Privacy Policy
Learn how we collect, use, store, and protect your information while using our services.
Introduction
At DigitalSpark, your privacy is our highest priority. We are committed to ensuring that your personal information is handled with the utmost care and transparency. This Privacy Policy explains how we collect, use, store, and protect your data when you use our website, SaaS platform, CRM systems, and related services.
We believe in earning and maintaining your trust. This policy applies to all users, including customers, partners, and website visitors. Please read it carefully to understand how we protect your information.
Information We Collect
We collect various types of information to provide you with better service. The data we collect depends on how you interact with us.
Personal Information
Name, email address, phone number, and job title.
Contact Details
Company name, address, industry, and preferences.
Login Credentials
Encrypted passwords, usernames, and multi-factor authentication data.
Device Information
IP address, browser type, operating system, and device identifiers.
Usage Analytics
Page views, clicks, session duration, and feature usage patterns.
Cookies & Tracking
Session cookies, analytics cookies, and third-party tracking pixels.
We only collect information that is necessary to provide and improve our services. We do not collect sensitive information without your explicit consent.
How We Use Information
We use your information only for specific, legitimate purposes as described below.
Service Improvement
Analyzing usage data to improve our platform, features, and user experience.
Communication
Sending updates, security notifications, and support responses.
Security Monitoring
Detecting and preventing unauthorized access, fraud, and security threats.
Analytics
Generating business insights and trend reports from aggregated data.
Marketing
Sending relevant offers, product updates, and personalized recommendations (with consent).
Data Storage
Our data storage infrastructure is designed to ensure maximum security, availability, and redundancy.
Cloud Storage
Data is stored on encrypted servers across AWS, Google Cloud, and Azure.
Infrastructure
Geo-distributed data centers with ISO 27001 certified facilities.
Data Retention
Active data is kept on high-performance storage; older data is archived to cold storage.
Backups
Automated daily backups with cross-region redundancy and 30-day retention.
Data Security
We implement industry-standard security measures to protect your data from unauthorized access, alteration, disclosure, or destruction.
Encryption
AES-256 encryption at rest and TLS 1.3 in transit.
Access Controls
Role-based access control (RBAC) and least-privilege principle.
Authentication
Multi-factor authentication (MFA) and single sign-on (SSO) support.
Secure Hosting
DDoS protection, WAF, regular penetration testing, and 24/7 monitoring.
We regularly audit and update our security measures to ensure your data remains protected. Our security team monitors our systems 24/7 for potential threats.
Third-Party Services
We partner with reputable third-party service providers to deliver better service to you. These providers are contractually bound to adhere to strict privacy and security standards when handling your data.
Google Analytics
Analytics & Tracking
Stripe / Razorpay
Payment Gateway
AWS / GCP / Azure
Cloud Hosting
Social APIs
Integrations & Sharing
We evaluate the privacy practices of each third-party service we use. However, we are not responsible for their data handling practices. We recommend reviewing their privacy policies.
User Rights
Under applicable data protection laws, you have the following rights regarding your personal information. We are committed to respecting your rights and responding to your requests promptly.
You have the right to know what personal information we hold about you. Upon request, we will provide a copy of your information in a machine-readable format within 30 days.
If you believe any information we hold about you is inaccurate or incomplete, you may request that we correct it. We will process corrections within 15 days of your request.
You may request that we delete your personal information, provided there is no statutory retention requirement. We will process deletion requests within 30 days and provide confirmation thereafter.
You have the right to receive your personal information in a commonly used format (CSV, JSON). This data portability right allows you to transfer your data to another service provider.
Where we process your information based on your consent, you may withdraw your consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.
Data Retention
We retain your personal information only for as long as necessary to fulfill the purpose for which it was collected, or as required to satisfy legal, regulatory, or reporting requirements.
- Active Accounts: Data is retained for as long as the account remains active.
- Inactive Accounts: After 24 months of inactivity, data is archived or anonymized.
- Backups: Encrypted backups are retained for 90 days and then securely deleted.
- Deletion Process: Data is securely deleted through a multi-step verification process, including zeroing from all backups.
International Transfers
Due to the global nature of our services, your personal information may be transferred to and processed on servers located outside your country. Whenever this occurs, we ensure appropriate safeguards are in place
Cross-Border Data Transfers
We use Standard Contractual Clauses (SCCs) for EU users and equivalent mechanisms for other jurisdictions.
International Compliance
We comply with GDPR, CCPA, and other applicable data protection laws, ensuring your data receives equivalent protection wherever it is in the world.
Children's Privacy
Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18 without parental consent, we will take steps to remove that information.
If you are under 18, please do not use our services or provide any personal information. If a parent or guardian becomes aware that their child has provided us with personal information, please contact us.
Changes to Policy
We reserve the right to update this Privacy Policy at any time. We will notify you of material changes through the following methods:
- By posting the updated policy on our website with a prominent "Last Updated" date at the top.
- By sending an email notification to the registered email address for material changes.
- By displaying an in-app notification upon login.
Your continued use of our services after the updated policy is posted constitutes your acceptance of the modified policy. We recommend reviewing this policy periodically for changes.
Contact Information
If you have any questions about this Privacy Policy, wish to exercise your rights, or have concerns about our data practices, please contact us:
Privacy Team
Address
123 Tech Park, Innovation Hub
Bangalore, Karnataka
560001
India
Data Protection Officer
Support
Our Commitment to Your Privacy
We are committed to protecting your data and respecting your privacy. By using our services, you acknowledge the data practices described in this Privacy Policy.
Thank you. You may now continue using our platform and services.