Privacy Policy

Effective Date:
Jan 1, 2026
At PrivaSapien, we don’t just comply with privacy laws; we build the technology that enables them. This Privacy Policy describes how we collect, use, and protect your personal data in accordance with the Digital Personal Data Protection (DPDP) Act, 2023.
1. Data We Collect (Itemized List)
In compliance with Rule 3 of the DPDP Rules, we only collect personal data that is necessary for specified purposes.
Category
Specific Data Points
Identity Data
Name, Job Title, Organization/Company Name.
Contact Data
Business Email Address, Phone Number, Country.
Technical Data
IP address, browser type, and usage data via cookies (for platform security and performance).
Professional Data
Information provided during demo requests, white paper downloads, or certification enrollments (e.g., PC-DPO-360).
2. Purpose of Processing
We process your personal data for the following "Specified Purposes":
  • Provision of Services:
    To provide access to the PERAI platform.
  • Communication:
    To respond to your inquiries, demo requests, and provide technical support.
  • Education & Certification:
    To manage your enrollment and progress in our Privacy and Responsible AI certification programs.
  • Compliance & Security:
    To prevent unauthorized access and fulfill legal obligations under Indian law.
3. Grounds for Processing (Consent)
We process your data primarily based on your free, specific, informed, and unambiguous consent. By checking the consent box on our forms, you signify your agreement to this processing via a "clear affirmative action."
Notice: You have the right to withdraw your consent at any time. Withdrawal will not affect the legality of processing based on consent before its withdrawal.
4. Rights of the Data Principal
Under the DPDP Act, you are the "Data Principal" and have the following enforceable rights:
  • Right to Access:
    Obtain a summary of your personal data being processed and the identities of third parties with whom it has been shared.
  • Right to Correction & Erasure:
    Request the correction of inaccurate data or the erasure of data that is no longer necessary for the purpose it was collected.
  • Right to Grievance Redressal:
    Register a complaint regarding any act or omission of PrivaSapien.
  • Right to Nominate:
    Nominate an individual to exercise your rights in the event of death or incapacity.
To exercise these rights, please use our [Data Principal Rights Portal] or contact our DPO (details below).
5. Security Safeguards
PrivaSapien utilizes its own proprietary Privacy-Enhancing Technologies (PETs) to protect your data using reasonable technical safeguards recommended by DPDP Act.
In the event of a personal data breach, we are committed to notifying the Data Protection Board (DPB) and affected individuals within 72 hours.
6. Data Retention
We retain your personal data only for as long as the "Specified Purpose" is being served.
  • Active Accounts:
    Retained for the duration of your contract.
  • Inquiry Data:
    Erased after 12 months of inactivity, unless a legal obligation requires longer retention.
  • Logs:
    System logs are maintained for one year as per Rule 6 for security auditing.
7. Contact Us & Grievance Redressal
Please do reach out to us incase of any queries.
Address: PrivaSapien, Clayworks Create Campus, 11KM, Bengaluru, Karnataka, India
Email: contact@privasapien.com
If you are not satisfied with our response, you may approach the Data Protection Board of India.

Location

Clayworks Create Campus, 11KM,
Arakere Bannerghatta Rd, Omkar Nagar,
Arekere, Bengaluru, Karnataka 560076

Copyright © 2026 Privasapien
Privacy Policy
Terms of Service
White Paper - Designing Enterprise Journey for End to End DPDP Compliance
Learn More
X