Privacy Policy

Privacy Policy

Effective Date: March 18, 2024

INNOVATAURUS LLP (“INNOVATAURUS,” “we,” “us,” or “our”) is a Limited Liability Partnership registered in Kolkata, West Bengal, India. We operate as a comprehensive Digital Marketing Agency and a sophisticated Sales CRM provider. Our commitment is to uphold the highest standards of data privacy and protection for our website visitors, clients, and all individuals whose data we process.

This Privacy Policy details our practices concerning the collection, use, processing, storage, and disclosure of your information. By accessing or utilizing our services, you signify your acceptance and understanding of the terms outlined within this Privacy Policy. We regularly review and update our privacy practices to ensure compliance with applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and Indian data protection regulations.

1. Our Role in Data Processing

• Data Controller: INNOVATAURUS LLP acts as the Data Controller for the personal data we collect directly from you when you visit our website, engage with our marketing materials, inquire about our services, or establish a direct client relationship with us. In this capacity, we determine the purposes and means of processing your data.

• Data Processor: For data that our clients upload or store within our Sales CRM platform (referred to as “Client Data”), INNOVATAURUS LLP acts solely as a Data Processor. We process such data strictly on behalf of and according to the instructions of our clients, who remain the Data Controllers of their respective Client Data. Our obligations concerning Client Data are governed by specific contractual agreements with our clients. We do not use Client Data for our own purposes other than to provide and improve the CRM service to our clients, ensure its security, and as legally required.

2. Information We Collect

We collect various categories of information to provide and enhance our services:

a. Information You Directly Provide to Us:

• Identification and Contact Data: Name, email address, phone number, company name, job title, and postal address. This is collected when you fill out forms, subscribe to our newsletters, request a demo, register for an event, or communicate with us directly.

• Account Credentials: Usernames, passwords, and security questions when you register for and access our CRM platform or other password-protected services.

• Correspondence Content: Information contained in any communications you send to us, such as support inquiries, feedback, testimonials, or service requests.

• Payment Information: If you make a purchase, payment details (e.g., credit card information) are processed securely by our third-party payment gateways. We do not store complete payment card details on our servers.

b. Information We Collect Automatically:

• Usage and Interaction Data: Details of your interactions with our website and CRM platform, including pages viewed, features accessed, search queries, referral URLs, duration of visits, and clickstream data.

• Technical Device Information: Internet Protocol (IP) address, browser type and version, operating system, device identifiers, mobile network information, unique device IDs, and screen resolution.

• Location Data: General geographical location inferred from your IP address or device settings.

• Cookies and Tracking Technologies: As detailed in Section 6, we utilize cookies, web beacons, pixels, and similar technologies to gather information about your Browse patterns and interactions.

c. Client Data Processed via CRM:

• Our Sales CRM platform is designed to allow our clients to store and manage their own customer, lead, and sales-related information. This Client Data may include, but is not limited to, names, contact details, communication history, sales opportunities, and other business-related records relevant to our clients’ operations. The scope and nature of Client Data are determined by our individual clients.

d. Information from Third-Party Sources:

• We may receive supplementary information about you from reputable third-party sources, such as public databases, lead generation partners, social media platforms (if you interact with our profiles), and data enrichment services. This data is used to enhance our understanding of our audience, personalize communications, and improve the accuracy of our records.

3. Purposes and Legal Basis for Processing Your Information

We process your personal information based on the following legal grounds and for the specified purposes:

a. Performance of a Contract:

• To deliver our Digital Marketing services (e.g., running campaigns, analytics, content creation).

• To provide and maintain access to our Sales CRM platform, manage your account, and deliver requested features and support.

• To process transactions and manage billing for our services.

b. Legitimate Interests:

• Service Improvement: To analyze usage patterns, troubleshoot issues, conduct research, and continually improve the functionality, security, and user experience of our website and services.

