This policy applies only to our website visitors and prospects ("Adapto Users") and the data we collect during the sales process ("Sales Data"). The handling of data for our clients' employees ("Client Employee Data") is separate and is governed exclusively by our professional services agreements.

PRIVACY POLICY

1. Introduction and Scope

Welcome to Adapto Solutions. We operate at the critical intersection of Information Technology and Human Capital. Trust and confidentiality are the foundations of our consulting partnership. We are committed to protecting the privacy and security of all personal data that passes through our organization.This Privacy Policy describes how Adapto Solutions ("Adapto," "we," "us," or "our") handles personal data. To ensure clarity, this policy applies only to data we collect through this website, our marketing efforts, and our direct sales interactions ("Adapto Data"). It does not apply to the data of our clients' employees that we may access during the execution of a professional services engagement, which is governed by separate agreements (see Section 10).

 

2. The Data We Collect and How We Use It

We only collect personal data that is strictly necessary to provide our consulting services, manage our business relationships, and communicate with you effectively. We do not sell your personal data.

 

A. Data Collected Directly from You (Adapto Users and Prospects):
We collect data when you interact with our website, request information, or engage with our sales team.

  • Contact Information: Name, email address, phone number, company name, job title.

  • Business Inquiry Data: Information about your organization’s challenges (e.g., current IT stack, HR pain points).

  • Marketing Preferences: Your communication choices regarding our newsletters or events.

  • Account Data (If Applicable): For our client portal, your unique username, password, and activity logs.

 

How We Use This Data:

  • To process your inquiries and schedule consultations.

  • To manage our client relationships and provide updates.

  • To send you relevant insights and event invitations.

  • To secure and manage our online platforms.

 

B. Data Collected Automatically from This Website: This is standard anonymous technical data to ensure our website works properly.

  • Usage Data: The pages you visit on our site, your interaction with our content, and how you arrived.

  • Log and Device Data: Your IP address, device type, operating system, browser, and internet service provider (ISP).

  • Cookies and Tracking: We use standard cookies and similar technologies for necessary website functions and basic analytics. Please see our [Cookie Policy] for a detailed breakdown and management options.

 

How We Use This Data:

  • To improve our website’s design and usability.

  • To monitor and secure our online infrastructure.

  • To understand aggregated (not individual) marketing performance.

 

3. The Legal Basis for Processing (For GDPR and Similar Jurisdictions)

For data subjects in jurisdictions that require a "legal basis" for processing, we rely on the following:

  • Contractual Necessity: The processing is necessary to perform a contract with you or take pre-contractual steps (e.g., discussing your inquiry).

  • Legitimate Interest: We have a legitimate interest in communicating with you, improving our services, and securing our business, which does not outweigh your fundamental privacy rights.

  • Consent: When you explicitly opt-in to receive our marketing communications. You can withdraw your consent at any time.

 

4. How We Share and Disclose Your Data

We do not sell, rent, or trade your personal data for any purpose. We share data only in the following limited and necessary circumstances:

  • Trusted Third-Party Service Providers (Subprocessors): We engage reputable third parties to support our business (e.g., our email marketing platform, secure cloud hosting provider, or CRM). These vendors are processors only and are contractually bound by strict data security and privacy requirements. They cannot use your data for their own purposes. A list of categories is available [Link].

  • For Legal Reasons: If required by law, court order, or government regulation, or if we have a good-faith belief that disclosure is necessary to protect our legal rights, your safety, or the safety of others.

  • For Business Transfers: In the event of a merger, acquisition, or sale of assets, your data would be transferred as a business asset, subject to the same privacy protections.

 

5. Your Privacy Rights and Choices

We believe in empowering you with control over your data. Depending on your location and jurisdiction, you may have specific rights regarding your personal data. We are committed to providing the same high standard of rights to all our users, regardless of their location:

  • Right of Access: You may request to see the personal data we hold about you.

  • Right to Rectification: You may request that we correct any incomplete or inaccurate data.

  • Right to Deletion ("Right to be Forgotten"): In certain circumstances, you may request that we erase your data.

  • Right to Opt-Out of Marketing: You can always click "unsubscribe" in any marketing email, or contact us directly to manage your preferences.

  • Right to Object: You may object to our processing of your data based on legitimate interest.

  • Right to Data Portability: You may request a copy of your data in a portable, standard format.

  • Right to Non-Discrimination: For CCPA/CPRA, we will not discriminate against you for exercising your privacy rights.

How to Exercise Your Rights: To submit a verifiable request, please contact us at privacy@adaptosolutions.in with the subject line "Privacy Request." We will verify your identity before responding.

 

6. International Data Transfers

If you are located in the EEA, UK, or Switzerland, please note that we may transfer your data to countries outside of that region, including the United States, which may not have identical data protection laws.

We ensure all international transfers are compliant by utilizing legally recognized transfer mechanisms, such as Standard Contractual Clauses (SCCs) approved by the European Commission, or by only transferring to countries that have been deemed to have an "adequate" level of protection.

 

7. Data Retention and Security

We retain your personal data only for as long as is necessary to fulfill the purposes for which it was collected, as well as to meet any legal, tax, or accounting requirements. A copy of our full Retention Policy is available upon request.

Security is our top priority. We implement robust, standard-industry measures, including:

  • Access Control: Data access is restricted to authorized personnel on a 'need-to-know' basis.

  • Encryption: Sensitive data is encrypted both in transit (using TLS) and at rest.

  • Secure Infrastructure: We use trusted cloud hosting environments that maintain comprehensive security certifications (e.g., SOC 2, ISO 27001).

  • Employee Training: Our staff receives mandatory and regular privacy and security awareness training.

 

8. Data of Our Clients' Employees: Adapto's Role as a Processor

This is a critical section for our professional consulting engagements.

In our capacity as IT and HR consultants, [Adapto Solutions, Inc.] is almost always acting as a "Processor" of data on behalf of our clients (who are the "Controllers"). This includes sensitive payroll data, health information, and performance reviews.

We do not determine the purpose or manner of processing this data. Our access to this data is managed under strict professional services agreements (PSAs) that establish rigorous security standards, confidentiality requirements, and restrictions. We handle client data strictly according to our clients' instructions.

If you are an employee of one of our clients and have questions about how your data is handled, please direct your inquiries to your employer’s HR or Privacy department.

 

9. California Residents' Privacy (CCPA / CPRA)

For residents of California, we are providing the following additional disclosures under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).

In the preceding 12 months, we have collected the following categories of personal information for the business purposes described in Section 2: Identifiers (e.g., contact info), Professional or Employment-Related Information (e.g., job title), and Internet Activity (e.g., usage data).

  • We do not "sell" (as defined by CCPA) your personal information.

  • We do not "share" your personal information for cross-context behavioral advertising.

  • We do not use or disclose "sensitive" personal information for purposes other than to provide the service you requested.

You have all the rights listed in Section 5. To submit a verifiable consumer request as a California resident, please use the method in Section 5.

 

10. Policy Towards Children

Our consulting services are directed solely at business enterprises. We do not knowingly collect personal data from children under the age of [16/13]. If you become aware that your child has provided us with personal data, please contact us.

 

11. Changes to This Policy

We may update this Privacy Policy to reflect changes in our services or legal obligations. We will notify you of any material changes by posting the new policy on this page with a revised "Last Updated" date and, when required, sending you a direct notification.

 

Contact Us

Adapto Solutions © 2024 Privacy policy