Privacy Policy

Privacy Policy

for Swasthik Tech Solutions Inc.

1. Scope & Application

This Privacy Policy applies to Swasthik Tech Solutions Inc. (“Swasthik,” “we,” “our,” or “us”) in connection with:

  • IT consulting and advisory services
  • Custom software development
  • Cloud infrastructure and managed services
  • Data engineering, analytics, and AI solutions
  • Website interactions and business communications

We comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy laws in Canada.

2. Nature of Data We Handle (Industry-Specific)

As an IT services provider, we may process both:

Business Contact Information

  • Client representatives (name, designation, work email, phone)

Client-Controlled Data (as a Processor / Service Provider)

While delivering services, we may process data hosted in client systems, including:

  • Financial and transactional data (banking/insurance systems)
  • Healthcare-related data (where applicable, under client control)
  • Customer/user data within enterprise applications
  • Operational and analytics datasets

Important:
Swasthik acts primarily as a data processor/service provider, while the client remains the data controller.

3. Purpose of Data Processing

We collect and process data strictly for:

  • Delivering contracted IT services
  • Managing cloud infrastructure and applications
  • Developing and maintaining software systems
  • Performing analytics, data engineering, and AI modeling
  • Ensuring system security, monitoring, and performance
  • Business communication and relationship management

We do not use client data for unrelated purposes.

4. Consent & Lawful Basis

For personal/business contact data, we rely on:

  • Express or implied consent (as per PIPEDA)
  • Legitimate business interest (B2B engagement context)

For client-controlled data, processing is governed by:

  • Master Service Agreements (MSA)
  • Data Processing Agreements (DPA)
  • Client instructions and contractual obligations

5. Data Residency & Cross-Border Transfers

Due to the nature of cloud and IT services:

  • Data may be stored or processed in Canada, the United States, or other jurisdictions
  • We use cloud platforms such as AWS, Microsoft Azure, or GCP
  • Cross-border transfers are conducted with appropriate safeguards

Clients are informed where their data may reside as part of project agreements.

6. Data Security (Enterprise-Level Controls)

We implement industry-standard safeguards aligned with IT service best practices:

  • Role-based access control (RBAC)
  • Encryption (data at rest and in transit)
  • Secure cloud configurations
  • Network security and monitoring
  • Vulnerability assessments and patch management
  • Logging and audit trails

Access to client data is strictly limited to authorized personnel.

7. Sub processors & Third Parties

We may engage trusted third-party providers for:

  • Cloud hosting (AWS, Azure, GCP)
  • Monitoring and analytics tools
  • Communication platforms

All sub processors are:

  • Contractually bound by confidentiality obligations
  • Required to meet security and compliance standards

8. Data Retention

We retain:

  • Business contact data for ongoing relationships
  • Client data only as required under contractual agreements

Upon project completion or termination:

  • Data is returned or securely deleted as per agreement

9. Individual Rights (Canada)

Individuals have the right to:

  • Access personal information held about them
  • Request corrections
  • Withdraw consent (where applicable)

Requests are handled in accordance with PIPEDA requirements.

10. Breach Notification

In the event of a data breach involving personal information:

  • We follow Canadian breach notification requirements
  • Notify affected clients promptly
  • Maintain breach records as required by law

11. Cookies & Website Tracking

We use cookies for:

  • Website performance and analytics
  • User experience optimization

No sensitive personal data is collected via cookies.

12. Updates to Policy

This policy may be updated to reflect:

  • Changes in law
  • Changes in services or technologies

Contact:

For all privacy-related matters:

Email: info@swasthiktechsolutions.com

Phone: +1 825 777 5199

Address: 1500 West Georgia St, Suite 1300, Vancouver, BC, Canada V6G 2Z6