Legal
Privacy Policy
Effective Date: March 2026 | Version: 1.0
1. INTRODUCTION
Brisk4Byte ("we", "us", "our", or "Company") is committed to protecting the privacy and personal data of all individuals who interact with our website, services, and platforms. This Privacy Policy ("Policy") describes how we collect, use, store, share, and protect your personal information when you visit brisk4byte.com ("Website") or engage with our services, which include custom software development, workflow automation, artificial intelligence solutions, AI agents, and related technology consulting services ("Services").
By accessing our Website or using our Services, you ("User", "you", "your") consent to the collection and use of your information as described in this Policy. If you do not agree to this Policy, please discontinue use of our Website and Services.
This Policy is published in compliance with:
- The Information Technology Act, 2000;
- The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011; and
- The Digital Personal Data Protection Act, 2023 ("DPDPA").
2. DEFINITIONS
In this Policy, the following terms shall have the meanings set out below:
- "Personal Data" means any data about an individual who is identifiable by or in relation to such data, as defined under the DPDPA 2023.
- "Sensitive Personal Data" means financial information, health data, biometric data, passwords, and other categories defined under the IT Rules, 2011.
- "Data Principal" means the individual to whom Personal Data relates.
- "Data Fiduciary" means Brisk4Byte, which determines the purpose and means of processing Personal Data.
- "Processing" means any operation performed on Personal Data, including collection, recording, storage, use, sharing, transmission, or deletion.
- "Consent" means a free, informed, specific, and unambiguous indication of the Data Principal's agreement to the processing of their Personal Data.
3. INFORMATION WE COLLECT
We may collect the following categories of information:
3.1 Information You Provide Directly
- Name, email address, phone number, and company name (via contact forms, project inquiry forms, or email correspondence);
- Project briefs, requirements, attachments, or documents you share with us for the purpose of service delivery;
- Billing and payment information where applicable (processed through third-party payment gateways; we do not store card details);
- Any other information you voluntarily provide during communications with us.
3.2 Information Collected Automatically
- IP address, browser type, device type, and operating system;
- Pages visited, time spent, referral URLs, and clickstream data;
- Cookies and similar tracking technologies (see Section 8).
3.3 Information from Third Parties
- Publicly available professional information (e.g., LinkedIn profile) for the purpose of business development;
- Information received via referrals from existing clients or partners.
We do not knowingly collect Personal Data from individuals under the age of 18 without verifiable parental consent.
4. PURPOSE OF COLLECTION AND USE
We collect and process your Personal Data for the following purposes:
| Purpose | Legal Basis |
|---|---|
| Responding to enquiries and providing quotes | Consent / Contract |
| Delivering contracted Services | Contract |
| Sending project updates and communications | Contract |
| Issuing invoices and processing payments | Contract / Legal Obligation |
| Improving our Website and Services | Legitimate Interest |
| Marketing and promotional communications (opt-in only) | Consent |
| Legal compliance and dispute resolution | Legal Obligation |
We will not use your Personal Data for any purpose incompatible with the purposes stated at the time of collection without obtaining fresh consent.
5. DATA SHARING AND DISCLOSURE
We do not sell, trade, or rent your Personal Data to third parties.
We may share your data with:
5.1 Service Providers and Sub-processors
Third-party vendors who assist in delivering our services, including:
- Cloud hosting providers (e.g., DigitalOcean, AWS, Google Cloud);
- Communication tools (e.g., email service providers, WhatsApp Business);
- Project management and collaboration platforms;
- Analytics and monitoring tools.
All sub-processors are bound by confidentiality obligations and are required to process data only as instructed by us.
5.2 Legal Authorities
We may disclose your Personal Data if required by applicable law, court order, or lawful governmental authority in India or any other applicable jurisdiction.
5.3 Business Transfers
In the event of a merger, acquisition, or sale of business assets, your Personal Data may be transferred to the acquiring entity, subject to the same protections described in this Policy.
6. DATA RETENTION
We retain your Personal Data for as long as necessary to fulfil the purposes described in this Policy, or as required by applicable law, whichever is longer.
Typical retention periods:
| Data Category | Retention Period |
|---|---|
| Client project data and correspondence | 5 years post-project completion |
| Financial and invoicing records | 7 years (as per tax regulations) |
| Website enquiries (no contract formed) | 1 year |
| Marketing consent records | Until consent is withdrawn |
| Website analytics data | 12 months |
Upon expiry of the retention period, data is securely deleted or anonymised.
