Start a Project
Security & Consent

Privacy Policy

How we collect, manage, process, and protect your company data and personal details in alignment with international guidelines.

Last Updated: June 2026

1. Information We Collect & Process

We collect and process personal data and project-related files that you provide directly to us when filling out contact forms, booking strategy calls, or consulting on custom development projects. This includes:

  • Personal Identification Details: Full Name, corporate or personal email address, active WhatsApp phone number, and company name.
  • Project Specifications & Assets: Business objectives, feature requests, website layouts, wireframe assets, database schemas, brand guidelines, and API integration requirements.
  • Automatically Logged Data: Device viewport sizes, browser user agents, referring page URLs, IP addresses, cookie preferences, and interaction flows logged via integration pixels (such as Google Analytics and Meta Tag parameters).

2. How We Use and Process Your Data

We use your personal and business metrics strictly to establish project scope, deliver digital development products, and optimize campaign results. We do not sell, lease, or distribute your information to data brokers or advertising databases. Data usage includes:

  • Calculating service quotes, customizing project proposals, and structuring contract milestones.
  • Establishing communication threads over WhatsApp channels to facilitate quick design feedback, timeline updates, and post-delivery handovers.
  • Monitoring user interaction heatmaps and page speed metrics to optimize our layouts for speed, rendering under 2 seconds.
  • Deploying Meta and Google pixel tracking tags to evaluate and report on ad campaign performance and conversion actions.

3. Code Security & Vault Storage

We take code security and credential management seriously. We follow industry standards to safeguard your project files, credentials, and source files:

  • All code repositories are hosted on secure Git version-control accounts (such as GitHub or GitLab) protected by Multi-Factor Authentication (MFA).
  • Sensitive database keys, API secrets, email gateway tokens, and merchant codes are stored inside secure, encrypted environment configurations, rather than hardcoded in repositories.
  • Data transmission across all our web pages and customer touchpoints is encrypted using Secure Sockets Layer (SSL) and TLS protocols.

4. Third-Party Services & Integrations

In order to deploy and run your custom digital platforms, we integrate various third-party services. We share only the strictly required data to enable these integrations, including:

  • Hosting & Server Platforms: Vercel, Amazon Web Services (AWS), Hostinger, or other custom hosting servers where your site files reside.
  • Payment Processors: Razorpay, PhonePe, or Stripe to set up secure, PCI-compliant payment gateways.
  • Marketing & Analytics Tools: Google Analytics, Meta Ads, and Google Tag Manager to track user performance and conversion events.

These third-party platforms govern your data under their own respective privacy frameworks. We recommend reviewing their policies before initiating transactional setups.

5. Cookies, Tracking Pixels & Local Storage

We utilize persistent cookies, tracking pixels, and HTML5 local storage parameters to personalize your web experience and track user sessions. Cookies serve to:

  • Persist design preferences (such as maintaining visual selection choices or filters) across browser refreshes.
  • Analyze navigation drop-off points to make the interface structure cleaner and more intuitive.

You can choose to block cookies through your individual browser's privacy parameters. However, doing so may cause certain interactive parts of our pages to render slowly or with partial features.

6. Data Retention & Client Rights

We retain your contact briefs, scoping files, and repository assets only as long as necessary to complete the project delivery, fulfill signed maintenance plans, or satisfy official compliance requirements (such as tax compliance records).

You have full rights to request access to the personal metrics we hold, request corrections to incorrect data, or request permanent deletion of your project details from our active databases. Requests are processed within 30 days of written receipt.

7. Contact Our Data Safety Division

If you have any questions regarding encryption setups, data safety policies, or to submit a data erasure request, please email our security officer at support@netnoted.com.