Legal
Privacy Policy
This privacy policy explains how eNeoteric Consultancy Services (“ENCSE,” “we,” “us,” or “our”) collects, uses, discloses, and protects your personal information when you visit our website or use our services.
Last updated: 27 March 2026
1. Scope
This privacy policy applies to all websites, applications, platforms, and digital services owned and operated by eNeoteric Consultancy Services, including all associated domains and subdomains. It covers all service lines: IT infrastructure, enterprise networking and wireless, cybersecurity and VAPT, cloud and data centre services, software development, artificial intelligence and SaaS solutions, managed IT services, quality assurance and testing, and all industry-specific solutions we deliver.
2. Information We Collect
We collect personal information in the following ways:
Information you provide directly: When you fill out contact forms, request a quote or proposal, book a consultation, subscribe to our newsletter, register for training, or communicate with us, we may collect your name, email address, phone number, company name, job title, project requirements, and any other information you choose to provide.
Client engagement data: When you engage us for services such as IT infrastructure deployment, software development, cybersecurity assessments, quality assurance testing, or managed services, we may collect project scope details, technical environment information, system configurations, network diagrams, and other data necessary to deliver the contracted services.
Payment and billing data: We collect invoicing details such as company name, billing address, GST number, and purchase order references. We do not directly store credit card or bank account numbers. Payments are processed through secure third-party payment gateways that comply with PCI DSS standards.
Information collected automatically: When you visit our websites, we automatically collect technical information including your IP address, browser type, operating system, referring URLs, pages visited, time spent on pages, and browsing behaviour through cookies and similar technologies.
Analytics data: We use web analytics services to understand how visitors interact with our websites. This includes page views, session duration, bounce rates, and approximate geographic location based on IP address.
3. How We Use Your Information
We use the information we collect for the following purposes:
- To respond to your enquiries and provide the services you request
- To process and manage leads through our customer relationship management system
- To deliver contracted services including IT infrastructure design, software development, cybersecurity assessments, QA testing, and managed services
- To process invoices and manage billing
- To send relevant communications about our services, including marketing materials (with your consent where required)
- To improve our websites, services, and user experience
- To analyse website traffic and usage patterns
- To comply with legal obligations and enforce our terms of service
- To detect, prevent, and address technical issues or security threats
4. Data Sharing and Third-Party Services
We do not sell your personal information to third parties. We may share your information in the following circumstances:
CRM and business tools: We use Zoho CRM and related Zoho products to manage customer relationships, process enquiries, and handle invoicing. When you submit a contact form or engage with us, your data may be stored and processed within these systems in accordance with their privacy policies and applicable data protection regulations.
Analytics providers: We use Google Analytics (GA4) and Plausible Analytics to understand website usage. Google Analytics may use cookies and collects anonymised browsing data. Plausible Analytics is a privacy-friendly, cookieless analytics service. Both report aggregate trends without identifying individual visitors. Analytics scripts are only activated after you provide consent via our cookie banner.
Cloud and hosting providers: Our websites and client services may utilise infrastructure from providers such as AWS, Microsoft Azure, Google Cloud Platform, and other reputable hosting services. These providers process data in accordance with their own privacy policies and applicable regulations. Data residency for Indian clients is maintained within India where feasible.
OEM and technology partners: In the course of delivering IT infrastructure, cybersecurity, or managed services, we may need to share limited technical information with OEM partners (such as Cisco, HPE, Aruba, Fortinet, Dell, and others) solely for the purpose of product licensing, support escalation, or warranty claims. We share only what is necessary and ensure partners maintain confidentiality.
Service providers: We may share your information with trusted service providers who assist in operating our websites, conducting our business, or delivering services, provided those parties agree to keep this information confidential.
Legal requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities.
