Ideya Berst Logo
Ideya Berst
[email protected]
+91 1204102217

Privacy Policy

How Ideya Berst protects and handles your information

Last updated: January 15, 2025

Information We Collect

When you work with Ideya Berst, we collect information that helps us provide better IT security services. This includes personal details you share directly with us, technical information from your systems during security audits, and communication records from our interactions.

  • Contact information including name, email address, phone number, and business address
  • Company details such as business name, industry type, and organizational structure
  • Technical data from security assessments including system configurations and vulnerability reports
  • Communication records from emails, calls, and meetings related to our services
  • Website usage data when you visit our site, including IP addresses and browsing patterns

We're transparent about what we need and why. Most information comes directly from you during our initial consultations or through forms on our website. Technical data is collected only during authorized security audits with your explicit permission.

How We Use Your Information

Your information serves specific purposes related to delivering quality IT security services. We use it to conduct thorough security analyses, prepare detailed audit reports, and maintain ongoing communication about your system's security status.

Service Delivery

Conducting security audits, preparing reports, and providing recommendations based on your specific business needs.

Communication

Keeping you informed about audit progress, security findings, and important updates related to your systems.

Legal Compliance

Meeting regulatory requirements and maintaining proper documentation for security assessments.

Business Operations

Managing client relationships, processing invoices, and maintaining service quality standards.

We don't use your information for marketing to third parties or selling to data brokers. Everything stays focused on providing you with reliable IT security services and maintaining our professional relationship.

Information Sharing and Disclosure

We don't sell your information to anyone. Your data is shared only in specific situations that directly relate to providing our services or meeting legal requirements. Here's exactly when and why we might share information:

  • With trusted service providers who help us deliver IT security services, like cloud storage providers or specialized security tools
  • When legally required by valid court orders, government requests, or regulatory compliance in India
  • With your explicit consent for specific purposes you've approved in advance
  • In emergency situations where sharing information could prevent security breaches or protect people from harm
  • During business transitions, though any new owners must maintain the same privacy protections

Any third parties who access your information are bound by strict confidentiality agreements. They can only use the data for the specific purposes we've agreed upon and must maintain the same security standards we follow.

Data Security and Protection

As an IT security company, we take data protection seriously. Your information is protected using industry-standard security measures including encrypted storage, secure communication channels, and restricted access controls.

  • All sensitive data is encrypted both in transit and at rest using AES-256 encryption standards
  • Access to client information is limited to authorized team members who need it for their work
  • Regular security audits of our own systems to maintain protection standards
  • Secure communication protocols for all client interactions and data transfers
  • Physical security measures at our Lucknow office including restricted access and surveillance

While we implement strong security measures, no system is completely immune to threats. We continuously monitor and update our security practices to address emerging risks and maintain the highest level of protection possible for your information.

Your Rights and Choices

You have significant control over your personal information. We respect your rights and make it straightforward to exercise them. Here's what you can do and how to do it:

Access Your Data

Request a copy of all personal information we have about you, including how we collected it and how we're using it.

Correct Information

Update or correct any inaccurate personal information in our records at any time.

Delete Your Data

Request deletion of your personal information, subject to legal retention requirements for business records.

Limit Processing

Restrict how we use your information while maintaining essential service functions.

To exercise any of these rights, simply contact us using the information provided below. We'll respond within 30 days and work with you to address your request promptly and completely.

Data Retention and Deletion

We keep your information only as long as necessary to provide our services and meet legal requirements. Different types of information have different retention periods based on their purpose and regulatory requirements in India.

  • Active client data is maintained throughout our business relationship and for 7 years after services end
  • Security audit reports are retained for 10 years to support compliance and historical reference
  • Communication records are kept for 3 years for service quality and dispute resolution
  • Website usage data is automatically deleted after 2 years unless needed for security purposes
  • Financial records are maintained according to Indian tax and business law requirements

When retention periods expire, we securely delete information using industry-standard data destruction methods. You can request earlier deletion of specific information, though some data may need to be retained for legal compliance.

International Data Transfers

Your information is primarily processed and stored within India. However, some of our security tools and service providers may be located in other countries with strong data protection laws, such as the United States or European Union.

When information is transferred internationally, we ensure appropriate safeguards are in place through contractual protections and certification programs that maintain the same level of privacy protection you receive in India. These transfers are limited to what's necessary for providing our IT security services.

We regularly review our international service providers to ensure they maintain adequate privacy protections and comply with applicable data transfer regulations.

Changes to This Privacy Policy

This privacy policy may be updated periodically to reflect changes in our practices, services, or legal requirements. We'll notify you of significant changes through email or prominent notices on our website at least 30 days before they take effect.

Minor updates that don't affect your rights or how we handle your information may be made without advance notice, though we'll always update the "last modified" date at the top of this policy. We encourage you to review this policy periodically to stay informed about how we protect your information.

If you disagree with changes to this policy, you can contact us to discuss your concerns or, if necessary, terminate our services and request deletion of your information subject to legal retention requirements.

Questions About Privacy

If you have questions about this privacy policy or how we handle your information, we're here to help. Contact us directly and we'll provide clear answers about our privacy practices.

Email: [email protected]

Phone: +91 120 410 2217

Address: 244/213 Narayan, Narain Das Ln, Yahiyaganj, Lucknow, Uttar Pradesh 226003, India