Your privacy is our priority. Learn how Verifitech collects, processes, and protects your personal data in accordance with global data protection regulations.
Verifitech Solutions Private Limited ("Verifitech", "we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, process, use, disclose, retain, transfer, and protect your personal information when you visit our website, use our services, or interact with us.
By accessing or using our website and services, you agree to the terms of this Privacy Policy. If you do not agree with our policies and practices, please do not use our services or provide us with your personal data.
This Privacy Policy applies to:
All individuals who visit our website, browse our content, or interact with our online platforms without necessarily creating an account or submitting personal information.
Clients, partners, job applicants, and individuals who register for our services, submit inquiries, or create accounts on our platforms.
Understanding the terminology used in this Privacy Policy
Any law, regulation, or statute governing the processing of personal data, including but not limited to the Information Technology Act, 2000, GDPR, and other relevant privacy regulations.
Any information relating to an identified or identifiable natural person ("Data Subject"), including name, address, email, phone number, or online identifiers.
Personal data revealing racial or ethnic origin, political opinions, religious beliefs, biometric data, health information, or financial account details requiring special protection.
The individual to whom the personal data relates, who can be identified directly or indirectly through the data we process.
Any operation performed on personal data, including collection, recording, organization, structuring, storage, adaptation, retrieval, use, disclosure, or erasure.
The natural or legal person, public authority, agency, or other body which determines the purposes and means of processing personal data.
Freely given, specific, informed, and unambiguous indication of the data subject's wishes through a statement or clear affirmative action.
A natural or legal person who processes personal data on behalf of the data controller, governed by contractual agreements and data protection obligations.
A breach of security leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data.
Categories of information we collect and process
We may collect basic identification details including:
For job applicants and recruitment processes:
Automatically collected information via cookies and similar technologies:
Preferences and consent records:
Important: We do not routinely collect sensitive personal data through our website. Any sensitive data collection occurs only:
Purposes and legal bases for processing your information
| Purpose | Legal Basis | Description |
|---|---|---|
| Service Delivery | Contractual Necessity | To provide background verification services, manage accounts, and fulfill our contractual obligations |
| Legal Compliance | Legal Obligation | To comply with applicable laws, regulations, court orders, and government requests |
| Business Operations | Legitimate Interest | To manage our business operations, improve services, and ensure network security |
| Marketing | Consent | To send promotional materials, newsletters, and updates (with your explicit consent) |
| Communication | Legitimate Interest | To respond to inquiries, provide customer support, and maintain business relationships |
| Recruitment | Consent / Legitimate Interest | To process job applications, conduct interviews, and manage hiring processes |
| Website Improvement | Consent / Legitimate Interest | To analyze usage patterns, debug issues, and enhance user experience |
Third parties and circumstances under which data may be disclosed
Personal data may be shared with Verifitech subsidiaries and affiliated entities for operational efficiency and service delivery, all bound by this privacy policy.
Third-party vendors providing IT services, cloud hosting (AWS Mumbai), email services (Gmail Enterprise), and analytics, under strict contractual obligations.
Disclosure to government authorities, regulatory bodies, or law enforcement when required by law or to protect our legal rights.
Legal consultants, auditors, and insurance providers who require access to data for professional services, bound by confidentiality agreements.
In the event of a merger, acquisition, or asset sale, personal data may be transferred as a business asset, with notice to affected individuals.
We may share data with third parties when you have given explicit consent for specific sharing purposes not covered above.
We implement robust technical and organizational measures to ensure the security of your personal data:
ISO/IEC 27001:2022 certified and SOC-2 Type II compliant, ensuring internationally recognized security standards.
Encryption in transit and at rest, secure server infrastructure, firewalls, and regular vulnerability assessments.
Strict access controls, employee training, confidentiality agreements, and regular security audits.
We retain personal data only as long as necessary for the purposes outlined in this policy
Personal data is retained based on the following criteria:
When personal data is no longer required, we securely delete or anonymize it using industry-standard methods:
Depending on your jurisdiction, you may have the following rights regarding your personal data:
Request copies of your personal data and information about how we process it.
Request correction of inaccurate or incomplete personal data.
Request deletion of your personal data under certain conditions.
Request limitation of processing in specific circumstances.
Receive your data in a structured, machine-readable format.
Object to processing based on legitimate interests or direct marketing.
Withdraw previously given consent at any time without affecting lawful processing.
Nominate another person to exercise rights on your behalf in certain circumstances.
We will not discriminate against you for exercising any of your privacy rights. This includes denying services, charging different prices, or providing a different level of service quality.
Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected personal data from a child without appropriate parental or guardian consent, we will take steps to delete such information promptly.
Parents or guardians who believe their child has provided us with personal data should contact us immediately at privacy@verifitech.com.
If you have questions about this Privacy Policy, wish to exercise your data subject rights, or want to file a privacy complaint, our Data Privacy Team is here to help.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make significant changes, we will notify you through our website or via email. We encourage you to review this policy periodically to stay informed about how we protect your information.