1. Introduction

SHURT TECHSOLU PRIVATE LIMITED (“Company,” “we,” “us,” or “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us through various channels.

This policy applies to our AI-driven software solutions, custom software development, ERP and CRM systems, mobile and web applications, website development, and digital marketing services.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

Contact Information:

• Full name and professional title
• Email address and phone number
• Business address and postal code
• Company name and industry details

Professional Information:

• Job title and department
• Business requirements and project specifications
• Technical preferences and system requirements
• Budget and timeline information

Communication Data:

• Records of correspondence and communications
• Meeting notes and consultation discussions
• Support tickets and service requests
• Feedback and survey responses

2.2 Technical Information

Website Usage Data:

• IP address and browser type
• Device information and operating system
• Pages visited and time spent on site
• Referral sources and search terms
• Cookies and similar tracking technologies

System and Application Data:

• Login credentials and access logs
• Usage patterns and feature interactions
• Performance metrics and error reports
• Configuration settings and preferences

2.3 Business Information

• Project requirements and specifications
• Financial information for billing purposes
• Vendor and partner details
• Contractual and legal documentation

3. How We Collect Information

3.1 Direct Collection

• Contact forms and inquiry submissions
• Email communications and phone calls
• In-person meetings and consultations
• Service registrations and account creation
• Surveys and feedback forms

3.2 Automatic Collection

• Website cookies and tracking pixels
• Server logs and analytics tools
• Application usage monitoring
• Performance and security monitoring

3.3 Third-Party Sources

• Business directories and professional networks
• Partner referrals and recommendations
• Public business information and profiles
• Industry databases and resources

4. Purpose and Legal Basis for Processing

4.1 Business Operations

• Contract Performance: Delivering services and fulfilling contractual obligations
• Legitimate Interest: Business communications, service improvement, and customer support
• Legal Compliance: Meeting regulatory requirements and legal obligations
• Consent: Marketing communications and optional services (where applicable)

4.2 Specific Uses

Service Delivery:

• Project planning and requirement analysis
• Custom software development and implementation
• ERP and CRM system configuration
• Mobile and web application development
• Website creation and digital marketing campaigns

Business Management:

• Client relationship management
• Invoicing and payment processing
• Quality assurance and service improvement
• Legal compliance and record keeping

Communication:

• Responding to inquiries and support requests
• Providing project updates and notifications
• Sending service-related communications
• Marketing communications (with consent)

5. Information Sharing and Disclosure

5.1 Limited Sharing

We may share your information with:

Service Providers:

• Cloud hosting and infrastructure providers
• Payment processing companies
• Third-party development tools and platforms
• Professional service providers (legal, accounting)

Business Partners:

• Technology partners and vendors
• Subcontractors and freelancers (under confidentiality agreements)
• Integration partners for system connectivity

Legal Requirements:

• Law enforcement and regulatory authorities
• Legal proceedings and court orders
• Compliance with statutory obligations

5.2 Data Transfer Safeguards

• Contractual data protection agreements
• Adequate security measures and encryption
• Regular monitoring and compliance audits
• Limited access on need-to-know basis

5.3 No Sale of Personal Data

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

6. Data Security

6.1 Technical Safeguards

• Encryption: Data encryption in transit and at rest
• Access Controls: Role-based access and authentication
• Network Security: Firewalls, intrusion detection, and monitoring
• Backup Systems: Regular data backups and recovery procedures

6.2 Organizational Measures

• Staff Training: Regular privacy and security awareness training
• Policies and Procedures: Comprehensive data protection protocols
• Incident Response: Data breach response and notification procedures
• Vendor Management: Third-party security assessments and agreements

6.3 Physical Security

• Secure facilities and restricted access
• Environmental controls and monitoring
• Equipment disposal and data destruction procedures

7. Data Retention

7.1 Retention Periods

• Active Clients: Duration of business relationship plus 7 years
• Prospective Clients: 3 years from last interaction
• Website Visitors: Analytics data retained for 26 months
• Communication Records: 7 years for business correspondence
• Financial Records: As required by Indian tax and company laws

