Global Privacy Policy

Effective Date: [Insert Date]

InfoFidelis IT Solutions Private Limited (“we,” “our,” or “us”) is committed to protecting personal data and respecting privacy rights across all regions where we operate. This Global Privacy Policy describes how we collect, use, store, and protect personal information in compliance with applicable data protection laws and internationally recognized privacy principles.

1. Scope & Applicability

This Privacy Policy applies to:

  • Visitors to our websites
  • Prospective and current clients
  • Business partners and vendors
  • Users interacting with our services globally
  • We follow a privacy-by-design and privacy-by-default approach across all services.

2. Global Privacy Principles

Our privacy practices are guided by the following universal principles, common across global regulations:

  • Lawfulness, fairness, and transparency
  • Purpose limitation and data minimization
  • Accuracy and data quality
  • Storage limitation
  • Integrity and confidentiality
  • Accountability
  • These principles align with GDPR, ISO/IEC 27701, OECD Privacy Guidelines, and similar frameworks.

3. Information We Collect

We collect the following categories of information:

  • a. Personal & Business Information: name, business contact details; organization, role, and professional information; information provided through inquiries or contracts.
  • b. Technical & Usage Information: IP address and device identifiers; browser and operating system details; log files and usage analytics.
  • c. Client-Controlled Data: When delivering IT, DevOps, SRE, cloud, or managed services, we may process data strictly under client instructions.

4. Legal Bases for Processing

Depending on regional law, we process personal data based on:

  • Consent
  • Contractual necessity
  • Legitimate business interests
  • Legal or regulatory obligations
  • This aligns with requirements under GDPR (EU/EEA), UK GDPR, CCPA/CPRA (California), India DPDP Act, and similar laws.

5. Regional Compliance Overview

We design our privacy controls to support compliance with major global regulations, including but not limited to:

  • Europe & UK: GDPR (EU/EEA), UK GDPR & Data Protection Act 2018
  • United States: CCPA / CPRA (California), state-level privacy laws (e.g., Virginia, Colorado, Utah)
  • India: Digital Personal Data Protection Act (DPDP Act, 2023)
  • Asia-Pacific (APAC): PDPA (Singapore, Thailand), Privacy Act (Australia)
  • Middle East & Africa: UAE PDPL, Saudi PDPL, POPIA (South Africa)
  • We adapt our contractual and operational measures to meet region-specific requirements where applicable.

6. Use of Personal Data

We use personal data to:

  • Deliver and manage services
  • Communicate with clients and partners
  • Maintain security and operational integrity
  • Improve our offerings
  • Comply with legal obligations
  • We do not sell personal data.

7. Data Sharing & International Transfers

Personal data may be transferred across borders to support global service delivery. Where required, we apply safeguards such as:

  • Standard contractual clauses
  • Data processing agreements
  • Confidentiality and security controls
  • Transfers are performed in accordance with applicable law.

8. Data Security Measures

We apply industry-standard security practices aligned with:

  • ISO/IEC 27001
  • NIST Cybersecurity Framework
  • SRE and DevOps security best practices
  • Measures include access controls, encryption, monitoring, logging, and incident response.

9. Data Retention

Personal data is retained only as long as necessary for:

  • Business operations
  • Contractual obligations
  • Legal and regulatory compliance
  • Secure deletion or anonymization is applied when data is no longer required.

10. Individual Rights

Depending on jurisdiction, individuals may have rights including:

  • Access to personal data
  • Correction or deletion
  • Restriction or objection to processing
  • Data portability
  • Withdrawal of consent
  • Requests can be submitted using the contact information below.

11. Client Data Processing

For client engagements:

  • Clients remain data controllers
  • InfoFidelis IT Solutions Private Limited acts as a data processor or service provider
  • Data is processed strictly per contractual instructions
  • Confidentiality and access restrictions are enforced

12. Children's Data

Our services are not intended for individuals under the age of 16 (or applicable local age of consent), and we do not knowingly collect children's data.

13. Policy Updates

We may update this policy to reflect regulatory or operational changes. Updates will be published with a revised effective date.

14. Contact & Data Protection Requests

For privacy-related inquiries or rights requests: InfoFidelis IT Solutions Private Limited

  • Email: privacy@infofidelis.com
  • Address: INFO FIDELIS IT SOLUTIONS PRIVATE LIMITED, PNO 527, SY NO 11/14-11/18, KRISHNA TOWERS, KHANAMET, SHAIKPET MADHAPUR, HYDERABAD-500081, TELANGANA

InfoFidelis IT Solutions Private Limited operates a global privacy program aligned with international data protection laws and industry best practices to protect personal data across regions.

Global Privacy Policy | InfoFidelis IT Solutions Private Limited