• Marketing and Business Development: To send you relevant marketing communications, promotional offers, and information about our services that may align with your professional interests, based on your interactions and expressed preferences. We conduct marketing activities responsibly and always provide opt-out options.

• Security and Fraud Prevention: To detect, prevent, and investigate suspicious, fraudulent, or unauthorized activities, and to protect the integrity and security of our systems and data.

• Business Operations: To manage our internal business operations, perform audits, and administer our IT systems.

c. Your Consent:

• For specific activities where we request and obtain your explicit consent, such as subscribing to certain newsletters or specific types of marketing communications beyond legitimate interest, or for the placement of non-essential cookies. You have the right to withdraw your consent at any time.

d. Compliance with Legal Obligations:

• To comply with applicable laws, regulations, legal processes, governmental requests, and enforceable governmental obligations. This includes responding to lawful requests from public authorities to meet national security or law enforcement requirements.

4. Sharing and Disclosure of Your Information

We share your information only in the following controlled circumstances:

• With Third-Party Service Providers: We engage trusted third-party companies and individuals who perform services on our behalf, such as cloud hosting (e.g., Meta, Google Cloud), payment processing, email delivery, CRM support, analytics, and customer relationship management. These providers are contractually obligated to process your data only as per our instructions and to maintain appropriate security measures.

• For Legal Compliance and Protection: We may disclose your information if we believe it is necessary to:

  • Comply with a legal obligation or a court order.

  • Protect the rights, property, or safety of INNOVATAURUS LLP, our clients, users, or the public.

  • Enforce our terms of service, policies, or agreements.

  • Investigate potential violations or illegal activities.

• Business Transfers: In the event of a merger, acquisition, reorganization, asset sale, or similar transaction, your information may be transferred as part of that business transition. We will notify you of any such change in ownership or control of your personal information.

• With Your Consent or at Your Direction: We may share your information with third parties when you provide us with explicit consent to do so or when you instruct us to share it.

• Aggregated or Anonymized Data: We may share aggregated or anonymized information that cannot reasonably be used to identify you with third parties for various purposes, including business analysis, research, marketing, and reporting.

5. International Data Transfers

As a global digital marketing agency and CRM provider, your information may be transferred to, stored, and processed in countries outside of India, including but not limited to the European Economic Area (EEA) and the United States, where our service providers or infrastructure may be located.

When we transfer your personal data to countries outside of your jurisdiction, we ensure that appropriate safeguards are in place to protect your data, in compliance with applicable data protection laws. These safeguards may include:

• Standard Contractual Clauses (SCCs): Implementing the European Commission’s Standard Contractual Clauses for transfers from the EEA.

• Adequacy Decisions: Relying on countries deemed to provide an adequate level of data protection by relevant authorities.

• Binding Corporate Rules (BCRs): For intra-group transfers, if applicable.

• Other Legal Mechanisms: As permitted or required by relevant data protection legislation.

By using our services, you understand and acknowledge that your information may be transferred to and processed in these jurisdictions.

6. Data Security

INNOVATAURUS LLP is dedicated to protecting your personal information. We implement robust technical and organizational security measures to safeguard your data against unauthorized access, alteration, disclosure, accidental loss, or destruction. These measures include:

• Encryption: Use of SSL/TLS encryption for data in transit and encryption at rest where appropriate.

• Access Controls: Strict access policies and authentication procedures for internal systems.

• Network Security: Firewalls, intrusion detection systems, and regular vulnerability scanning.

• Data Minimization: Collecting only the data necessary for the stated purposes.

• Regular Audits and Assessments: Periodic security assessments, penetration testing, and audits to identify and address potential vulnerabilities.

• Employee Training: Comprehensive training for our staff on data protection and security protocols.

Despite our diligent efforts, no method of transmission over the internet or electronic storage is entirely infallible. We cannot guarantee absolute security but commit to continuously improving our security posture.

7. Cookies and Tracking Technologies

We utilize cookies, web beacons, pixel tags, and similar tracking technologies to enhance your experience, analyze trends, administer the website, track users’ movements around the website, and gather demographic information about our user base as a whole.

