1. Introduction

DevBrows ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website devbrows.com or engage with our services.

2. Information We Collect

Personal Information

We only collect personally identifiable information that you voluntarily provide through our contact forms or standard engagement channels. This strictly includes:

  • Name and Company Name
  • Professional Email Address
  • Phone Number
  • Project Details

No Tracking or Cookies

Unlike most websites, DevBrows does **not** use cookies, tracking pixels, or other fingerprinting technologies to monitor your behavior. We value your privacy and only process information you explicitly send us.

3. How We Use Your Information

Information shared with us is used exclusively for:

  • Personal communication to address your security requirements
  • Provision of professional cybersecurity consulting services
  • Direct marketing of DevBrows products and security insights (which you can opt-out of at any time)

Legal Bases for Processing (GDPR and Similar Laws)

Where data protection laws such as the EU/UK GDPR or similar regional laws apply, we rely on the following legal bases to process your personal information:

  • Consent: When you voluntarily submit information via our contact form or email, you consent to us using that information for the purposes described in this Policy.
  • Performance of a Contract / Pre-Contract Steps: When we discuss, negotiate, or perform a professional engagement with you or your organisation.
  • Legitimate Interests: For limited B2B marketing, security monitoring, and improving our services, provided these interests are not overridden by your rights.
  • Compliance with Legal Obligations: Where we are required to retain or disclose information to comply with applicable laws or regulatory requests.

4. Data Sharing and Zero-Selling Policy

DevBrows does not sell, trade, or rent your personal information to any third-party platforms or data brokers. We maintain a strict zero-selling policy. Your data is only shared with trusted sub-processors necessary for delivering our services (e.g., our secure email provider), and only under strict confidentiality agreements.

5. Compliance Frameworks

Our data handling practices are designed to align with leading international and regional standards. We do not claim to be formally certified or audited under these frameworks unless explicitly stated elsewhere on this site:

  • DPDP-Aligned: Principles of data minimisation, purpose limitation, and data principal rights as described in the Digital Personal Data Protection Act.
  • ISO 27001–Aligned: Information Security Management System style risk assessment and control design.
  • SOC 2–Aligned: Emphasis on security, availability, and confidentiality trust principles to support future audits.

6. Data Retention

We retain personal information you share with us only for as long as it is necessary to fulfil the purposes described in this Privacy Policy or as required by applicable law. Inquiry data is reviewed periodically and is not kept longer than is needed to maintain an active professional relationship, unless you request earlier deletion.

7. Cookies and Tracking

As stated in Section 2, we have intentionally designed this website to operate without the use of cookies. No cookie consent banners are required because no invasive tracking is performed.

8. Your Rights

Depending on where you are located, you may have specific rights under data protection laws such as the Digital Personal Data Protection Act (India), the EU/UK General Data Protection Regulation (GDPR), North American privacy laws (such as certain U.S. state laws and Canadian privacy laws), and the UAE Federal Data Protection Law.

These rights may include the ability to:

  • Request access to the personal data we hold about you
  • Request correction of inaccurate or incomplete data
  • Request deletion of your data, subject to legal retention requirements
  • Object to or restrict certain types of processing (for example, direct marketing)
  • Request data portability, where applicable
  • Withdraw consent at any time where processing is based on consent

To exercise these rights, please contact us at the email provided below. We will assess and respond to your request in line with the laws applicable to your region.

9. Third-Party Links

Our website may contain links to third-party sites for your reference. We do not control their privacy practices and encourage you to review their policies separately.

10. Children's Privacy

Our services are intended for professional B2B use and are not directed to individuals under 18.

11. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or global regulations like DPDP. Any updates will be posted here with a new timestamp.

12. Contact Us and Grievance Redressal

If you have questions about our privacy-first approach or wish to manage your data, contact us:

  • Email: inquiry@devbrows.com
  • Website: devbrows.com/contact
  • Grievance / DPDP Contact: You may use the contact details above to submit grievances or requests related to your rights under the Digital Personal Data Protection Act.