Privacy Policy

Privacy Policy

Effective Date: 17 November 2025
Last Updated: 17 November 2025
Website: www.salzertechnologies.com

1. Introduction – Who We Are

  • your use of our public website, www.salzertechnologies.com (the “Site”);
  • our provision of software and IT services to our clients; and
  • your interactions with us regarding career opportunities.

The Salzer group currently includes the following independent legal entities (each a “Salzer Entity”):

  • Salzer Technologies Limited, Chennai, India
  • Salzer Technologies Inc., Herndon, Virginia, USA
  • Salzer Technologies LLC-FZ, Meydan Free Zone, Dubai, UAE
Each Salzer Entity is a separate legal entity. References in this Policy to “Salzer”, “we”, “us”, or “our” refer, as appropriate:
  • to Salzer Technologies Limited as the operator of this Site, and
  • to the specific Salzer Entity that you interact with or that provides services to you (for example, under a Master Services Agreement or Statement of Work).

We are committed to handling personal information in an open, transparent, and responsible manner. For clients and projects involving U.S. healthcare data, we comply with applicable requirements of the Health Insurance Portability and Accountability Act (HIPAA) through Business Associate Agreements (BAAs) with those clients.

2. Scope and Roles (Controller / Processor / Business Associate)

2.1 Scope

This Privacy Policy applies to personal information we collect:
  • from visitors to our public Site;
  • from representatives of our clients, vendors, and partners in the context of our services;
  • from end-users whose data is processed through our solutions on behalf of our clients; and
  • from job applicants and candidates who apply for positions with any Salzer Entity.

2.2 Our Role

Depending on the context, a Salzer Entity may act as:
  • a “data controller” / “controller” (or equivalent under applicable law) when we determine the purposes and means of processing your data (for example, for Site analytics, marketing, recruitment, and business contact management);
  • a “data processor” / “processor” when we process personal data on behalf of and under the instructions of our clients in connection with our services; and/or
  • a “Business Associate” under HIPAA when we process Protected Health Information (PHI) on behalf of U.S. healthcare clients, subject to a Business Associate Agreement.
If you are an end-user of one of our clients’ systems and have questions about how your data is used, please contact the relevant client (the controller) directly. We will assist them, as appropriate, in responding to your request.

2.3 Geographic Reach

This Policy is global in nature. We aim to handle personal information in accordance with applicable laws in the jurisdictions where we operate, including (where applicable):
  • India’s Digital Personal Data Protection Act, 2023 (DPDPA);
  • relevant U.S. federal and state privacy and security laws, including HIPAA for PHI;
  • applicable privacy regulations in the United Arab Emirates, including the DIFC Data Protection Law where relevant; and
  • other local data protection laws that may apply to particular projects or clients.

3. Information We Collect

We collect personal information in three main ways:

3.1 Information You Provide Directly

a. Contact and Inquiry Forms
When you contact us via forms, email, or other channels (e.g., “Contact Us”, demo requests, RFP/RFI submissions), we may collect:
  • name and job title;
  • company name and role;
  • business email address and phone number;
  • country or region;
  • the content of your message or inquiry; and
  • any other information you choose to provide.
b. Client and Vendor/Partner Information
When you engage with us as a client, vendor, or partner, we may collect:
  • business contact details of your representatives;
  • billing and payment information (for corporate transactions);
  • communications, contracts, and related documentation.
c. Career Applications
When you apply for a role (through our Site, email, or recruitment platforms), we may collect:
  • name and contact details;
  • CV / résumé, cover letter, work history, education, skills, certifications;
  • salary expectations, notice period, and other application-related information;
  • information provided in interviews or assessments;
  • references (where provided) and background check information where allowed by law.

3.2 Information Collected Automatically

When you access or use our Site, we may automatically collect certain information, including:
  • IP address and approximate location (based on IP);
  • device identifiers, browser type and version, operating system;
  • referring URLs and pages visited;
  • date/time stamps, session duration, and navigation paths;
  • information collected via cookies, pixels, and similar tracking technologies.
More detail is provided in Section 9 (Cookies & Similar Technologies).

