Privacy Policy

Effective Date: 1 January 2025 · Last Updated: April 2026

Phronex™ Solutions Pvt Ltd ("Phronex™", "we", "us", or "our") is committed to protecting your privacy and personal data. This Privacy Policy describes how we collect, use, store, and protect information when you visit phronex.com (the "Site") or engage with our services.

1. Data Controller

The data controller responsible for your personal data is:

  • Phronex™ Solutions Pvt Ltd
  • G21, Sector-83, Gurgaon, Haryana 122004, India
  • Email: [email protected]
  • Phone: +91 76786 09990

2. Information We Collect

2.1 Information You Provide

  • Contact forms: Name, email address, phone number, company name, and message content when you submit our contact or appointment forms.
  • Email correspondence: Information you share when communicating with us via email.
  • Service engagement: Business information necessary to deliver consulting services, as governed by separate MSA or SOW agreements.

2.2 Information Collected Automatically

  • Usage data: Pages visited, time spent on pages, referring URLs, and navigation paths.
  • Device information: Browser type, operating system, device type, and screen resolution.
  • IP address: Used for security purposes and approximate geographic location.
  • Cookies and similar technologies: See Section 7 below.

3. How We Use Your Information

We process your personal data for the following purposes:

  • To respond to your enquiries and provide requested services.
  • To schedule appointments and consultations.
  • To improve our Site, services, and user experience.
  • To send relevant communications about our services (with your consent).
  • To comply with legal obligations and protect our legitimate interests.
  • To ensure the security and integrity of our Site.

4. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA), we process personal data under the following legal bases:

  • Consent: Where you have given clear consent for us to process your personal data (e.g., marketing communications, cookie preferences).
  • Contractual necessity: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Legitimate interests: Where processing is necessary for our legitimate business interests (e.g., website analytics, security) provided these interests are not overridden by your rights.
  • Legal obligation: Where processing is required to comply with applicable laws.

5. Your Rights Under GDPR

If you are located in the EEA, you have the following rights regarding your personal data:

  • Right of access: Request a copy of your personal data we hold.
  • Right to rectification: Request correction of inaccurate or incomplete data.
  • Right to erasure:Request deletion of your personal data ("right to be forgotten").
  • Right to restrict processing: Request limitation of how we process your data.
  • Right to data portability: Receive your data in a structured, machine-readable format.
  • Right to object: Object to processing based on legitimate interests or for direct marketing.
  • Right to withdraw consent: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at [email protected]. We will respond to your request within 30 days. You also have the right to lodge a complaint with your local data protection authority.

6. Your Rights Under India's DPDP Act

If you are located in India, the Digital Personal Data Protection Act, 2023 (DPDP Act) grants you the following rights regarding your personal data:

  • Right to access: Obtain a summary of your personal data and the processing activities carried out.
  • Right to correction and erasure: Request correction of inaccurate data or erasure of data no longer necessary for its original purpose.
  • Right to grievance redressal: Register a complaint with us regarding the processing of your data.
  • Right to nominate: Nominate another individual to exercise your rights in the event of your death or incapacity.

Phronex™ Solutions Pvt Ltd acts as a "Data Fiduciary" under the DPDP Act. We process personal data based on your consent or for legitimate uses as defined by the Act. To exercise any of these rights, contact us at [email protected].

7. Cookies & Tracking Technologies

Our Site uses the following categories of cookies:

  • Strictly necessary cookies: Essential for the Site to function (e.g., session management, cookie consent preferences). These cannot be disabled.
  • Analytics cookies: Help us understand how visitors use our Site (e.g., page views, traffic sources). Only set with your consent.
  • Functional cookies: Remember your preferences (e.g., language selection). Only set with your consent.

You can manage your cookie preferences through the cookie consent banner displayed on your first visit. You may also configure your browser to refuse all cookies, although this may affect Site functionality.

8. Data Sharing & Third Parties

We do not sell, rent, or trade your personal data. We may share your information with:

  • Service providers: Trusted third parties who assist us in operating the Site and delivering our services (e.g., hosting providers, email platforms), bound by data processing agreements.
  • Legal requirements: When required by law, regulation, or legal process.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, with appropriate safeguards.

9. International Data Transfers

As Phronex™ operates globally (India, Germany, Spain, Sweden), your data may be transferred to and processed in countries outside the EEA. Where such transfers occur, we implement appropriate safeguards including Standard Contractual Clauses (SCCs) approved by the European Commission to ensure your data is protected to the standard required by GDPR.

10. AI Products — Data Handling

The following applies to Phronex™ SaaS products that use AI: Content Companion, Job Portal, and Phronex Command Centre.

  • Account data: Email address, usage logs, and product configuration are stored in our secure database. Portal credentials (passwords, API keys you provide) are encrypted at rest using AES-256-GCM and are never shared with third parties.
  • AI processing:Prompts and documents you submit for AI processing are sent to Anthropic (Claude) to generate responses. Anthropic's privacy policy applies: anthropic.com/privacy. We do not use your data to train AI models without your explicit consent.
  • Third-party job data: Job listings and company information are sourced from public job portals. We do not share your personal profile with those portals without your instruction.
  • Data on account closure: Account data is deleted within 30 days of account closure on request. Contact [email protected] to request deletion.

11. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes described in this policy, or as required by law. Specifically:

  • Contact form submissions: 24 months from last interaction.
  • Client engagement data: Duration of the engagement plus 7 years for legal and tax purposes.
  • Website analytics data: 26 months (anonymized).
  • Cookie consent records: 12 months.

12. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encrypted data transmission (TLS/SSL), access controls, regular security assessments, and employee training. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

13. Children's Privacy

Our Site and services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us at [email protected] and we will promptly delete such information.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. For material changes, we will provide notice through the Site or via email where possible. We encourage you to review this policy periodically.

15. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

  • Email: [email protected]
  • Phone: +91 76786 09990
  • Address: Phronex™ Solutions Pvt Ltd, G21, Sector-83, Gurgaon, Haryana 122004, India