Privacy Policy

1. Information We Collect

Information You Provide Directly

We collect information that you voluntarily provide to us, including your name and contact details (email address, phone number, company name) when you fill out a contact form or request a consultation; project-related information you share during engagements such as business requirements, technical specifications, and documentation; billing and invoicing details necessary to process payments for our services; and any other information you choose to communicate to us via email, phone, or through the Website.

Information Collected Automatically

When you visit our Website, we may automatically collect your IP address, browser type and version, operating system, referring URL, pages visited and time spent on those pages, and device identifiers.

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience, analyze Website traffic, and understand user preferences. You can manage your cookie preferences through your browser settings.

2. How We Use Your Information

We use the information we collect to respond to your inquiries and provide our fractional CTO, CPO, advisory, and product delivery services; to communicate with you about engagements, project updates, and administrative matters; to send you relevant updates about our services, industry insights, or events (you may opt out at any time); to improve and optimize our Website, services, and user experience; to comply with applicable legal obligations, resolve disputes, and enforce our agreements; and to detect, prevent, and address technical issues or security threats.

3. Legal Basis for Processing

For users in jurisdictions that require a legal basis for processing personal data, we process your information based on your consent where you have given clear consent; contractual necessity where processing is required to fulfill our obligations under a service agreement; legitimate interests such as improving our services, marketing, and fraud prevention, provided these interests are not overridden by your rights; and legal obligations where processing is required to comply with applicable law.

4. Sharing and Disclosure

We do not sell your personal information. We may share your data with trusted service providers and subcontractors who assist in delivering our services, subject to confidentiality obligations; with professional advisors including lawyers, accountants, and auditors as necessary; with regulatory authorities, courts, or government bodies when required by law or to protect our legal rights; and with a successor entity in the event of a merger, acquisition, or asset sale, in which case we will notify you of any changes to how your personal information is handled.

5. International Data Transfers

As we operate across India and Singapore, your personal information may be transferred to and processed in either jurisdiction. We take appropriate safeguards to ensure your data is protected in accordance with applicable data protection laws, including the Information Technology Act, 2000 and its rules (India) and the Personal Data Protection Act, 2012 (Singapore).

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal and regulatory obligations, resolve disputes, and enforce our agreements. When your data is no longer needed, we will securely delete or anonymize it.

7. Your Rights

Depending on your jurisdiction, you may have the right to access the personal information we hold about you; request correction or updating of inaccurate data; request deletion of your personal data, subject to legal obligations; object to or restrict certain processing activities; withdraw your consent at any time, where processing is based on consent; and request data portability in a structured, commonly used format.

To exercise any of these rights, please contact us at privacy@kompella.io.

8. Data Security

We implement reasonable technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encrypted communications (SSL/TLS), access controls and authentication, regular security assessments, and confidentiality agreements with employees and contractors. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

9. Third-Party Links

Our Website may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

10. Children's Privacy

Our Website and services are not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us and we will promptly delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised “Last Updated” date. Your continued use of the Website or our services after any changes constitutes your acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us at:

13. Grievance Officer (India)

In accordance with the Information Technology Act, 2000 and its rules, the Grievance Officer for the purposes of this Privacy Policy is:

The Grievance Officer shall address any complaints or concerns regarding the processing of personal information within 30 days of receipt.