March 24,2022

Privacy Policy

1. Definitions

   1. "Privacy Policy/Policy" shall mean and include the privacy practices for the Company in relation to processing and use of the personal information.
   2. "Company" shall mean and include Secure Blink Tech Private Limited, its subsidiaries, branch office(s), and project offices.
   3. "Affiliates" shall mean and include the Company and any other entity that is directly or indirectly, controls or is controlled by, or is under common control with, the Company.
   4. "information" shall mean and include all the information as defined under clause 5 of this Privacy Policy.
   5. "Personal Information" shall mean and include any personal data or information that is processed by the Company in relation to this Privacy Policy and as elaborated under clause 3 of this Privacy Policy.
   6. "Platform" shall mean and include the platform website, product, software, services and elaborated under clause 2 of this Privacy Policy.
   7. "User" shall mean and include any natural and/or any legal person, accessing the Platform or subscribers to any of our Product(s), Software(s), and other service(s).
   8. "Legal Guardian" shall mean and include a person who has been appointed by a court or otherwise and has the legal authority to care of a Minor child or incompetent adult.
   9. "Minor" shall mean and include any individual who is under the age of 18 years.
   10. "Device" shall mean and include a portable electronic equipment that can be connect to the internet.
   11. "Cookie Policy" shall mean and include course of action proposed with regard to cookies that is defined under clause 5 (a) (v) of this Privacy Policy

2. General

   This privacy policy (“Privacy Policy/Policy”) describes the privacy practices for Secure Blink Tech Private Limited ( “Secure Blink”, “We/we” or “Us/us” ) with regard to collection and use of the personal information (defined hereunder) of the contributors, vendors, employees and the users (“You/you” or “Your/your”) by use of our website (https://www.secureblink.com/ ) including its sub domains, product(s), software(s), and services(“Platform”).

   This Privacy Policy along with terms of use describes our practices regarding, including your choices in relation to how we collect, store, use, share and secure your personal information across our website and use of our product. It also describes your choices regarding use, access and correction of your personal information and your rights in relation to your personal information and how to contact supervisory authorities or us in the event you have a complaint.

   By providing your consent to this Privacy Policy and accepting the terms of use, you agree to the collection, use and transfer of your personal information as set out in this Privacy Policy. if you do not agree with the terms of this privacy policy, please do not use/access this website. and its product.

   We will review this Privacy Policy from time to time to make sure it is up to date. If you are just a visitor, then please note that this privacy policy is subject to change at any time without notice. At your end, you must make sure you are aware of any changes through periodic review of the Policy. If you are our registered user, we will notify you upon making changes to this Policy and give you the opportunity to review the revised Privacy Policy before you choose to continue using our Platform.

3. Personal Information

   By personal information, we mean any information that can either itself identify you as an individual or that can be connected to you indirectly by linking it to personally identifying information.(“Personal Information”). Kindly note that usage of the term Personal Information in this Privacy Policy includes sensitive personal data or information, wherever appropriate and/or mandated under applicable laws. If any information you have provided or uploaded on the Platform violates the terms of this Policy, Secure Blink may be required to delete such information upon informing you of the same and revoke your access if required without incurring any liability to you.

4. Scope and Applicability

   1. Scope

      The scope of the Policy is to the extent of the services provided by the Company, in relation to its Platform. The Secure Blink shall not be liable for any action/explanation for any use/misuse of data/Information beyond such scope of the Policy.

   2. Applicability

      The Privacy Policy shall be applicable to all the User(s) of the Platform of the Secure Blink, including but not limited to:

      1. any natural and/or any legal person(s), accessing the website;
      2. any natural and/or any legal person(s), subscribing to any of our Product(s), Software(s), and other service(s);
      3. Any Employees, associates, affiliates, of Secure Blink accessing the Platform.

      The Secure Blink Platform is not designed for Minors, however if a Minor(s) accesses the Platform for educational purposes, the same shall be done with the consent of the Legal Guardian of the Minor.

5. Information

   1. What Information do we access?

      1. Personal Information

         We may collect certain Personal Information of the User(s), including the name, e-mail address, registration details (in case of legal persons), contact information, domain identity, and other general information of the User.

         Our Employees, associates, affiliates may also be required to provide such Personal Information while working/using the Platform for the purpose of tracking access of our Platform.

