Visit our social pages

Privacy Policy


Contact us

1. Introduction

Zebtra Corporation (“Zebtra”, “we”, “our”, or “us”) is committed to protecting the privacy and confidentiality of the personal and business information of its clients, vendors, employees, and website users. This Privacy Policy outlines how Zebtra collects, uses, discloses, and protects such information in compliance with Indian law and international data security norms.

2. Types of Data Collected

Zebtra collects the following categories of data:

  • Business Contact Information: Name, email, mobile number, company name, designation.
  • Service-Related Information: Transaction history, inquiry logs, chat logs, project timelines.
  • Technical and Device Data: IP address, browser type, device identifiers, usage statistics, cookies.

Collection is limited to information necessary for legitimate business functions and lawful purposes.

3. Purpose of Data Collection

The information is collected and processed to:

  • Fulfil contractual obligations (IT/consulting/SaaS services).
  • Respond to client inquiries and provide customer support.
  • Provide access to our proprietary SaaS platform, project dashboards, or cloud tools.
  • Perform internal analytics, diagnostics, and performance enhancement.
  • Send promotional emails and newsletters (only with user consent).

 

4. Lawful Basis for Processing

All data is processed lawfully under:

  • Section 43A of the Information Technology Act, 2000 (for sensitive personal data).
  • Rule 5 of the IT Rules, 2011 (for consent and lawful purpose).
  • Indian Contract Act, 1872 (for vendor and customer agreements).
  • ISO/IEC 27001 Compliance (internal security and data privacy protocols).

5. Third-Party Sharing

Zebtra shares data only on a need-to-know and consent-driven basis with:

  • Cloud Service Providers (e.g., AWS, Azure) under contractual Data Protection Agreements (DPAs).
  • CRM & Marketing Tools (e.g., Salesforce, Zoho) only with opt-in consent.
  • Legal and Regulatory Authorities (on valid legal request or notice).
  • Auditors and Consultants, bound by NDAs.

We ensure all third parties follow industry-standard data security practices.

6. User Rights

As a data subject, you have the following rights:

  • Right to Access: You may request a copy of the personal data held.
  • Right to Rectification: You can ask to correct inaccuracies.
  • Right to Erasure: You can request deletion of your data, subject to contractual and statutory limitations.
  • Right to Withdraw Consent: Where data processing is based on consent, it may be revoked in writing.

Requests can be made via email to our Grievance Officer.

7. Data Security Measures

Zebtra follows strong IT security protocols, including:

  • Encryption: SSL encryption during data transmission.
  • Authentication: Role-based access and password hashing.
  • System Audits: Monthly vulnerability scans and annual security testing.
  • ISO/IEC 27001-Compliant frameworks.

8. Cookie Usage

We use cookies to:

  • Track session activity.
  • Personalize user experience.
  • Collect analytics (via tools like Google Analytics).

Users can manage or disable cookies via browser settings.

9. Data Retention

Data is retained:

  • For the duration of the business relationship.
  • As mandated under applicable laws (e.g., IT Act, contractual obligations).
  • For a reasonable period post-contract for audit, dispute resolution, or regulatory compliance.

10. Grievance Redressal Mechanism

Grievance Officer: [Insert Name]

Email: [Insert Contact Email]

Office Address: [Insert Registered Address of Zebtra Corporation]