Privacy Policy
Shieldbyte Infosec Private Limited (“Shieldbyte infosec,” “Company,” “We,” “Us,” “Our”) is committed to protecting and respecting your privacy. Shieldbyte infosec provides cybersecurity, data privacy and information security compliance, and third-party risk management services for companies, organizations, and institutions (“Client”). This policy outlines how we collect, use, maintain, disclose, and otherwise process Personal Information collected from our clients and website visitors (“Users,” “You”). This privacy policy only applies to the information collected through the Shieldbyte infosec website.
Data controller under GDPR
Shieldbyte infosec is a service provider for its clients. We provide our clients with cyber security, data privacy and information security consulting and compliance audits. We act in the capacity of “Data Controller” for the personal information or other information provided by you through the Shieldbyte infosec website forms.
Your Consent
We kindly ask that you read this privacy policy and terms of use of the Shieldbyte infosec website before providing us with any personal information. By visiting, browsing, accessing, and/or using the website’s services (or searching for any of the website’s page), you hereby consent and agree to our privacy policy as set forth in this document. You acknowledge that your information was accurate, true, and lawful and does not violate any laws. Shieldbyte infosec will not be held liable for the veracity, sincerity, misrepresentation, fraud, negligence, etc., of the information provided, nor will the company be held accountable for verifying any information collected from you.
Personal information do we collect?
Information provided by you
We collect personal information and other information you provide when you connect with us through our website. We may collect your name, company name, contact information, business email id, IP address, web address, what you’d like to discuss, or any other information you input in the website form. We do not collect or store any financial information through the website. You can choose not to provide us with your personal information. However, this may hamper all or part of the services
Information we collect automatically
Cookies – We use information procured through technical means in order to monitor and analyze the use of our website. Shieldbyte infosec uses first and third-party cookies. A cookie is a text file placed on your device by a web page server. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you and can only be read by the Shieldbyte infosec domain that issues the cookie.
The data collected may include information about your website visits, traffic data, how you interact with our website, and your IP address. For more information on the cookies we use, please refer to our Cookie policy on Shieldbyte infosec Infosec homepage.
How do we use your information?
We value your privacy. We use your personal data in a manner that is consistent with the policies.
Shieldbyte infosec may use your personal information where it is provided to avail of our services, to provide services, and to improve our website, services, features, and content. We may also use your personal data to manage your use of our website, to understand your requirements and interest in helping us personalize your experience to navigate the website.
We may also use your contact data to fulfill your customer support request. We may also use your contact data to contact you to provide you with further information and offers, including newsletters, marketing, or promotional offers from us.
We adhere to this and do not use the data for other secondary purposes. The data collected from websites may be used for business development, user experience enhancement, statistics, and data analytics.
We do not sell, share, trade, rent, or otherwise disclose information to third parties. We do not disclose the information without the explicit permission of the client, except if required by law.
Without Your explicit consent, we do not capture, use, or disclose sensitive personal information such as race, religion, or political ideologies.
We also use the information we procured through technical means (such as through the use of cookies) for the purposes mentioned above, including but not limited to monitoring the use of our website, for the website’s administration, enhancing our website’s functionality and user-friendliness, to derive useful data and information concerning the interests, characteristics, and website use behavior.
Processing of personal information
Shieldbyte infosec processes your personal information in compliance with GDPR. Personal information is used to perform the services requested and fulfill the contractual and legal obligations with clients and for our legitimate and business interests. We may also rely on your consent for processing specific data.
With whom do we share personal information
We do not sell, share, trade, rent, or otherwise disclose personal information to third parties except the system integration for email and text communication by availing website services.
Information collected from children
The website is for the general audience, and we do not knowingly collect information about children or render services to children under the age of thirteen (13) years. If you are under the age of 13, you shall not use or submit information to the website.
Data Retention and Disposal
The information captured shall be retained for a period of seven (7) years based on our business requirement, post which the personal information held will be securely disposed of. Incidentally, we may be required to store personal data for a longer period of time. For instance, where the information is necessary for any legal proceedings involving You or where we are legally obliged to maintain the information.
