Privacy Policy
Last Updated: May 1, 2025 · Effective Date: May 1, 2025
Brihat Infotech is committed to protecting your privacy. This Privacy Policy explains what personal data we collect, why we collect it, how we use and protect it, and your rights in relation to it.
1. About This Policy
Who We Are
Brihat Infotech ('we', 'us', 'our') is an IT services and software engineering company registered in India, with its registered office in Ranchi, Jharkhand and primary operations in Noida, Uttar Pradesh. We are the data controller for personal data collected through brihatinfotech.com and through any service engagement with us.
Scope
This Privacy Policy applies to all personal data we collect through our website, contact forms, project enquiries, job applications, and service engagements. It does not apply to third-party websites linked from our website — we are not responsible for their privacy practices.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by updating the 'Last Updated' date at the top of this page. For significant changes, we may also notify you by email or by displaying a notice on our website. Continued use of the website after changes constitutes your acceptance of the updated policy.
2. Information We Collect
2.1 Information You Provide Directly
We collect personal information you voluntarily provide when you: fill out contact or project enquiry forms on our website; request a discovery call or project proposal; apply for a job opening; subscribe to our newsletter or updates; communicate with us by email, phone, or any other channel. This includes your name, email address, phone number, company name, designation, project requirements, budget range, and any other information you choose to share with us.
2.2 Information Collected Automatically
When you visit our website, we automatically collect certain technical and usage information through cookies and similar technologies. This includes your IP address, browser type and version, operating system, device type, pages visited, time spent on pages, referring URLs, and interaction patterns on the website. This information is collected in aggregate and is used to improve the website experience and understand how visitors engage with our content.
2.3 Information from Third Parties
We may receive information about you from third-party sources including LinkedIn (if you connect or interact with our company profile), analytics providers such as Google Analytics, and referral partners. We may combine this information with data we already hold about you to improve relevance and personalisation of our communications.
2.4 Project-Related Data
During a client engagement, we may process data provided by the client for the purpose of delivering agreed services. This may include business data, customer records, technical system access, or other confidential information. Such data is handled under the terms of the applicable client agreement and NDA, and is not subject to the marketing or analytics uses described in this policy.
3. How We Use Your Information
Responding to Enquiries
We use your contact information to respond to your project enquiries, questions, and requests. We may follow up with you to understand your requirements and share a proposal or recommendation. This is the primary reason most visitors share their information with us.
Service Delivery
For active client engagements, we use your information to deliver agreed services, communicate about project progress, share deliverables, and manage the engagement relationship. We may share relevant information with team members assigned to your project on a need-to-know basis.
Job Applications
If you apply for a position, we use your information to evaluate your application, communicate with you about the role, and conduct interviews. We may share your application with relevant team members involved in the hiring decision.
Marketing and Communications
With your explicit consent, we may send you newsletters, updates, case studies, or information about our services. You may withdraw this consent and opt out of all marketing communications at any time by clicking 'Unsubscribe' in any email or by emailing us at hello@brihatinfotech.com.
Website Improvement and Analytics
We use automatically collected technical data to understand how visitors use our website, identify areas for improvement, test new features, and measure the effectiveness of our content. This processing is carried out in our legitimate interest to maintain and improve a functional, relevant website.
Legal Compliance and Protection
We may use and disclose your information as required to comply with applicable laws and regulations, respond to lawful requests from government authorities, enforce our Terms of Service, and protect the legal rights, property, and safety of Brihat Infotech, our clients, and others.
4. How We Share Your Information
Within Our Team
Access to your personal information within Brihat Infotech is limited to team members who need it to deliver services or respond to your enquiry. All team members are bound by confidentiality obligations.
Trusted Service Providers
We engage third-party service providers to support our business operations, including cloud hosting (AWS), email communication tools, CRM systems, analytics platforms, and project management software. These providers are contractually required to process your data only as instructed by us, to maintain appropriate security measures, and not to use your data for their own purposes.
No Sale of Personal Data
We do not sell, rent, trade, or otherwise transfer your personal information to any third party for their own marketing or commercial purposes. We do not run or participate in data brokering of any kind.
Legal Disclosure
We may disclose your personal information if required to do so by law, court order, or lawful government authority, or where we believe disclosure is necessary to protect our legal rights, enforce our agreements, or protect the safety of any person.
Business Transfers
In the event of a merger, acquisition, restructuring, or sale of all or a portion of our assets, your personal data may be transferred as part of that transaction. We will notify affected individuals by email or by a prominent notice on our website prior to any such transfer becoming effective.
