For compliance with GDPR we need to ensure that we are transparent on in which way our website handles private data about EU subjects.

Information about how this website handles information of visitors:

  • When a user accesses our website we ask permission to set cookies.
  • We use cookies set by WordPress, Google Analytics, HubSpot, HotJar and CloudFlare and we may from time to time use other tools to improve the content of our website, user experiences or SEO ranking. However, we never analyse individual user data.
  • With respect to Ad Servers: We do not partner with or have special relationships with any ad server companies.
  • We do use forms where visitors can enter information. In these cases, we inform the user what we will do with the data and ask for permission before the data can be sent.

The following is as far as we are aware a complete list of the technologies and the processing partners which may in any way be involved in processing your personal information which either may be stored on our website, in the processing partners system or be transferred to our servers in India. Note that we don’t set cookies for all of the below-mentioned technologies. However, since we do use them in one way or another we mention them here. If you want to contact us without any risk of any information about you being stored in our website or reaching any of our partners below, we recommend that you make a direct phone call to +91-2262 7541 during Indian office hours.

WordPress

This is a site built using WordPress. WordPress is a basic website tool but it also includes various plugins. Some of these plugins collect data themselves. We do use JetPack for Analytics. Jetpack and WordPress are working with GDPR compliance. For more information see WordPress privacy policy and JetPack’s. A guide for how to make a WordPress site compliant is found here.

A WordPress website collects personal information through the following means:

  • user registrations,
  • comments,
  • contact form entries,
  • analytics and traffic log solutions,
  • any other logging tools and plugins,
  • security tools and plugins.

 

Here are some other WordPress plugins we use which do collect data and we describe how we are working to be GDPR compliant.

Contact Form 7

Visitors can fill in a few forms on our page. The information is sent to our official email system via email and routed to the right person. The information is also stored in a table on the website. We have added a checkbox where you have to accept our terms and conditions before you can provide any information.

Very Simple Contact Form

We use this form to collect certain feedback. We have provided a GDPR compliance checkbox where you have to accept the terms before you can post anything.

HotJar

We do at times use Hotjar for finding out how users use our website for example via heat maps. This helps us to see where users click and how they scroll or navigate inside the page. The purpose for us is to improve the user experience on our webpage. This is a cookie we may use. We have signed a GDPR processing addendum (DPA) with HotJar.

For more information on what cookies Hotjar may use check their Cookie page. Hotjar has a GDPR-compliance page.

Cloud Flare

We use Cloud Flare as our CDN (Content Delivery Network), which helps in improving the performance of distribution the content across the globe. Cloud Flare also provides some analytics and protects against DoS attacks. Cloud Flare has clearly stated on their GDPR page that they will be fully compliant when GDPR comes into effect on May 25, 2018. We have signed a GDPR processing addendum (DPA) with Cloud Flare.

Facebook

We use Facebook in various ways to keep in touch with clients, employees, potential recruits, friends and prospects in order to engage with our community. We post on Facebook and occasionally we give links to our webpage. On this web page, we also use Facebook cookies to track and analyse our user’s behaviour. Facebook explains what they do with cookies here.

Facebook seems to be aware of GDPR but as far as we understand from reading their page they are not yet (March 29, 2018) fully compliant. Their cookie policy is found here. Their intentions and terms are listed on this page, but since for cookies set by our site we are the controller and they are the processor we will have to verify their compliance before the GDPR comes into place on May 25, 2018.

Google Analytics

We use Google Analytics to understand what kind of visitors have, where they come from and how they navigate on our site. The following cookies are used by Google: _ga Google is providing a general processor agreement to cover GDPR compliance. Google is providing a general processor agreement to cover GDPR compliance.

Hubspot

In order to show a pop-up form when visitors look at our page and to assist us in marketing, we use Hubspot. All information you entered in the form in the site may also be captured by Hubspot. For detailed information about HubSpot’s policies please visit their page.

Twitter

We do use Twitter at times. It does not seem that Twitter at the moment (29/3/2018) is GDPR compliant or have given any clear information on their site on their roadmap towards GDPR compliance.

Deleting Information

According to the GDPR, you have the right to request removal of any data we store about you unless we are required by law to retain any such data. Please note that to delete any data stored about you by Google Analytics, HubSpot, Twitter or Facebook you may need to approach them directly (by clicking on the button below we will delete the cookie which should satisfy the requirements of the GDPR).

To block intrusion attempts, we store IP addresses when users try to login with wrong credentials. These IP addresses will not be removed unless you contact us.

If you feel that this site is not following its stated information policy, you may contact us using any of the channels mentioned on our contact page.

What if any of the plugins or providers are not compliant?

We intend to remove any plugin or stop using any service which is not compliant by May 25, 2018, and not use the same until they have communicated their compliance.