Home/ Privacy Policy

Privacy
Policy.

Last updatedApril 26, 2026
EffectiveApril 26, 2026

S.T.R.In.G Technology Solutions ("S.T.R.In.G", "we", "our", "us") is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose and safeguard your information when you visit our website at stringlab.org, engage our services or correspond with us.

This policy applies to all data we collect as a data controller. For data we process on behalf of our clients (as a data processor), the relevant client's privacy policy applies — our obligations are set out in the Data Processing Agreement we execute with each client.

1. Information we collect

We collect the following categories of information:

  • Contact information — name, work email address, company name and phone number provided when you contact us via our website form, email or a discovery call.
  • Technical data — IP address, browser type, operating system, referral source, pages visited and time spent, collected automatically via server logs and analytics tools.
  • Communications — the content of emails and messages you send to us.
  • Newsletter data — email address provided when subscribing to our newsletter.

We do not collect sensitive personal data (special category data under GDPR) through our website. For client engagements that involve processing such data, specific contractual and technical controls apply under a separate DPA.

2. How we use your information

  • To respond to your enquiries and manage our relationship with you
  • To deliver and improve our services
  • To send our newsletter (with your explicit consent, unsubscribable at any time)
  • To comply with our legal obligations
  • To analyse website traffic and improve our website (via anonymised analytics)

3. Legal basis for processing (GDPR)

Where GDPR applies, we process personal data on the following legal bases:

  • Legitimate interests — for business communications and website analytics
  • Consent — for newsletter subscriptions (withdrawable at any time)
  • Contract performance — for data processed as part of a client engagement
  • Legal obligation — where required by applicable law

4. Data sharing and transfers

We do not sell your personal data. We share it only with:

  • Service providers who process data on our behalf under appropriate data processing agreements (e.g., cloud infrastructure providers, email tools)
  • Legal authorities where required by law
  • Successors in the event of a merger or acquisition, subject to equivalent protections

Where data is transferred outside the UK/EEA, we apply appropriate safeguards including Standard Contractual Clauses.

5. Data retention

We retain contact and communication data for up to 3 years after the last interaction, or until you request deletion. Newsletter subscriber data is retained until unsubscription. Website analytics data is retained for 26 months in anonymised form.

6. Your rights

Under GDPR and India's DPDP Act, you have rights to: access your personal data; correct inaccuracies; request deletion; object to processing; request portability; and withdraw consent. To exercise any right, contact privacy@stringlab.org. We respond within 30 days.

7. Cookies

We use essential, functional and analytics cookies. See our Cookie Policy for details and opt-out options.

8. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure or destruction. See our Trust Centre for details.

9. Contact

Data controller: S.T.R.In.G Technology Solutions, B-14 Sector 63, Noida, UP 201301, India.

For privacy enquiries: privacy@stringlab.org

For UK/EU matters, our UK representative can be contacted at: london@stringlab.org

10. Changes to this policy

We may update this policy from time to time. We will notify registered users and newsletter subscribers of material changes. The current version is always available at stringlab.org/privacy.html.