5. Cookies and Tracking Technologies
Types of Cookies We Use
We use the following categories of cookies: (a) Essential cookies — necessary for the website to function correctly; cannot be disabled. (b) Analytics cookies — used to understand how visitors interact with the website (e.g., Google Analytics). (c) Preference cookies — used to remember your settings and preferences across visits.
Your Cookie Choices
You can manage your cookie preferences through your browser settings. Most browsers allow you to refuse cookies or to be alerted when cookies are being set. Please note that disabling certain cookies may affect the functionality of parts of our website. We do not use cookies for advertising or tracking across third-party websites.
6. Data Retention
How Long We Keep Your Data
We retain your personal information only for as long as necessary to fulfil the purposes described in this policy, to perform our obligations under client agreements, and to comply with legal requirements. Specifically: (a) Contact form enquiries and project discussions are retained for 3 years from the date of last contact. (b) Job applications are retained for 12 months after the relevant role is filled, then securely deleted. (c) Client engagement records are retained for 7 years after the engagement ends, as required for tax and accounting compliance. (d) Newsletter subscriber data is retained until you unsubscribe.
Deletion Requests
You may request deletion of your personal data at any time by emailing hello@brihatinfotech.com. We will action deletion requests within 30 calendar days, subject to any legal obligation to retain certain records. We will confirm when your data has been deleted.
7. Your Rights
Right to Access
You have the right to request a copy of the personal data we hold about you. We will provide this within 30 days of receiving your request, in a readable format.
Right to Correction
If any personal data we hold about you is inaccurate or incomplete, you have the right to request that we correct it. We will action correction requests within 14 days.
Right to Deletion
You have the right to request that we delete your personal data. We will comply with all valid deletion requests within 30 days, subject to legal retention obligations.
Right to Object to Marketing
You have the right to object to the processing of your personal data for direct marketing purposes at any time. Upon receiving your objection, we will immediately stop processing your data for marketing.
Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where technically feasible.
How to Exercise Your Rights
To exercise any of the above rights, email us at hello@brihatinfotech.com with your full name, the email address associated with your data, and a description of your request. We will verify your identity before processing the request and will respond within 30 days.
8. Data Security
Security Measures
Brihat Infotech implements industry-standard technical and organisational security measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. These measures include: encryption of data in transit (TLS/HTTPS), encryption of sensitive data at rest, role-based access controls limiting data access to authorised personnel only, regular security assessments and code reviews, use of reputable cloud infrastructure (AWS) with built-in security features, and secure credential management practices.
No Absolute Guarantee
While we take data security seriously and implement robust controls, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data and will not be liable for any unauthorised access that occurs despite our reasonable security measures.
Data Breach Notification
In the event of a personal data breach that poses a high risk to the rights and freedoms of affected individuals, we will notify affected individuals without undue delay and within 72 hours of becoming aware of the breach. Notification will include the nature of the breach, the data affected, the likely consequences, and the measures taken or proposed to address it.
9. International Data Transfers
Cross-Border Processing
Brihat Infotech is based in India and primarily processes data within India. However, some of our third-party service providers (such as cloud infrastructure and SaaS tools) may process data in other countries. Where this occurs, we ensure that appropriate safeguards are in place, including contractual protections, to ensure your data is handled to a standard equivalent to Indian data protection requirements.
Client Data Localisation
For client projects involving sensitive or regulated data, Brihat Infotech can discuss and implement specific data localisation requirements upon request. Any such requirements must be documented in the project agreement.
10. Children's Privacy
Age Restriction
Our website and services are not directed at, and are not intended for, individuals under the age of 18. We do not knowingly collect personal data from minors. If we become aware that we have collected personal data from a person under 18 without verifiable parental consent, we will take immediate steps to delete that information.
11. Third-Party Links
External Websites
Our website may contain links to third-party websites, social media platforms, or partner pages. These links are provided for convenience only. Brihat Infotech has no control over the content, privacy practices, or data collection activities of these third-party sites. We encourage you to read the privacy policy of any website you visit via a link from our website. Brihat Infotech accepts no responsibility or liability for third-party sites or their privacy practices.
12. Contact and Complaints
Contact Us
For any questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact us at hello@brihatinfotech.com. We aim to respond to all privacy-related queries within 5 business days.
Complaints
If you are dissatisfied with how we have handled your personal data and we have been unable to resolve your concern, you have the right to lodge a complaint with the applicable data protection authority in your jurisdiction.
Questions about this policy?
Email our legal team at hello@brihatinfotech.com