SPR TECHSERV PRIVATE LIMITED (hereinafter referred to as "we," "us," "our," or "the Company") is a company incorporated under the Companies Act, 2013, in India. We provide a range of IT services including website development, software development, fintech solutions, API integration, business automation, and UI/UX design.
For the purposes of applicable data protection laws, SPR TECHSERV PRIVATE LIMITED acts as the data controller in respect of personal data you provide to us or that we collect in connection with our services and website.
Registered Name: SPR TECHSERV PRIVATE LIMITED
Registered Office: India
Email: info@sprtechserv.live
Privacy Contact: privacy@sprtechserv.live
We collect information in the following ways:
2.1 Information You Provide Directly
- Contact Information: Name, email address, phone number, and company name when you fill out our contact form, request a quote, or get in touch via any channel.
- Project Details: Information about your project requirements, business needs, technical specifications, and preferences shared during consultations.
- Communications: Messages, emails, WhatsApp chats, and other correspondence you send to us.
- Payment Data: Billing name, address, and transaction references. We do not directly store full card or banking details — payment processing is handled by certified third-party gateways.
2.2 Information Collected Automatically
- Device & Browser Data: IP address, browser type and version, operating system, device type, and screen resolution.
- Usage Data: Pages visited, time spent on each page, links clicked, referring URLs, and navigation paths.
- Log Data: Server access logs, error logs, and request timestamps maintained for security and operational purposes.
- Cookie Data: Preferences, session identifiers, and analytics data collected via cookies and similar technologies (see Section 6).
2.3 Information from Third Parties
- Referrals: Information provided by partners, referral partners, or existing clients who refer you to us.
- Social Platforms: Public profile information when you interact with our official social media profiles.
- Public Records: Publicly available business information such as company registrations relevant to service delivery.
We use the information we collect for the following purposes:
- Service Delivery: To provide, manage, and deliver the IT services you engage us for, including project scoping, development, testing, and deployment.
- Communication: To respond to your inquiries, send project updates, provide technical support, and communicate about your account or services.
- Business Development: To send relevant information about our services, case studies, and industry insights (only with your consent or where permitted by law).
- Invoicing & Payments: To process payments, generate invoices, and maintain accurate financial records as required by law.
- Security & Fraud Prevention: To detect, prevent, and address technical issues, security vulnerabilities, fraud, or misuse of our website and services.
- Legal Compliance: To comply with applicable laws, regulations, court orders, or governmental requests.
- Website Improvement: To analyze usage patterns, conduct testing, and improve the functionality, performance, and content of our website.
- Analytics: To understand how visitors interact with our website using aggregated, anonymized data to make informed product and business decisions.
We never sell your personal data to advertisers, data brokers, or any third parties for their marketing purposes. Your data is used solely to deliver and improve our services.
We process your personal data only when we have a valid legal basis to do so. The primary legal bases we rely on are:
| Legal Basis | When We Rely on It |
|---|---|
| Contractual Necessity | When processing is necessary to fulfil a contract with you or to take steps before entering into one (e.g., service agreements, project delivery). |
| Legitimate Interests | For business operations such as improving our website, preventing fraud, maintaining security, and sending relevant service communications — balanced against your privacy rights. |
| Consent | Where you have explicitly agreed — for example, subscribing to our newsletter or opting in to marketing communications. You may withdraw consent at any time. |
| Legal Obligation | When we are required to process data to comply with applicable laws, regulations, or court orders (e.g., tax records, legal disputes). |
We do not sell, rent, or trade your personal data. We may share your data only in the following limited circumstances:
- Service Providers & Vendors: Trusted third-party vendors who assist in delivering our services — such as cloud hosting providers (e.g., AWS, Google Cloud), payment processors, email platforms, and project management tools. These parties are bound by strict data processing agreements.
- Professional Advisors: Lawyers, auditors, accountants, and insurers where necessary for legitimate business or legal purposes, subject to professional confidentiality obligations.
- Business Transfers: In the event of a merger, acquisition, restructuring, or sale of assets, your data may be transferred to the successor entity, subject to equivalent privacy protections.
- Legal Requirements: When required by law, court order, or regulatory authority, or when we believe disclosure is necessary to protect our rights, safety, or property, or that of others.
- With Your Consent: In any other circumstances where you have given us explicit prior consent to share your data.
All third-party service providers are carefully vetted and are contractually required to implement appropriate technical and organizational security measures and to use your data only as instructed by us.
Our website uses cookies and similar tracking technologies (such as web beacons and local storage) to enhance your experience, analyze site performance, and remember your preferences.
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential Cookies | Required for the website to function. They enable basic features like page navigation and access to secure areas. The website cannot function properly without these. | Session / Persistent |
| Performance Cookies | Collect anonymized data about how visitors use the website — such as pages visited and error messages — to help us improve website performance. | Up to 2 years |
| Functional Cookies | Remember your preferences and choices (e.g., language settings) to provide a personalized experience on return visits. | Up to 1 year |
| Analytics Cookies | Used by tools like Google Analytics to understand traffic sources, user behavior, and engagement patterns in aggregated, anonymous form. | Up to 2 years |
You can control or disable cookies through your browser settings at any time. Please note that disabling certain cookies may affect the functionality of parts of our website. To opt out of Google Analytics tracking, you can use the Google Analytics Opt-out Browser Add-on.