      2. Product Information

         We may also collect, from the User(s) of our Product(s), and/or software(s), information relating to the internet protocol (“ IP”) address of your Device, browser type, the web page visited before you came to the Secure Blink’s website, information on your search for the Secure Blink website, identification numbers associated with your Devices (UID), GUID, MAC Address, your mobile carrier, local preferences, date and time stamps associated with your transactions, system configuration information, metadata concerning your files and other interactions with the Service. We will also collect usage-based activity data (e.g frequency of usage, activated functionality) to create an aggregated analysis of our customers’ usage pattern. However, all such information collected from our Product(s) and Software(s) Users are only used for evolving the service experience of the User in order to provide a wholesome and updated service. For the purpose of automated remediation rendering services to our registered users, we may use the platform based programmatic access of registered user's source code. However, such source code access shall be made by the Platform will not be human bases access, but Platform based programmatic access.

      3. Application Security Management System

         The Platform may access certain information for application security management i.e. passwords, two factor authentication softwares or key pairs and security device identification number.

      4. Other Information

         Any Information obtained through any event conducted on Secure Blink or any associate Platform, or any information available under the public domain, requisite to develop an ease of access for communication. (Product Sign up Forms, Newsletters, and Contact Forms.)

      5. Third Party Information

         We may obtain information from google analytics, segment, zoho hotjar for the purpose enhancing the User experience. We may also obtain certain information for sign up access to our Platform from google.

      6. Cookies

         The cookies are managed and governed through Cookie Policy, kindly visit the Platform’s Cookie policy for reference.

   2. What Information do we share?

      1. As a general rule, we do not share any information of our User(s) with any third parties, and our Platform has a robust mechanism to prevent such unauthorised access through military grade encryption.
      2. In case, the integration feature is enabled, we may share application security alerts through the notification feature to Slack, Jira, Trello, PagerDuty, webhooks and Splunk only when they are configured at the end of the User.
      3. Information can be shared by us to the team, associates, and or affiliates of the User also, by using our Team Member feature, only if the access is granted by the organizational admin of the User.
      4. Any payment related information is stored and collected directly through a recognized secure payment gateway (Stripe), and the Secure Blink does not bear any responsibility for usage of such information. However, we may share the Registered User’s account collected at our end to the secured payment gateway for processing your billings, and invoices. While our administrators are able to view and track actual transactions via customer portals, we do not have access to or process your credit card or any other payment mode information.
      5. Any other information mandated under the applicable laws, under public interest.

   3. What Information do we retain?

      We may retain account information outputs for product usage timeline to be decided at the end of registered user – through military based encryption. However, the period of retainment of such information is based upon the timeline decided by the User

6. Certifications and Accreditation(s)

   We are ISO 27001 certified, independently certified for protecting privacy of Personally Identifiable Information (PII) under GDPR readiness and processing other major data privacy certifications.

   The ISO 27001, developed to “provide a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an information security management system”, uses a top down, risk-based approach and is technology-neutral. The specification defines a sixfold planning process and includes details for documentation, management responsibility, internal audits, continual improvement, and corrective and preventive action. The standard requires cooperation among all sections of an organisation.

   The ISO 27001 standard does not mandate specific information security controls; however, it provides a checklist of controls that should be considered in the accompanying code of practice, ISO/IEC 27001:2013. This second standard describes a comprehensive set of information security control objectives and a set of generally accepted good practice security controls. The organizational Users are required to apply these controls appropriately in line with their specific risks. Third-party accredited certification is recommended for ISO 27001 conformance.

7. Amendments to the Policy

   The Secure Blink Privacy Policy may be revised as and when necessitated, by the Company at its own discretion. In case you are a subscriber of any of our Product(s) or Service(s), we will inform such User of such amendment in the Policy. In case, you continue to use such Platform of Secure Blink, upon provision of such amendment(s), such usage may deem your acceptance of the amendments in the Policy.

   However, if the user is not a subscriber to our Product(s) or Service(s), such user shall time to time, view this policy to be updated with the Privacy policy.

8. Grievance Redressal

   Any discrepancies and grievances with respect to processing of personal information shall be informed to the designated grievance officer at dpo@secureblink.com

9. Governing Law and Jurisdiction

   The applicable laws of India shall form the basis of governing law and disputes, in case, of Platform access and regulation.