Privacy Policy of Expert Arm Private Limited

Last Updated: 9/9/2024

Expert Arm Private Limited (“we,” “us,” or “our”) is committed to protecting the privacy of our customers, website visitors, and partners. This Privacy Policy explains how we collect, use, store, share, and protect your personal data in compliance with international data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable regulations.

By using our services or visiting our website, you agree to the terms outlined in this Privacy Policy.

Information We Collect

We collect and process the following types of personal data:

  • Personal Identification Data: Name, email address, job title, company name.
  • Financial Information: Bank account details, payment information.
  • Business Information: Financial records, accounts, tax records, and related financial services.
  • Technical Data: IP addresses, browser type, time zone settings, and location-based data.
  • Usage Data: Information about your use of our website and services, including browsing actions.

How We Collect Your Data

We collect personal data through:

  • Direct Interactions: When you contact us via our website, email, or phone, or enter into a service agreement with us.
  • Automated Technologies: Through cookies and other tracking technologies when you visit our website.
  • Third-Party Sources: From publicly available sources, partners, or service providers.

Legal Basis for Processing Personal Data (for EEA/UK Residents)

We process personal data based on one of the following legal bases:

  • Consent: Where you have provided explicit consent (e.g., subscribing to newsletters).
  • Contract: When processing is necessary for the performance of a contract with you.
  • Legal Obligation: To comply with legal requirements.
  • Legitimate Interests: Where processing is necessary for our legitimate business interests, as long as it does not override your rights.

How We Use Your Data

We use your personal data for the following purposes:

  • To provide and manage our services.
  • To communicate with you regarding your account, services, or technical issues.
  • For billing and payment processing.
  • To comply with legal and regulatory obligations.
  • To improve our services and website through performance analysis.
  • To send marketing communications (with your consent).
  • To protect the security of our website and services, including fraud detection.

How We Share Your Data

We do not sell your personal data. However, we may share your data with:

  • Service Providers: Third-party companies that assist us with payment processing, IT services, data analysis, and marketing.
  • Legal Authorities: When required by law to comply with legal obligations.
  • Business Transfers: In the event of a merger, acquisition, or asset sale.
  • Professional Advisors: Including lawyers, auditors, and insurers, where necessary for professional services.

All third-party service providers that process personal data on our behalf are bound by strict confidentiality and data protection agreements.

International Data Transfers

If your personal data is transferred outside the European Economic Area (EEA), the UK, or other regions with comprehensive data protection laws, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission.
  • Binding Corporate Rules for internal transfers.
  • Adequacy decisions where applicable.

You may request additional information about how your data is protected during such transfers by contacting us at privacy@expertarm.com.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including to meet legal, accounting, or reporting obligations:

  • Financial Data: Retained for 7 years to comply with tax and legal obligations.
  • Marketing Data: Retained until you withdraw your consent.
  • Contractual Data: Retained for the duration of the contract and as required by law.

Your Data Protection Rights

Depending on your location, you may have the following rights under GDPR, CCPA, and other data protection laws:

For EEA/UK Residents (GDPR Compliance):

  • Right to Access: You can request a copy of your personal data and details about how it is processed.
  • Right to Rectification: You can request corrections to inaccurate or incomplete data.
  • Right to Erasure (Right to be Forgotten): Under certain circumstances, you can request that your personal data be deleted.
  • Right to Restrict Processing: You can request limitations on how your data is processed.
  • Right to Data Portability: You can request your data in a structured, machine-readable format.
  • Right to Object: You can object to certain processing activities, such as direct marketing.
  • Right to Withdraw Consent: Where processing is based on your consent, you can withdraw it at any time.

For California Residents (CCPA Compliance):

  • Right to Know: You have the right to know what personal data is being collected and how it is being used.
  • Right to Delete: You can request the deletion of your personal data under certain circumstances.
  • Right to Opt-Out: You can request that your personal data not be sold to third parties (note: we do not sell data).
  • Non-Discrimination: You will not be discriminated against for exercising any of your privacy rights.

To exercise your rights, please contact us at privacy@expertarm.com. We will respond to your request within the timeframes required by law.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. Cookies help us track your use of our services and analyze website traffic. You can control cookie preferences through your browser settings. For more information, please see our Cookie Policy.

Security of Your Data

We employ a variety of technical and organizational security measures to protect your personal data, including:

  • Encryption of sensitive data.
  • Regular security audits and system monitoring.
  • Limiting access to authorized personnel only.
  • Secure physical and electronic storage systems.

Although we take these steps to safeguard your data, no method of data transmission or storage is completely secure. We encourage you to use strong passwords and take necessary precautions when sharing personal data.

Children’s Privacy

Our services are not intended for children under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child under 16, please contact us at privacy@expertarm.com, and we will take appropriate steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our data processing practices or regulatory requirements. When changes are made, we will update the “Last Updated” date and notify you through our website. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data.

Contact Us

If you have any questions or concerns regarding this Privacy Policy or your personal data, please contact us via email at privacy@expertarm.com.