Privacy Notice

Throughout this document, “we,” “us,” “our,” and “IFinalyst” refer to IFinalyst Consulting and Technology LLP.

This Privacy Notice outlines how IFinalyst collects, uses, processes, and protects data in the course of delivering services to client organizations.

This Notice is prepared in accordance with applicable data protection laws, including:

  • Digital Personal Data Protection Act, 2023 (India)
  • General Data Protection Regulation (GDPR)
  • Applicable U.S. Data Privacy Laws

This Notice applies to all data processed by IFinalyst in both electronic and physical formats.

Data We Process

In a B2B context, IFinalyst primarily processes:

  • Business contact details (official email IDs, phone numbers, job titles)
  • Client-provided project and transactional data
  • Professional communication records (emails, documents, meeting notes)

We do not collect unnecessary personal data beyond what is required for business purposes.

Sources of Data

Data is obtained through:

  • Direct interactions with client organizations
  • Authorized representatives and stakeholders
  • Publicly available or licensed third-party sources

Purpose of Processing

We process data strictly for legitimate business purposes, including:

  • Delivering financial, advisory, research, and consulting services
  • Managing client relationships and communications
  • Conducting analysis, modeling, and reporting
  • Improving service quality and operational efficiency
  • Meeting legal, regulatory, and compliance requirements
  • Risk management and fraud prevention

Lawful Basis for Processing

Depending on jurisdiction, data processing is based on:

  • Contractual necessity
  • Legal and regulatory obligations
  • Legitimate business interests
  • Consent, where required under applicable laws

Data Sharing

We may share data with:

  • Trusted service providers, subcontractors, and advisors
  • Regulatory authorities, auditors, and government bodies
  • Other entities where required by law or contract

All such parties are bound by strict confidentiality and data protection obligations.

Cross-Border Data Transfers

Given the global nature of our services, data may be transferred across jurisdictions. We ensure appropriate safeguards are implemented in line with applicable laws, including DPDP and GDPR requirements.

Cookies & Tracking Technologies

Our website may use cookies for:

  • Essential website functionality
  • Performance and analytics
  • Enhancing user experience

Data Security

We maintain robust technical, administrative, and physical safeguards to protect data from unauthorized access, disclosure, alteration, or destruction.

Data Retention

Data is retained only for as long as necessary for business, contractual, or legal purposes. Upon expiry, data is securely deleted or anonymized.

Data Rights

Subject to applicable laws (including DPDP Act, 2023 and GDPR), relevant individuals may have rights such as:

  • Access and correction of data
  • Erasure or restriction of processing
  • Withdrawal of consent (where applicable)
  • Grievance redressal

Requests can be made through official communication channels.

Third-Party Links

Our platforms may contain links to external websites. IFinalyst is not responsible for the privacy practices of such third parties.

Updates to This Notice

This Privacy Notice may be updated periodically to reflect regulatory or business changes. The latest version will always be available on our website.

Privacy Policy