Logo

Privacy Policy

Effective Date: 12/11/2025
Last Updated: 12/11/2025

Sojaru Corp LLP (“Company”, “we”, “our”, “us”) is committed to protecting the privacy and personal data of all users, clients, partners and visitors (“you”, “your”, “user”) who access our website [www.sojaru.in] or use any of our products and services including Hawk (AI Code Scanner), Galactus (Intrusion Detection Framework), VAPT, SOC monitoring, consulting, software and cybersecurity services.

This Privacy Policy is formulated in compliance with:

  •  Digital Personal Data Protection Act, 2023 (India)

  • IT Act, 2000 and IT Rules, 2011

  • GDPR (EU Regulation 2016/679)

  • CERT-In Guidelines 2022


1. DEFINITIONS

Personal Data – Any data that identifies a natural person, including name, email, phone, IP address, credentials, system identifiers, etc.
Sensitive Data – Includes financial information, health data, biometric data or security credentials.
Processing – Collection, storage, analysis, transmission, deletion, or usage of data.
Data Principal / Data Subject – The individual whose data is processed.
Data Fiduciary / Data Controller – Sojaru Corp LLP.
Data Processor – Any third-party engaged by Sojaru Corp for processing data.


2. DATA WE COLLECT

We may collect the following categories of data:

A. Personal Information

  • Name

  • Email ID

  • Phone number

  • Designation

  • Company name

  • Billing address

  • GST details

B. Technical Information

  • IP Address

  • Operating system & browser

  • Network logs

  • Code metadata

  • System architecture & vulnerability reports

C. Sensitive Client Data (only if authorised)

  • Source code

  • Security configurations

  • Access logs

  • Credentials

  • Internal security documents

We collect data only for legitimate cybersecurity, software, analytical and consulting purposes.


3. LEGAL BASIS FOR PROCESSING

Under DPDP Act (India) and GDPR, we collect/process data based on:

a. Your consent
 b. Contractual necessity
 c. Legal obligation
 d. Legitimate business/security interest

You provide implied consent by signing agreement, registering, using our services or sharing data.


4. PURPOSE OF DATA USE

Your data is used strictly for:

  • Cybersecurity analysis (VAPT, IDS, audits)

  • Software testing & vulnerability detection

  • Incident response & breach investigations

  • Service delivery & improvement

  • Contract fulfilment & billing

  • Legal & compliance requirements

We do not sell or trade personal data.


5. DATA STORAGE & SECURITY

Sojaru Corp adopts advanced security measures including:

 End-to-end encryption
 Access controls & monitoring
 Role-based permissions
 Secure servers / cloud
 Regular vulnerability scanning
 Secure wipe/deletion protocols

All data is stored in secure environments within India or approved data centres compliant with GDPR.


6. DATA SHARING & DISCLOSURE

We DO NOT share data with any third party except:

  • With Client's direct authorisation

  • With legally bound vendors / processors

  • When required by Indian law / court order

  • When required to comply with CERT-In

All third parties are bound by strict NDA & DPA agreements.


7. DATA RETENTION POLICY

We retain data:

  • As long as the contract is active

  • As required by Indian law

  • Maximum of 5 years after termination, unless otherwise requested

On request, data will be deleted, anonymised or returned.


8. DATA PRINCIPAL RIGHTS (USER RIGHTS)

Under DPDP Act & GDPR, you have the right to:

 Request access to data
 Request correction
 Request deletion
 Withdraw consent
 Request data portability
 File a complaint

Email: contact@sojaru.in


9. INTERNATIONAL TRANSFERS (GDPR)

For EU/UK clients, cross-border data transfer is handled through:

  • Standard Contractual Clauses (SCC)

  • Secure encrypted channels

  • GDPR-compliant hosting


10. INCIDENT & BREACH NOTIFICATION

In the event of data breach:

CERT-In will be notified (within 6 hours)
 Affected users will be informed
 Containment & mitigation will be initiated


11. COOKIES & TRACKING

We use minimal cookies for:

  • Security

  • Performance

  • Session management

No marketing / tracking cookies without consent.


12. CONTACT DETAILS

Sojaru Corp LLP
 2ND-FR, FL-2A, 3/97 Chittaranjan Colony
 Jadavpur University, Kolkata – 700032, India
 ðŸ“§ contact@sojaru.in
📞 +91-9147050755