Privacy Policy

LAST UPDATED: JUNE 10, 2026 | COMPLIANCE: INDIA DPDP ACT 2023 & ISO 27001

1. Introduction

Securastra Cybersecurity Services Private Limited ("Securastra", "we", "us", or "our") is committed to protecting the privacy of our website visitors, clients, and partners. This Privacy Policy details our practices regarding the collection, use, processing, and protection of corporate data and personal information in strict compliance with India's Digital Personal Data Protection (DPDP) Act 2023 and ISO 27001 information security standards.

2. Data Collection (Consent-Based)

We act as a Data Fiduciary under the DPDP Act 2023. We collect information only when you explicitly consent to provide it to us. The data we collect includes:

  • Contact Information: Full name, corporate email address, phone number, and company name provided via audit request forms.
  • Technical Diagnostics: Domain name and public server configuration details provided for perimeter checking.
  • Usage Telemetry: Log data, device type, browser settings, and anonymized user behavior patterns.

3. Data Storage & Zero-Knowledge Architecture

Securastra operates on a Zero-Knowledge Architecture for security operations:

  • We never process, store, or view your private business data or databases during automated perimeter scans.
  • All scan diagnostic data is stored in highly encrypted, access-controlled databases inside certified tier-4 datacenters located in India.
  • Diagnostic records are automatically purged or anonymized after 30 days unless a client explicitly requests retention.

4. Purpose of Data Processing

We process personal and corporate data strictly for the following purposes:

  • To perform requested cybersecurity assessments and deliver report scorecards.
  • To respond to customer support inquiries and process subscription renewals.
  • To send newsletter alerts, security threat advisories, and service updates (users may opt out at any time).

5. Data Principal Rights (Under DPDP Act)

As a Data Principal in India, you are entitled to the following rights:

  • Right to Information & Access: You can request a copy of the personal data we hold about your business.
  • Right to Correction & Erasure: You can request that we update incorrect details or permanently delete your contact records.
  • Right to Withdraw Consent: You may revoke your consent for marketing or data processing at any time.
  • Right to Grievance Redressal: You can contact our Data Protection Officer for compliance issues.

6. Contact Compliance Officer

For any questions, consent withdrawals, or correction requests, please contact our designated Data Protection Officer:

Email: contact@securastra.com
Address: Data Protection Office, Securastra Cybersecurity Services Private Limited, Sector 62, Noida, Uttar Pradesh, India

Claim Free Security Audit

Deliver a 24-hour vulnerability audit report directly to your inbox.