5. Client Data and Confidentiality
When you engage us for professional services, we may have access to your proprietary systems, networks, source code, business processes, and other confidential information. We treat all client project data with the highest level of confidentiality:
- All client data is accessed only by authorised team members directly involved in the project
- We do not use client data for any purpose other than delivering the contracted services
- Non-disclosure agreements (NDAs) are available and may be executed as part of engagement terms
- Upon project completion or contract termination, client data is returned or securely deleted as per the agreement
- Cybersecurity assessment reports, VAPT findings, QA test results, and vulnerability data are shared exclusively with the authorised client contact and are never disclosed to third parties without explicit written consent
6. Cookies and Tracking Technologies
Our websites use cookies and similar tracking technologies to enhance your browsing experience and analyse site traffic. The types of cookies we use include:
- Essential cookies: Required for basic functionality, such as navigation and access to secure areas.
- Analytics cookies: Help us understand how visitors interact with our websites by collecting information about pages visited, time spent, and navigation paths.
- Functional cookies: Enable enhanced functionality and personalisation, such as remembering your preferences.
- Marketing cookies: Used to track visitors across websites to display relevant advertisements.
You can control and manage cookies through your browser settings. Disabling certain cookies may affect website functionality.
7. Data Security
We implement appropriate technical and organisational security measures to protect personal and client information against unauthorised access, alteration, disclosure, or destruction. These measures include:
- SSL/TLS encryption for all data transmitted between browsers and our servers
- Encryption of sensitive data at rest using industry-standard methods
- Role-based access controls to limit data access to authorised personnel
- Regular security assessments, vulnerability scanning, and penetration testing
- Secure storage of data with trusted, reputable hosting providers
- Employee security awareness training and acceptable use policies
While we strive to use commercially acceptable means to protect your information, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.
8. Data Breach Notification
In the event of a data breach that affects your personal information, we will:
- Investigate and contain the breach as quickly as possible
- Notify affected individuals within 72 hours of becoming aware of the breach, where feasible
- Report the breach to the Data Protection Board of India and other relevant authorities as required by law
- Provide details of the breach, the data affected, and the steps taken to mitigate harm
9. Compliance with Indian Law
We process personal data in accordance with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act (DPDPA), 2023. Where applicable, we ensure that data transfers outside India comply with relevant regulatory requirements. For government and BFSI clients, we adhere to additional sector-specific data handling requirements as applicable.
10. Data Retention
We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected:
- Enquiry and lead data: Retained for up to 3 years from last contact, unless you request earlier deletion
- Client project data: Retained for the duration of the engagement plus the period required by the contract or applicable law
- Invoicing and financial records: Retained for a minimum of 8 years as required by Indian tax and accounting regulations
- Analytics data: Retained in anonymised form; identifiable data is purged regularly
When your personal data is no longer required, we securely delete or anonymise it.
11. Your Rights
Depending on your location and applicable laws, you may have the following rights regarding your personal information:
- Right to access: Request a copy of the personal data we hold about you
- Right to rectification: Request correction of any inaccurate or incomplete personal data
- Right to erasure: Request deletion of your personal data, subject to legal exceptions
- Right to restrict processing: Request that we limit how we use your data
- Right to data portability: Request your data in a structured, commonly used, machine-readable format
- Right to object: Object to the processing of your personal data for direct marketing purposes
- Right to withdraw consent: Where processing is based on consent, withdraw your consent at any time
- Right to nominate: Under the DPDPA 2023, you may nominate another individual to exercise your data rights on your behalf
- File a complaint: Lodge a complaint with the Data Protection Board of India or other relevant authority if you believe your data has been processed unlawfully
To exercise any of these rights, please contact us using the details provided below.
12. Third-Party Links
Our websites may contain links to third-party websites or services that are not operated by us. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policy of every site you visit.
13. Children’s Privacy
Our websites and services are not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us and we will take steps to delete such information promptly.
14. Changes to This Privacy Policy
We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.
15. Contact Us
If you have any questions, concerns, or requests regarding this privacy policy or our data practices, please contact us at:
eNeoteric Consultancy Services
301/302, Third Floor, Saket Callipolis, Sarjapur Main Rd,
Doddakannelli, Bengaluru, Karnataka 560035
Email: [email protected]
Phone: +91 91080 15170
Grievance Officer (as per IT Act 2011 and DPDPA 2023):
Name: Ravi Dubey
Email: [email protected]
Address: 301/302, Third Floor, Saket Callipolis, Sarjapur Main Rd, Doddakannelli, Bengaluru, Karnataka 560035