Skip to main content
PRIVACY

Privacy Policy

How SparkScribe Technologies collects, uses, and protects personal data when you visit our website, submit an inquiry, apply for a role, or work with us as a client.

Effective January 1, 2023

This page is provided for transparency and compliance. It is not legal advice. For contractual terms on a specific project, refer to your signed agreement with SparkScribe.

This Privacy Policy is a standalone notice under the Digital Personal Data Protection Act, 2023 (India) and the Digital Personal Data Protection Rules, 2025. It explains how SparkScribe Technologies (“SparkScribe”, “we”, “us”, “our”) processes personal data when you use sparkscribetech.com and related pages.

1. Who we are

SparkScribe Technologies is a software development company based in Surat, Gujarat, India. We design and deliver custom web applications, Django backends, AI integrations, and related IT services for business clients internationally.

Data fiduciary: SparkScribe Technologies
Website: https://sparkscribetech.com

2. Scope — who this policy covers

This policy applies to:

  • Visitors browsing our public website;
  • Prospects who submit contact, inquiry, or consultation forms;
  • Job applicants who apply through our careers pages;
  • Business contacts who communicate with us by email or phone; and
  • Client stakeholders whose details we receive in the course of sales or delivery (where no separate client privacy schedule applies).

This policy does not govern third-party websites linked from our pages, or software products we build for clients where the client is the data controller.

3. Personal data we collect

We collect only what we need for the purposes below. Categories may include:

  • Identity & contact: name, email address, phone number, country, company name, job title;
  • Project & inquiry details: subject line, message content, service interest, budget range, project documentation you upload;
  • Recruitment: résumé/CV, cover letter, work history, skills, and information you provide in a job application;
  • Technical & usage: IP address, browser type, operating system, pages visited, referring URL, and device identifiers derived from server logs;
  • Communications: records of emails, calls, or meeting notes where you have contacted us;
  • Cookie & analytics data: where enabled, aggregated usage statistics (see Section 8).

We do not intentionally collect sensitive personal data (such as health, biometric, or financial account data) through our marketing website. Please do not submit such information unless we explicitly request it under a signed engagement.

4. How and why we use personal data

We process personal data for specific, stated purposes:

  • Responding to contact, inquiry, and consultation requests;
  • Evaluating and managing job applications;
  • Preparing proposals, statements of work, and client onboarding;
  • Delivering contracted software development and related services;
  • Operating, securing, and improving our website;
  • Complying with legal, tax, and regulatory obligations; and
  • Protecting our rights and preventing fraud or abuse.

Where required by law, we rely on your consent (for example, optional marketing communications). In other cases we rely on legitimate interests (operating our business, securing our site) or contractual necessity (delivering services you have engaged us for).

5. Legal bases (India, EU/UK, and other regions)

  • India (DPDP Act 2023): We provide this standalone notice and obtain consent where required. You may withdraw consent as described in Section 11.
  • EU/UK (GDPR): Where applicable, we process data based on consent, contract, legitimate interests, or legal obligation. You may lodge a complaint with your local supervisory authority.
  • Other jurisdictions: We apply comparable principles and honour valid rights requests to the extent required by applicable law.

6. Sharing and processors

We do not sell personal data. We may share data with:

  • Hosting & infrastructure providers that operate our servers and email;
  • Communication tools used for email, scheduling, or project collaboration;
  • Professional advisers (legal, accounting) under confidentiality;
  • Authorities when required by law or to protect rights and safety.

Processors are engaged under contracts that require appropriate security and use limitations. A current list of major categories of processors is available on request.

7. International transfers

SparkScribe is based in India and serves clients globally. Personal data may be stored or accessed in India and, where we use cloud services, in other countries where our providers operate. Where required, we implement appropriate safeguards (such as contractual clauses or equivalent measures) for cross-border transfers.

8. Cookies and similar technologies

Our website may use essential cookies required for security and basic functionality. If we enable analytics or marketing cookies in the future, we will update this policy and, where required, request consent before non-essential cookies are placed.

You can control cookies through your browser settings. Blocking essential cookies may affect site functionality.

9. Data retention

We retain personal data only as long as necessary:

  • Inquiries & contact forms: typically up to 24 months after last meaningful contact, unless a client relationship continues;
  • Client project records: for the engagement period and as required by contract, tax, or law (often 7 years for business records where applicable);
  • Job applications: up to 12 months for unsuccessful candidates, unless you consent to longer retention;
  • Server & visitor logs: typically up to 90 days for security and troubleshooting, unless needed for an incident investigation.

We securely delete or anonymise data when retention periods expire.

10. Security

We apply reasonable technical and organisational measures — access controls, encrypted transport (HTTPS), least-privilege access for staff, and secure handling of uploaded files. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.

If we become aware of a personal data breach likely to affect your rights, we will notify affected individuals and the Data Protection Board of India (and other authorities where required) within applicable time limits, including the 72-hour benchmark under the DPDP Rules where it applies.

11. Your rights and choices

Depending on your location, you may have the right to:

  • Access a copy of personal data we hold about you;
  • Request correction of inaccurate or incomplete data;
  • Request erasure where processing is no longer necessary or consent is withdrawn;
  • Withdraw consent at any time (without affecting prior lawful processing);
  • Nominate another person to exercise your rights in the event of death or incapacity (as permitted under Indian law); and
  • File a complaint with the Data Protection Board of India or your local data protection authority.

We aim to respond to verified requests within 90 days, as aligned with DPDP Rules timelines. We may need to verify your identity before acting on a request.

To exercise your rights, use the contact details in Section 13. Withdrawing consent or requesting deletion may limit our ability to respond to ongoing inquiries or deliver services.

12. Children

Our website and services are directed at businesses and professionals. We do not knowingly collect personal data from anyone under 18. If you believe a minor has provided data to us, contact us and we will delete it promptly.

13. Contact & grievance redressal

For privacy questions, rights requests, consent withdrawal, or complaints, contact our designated grievance contact:

Grievance Officer
SparkScribe Technologies
Email: privacy@sparkscribetech.com (or the contact email published on our website)
Subject line: Privacy request — [your name]

You may also write to our registered office address published on the Contact Us page. We will acknowledge grievances and work to resolve them in good faith within applicable legal timeframes.

14. Changes to this policy

We may update this Privacy Policy to reflect legal, technical, or business changes. The “Effective date” at the top of this page shows when the current version took effect. Material changes will be posted on this page; where required, we will seek fresh consent.