7.2 Secure Disposal

• Secure deletion of electronic records
• Physical destruction of paper documents
• Certificate of destruction for sensitive data
• Regular purging of outdated information

8. Your Rights and Choices

8.1 Access and Correction Rights

• Access: Request copies of your personal information
• Correction: Update or correct inaccurate information
• Completion: Add missing information to your records
• Verification: Confirm accuracy of processed data

8.2 Control Rights

• Opt-out: Unsubscribe from marketing communications
• Restriction: Limit processing for specific purposes
• Objection: Object to processing based on legitimate interest
• Portability: Request data in portable format (where applicable)

8.3 Deletion Rights

• Right to be Forgotten: Request deletion of personal information
• Account Closure: Terminate accounts and associated data
• Withdrawal of Consent: Revoke previously given consent

8.4 How to Exercise Rights

Contact our Data Protection Officer at:

• Email: info@shurttech.com
• Phone: 0120 456 2346
• Address: F-07, C-101, Sector 2, Noida, Uttar Pradesh, India

9. Cookies and Tracking Technologies

9.1 Types of Cookies

• Essential Cookies: Necessary for website functionality
• Analytics Cookies: Website usage and performance tracking
• Marketing Cookies: Advertising and campaign tracking
• Preference Cookies: User settings and customizations

9.2 Cookie Management

• Browser settings for cookie control
• Opt-out mechanisms for tracking
• Third-party cookie policies
• Regular cookie policy updates

9.3 Do Not Track

We respect browser “Do Not Track” signals where technically feasible.

10. International Data Transfers

10.1 Transfer Mechanisms

• Adequacy Decisions: Transfers to countries with adequate protection
• Standard Contractual Clauses: EU-approved model contracts
• Binding Corporate Rules: Internal data transfer protocols
• Consent: Explicit consent for specific transfers

10.2 Safeguards

• Regular assessment of transfer destinations
• Monitoring of political and legal developments
• Additional security measures for sensitive data
• Notification of material changes in protection levels

11. Children’s Privacy

We do not knowingly collect personal information from children under 18 years of age. If we become aware of such collection, we will take immediate steps to delete the information.

12. Third-Party Websites and Services

Our website may contain links to third-party websites. We are not responsible for the privacy practices of such sites. We encourage you to review their privacy policies.

13. Changes to Privacy Policy

13.1 Policy Updates

• We may update this policy to reflect changes in our practices or legal requirements
• Material changes will be communicated through website notices or direct communication
• Continued use of our services constitutes acceptance of updated terms

13.2 Version Control

• Previous versions available upon request
• Change log maintained for transparency
• Effective date clearly indicated

14. Compliance and Governance

14.1 Indian Laws

This policy complies with:

• Information Technology Act, 2000
• Information Technology (Reasonable Security Practices) Rules, 2011
• Personal Data Protection Bill (when enacted)
• Consumer Protection Act, 2019

14.2 International Standards

• GDPR principles and requirements
• ISO 27001 security standards
• SOC 2 compliance framework
• Industry best practices

15. Complaints and Disputes

15.1 Internal Resolution

• Direct communication with our privacy team
• Formal complaint process through designated channels
• Escalation procedures for unresolved issues

15.2 External Authorities

You have the right to lodge complaints with:

• Cyber Crime Cells (for Indian residents)
• Data Protection Authorities (for international clients)
• Consumer protection agencies
• Relevant industry regulators

16. Contact Information

SHURT TECHSOLU PRIVATE LIMITED

• Registered Office: F-07, C-101, Sector-2, Noida, Gautam Budh Nagar Uttar Pradesh 201301
• Phone: 0120-4562346 / 8373900076
• Email: info@shurttech.com
• Privacy Email: privacy@shurttech.com
• Website: www.shurttech.com

Business Hours: Monday to Friday, 10:00 AM – 7:00 PM (IST)

17. Definitions

• Personal Information: Any information that identifies or can be used to identify an individual
• Processing: Any operation performed on personal information
• Data Subject: The individual to whom personal information relates
• Controller: The entity that determines purposes and means of processing
• Processor: The entity that processes data on behalf of the controller

This Privacy Policy is effective as of 1-Sep-2025 and supersedes all previous versions.