Introduction
Secaudi is strongly committed to protecting the privacy and security of personal data. This Privacy Policy explains why and how we collect, use, and protect personal data and outlines individuals’ rights concerning the information we collect. It applies to personal data provided to us directly by individuals and indirectly through other means. We process personal data for various purposes, including customer onboarding and service delivery, and we are committed to maintaining transparency regarding our data processing practices.
In this Privacy Policy, the terms “Secaudi,” “we,” “us,” and “our” refer to Secaudi and its affiliated entities that may process personal data. Depending on the circumstances, the data controller of your personal data may be Secaudi or another relevant entity, as determined under applicable privacy laws and regulations.
Secaudi processes personal data to facilitate communication, deliver services effectively, and ensure compliance with legal and regulatory requirements. Personal information collected may include, but is not limited to, names, email addresses, and phone numbers. We implement appropriate technical and organizational measures to safeguard personal data and limit access to authorized individuals only.
As part of our global operations, we may transfer personal data to third parties in locations such as India, the UK, and Canada for processing purposes. However, we remain committed to ensuring that your data is protected, regardless of where it is processed.
For more details about our specific data processing activities, please refer to the relevant sections of this Privacy Policy. If you have any questions or wish to exercise your privacy rights, please contact us through the details provided on our website https://secaudi.com/ .
Our Legal Grounds for Processing Your Personal Data
Under applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR), Indian data privacy laws, and Canadian privacy regulations, we are required to outline the legal bases on which we process your personal data. Depending on the circumstances, we may rely on one or more of the following legal bases:
- Legitimate Interests: We may process your personal data where it is necessary for our legitimate business interests, provided such interests do not override your rights and freedoms. This includes:
- Managing client inquiries and onboarding processes.
- Enhancing and personalizing our marketing activities to provide relevant services.
- Performance of a Contract: We process your personal data when it is necessary to fulfill our contractual obligations to you or to take steps at your request before entering into a contract. This applies when we collect contact details to facilitate communication and deliver services.
- Compliance with Legal Obligations: In certain situations, we are required to process your personal data to comply with legal and regulatory obligations, such as tax regulations, law enforcement requests, or statutory record-keeping requirements.
- Consent: Where required by law, we process your personal data based on your explicit consent for specific purposes, such as sending marketing communications or responding to inquiries. You may withdraw your consent at any time by contacting us using the details provided in this privacy policy.
- International Data Transfers: To provide our services, your data may be transferred to secure servers in India, the UK, and Canada. We ensure that such transfers comply with applicable data protection laws and appropriate safeguards are in place.
Where we act as a data controller, we determine how and why your personal data is processed. In cases where we process data on behalf of another entity, we act as a data processor and adhere to instructions from the data controller.
For any questions or to exercise your data protection rights, please contact us at dpo@secaudi.com
Transfers and disclosures of personal data
Cross-Border Transfers
If we process your personal data, it may be transferred to and stored in countries outside your jurisdiction, including India, the UK, and Canada. These transfers are necessary to support our business operations, such as data processing, customer support, and IT services. While these jurisdictions may not always provide an equivalent level of data protection as your local laws, we ensure that appropriate safeguards are in place, including contractual agreements and security measures, to protect your personal data in compliance with applicable regulations.
Third-Party Service Providers
We may share personal data with third-party vendors, contractors, and service providers who assist us in operating our business and delivering our services. These third parties are contractually obligated to process personal data securely and only in accordance with our instructions. Examples of such third parties include, but are not limited to:
- Cloud Computing Providers – For secure data storage and management.
- Sales and Marketing Platforms – To facilitate customer engagement and onboarding.
- Data Storage Service Providers – To retain and manage data during the specified retention period.
All third-party providers and their subcontractors must comply with our strict data protection requirements to ensure the confidentiality, security, and integrity of your personal information.
Legal and Regulatory Disclosures
We may disclose personal data when required by law, regulation, or legal process, including to government authorities, regulatory bodies, and law enforcement agencies. This may occur in situations such as:
- Compliance with legal or regulatory obligations.
- Responding to lawful requests from authorities.
- Protecting the security and integrity of our systems.
- Enforcing legal rights or defending against legal claims.
Protection of Business Interests
Your personal data may also be shared when necessary to:
- Investigate and address potential violations of our policies.
- Ensure the security of our IT infrastructure and services.
- Prevent fraud, cybersecurity threats, or other malicious activities.
Transparency and Your Rights
We are committed to transparency in our data-sharing practices. You may request information regarding the categories of third parties with whom your data has been shared, along with details of the safeguards in place, by contacting us at dpo@secaudi.com .
Our processing activities
To learn more about how we process personal data, please refer to Appendix A (Categories of Individuals Whose Personal Data We May Process) of this Privacy Policy. This section outline the types of personal data we collect, the purposes for which we process them.
Marketing activities
Marketing includes any communications regarding Secaudi’s cybersecurity services, insights, and industry updates. If you subscribe to our updates, you will receive automated emails when we publish new content. If you opt into newsletters, you will receive curated emails containing relevant cybersecurity news and updates. Additionally, if you select specific topics of interest, such as threat intelligence, vulnerability management, or compliance, we may send you communications tailored to those preferences.
