Digital Solutions
Home About Services Portfolio Contact Get Started
Legal

Privacy Policy

At MP53 Digital Solutions, your privacy is not an afterthought — it is built into everything we do. This policy explains clearly and transparently how we handle your data.

Effective: 1 January 2025 Last Updated: 15 May 2025 GDPR & IT Act Compliant

01 Who We Are

MP53 Digital Solutions ("MP53", "we", "us", or "our") is a premium IT services company registered and operating in India. We provide web development, mobile application development, cybersecurity, cloud infrastructure, UI/UX design, SEO, and IT consulting services to businesses across India and internationally.

This Privacy Policy applies to our website at https://mp53.in, all associated subdomains, mobile applications, and any services we provide to our clients and website visitors (collectively, the "Services").

Data Controller: MP53 Digital Solutions, India. For all privacy-related inquiries, contact us at privacy@mp53.in.

02 Information We Collect

We collect information in three principal ways: information you provide to us directly, information collected automatically when you use our Services, and information from third-party sources.

Information You Provide Directly

  • Contact & inquiry data: Name, email address, phone number, company name, and project details when you fill out contact or consultation forms.
  • Account information: Username, password (hashed), and profile details if you create an account on our client portal.
  • Payment information: Billing address and payment card details, processed securely through our PCI-DSS compliant payment processors. We do not store raw card numbers.
  • Communications: Emails, chat messages, and support tickets you send to us.
  • Survey & feedback data: Responses to satisfaction surveys or feedback forms.

Information Collected Automatically

  • Usage data: Pages visited, time spent, clicks, scroll depth, and navigation paths through our website.
  • Device & technical data: IP address, browser type and version, operating system, screen resolution, and device identifiers.
  • Log data: Server logs capturing requests made to our servers, including timestamps and referring URLs.
  • Location data: Approximate geographic location derived from your IP address (country and city level only).
  • Cookies & tracking technologies: As detailed in Section 5 below.

Information from Third Parties

  • Business contact details from LinkedIn and professional networking platforms when you connect with us.
  • Analytics enrichment data from Google Analytics and similar services.
  • Referral information when you arrive at our site via a partner or affiliate link.

03 How We Use Your Data

We use the information we collect for specific, legitimate purposes. We do not use your data for any purpose incompatible with those listed here.

Purpose Data Used
Respond to inquiries & provide quotes Name, email, phone, project details
Deliver contracted services Contact info, payment info, project communications
Send transactional emails (invoices, project updates) Email address, name
Marketing communications (with consent) Email address, name, interests
Improve our website & services Usage data, device data, feedback
Fraud prevention & security IP address, log data, device identifiers
Legal compliance & dispute resolution All relevant data as required by law

We never sell your personal data to third parties. We do not use your data for automated decision-making that produces legal or similarly significant effects without human review.

04 Legal Basis for Processing

Where applicable under the General Data Protection Regulation (GDPR) and India's Digital Personal Data Protection Act 2023 (DPDPA), we process your personal data under the following legal bases:

  • Contractual necessity: Processing required to fulfil a contract with you, such as delivering a web development project you have engaged us for.
  • Legitimate interests: Processing that serves our legitimate business interests — such as fraud prevention, service improvement, and direct marketing to existing clients — provided your rights and interests do not override these.
  • Consent: Where we rely on your explicit consent, such as for marketing emails or non-essential cookies. You may withdraw consent at any time without affecting prior processing.
  • Legal obligation: Processing necessary to comply with applicable laws, including tax regulations, court orders, or regulatory requirements.

05 Cookies & Tracking Technologies

We use cookies and similar technologies (web beacons, pixels, local storage) to enhance your experience, analyse site traffic, and support our marketing activities.

Cookie Type Purpose Duration
Essential Required for the website to function (session management, security tokens). Cannot be disabled. Session / 1 year
Analytics Google Analytics 4 — tracks page views, traffic sources, and user behaviour in aggregate. Up to 2 years
Functional Remembers your preferences (language, theme) and form auto-fill. 1 year
Marketing Google Ads, LinkedIn Insight Tag — used for remarketing and measuring ad campaign performance. Up to 90 days

You can control and manage cookies through your browser settings at any time. Disabling certain cookies may affect your experience on our website. For detailed cookie management, refer to your browser's help documentation or visit allaboutcookies.org.

06 Data Sharing & Disclosure

We do not sell, rent, or trade your personal information. We may share your data with the following categories of recipients only as necessary:

  • Service providers & sub-processors: Trusted third-party vendors who assist us in operating our business — including cloud hosting (AWS, Azure), email delivery (SendGrid), payment processing (Razorpay, Stripe), and analytics (Google Analytics). All sub-processors are bound by data processing agreements.
  • Professional advisors: Lawyers, accountants, and auditors under strict confidentiality obligations.
  • Law enforcement & regulatory authorities: When required by applicable law, court order, or governmental request.
  • Business transfers: In the event of a merger, acquisition, or sale of all or part of our assets, your data may be transferred as part of that transaction. We will notify you before your personal data becomes subject to a different privacy policy.
  • With your consent: We may share your data with other third parties when you have explicitly consented, such as for case studies or testimonials.

