Privacy Policy

Pinnacle Infotech Solutions (“Company”, “Pinnacle”, “we”, “our”, “us”) values and respects your privacy. This Privacy Policy (“Policy”) explains how we collect, use, store, disclose, and protect personal information obtained through our website [www.pinnacleinfotech.com] (“Website”), as well as in connection with our products and services (“Services”).

This Policy complies with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (“IT Rules, 2011”), and international data protection regulations, including the General Data Protection Regulation (“GDPR”) for our overseas clients.

By accessing or using our Website or Services, you agree to the terms of this Policy. If you do not agree, you must discontinue use of our Website and Services.

1. Information We Collect

We may collect both personal and non-personal information, including but not limited to:

  • Personal Information: Name, gender, date of birth, email address, phone number, postal address, login credentials, professional information, and any details voluntarily submitted by you via forms or communications.
  • Sensitive Personal Data or Information (SPDI): Passwords, financial information (such as bank account or credit/debit card details), biometric data, medical records, or other sensitive data defined under applicable laws.
  • Non-Personal Information: Device identifiers, browser type, IP address, operating system details, language preferences, referring URLs, pages visited, time spent on pages, and other analytical data automatically collected by our servers.
  • Project/Client Data: Confidential business information shared for the purpose of executing our services.

Users who are unsure about what information is mandatory may contact us for clarification before providing data.

2. Use of Collected Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our Website and Services.
  • To personalize user experiences and enhance communication.
  • To respond to queries, provide support, and send notifications such as updates, reminders, and service-related messages.
  • To send newsletters or marketing communications, where you have provided consent.
  • To improve customer service and conduct internal analytics.
  • To prevent fraud, abuse, or security threats.
  • To comply with legal and regulatory requirements.

Non-Personal Information is primarily used for statistical analysis, identifying patterns of Website use, and detecting potential misuse.

3. Privacy of Children

Our Website and Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you are under 18, please refrain from submitting any information. If we become aware that personal data of a minor has been collected, we will delete it promptly. Parents and guardians are encouraged to supervise minors’ internet activity.

4. Do Not Track Signals

Some browsers include a “Do Not Track” feature. At present, our Website does not interpret or respond to Do Not Track signals. Nonetheless, as detailed in this Policy, we limit our collection and use of personal data and do not track users’ browsing activities across unaffiliated websites.

5. Disclosure of Information

We may disclose information under the following circumstances:

  • To employees, contractors, and service providers who require it for business purposes.
  • To affiliates and partners for offering related services, provided they adhere to this Policy.
  • To government authorities or regulators when required by law.
  • To third parties during mergers, acquisitions, or business transfers.
  • To protect our legal rights, enforce terms of service, investigate fraud, or ensure user safety.

We do not sell or rent your personal information to third parties.

6. Links to Other Websites

Our Website may contain links to third-party websites. We are not responsible for the privacy practices of such websites. Users are encouraged to review the privacy policies of each site they visit.

7. Information Security

We implement reasonable security practices and procedures, including administrative, technical, and physical safeguards, to protect personal information from unauthorized access, alteration, disclosure, or destruction. Measures include:

  • Secure servers, firewalls, and encryption technologies.
  • Restricted access to personal data based on business necessity.
  • Regular audits, monitoring, and risk assessments.

However, no transmission over the Internet can be guaranteed 100% secure. By using our Website, you acknowledge inherent risks of data transmission.

8. Breach of Security

In case of a data breach or unauthorized disclosure of personal information, we may take necessary steps including:

  • Investigating the incident and cooperating with law enforcement authorities.
  • Notifying affected individuals if there is a reasonable risk of harm, as required by law.
  • Publishing a notice on our Website or contacting you directly.

9. International Data Transfers and GDPR Compliance

Since Pinnacle Infotech works with overseas clients, we may transfer personal data outside India. For such transfers:

  • We comply with applicable international data protection laws, including GDPR.
  • Adequate safeguards, such as Standard Contractual Clauses, are used to protect transferred data.
  • Data subjects in the EU/EEA are entitled to GDPR rights including:
    • Right to access, rectify, or erase personal data.
    • Right to restrict or object to processing.
    • Right to data portability.
    • Right to lodge a complaint with supervisory authorities.

We ensure that international clients’ data is handled with the same level of care as required by their home jurisdictions.

10. Data Retention

Personal information will be retained only as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required by law. Once retention periods expire, data will be securely deleted or anonymized.

11. Your Rights

You may exercise the following rights by contacting us:

  • Right to access your personal data.
  • Right to correct or update inaccuracies.
  • Right to withdraw consent at any time (subject to legal or contractual restrictions).
  • Right to request deletion of your personal data.
  • Right to object to processing for marketing or other purposes.

International clients may also exercise GDPR rights as detailed above.

12. Grievance Redressal / Data Protection Officer

As per the IT Rules, 2011, we have appointed a Grievance Officer / Data Protection Officer (DPO) to handle any concerns regarding personal data.

Grievance Officer / Data Protection Officer (DPO):

Name: [Insert Name]
Designation: [Insert Designation]
Email: [Insert Email Address]
Phone: [Insert Phone Number]
Address: Pinnacle Infotech Solutions, [Insert Office Address]

Complaints will be acknowledged within 36 hours and resolved within one month.

13. Amendments to the Privacy Policy

We reserve the right to update this Policy at any time to reflect changes in law, business operations, or technology. Updated versions will be posted on our Website, and material changes may be communicated to you directly.

14. Acceptance of Policy

By using our Website or Services, you acknowledge that you have read, understood, and agreed to this Privacy Policy. If you do not agree, you must stop using the Website and Services immediately.