7. YOUR RIGHTS AS A DATA PRINCIPAL
Under the Digital Personal Data Protection Act, 2023, you have the following rights in relation to your Personal Data:
- Right to Access: Request a summary of your Personal Data we hold and the purposes for which it is being processed.
- Right to Correction: Request correction of inaccurate or incomplete Personal Data.
- Right to Erasure: Request deletion of your Personal Data, subject to legal retention obligations.
- Right to Grievance Redressal: File a complaint or grievance with our designated Grievance Officer (see Section 11).
- Right to Nominate: Nominate another individual to exercise rights on your behalf in the event of your death or incapacity.
To exercise any of the above rights, please contact us at brisk4byte@gmail.com. We will respond to your request within 30 days.
8. COOKIES AND TRACKING TECHNOLOGIES
Our Website may use cookies and similar tracking technologies to enhance user experience and collect analytical data.
Types of cookies used:
| Type | Purpose |
|---|---|
| Strictly Necessary | Essential for website functionality |
| Performance / Analytics | Understand how visitors interact with the site |
| Functionality | Remember user preferences |
| Marketing (if applicable) | Serve relevant content (only with consent) |
You may control or disable cookies through your browser settings. Disabling certain cookies may affect Website functionality.
9. DATA SECURITY
We implement appropriate technical and organisational measures to protect your Personal Data against unauthorised access, disclosure, alteration, or destruction. These measures include:
- Encrypted data transmission (HTTPS/TLS);
- Access controls and authentication mechanisms;
- Regular security assessments and updates;
- Confidentiality obligations for all personnel handling Personal Data.
While we strive to protect your data, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.
10. INTERNATIONAL DATA TRANSFERS
Our Services are primarily delivered from India. If your Personal Data is transferred outside India (e.g., via cloud services), we ensure adequate safeguards are in place, including contractual protections consistent with applicable Indian law and the DPDPA 2023.
11. DATA PROCESSING IN AI-POWERED FEATURES
11.1 When you use our AI-powered features, including chatbots, AI assistants, automated analysis tools, or AI-generated recommendations, certain data you provide or that is processed by the system may be transmitted to third-party AI model providers for the purpose of generating responses or outputs.
11.2 Data submitted to AI features may include:
- Text inputs, queries, or prompts you provide;
- Documents, files, or data you upload for AI processing;
- Contextual information required to generate accurate outputs.
11.3 We take the following steps to protect your data in AI processing:
- Where possible, we use API-based access to AI models that does not use your data for model training by default;
- We do not knowingly submit sensitive personal data (as defined under DPDPA 2023) to AI models without explicit consent;
- Prompts and outputs are not stored beyond the immediate session unless explicitly described in our data retention policy.
11.4 AI-Generated Content Disclaimer: Outputs generated by AI features are automated and may not be accurate, complete, or suitable for all purposes. Users are advised to verify AI-generated outputs before relying on them for any material decision. We expressly disclaim liability for losses arising from reliance on unverified AI-generated content.
11.5 Consent Withdrawal: If you wish to opt out of AI-powered processing, please contact us at brisk4byte@gmail.com. Note that opting out may limit the availability of certain features.
12. GRIEVANCE REDRESSAL
In accordance with the Information Technology Act, 2000 and DPDPA 2023, a Grievance Officer has been designated to address complaints:
Grievance Officer: [GRIEVANCE_OFFICER_NAME]
Email: brisk4byte@gmail.com
Company: Brisk4Byte
Address: [REGISTERED_ADDRESS]
All complaints will be acknowledged within 48 hours and resolved within 30 days of receipt.
If your grievance is not resolved to your satisfaction, you may approach the Data Protection Board of India (once constituted under DPDPA 2023).
13. CHANGES TO THIS POLICY
We reserve the right to update this Privacy Policy at any time. When we make material changes, we will update the "Effective Date" at the top of this document. Continued use of our Website or Services after such changes constitutes your acceptance of the updated Policy.
We encourage you to review this Policy periodically.
14. GOVERNING LAW AND JURISDICTION
This Policy shall be governed by and construed in accordance with the laws of India. Any disputes arising out of or in connection with this Policy shall be subject to the exclusive jurisdiction of the courts located in [REGISTERED_ADDRESS CITY], India.
15. CONTACT US
For any questions, concerns, or requests related to this Privacy Policy, please contact:
© 2026 Brisk4Byte. All rights reserved.