07 Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting obligations.

  • Client project data: Retained for 7 years after project completion to satisfy financial record-keeping requirements under the Companies Act 2013.
  • Contact form submissions: Retained for 2 years from the date of last contact.
  • Marketing data: Retained until you unsubscribe or withdraw consent, plus a further 90 days for suppression list management.
  • Website analytics: Aggregated analytics data retained for up to 26 months; raw log data for 90 days.
  • Candidates / job applicants: Application data retained for 6 months if unsuccessful, or throughout employment if hired.

When data is no longer required, it is securely deleted or anonymised so that it can no longer be attributed to an individual.

08 Data Security

We implement industry-leading technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction.

  • Encryption: All data transmitted between your browser and our servers is encrypted using TLS 1.3. Data at rest is encrypted using AES-256.
  • Access controls: Role-based access control (RBAC) ensures only authorised personnel can access personal data, on a strict need-to-know basis.
  • Infrastructure security: Our hosting infrastructure is protected by firewalls, intrusion detection systems, and regular vulnerability scans.
  • Payment security: Payment card data is processed via PCI-DSS Level 1 certified processors. We never store raw card numbers.
  • Incident response: We maintain a documented data breach response plan. In the event of a breach affecting your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours as required by applicable law.
  • Staff training: All MP53 team members complete mandatory data protection and security awareness training annually.

Despite our rigorous security measures, no method of transmission over the internet or electronic storage is 100% secure. We encourage you to use strong, unique passwords and to contact us immediately if you suspect any unauthorised access to your account.

09 Your Privacy Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data. We honour these rights for all individuals, regardless of location, to the extent practically possible.

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate or incomplete personal data.
  • Right to erasure ("right to be forgotten"): Request deletion of your personal data, subject to our legal retention obligations.
  • Right to restrict processing: Request that we limit the processing of your data in certain circumstances.
  • Right to data portability: Receive your personal data in a structured, machine-readable format and transmit it to another controller.
  • Right to object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Right to withdraw consent: Where processing is based on consent, withdraw it at any time without affecting prior lawful processing.
  • Right to lodge a complaint: Lodge a complaint with your national data protection authority if you believe we have processed your data unlawfully.

To exercise any of these rights, please contact us at privacy@mp53.in. We will respond within 30 days. We may need to verify your identity before fulfilling your request.

10 International Data Transfers

MP53 Digital Solutions is based in India. If you are accessing our Services from the European Economic Area (EEA), the United Kingdom, or other regions with data protection laws that differ from India's, your personal data may be transferred to and processed in India and other countries where our sub-processors operate (including the United States and Singapore).

When we transfer personal data internationally, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission for transfers from the EEA.
  • Data processing agreements with all sub-processors that include binding data protection obligations.
  • Adequacy assessments to ensure the destination country provides an adequate level of data protection.

11 Children's Privacy

Our Services are directed exclusively at businesses and individuals aged 18 and above. We do not knowingly collect or solicit personal data from anyone under the age of 18.

If we learn that we have inadvertently collected personal data from a child under 18, we will delete that information promptly. If you believe we may have collected data from a minor, please contact us immediately at privacy@mp53.in.

12 Third-Party Links & Services

Our website may contain links to third-party websites, tools, and social media platforms (including LinkedIn, Twitter/X, GitHub, and Instagram). We are not responsible for the privacy practices of these external sites.

When you click on a third-party link, you are leaving our website and your data will be governed by that site's own privacy policy. We encourage you to review the privacy policies of any third-party sites you visit.

Certain features on our website may embed third-party content (such as YouTube videos or Google Maps). These services may collect data about your interaction with the embedded content, subject to their own privacy policies.

13 Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons. When we make material changes, we will:

  1. Update the "Last Updated" date at the top of this page.
  2. Post a prominent notice on our website homepage for at least 30 days.
  3. Send an email notification to subscribers and registered clients where the changes are significant.

We encourage you to review this Policy periodically. Your continued use of our Services after changes are posted constitutes your acknowledgement of the updated policy. Where we are required by law to obtain your consent for changes, we will do so before the changes take effect.

14 Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, please do not hesitate to reach out. We are committed to resolving any concerns promptly and transparently.

Email (Privacy)
privacy@mp53.in

Response within 30 days

General Contact
hello@mp53.in

For all other enquiries

Phone
+91 XXXX XXX XXX

Mon–Fri, 9 AM – 6 PM IST

Registered Address

MP53 Digital Solutions
India

If you are unsatisfied with our response to your privacy concerns, you have the right to lodge a complaint with the relevant data protection authority in your country.