GDPR Rights
The general data protection regulation is a European Union regulation on data protection and privacy in the European Union. As a data subject from the European Union, you are entitled to the following rights with regard to your personal data:
Right to access
You have the right to request that we provide you with copies of your personal data, which we hold on record. In certain circumstances, to the extent permitted by law, we may charge you a fee for this service.
Right to rectification
You have the right to request rectification for any information that we have on record that you believe is inaccurate. You also have the right to request that we complete any information we have on record that you believe is incomplete.
Right to erasure
In accordance with particular circumstances, you have the right to request that we erase your personal data. The right to erasure is subject to several limitations. The general exemption includes establishing, exercising, or defense of legal claims, the right to freedom of expression, and information for compliance with a legal requirement.
Right to restriction of processing
You have the right to restrict how your personal data is processed under certain conditions. However, we may continue to maintain your personal information when processing has been restricted, to establish, exercise, or defend legal claims, to safeguard the rights of another natural or legal person, or for the purposes of important public interest.
Right to Data Portability
Pursuant to certain conditions, you have the right to request that we directly transmit your personal data that we have collected to another organization, if this is technically possible, or directly to you. You also have the right to receive your personal data in a structured, generally accepted, and machine-readable format.
Right to Object
Under certain circumstances, you have the right to object to our processing of your personal data. In response to your objection, we will no longer process the information unless we can show compelling, legitimate grounds that outweigh your interest, rights, and freedoms or the processing is necessary for the exercising of legal claims.
Right against Automated Decision-making
Pursuant to certain conditions, you have the right not to be subject to a decision based solely on automated processing. Processing is “automated” where it is carried out without human intervention and where it produces legal effects or significantly affects you.
If you want to exercise any of these rights mentioned above or have a query, kindly contact us at info@shieldbyteinfosec.com. We try to acknowledge and respond to subject access requests within a period of 30 days following such requests. Upon request by the data subject to exercise any of the rights mentioned above, our data privacy team shall resolve/fulfill the request to its capacity accordingly.
We may refuse to comply with your request pursuant to certain exceptions. We will inform you of the reasons for the refusal. We will not be able to fulfill the request if we no longer have the personal information with us.
CCPA Rights
The California Consumer Protection Act (CCPA) is the privacy legislation that protects and aims to safeguard the personal information of Californian residents. As a Californian resident, you are entitled to the following rights with regard to your personal data .
Right to opt-out
You have the right to opt-out, where an organization is selling your information to third parties. We do not sell your information to third parties as of now. If there are any altercations to this practice, we shall update this policy.
Right to know
You have the right to know about the personal information a business collects about them and how it is used and shared. This policy provides the required information.
Right to Delete
Pursuant to certain exceptions, you may request that businesses delete personal information they collected from you and tell their service providers to do the same.
Right to Non-discrimination
Pursuant to certain exceptions, you have a right to non-discrimination for exercising your CCPA rights. Businesses cannot deny goods or services, charge you a different price, or provide a different level or quality of goods or services just because you exercised your rights under the CCPA.
If you want to exercise any of these rights mentioned above or have a query, kindly contact us at info@shieldbyteinfosec.com. We try to acknowledge and respond to the subject access request within 45 days of the request. Upon request by the data subject to exercise any of the above-mentioned rights, our data privacy team shall resolve/fulfill the request to its capacity accordingly.
We may have some cases where we may refuse to comply with your request. We will inform you of the reasons for the refusal. We will not be able to perform the agreement with you if we no longer have the personal information with us.
Contact Us
If You have any queries, requests, or complaints about this Privacy policy or our privacy practices, please get in touch with us at email – info@shieldbyteinfosec.com
Modifications
We reserve the right to update this privacy policy. If required, this policy and our privacy practices are subject to periodic reviews and subsequent modifications. We will notify you of any changes by posting the revised policy on the website and by changing the effective date of this policy. It is suggested that You periodically visit the page to be acquainted with the current privacy practices.