• What are Cookies? Cookies are small text files placed on your device by a web server when you access our website. They help us remember your preferences, understand how you use our services, and deliver relevant advertising.

• Types of Cookies Used:

  • Strictly Necessary Cookies: Essential for the website to function correctly (e.g., enabling navigation, accessing secure areas).

  • Analytical/Performance Cookies: Allow us to recognize and count the number of visitors and see how visitors move around our website. This helps us improve the way our website works.

  • Functionality Cookies: Used to recognize you when you return to our website, enabling us to personalize content for you and remember your preferences.

  • Targeting/Advertising Cookies: Record your visit to our website, the pages you have visited, and the links you have followed. We will use this information to make our website and the advertising displayed on it more relevant to your interests.

• Your Choices Regarding Cookies: Most web browsers are set to accept cookies by default. You can usually modify your browser settings to decline cookies or to notify you when a cookie is being sent. However, please be aware that disabling cookies may affect the functionality and your experience of our website and services.

8. Your Data Protection Rights

Depending on your jurisdiction and applicable data protection laws, you may possess the following rights regarding your personal information. We are committed to facilitating the exercise of these rights:

• Right to Information: The right to be informed about the collection and use of your personal data. This Privacy Policy serves to fulfill this right.

• Right of Access: You have the right to request a copy of the personal data we hold about you.

• Right to Rectification: You have the right to request that INNOVATAURUS LLP correct any information you believe is inaccurate or complete information you believe is incomplete.

• Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data under certain conditions (e.g., when the data is no longer necessary for the purposes for which it was collected).

• Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data under certain conditions (e.g., if you contest the accuracy of the data).

• Right to Object to Processing: You have the right to object to our processing of your personal data, particularly when processing is based on legitimate interests or for direct marketing purposes.

• Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, in a structured, commonly used, and machine-readable format, under certain conditions.

• Right to Withdraw Consent: Where our processing is based on your consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

• Right to Lodge a Complaint: You have the right to lodge a complaint with a competent data protection supervisory authority if you believe your privacy rights have been infringed.

To exercise any of these rights, please contact us using the information provided in Section 11. We will respond to your request within the timeframes mandated by applicable law.

9. Automated Decision-Making and Profiling

In our digital marketing operations, we may use certain automated processes to analyze user behavior (e.g., website visits, ad interactions) to personalize content, optimize ad delivery, or segment audiences for marketing campaigns. While these processes involve automated analysis, they are generally aimed at improving service relevance and efficiency, and typically do not involve solely automated decisions that produce legal effects concerning you or similarly significantly affect you. If such automated decision-making were to occur, we would ensure appropriate safeguards and transparency.

10. Children’s Privacy

Our services are not intended for, nor do we knowingly collect personal information from, individuals under the age of 18 (“Children”). If you are a parent or guardian and believe that your child has provided us with personal information without your verifiable consent, please contact us immediately. We will take prompt steps to investigate and remove such information from our records.

11. Changes to This Privacy Policy

INNOVATAURUS LLP may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or regulatory developments. We will notify you of any material changes by posting the updated Privacy Policy on this page, and where appropriate, by other means such as email notification or a prominent notice on our website, before the changes become effective. The “Effective Date” at the top of this Policy will indicate when it was last revised. We encourage you to review this Privacy Policy regularly to stay informed about how we protect your information. Your continued use of our services after any modifications to this Privacy Policy constitutes your acknowledgment of the changes and your agreement to abide by the updated terms.

12. Contact Us

For any questions, concerns, requests regarding your data protection rights, or to submit a complaint concerning our privacy practices, please contact our dedicated Privacy Team:

INNOVATAURUS LLP

Attention: Privacy Team

Email: contact@innovataurus.com

Phone: +91 9748563394

Address 1. VILL- DOB, GAYA-824220. BIHAR
Address 2. M.C Garden Road. Dum Dum, Kolkata.