We take the security of your personal data seriously and implement a combination of technical, administrative, and physical safeguards to protect it from unauthorized access, alteration, disclosure, or destruction.
- Encryption: All data in transit is protected using TLS/SSL encryption (HTTPS). Sensitive data at rest is encrypted using industry-standard algorithms.
- Access Controls: Personal data is accessible only to authorized personnel with a legitimate need, enforced via role-based access controls and strong authentication.
- Secure Infrastructure: We use reputable cloud providers with SOC 2 and ISO 27001 certifications who maintain robust physical and network security controls.
- Regular Audits: We conduct periodic security assessments, vulnerability scans, and internal audits to identify and remediate risks proactively.
- Incident Response: We maintain a data breach response plan and will notify affected individuals and relevant authorities in accordance with applicable legal requirements.
While we implement strong security measures, no system is completely impenetrable. We encourage you to use strong passwords and not share your login credentials with anyone. If you suspect a security issue, please contact us immediately at security@sprtechserv.live.
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including compliance with legal, accounting, or reporting obligations.
| Data Category | Retention Period | Reason |
|---|---|---|
| Contact form inquiries | 3 years | Business relationship management and legal disputes |
| Client project data | 7 years after project completion | Legal, audit, and warranty obligations |
| Financial / billing records | 8 years | Indian tax laws (GST Act, Income Tax Act) |
| Marketing communications | Until opt-out or 3 years of inactivity | Consent management |
| Website analytics data | 26 months (anonymized after 13 months) | Performance optimization |
| Security / server logs | 12 months | Security monitoring and incident response |
When data is no longer needed, we securely delete or anonymize it in a manner that prevents reconstruction or identification.
Depending on your location and applicable law, you may have the following rights regarding your personal data. We are committed to honouring these rights promptly and without undue delay.
Right to Access
Request a copy of the personal data we hold about you and information on how it's processed.
Right to Rectification
Request correction of inaccurate or incomplete personal data we hold about you.
Right to Erasure
Request deletion of your personal data where there is no legitimate reason for us to continue processing it.
Right to Object
Object to processing of your data for direct marketing purposes or where we rely on legitimate interests.
Right to Restriction
Request that we restrict processing of your data while a dispute is being resolved or where processing is unlawful.
Data Portability
Receive your personal data in a structured, machine-readable format to transfer to another provider.
Withdraw Consent
Where processing is based on consent, withdraw it at any time without affecting prior processing.
Right to Complain
Lodge a complaint with your local data protection authority if you believe we have not handled your data correctly.
To exercise any of these rights, please contact us at privacy@sprtechserv.live with the subject line "Privacy Rights Request." We will respond within 30 days. We may need to verify your identity before processing certain requests.
Our website and services are intended for use by adults and businesses. We do not knowingly collect, solicit, or process personal data from individuals under the age of 18.
If you are a parent or guardian and believe that a child under your care has provided us with personal data without your consent, please contact us immediately at privacy@sprtechserv.live. Upon verification, we will promptly delete such data from our systems.
If you are under 18, please do not use our services or submit any personal information through our website.
Our website may contain links to external websites, social media platforms, partner portals, or third-party tools (such as WhatsApp, LinkedIn, GitHub). These links are provided for your convenience and information only.
We do not control these third-party websites and are not responsible for their privacy practices, content, or terms of service. We strongly encourage you to review the privacy policy of any external website you visit before providing any personal information.
Clicking on a third-party link from our website is at your own risk, and this Privacy Policy applies solely to information collected through our own website and services.
SPR TECHSERV PRIVATE LIMITED is based in India, and your data is primarily processed and stored within India. However, some of our third-party service providers and cloud infrastructure partners may process or store data in other countries, including within the European Economic Area (EEA), United States, and Singapore.
When transferring data internationally, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses (SCCs) approved by relevant data protection authorities
- Data processing agreements with all international vendors ensuring equivalent levels of data protection
- Use of providers holding recognized compliance certifications (e.g., ISO 27001, SOC 2, Privacy Shield successor frameworks)
If you have concerns about international data transfers, please contact our privacy team at privacy@sprtechserv.live.
We may update this Privacy Policy periodically to reflect changes in our data practices, service offerings, legal obligations, or regulatory requirements. When we make material changes, we will:
- Update the "Last Updated" date at the top of this page
- Display a prominent notice on our website homepage for a reasonable period following the update
- Notify active clients via email if the changes significantly affect how we process their data
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data. Your continued use of our website or services after any changes constitutes your acceptance of the revised policy.
If you disagree with any changes, you may stop using our services and request deletion of your data by contacting us as described in Section 14.
If you have any questions, concerns, or requests relating to this Privacy Policy or how we handle your personal data, please do not hesitate to contact us. We are committed to addressing your concerns promptly and transparently.
SPR TECHSERV PRIVATE LIMITED
Our privacy team will acknowledge your request within 48 hours and provide a full response within 30 days. For urgent security matters, please indicate "URGENT" in your email subject line.