Contact Us
Contact Us

Privacy Policy

Privacy Policy

Effective Date: 29th May 2025

Last Updated: 29th May 2025

[Kelenix Technologies LLP] (“Company”, “we”, “our”, or “us”) is committed to protecting the privacy of individuals and ensuring compliance with applicable data protection laws in India, including the Information Technology Act, 2000 and the Digital Personal Data Protection Act, 2023 (“DPDP Act”).

This Privacy Policy explains how we collect, process, store, use, and share personal data in the course of providing cybersecurity and digital forensics services.

1. Applicability

This Privacy Policy applies to:

  • Visitors to our website
  • Clients and their representatives
  • Individuals whose data is processed during forensic investigations
  • Any person interacting with us directly or through authorized platforms

2. Data We Collect

We collect the following categories of data:

a. Personal Data (as defined under DPDP Act)

  • Full name
  • Contact details (email, phone)
  • Designation and company name
  • Government-issued identifiers (if required under legal or forensic mandates)
  • Any other identifier voluntarily provided

b. Sensitive Personal Data or Information (SPDI) (as per IT Act Rules)

  • Passwords
  • Financial information (bank or card details, if any)
  • Biometric data (if applicable)
  • Health information (only if required during investigation)

c. Technical and Forensic Data

  • IP addresses and MAC addresses
  • Server logs and traffic metadata
  • Device images and digital artifacts
  • Emails, files, chat logs, and other relevant evidence
  • Access control logs and user actions (as part of investigation scope)

3. Purpose of Collection

We process personal and technical data for the following lawful purposes:

  • To provide cybersecurity and forensic services
  • To respond to lawful investigation or litigation requests
  • To comply with statutory and contractual obligations
  • To detect, prevent, and investigate security incidents
  • To manage client relationships and billing
  • For auditing and compliance checks

4. Lawful Basis for Processing

In accordance with the DPDP Act and IT Act, processing is carried out on one or more of the following bases:

  • Consent: For non-contractual or optional data
  • Contractual necessity: For delivering our services
  • Legal obligation: Where required under Indian laws
  • Legitimate interest: Security, fraud detection, legal defense, or investigations

5. Consent and Withdrawal

Where consent is required, we obtain clear, informed, and specific consent prior to processing. You may withdraw your consent at any time by contacting us at [email protected]. However, withdrawal may affect service delivery in some cases.

6. Data Retention

We retain data only for as long as necessary to fulfil legal, contractual, or operational obligations. Forensic and client data are retained securely for the mandated retention period, post which they are anonymized or permanently deleted.

7. Data Sharing and Disclosure

We do not sell, rent or trade your data. Data may be shared with:

  • Internal personnel with access control
  • Law enforcement or statutory authorities (under lawful request)
  • Third-party service providers or consultants (bound by NDAs and processing agreements)
  • Legal advisors, auditors, or courts when required

All data sharing is done with appropriate safeguards in place.

8. Data Security Measures

In line with Section 43A of the IT Act, we implement reasonable security practices, including:

  • End-to-end encryption for sensitive data
  • Secure storage (on-premise or encrypted cloud)
  • Access control and multi-factor authentication
  • Regular audits and vulnerability assessments
  • Chain-of-custody documentation during forensic investigations

9. Your Rights (Under DPDP Act)

As a Data Principal, you have the right to:

  • Access your personal data processed by us
  • Correct or update inaccurate or incomplete data
  • Withdraw consent (where applicable)
  • Request erasure after data is no longer necessary
  • Lodge a grievance with our Data Protection Officer (DPO)

To exercise your rights, please contact us at [email protected].

10. Grievance Redressal Mechanism

In compliance with Rule 5(9) of the IT (SPDI) Rules and Section 13 of the DPDP Act, you may raise any concerns to our Grievance Officer:

Grievance Officer / DPO
Dhenuka H Kasukurti
Email: [email protected].
Response Time: Within 7 working days

11. Cross-Border Data Transfer

While we primarily process data within India, any cross-border transfer (if applicable) will be done in accordance with the DPDP Act and any future rules governing international data transfer, ensuring adequate protection measures.

12. Cookies and Website Analytics

Our website may use cookies and analytics tools to enhance user experience. You can manage cookie preferences in your browser settings.

13. Policy Updates

We reserve the right to update this Privacy Policy to reflect changes in law, technology, or business practices. Updated policies will be published on our website with an effective date.

Cart (0 items)