Where legally required, we will obtain your explicit consent before sending you marketing materials. We will only provide such materials if you have given your consent.
We retain contact information (including your name and email address) on our mailing lists until you choose to unsubscribe. If you opt out of receiving marketing emails, we may retain limited information to ensure your preferences are honored.
Secaudi does not sell personal information to third parties for marketing purposes.
How to Unsubscribe from Marketing Communications
You may request to stop receiving marketing communications from us at any time. To unsubscribe from mailing lists or other registrations, please follow the instructions provided in our emails.
If you wish to stop receiving only specific types of communication, please specify your preferences when submitting your request.
Security
Secaudi is committed to safeguarding personal data and has implemented industry-standard security measures to protect against unauthorized access, alteration, disclosure, or destruction. We employ robust technical and organizational controls, including encryption, access restrictions, and continuous monitoring, to ensure the confidentiality, integrity, and availability of personal data.
Access to personal data is strictly limited to authorized personnel who are required to maintain its confidentiality. These individuals undergo security awareness training and adhere to our cybersecurity protocols.
While we take appropriate measures to secure personal data once received, it is important to note that data transmission over the internet, including via email, is not entirely risk-free. We strive to protect personal data but cannot guarantee absolute security during transmission.
Your legal rights in relation to personal data
You may have certain rights under applicable data protection laws regarding the personal data we collect and process about you.
In particular, depending on your applicable local law, you may have the legal right to:
- Access Your Data – Request confirmation as to whether we process personal data about you, receive a copy of your personal data, and obtain information about how and why we process it.
- Correction and Rectification – Request correction of any inaccurate or incomplete personal data we hold about you.
- Erasure – Request deletion of your personal data under certain circumstances, such as when it is no longer necessary for the purposes for which it was collected.
- Restriction of Processing – Request that we restrict processing of your personal data in specific situations, such as when you contest its accuracy.
- Objection to Processing – Object to the processing of your personal data, particularly if we process it based on legitimate interests.
- Data Portability – Request to receive your personal data in a structured, commonly used, and machine-readable format, and to have it transferred to another controller where technically feasible.
- Withdraw Consent – If we process your personal data based on your consent, you have the right to withdraw your consent at any time by contacting us using the details provided in the section below.
If you believe that our processing of your personal data infringes the law, you may have certain rights available to you under your applicable local law, including but not limited to the right to lodge a complaint with the relevant data protection authority in your country of residence, workplace, or where the alleged infringement occurred.
Use of AI Technologies
At Secaudi, we may utilize artificial intelligence (“AI”) technologies, including but not limited to machine learning, analytics, and generative AI (“AI Technologies”), to enhance and improve our cybersecurity services, tools, and offerings. These technologies may be used for (i) threat intelligence and risk analysis, (ii) automating security assessments, (iii) detecting and responding to vulnerabilities, (iv) optimizing cybersecurity solutions, (v) enhancing research and development efforts, and (vi) other legitimate business purposes.
Our use of AI Technologies adheres to applicable laws, regulations, and industry best practices to ensure responsible, ethical, and secure deployment. We implement appropriate safeguards and controls to maintain data security, privacy, and compliance while leveraging AI-driven insights to strengthen cybersecurity resilience.
Changes to This Privacy Statement
We may update this privacy statement at any time by publishing a revised version on this webpage. To keep you informed about any changes, we will update the “Revised” date at the top of this page whenever modifications are made. The updated privacy statement will take effect immediately upon publication.
If we make significant changes, such as updates to the types of personal data we collect (e.g., first name, last name, email, and phone number), changes to data retention periods, or modifications related to international data transfers (e.g., to India, the UK, or Canada), we will notify you through prominent announcements on our website or direct communication.
We encourage you to review this privacy statement periodically to stay informed about how we collect, use, and protect your personal data in alignment with applicable data protection laws and best practices.
Contact us
For any questions or requests regarding this Privacy Policy, including the exercise of your rights under Section 7 of this Privacy Policy, you may contact us at:
Email: dpo@secaudi.com
Website: https://secaudi.com/
Contact Form: https://secaudi.com/contact-us/
Depending on your jurisdiction, you may also contact our designated representatives for data protection matters. If applicable, please refer to Appendix B (Data Protection Officer Details) for information on regions where we have appointed a Data Protection Officer (DPO) or an equivalent role.
For inquiries related to the processing of personal data, you may also reach out to our respective regional offices:
Canada:
Secaudi, 156 Enfield Pl, Mississauga, Ontario L5B 4L8, Canada
United Kingdom:
Secaudi House, 29A Alvechurch Road, Birmingham B31 3JW, United Kingdom
India:
Secaudi Infotech Private Limited, 402 Emaar Palm Garden, Sector 83, Gurgaon-122001, India
For further details, please refer to the following appendices:
- Appendix A: [Categories of Individuals Whose Personal Data We Process] Here
- Appendix B: [Data Protection Officer (DPO) Details] Here
We take your privacy seriously and are committed to addressing your concerns regarding the processing of your personal data.
