This GDPR Policy describes how we, Xcelyst Partners Pvt Ltd., handle and protect the personal data of our website visitors and customers in accordance with the European General Data Protection Regulation (GDPR).

1. Data Collection and Usage

1.1 Personal Data

We may collect personal data such as names, email addresses, phone numbers, and other relevant information when voluntarily submitted by our website visitors and customers. This data is used solely for the purpose of providing our services, responding to inquiries, and improving the user experience.

1.2 Legal Basis for Processing

We will only process personal data if we have a lawful basis for doing so, such as the necessity to fulfill a contract, comply with legal obligations, protect vital interests, or obtain consent from the data subject.

2.  Data Storage and Security

2.1 Data Retention

We will retain personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with applicable laws and regulations. Once the data is no longer needed, it will be securely deleted or anonymized.

2.2 Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. However, please note that no method of transmission or storage is completely secure, and we cannot guarantee absolute data security.

3. Sharing and Transferring Data

3.1 Third-Party Service Providers

We may engage third-party service providers to assist us in delivering our services. These providers are carefully selected and bound by contractual obligations to handle personal data in accordance with applicable data protection laws.

3.2 Data Transfers

In certain circumstances, we may need to transfer personal data to countries outside the European Economic Area (EEA). If such transfers occur, we will ensure appropriate safeguards are in place to protect the data in compliance with GDPR requirements.

4.  Rights of Data Subjects

4.1 Data Subject Rights

Data subjects have the right to access, rectify, erase, restrict processing, and obtain a copy of their personal data. They also have the right to object to the processing of their data and to lodge complaints with the supervisory authority.

4.2 Exercising Data Subject Rights

To exercise any of the aforementioned rights or make inquiries regarding personal data, please contact us using the details provided at the end of this policy.

Updates to this Policy

We may update this GDPR Policy periodically to reflect changes in our data processing practices or legal obligations. Any updates will be published on our website, and the revised policy will become effective upon posting.

Contact Us

If you have any questions, concerns, or requests regarding this GDPR Policy or our data processing practices, please contact us at Xcelyst Partners Pvt Ltd. or at info@xcelyst.com