Privacy Policy

This Privacy Policy explains how VarenyaZ PVT LTD and its operating teams may collect, use, disclose, retain, and protect personal data when people use our website, contact us, request proposals, receive services, communicate with us, or interact with our content.

For client projects, VarenyaZ may act as a service provider, processor, contractor, or similar role under a written agreement. In that case, the client agreement and data processing terms may control how project data is handled.

We collect only what is reasonably useful for business communication, service delivery, website operation, security, analytics, hiring, vendor management, legal compliance, and improvement of VarenyaZ services.

VarenyaZ uses personal data for legitimate business purposes, contract performance, consent-based activities where required, legal compliance, security, and operational necessity. We do not use personal data in ways that are materially incompatible with the context in which it was collected unless permitted by law.

Our website may use necessary cookies, preference cookies, analytics tools, security tools, and similar technologies. These help the site work, remember choices, understand performance, detect abuse, and improve content.

Where consent or opt-out rights are required, we provide cookie controls or equivalent choices. Some security or essential technologies may be required for the website to function and may not be disabled through preference controls.

VarenyaZ may disclose personal data to service providers, contractors, professional advisers, hosting providers, analytics providers, communication tools, payment or accounting providers, security tools, and other parties that help us operate the business.

We may also disclose data when needed for a business transaction, legal obligation, dispute, enforcement of agreements, fraud prevention, safety, security, or protection of VarenyaZ rights, users, clients, or the public.

VarenyaZ works with clients, tools, and vendors across multiple countries. Personal data may be processed in India, the United States, the United Kingdom, the European Economic Area, or other locations where we or our service providers operate.

Where transfer safeguards are required, we aim to use appropriate contractual, organizational, and technical protections. No internet or cloud transfer method can be guaranteed to be completely secure.

We retain personal data for as long as reasonably necessary for the purpose collected, including service delivery, business records, legal compliance, tax, accounting, dispute resolution, security, backups, audit logs, and enforcement of agreements.

Retention periods vary based on data type, legal requirements, client contract, risk, and operational need. We may retain limited records after a relationship ends where necessary to protect VarenyaZ and comply with applicable law.

Depending on where you live and how we process your data, you may have rights to access, correct, delete, restrict, object, withdraw consent, request portability, opt out of certain sharing or marketing, or complain to a regulator.

We may need to verify your identity, authority, geography, and request scope before responding. We may decline or limit a request where permitted by law, such as for security, legal claims, contractual records, tax records, fraud prevention, or another lawful exception.

California residents may have additional rights where the California Consumer Privacy Act, as amended, applies. Those rights may include access, deletion, correction, opt-out of sale or sharing, limitation of certain sensitive personal information uses, and non-discrimination.

VarenyaZ does not intend to sell personal information. If our California privacy obligations change because of business status, traffic, revenue, data practices, or legal review, we may update this policy and the California Privacy Notice.

We use administrative, technical, and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, and disclosure. These measures may include access controls, secure tooling, vendor review, encryption where appropriate, and internal confidentiality expectations.

Security is a shared responsibility. Users and clients should avoid sending unnecessary sensitive data, protect their credentials, use secure channels where appropriate, and tell us promptly about suspected unauthorized access.

The VarenyaZ website and services are intended for business users and are not directed to children. We do not knowingly request personal data from children through the public website.

If you believe a child has provided personal data to us, contact business@varenyaz.com so we can review and take appropriate action.

We may update this Privacy Policy as our website, services, vendors, legal obligations, security practices, and business operations change. The current version applies from the listed update date unless a separate contract says otherwise.