How we collect, use and protect your information.

This Privacy Policy describes how cmplihr.ai ("we", "our", "the Platform") collects, uses, discloses and safeguards personal information when you interact with our website, request a demonstration, or use the Platform.

cmplihr.ai is jointly owned and developed by Talent Works LLP and Globalion Technology Solutions Private Limited (the "Operators"). For any privacy enquiry, you may contact us at [email protected].

1. Information we collect

1.1 Information you provide

• Contact details such as name, work email, phone number, designation and employer.
• Account, role and tenant identifiers for users of the Platform.
• Information you submit through forms, enquiries, support tickets or written communication.
• Customer content uploaded into the Platform (e.g. statutory records, registers, notices, evidence).

1.2 Information collected automatically

• Device, browser and network identifiers, IP address and approximate location.
• Pages visited, actions taken, timestamps and referring URLs.
• Cookies and similar identifiers, as described in our Cookies Policy.

2. How we use your information

• To deliver, operate, secure and improve the Platform and our website.
• To respond to enquiries, deliver demonstrations and provide support.
• To comply with statutory, regulatory and contractual obligations.
• To detect, investigate and prevent fraud, abuse or security incidents.
• For limited, opt-in marketing communications relating to our services.

3. Legal bases

We process personal data on the basis of your consent, performance of a contract, compliance with a legal obligation, or our legitimate interests in operating and securing the Platform. For Indian data principals, we rely on consent and the legitimate uses recognised by the Digital Personal Data Protection Act, 2023.

4. Roles and responsibilities

For customer content uploaded into the Platform, our customer (the enterprise) is the data fiduciary / controller, and cmplihr.ai is the data processor acting on the customer's documented instructions and Data Processing Addendum.

5. Disclosures

We may share personal information with vetted sub-processors (hosting, email, telemetry), with our customers (in the case of their authorised users), with professional advisors, and where required by law. A current list of sub-processors is available on request.

6. International transfers

Customer content is stored in India-located data regions. Where any limited operational processing occurs outside India (for example, by a support engineer), we apply contractual safeguards and data-minimisation by default.

7. Retention

We retain personal information for as long as necessary to deliver the Platform, meet our legal obligations, resolve disputes and enforce our agreements. Customer-specific retention is defined in the order form or DPA.

8. Your rights

• Access, correction and erasure (where applicable).
• Withdrawal of consent for marketing communications at any time.
• Grievance redressal through our Grievance Officer (details below).

9. Security

We apply technical and organisational safeguards including encryption in transit and at rest, tenant isolation, role-based access controls, audit logging, vulnerability management and incident response procedures.

10. Grievance Officer

In accordance with the Information Technology Act, 2000 and the DPDP Act, 2023, complaints may be addressed to our Grievance Officer at [email protected]. We will acknowledge complaints promptly and respond within statutory timelines.

11. Updates

We may update this Privacy Policy from time to time. Material changes will be highlighted on this page or, where appropriate, communicated by email.