

 

6. HOW LONG DO WE STORE YOUR PERSONAL DATA?

 

Privassure retains personal data only for as long as necessary to fulfil the purposes for which it was collected. We maintain defined records management and retention policies to ensure that personal data is securely deleted or anonymized within appropriate timeframes.

 

Retention periods are determined based on the following criteria:


-The duration of our ongoing relationship with you
-The period during which your account remains active or as required to deliver our services
-The need to comply with applicable legal, regulatory, and contractual obligations

 

7. HOW DO WE SAFEGUARD YOUR PERSONAL DATA?

 

Privassure implements robust organizational, physical, and technical security measures to protect all personal data under its control. We maintain comprehensive protocols, controls, and aligned policies, procedures, and guidance designed to safeguard information effectively. These measures are continuously reviewed and updated, taking into account the nature of the personal data, the scope of processing activities, and the associated risks.

 

8.  DO WE TRANSFER YOUR PERSONAL DATA ACROSS INTERNATIONAL BORDERS?

 

Personal data that you share with us via our website or social media platforms is transferred to and processed in India, including on our service providers’ cloud infrastructure, such as Amazon Web Services (AWS). Regardless of where your data is processed, Privassure implements appropriate safeguards to ensure it is protected in accordance with this Privacy Statement and applicable data protection laws.

Privassure also ensures that any third parties with whom personal data have been shared are notified of relevant changes, including modifications, withdrawals, or objections related to such data. We maintain appropriate policies, procedures, and mechanisms to support these obligations.
 

9. YOUR RIGHTS

 

Privassure is committed to ensuring that you are able to exercise your rights in relation to your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and India’s Digital Personal Data Protection Act, 2023 (DPDPA).

Depending on your jurisdiction and subject to applicable conditions, you may have the following rights:

  • Right to Access: You have the right to request confirmation of whether we process your personal data and to obtain access to such data, along with relevant information about its processing.

  • Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data held by us.

  • Right to Erasure (Right to be Forgotten): You may request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, or where processing is no longer justified.

  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data under certain circumstances.

 

  • Right to Data Portability: Where applicable, you have the right to receive your personal data in a structured, commonly used, and machine-readable format and to have it transferred to another controller.

  • Right to Object: You may object to the processing of your personal data based on legitimate interests or for direct marketing purposes.

 

  • Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw such consent at any time, without affecting the lawfulness of processing prior to withdrawal.

  • Right to Grievance Redressal: You have the right to seek redressal of grievances related to the processing of your personal data, and we will address such concerns in a timely and transparent manner.

  • Right to Nominate (DPDPA Specific): In accordance with the Digital Personal Data Protection Act, 2023, you have the right to nominate another individual to exercise your rights on your behalf in the event of death or incapacity.

To the extent that the processing of your personal data is based on your consent, you have the right to withdraw such consent at any time by writing to us at contact@privassure.in. Please note that this will not affect Privassure to continue parts of the processing based on other legal bases than your consent.

 

10. UPDATES TO PRIVACY STATEMENTS

 

Privassure continually strives to enhance its Website and Services. As a result, this Privacy Statement may be updated periodically to reflect changes in our practices or applicable requirements.


We encourage you to review this Privacy Statement regularly. The “last updated” date displayed at the top of this page indicates when the most recent changes were made, and it is your responsibility to stay informed of any updates.

 

11. REDRESSAL & CONTACT INFORMATION

If you wish to raise a concern regarding the processing of your personal data by Privassure, you may contact us at contact@privassure.in. Privassure is committed to respecting the privacy and personal data of all users, regardless of their location or jurisdiction. We are dedicated to handling your information in accordance with this Privacy Statement and maintaining the trust you place in us. If you are not satisfied with the resolution of your concern, you have the right to escalate the matter to your relevant local supervisory authority in accordance with applicable data protection laws.

bottom of page