3.3 Information We Receive from Clients (Processor / Business Associate Context)

In delivering our software and IT services, our clients may upload or otherwise provide:
  • personal data relating to their own customers, patients, members, employees, or other end-users;
  • sensitive data such as Protected Health Information (PHI), where applicable, under HIPAA.
In such cases:
  • the client is primarily responsible for determining the purposes and lawful basis for processing;
  • we act as a processor / Business Associate, processing such data only on documented instructions from the client and under the terms of our contracts and any applicable BAA.

4. How We Use Personal Information

We use personal information for the purposes set out below. Where required by law, we also rely on a corresponding legal basis (examples are indicative and may differ by jurisdiction).

4.1 Responding to Inquiries and Managing Relationships

When you contact us via forms, email, or other channels (e.g., “Contact Us”, demo requests, RFP/RFI submissions), we may collect:
  • To respond to your questions, support requests, demo requests, or other inquiries.
  • To manage and maintain relationships with clients, partners, and vendors.
Example legal bases:
  • Legitimate interests (communicating with you, managing business relationships).
  • Performance of a contract or steps prior to entering into a contract.

4.2 Providing and Supporting Our Services

  • To configure, host, operate, and support our software and IT solutions.
  • To provide implementation, support, maintenance, and troubleshooting.
  • To perform analytics for service performance and improvement (where permitted).
Example legal bases:
  • Performance of a contract with our clients.
  • Legitimate interests (efficient service delivery, improving our offerings).

4.3 Recruitment and Talent Management

  • To review and process job applications, assess candidates, and schedule interviews.
  • To maintain a talent pool (where permitted) for future opportunities.
  • To comply with labor, tax, and related legal obligations.
Example legal bases:
  • Steps taken at your request prior to entering into an employment contract.
  • Legitimate interests (recruitment and talent management).
  • Compliance with legal obligations (e.g., employment, equality laws).

4.4 Operating and Improving the Site

  • To operate, maintain, personalize, and secure the Site.
  • To analyze Site usage and performance (e.g., pages visited, time spent).
  • To diagnose and prevent technical issues.
Example legal bases:
  • Legitimate interests (ensuring Site security and performance, improving user experience).
  • Consent where required for certain cookies or tracking technologies.

4.5 Marketing and Communications

  • To send you information about Salzer’s services, events, webinars, and content that may be relevant to your role or organization.
  • To administer subscriptions to newsletters or mailing lists.
You can opt out of marketing communications at any time by using the “unsubscribe” link in the email or by contacting us (see Section 12).
Example legal bases:
  • Consent (where required by law, e.g., certain email marketing).
  • Legitimate interests (B2B marketing to existing or potential clients, where permitted).

4.6 Security, Compliance, and Risk Management

  • To protect our systems, networks, and services from misuse, fraud, cyberattacks, or other security incidents.
  • To conduct audits, compliance reviews, and risk assessments.
  • To comply with legal and regulatory obligations and to establish, exercise, or defend legal claims.
Example legal bases:
  • Legitimate interests (security, fraud prevention, protecting our rights and assets).
  • Compliance with legal obligations.

4.7 Special Note on PHI and Healthcare Data

When we process Protected Health Information (PHI) for our healthcare clients:
  • we act as a Business Associate under HIPAA;
  • our processing is strictly governed by our Business Associate Agreements (BAAs)
  • we use and disclose PHI only as permitted in the applicable BAA or as required by law; and
  • we implement appropriate administrative, physical, and technical safeguards to protect PHI, consistent with HIPAA requirements and our security program.

5. How We Share Personal Information

We do not sell personal information. We may share personal information in the following limited circumstances:

5.1 Within the Salzer Group

Personal information may be shared among Salzer Entities where necessary:
  • to operate the Site;
  • to provide services (for example, leveraging global delivery teams);
  • to manage internal reporting, governance, risk, and compliance.
Access is restricted on a need-to-know basis and subject to appropriate contractual and security safeguards.

5.2 Service Providers and Business Partners

We engage carefully selected third parties to help us operate and support our Site and services, such as:
  • cloud infrastructure and hosting providers;
  • IT support, security, and monitoring services;
  • email and communication platforms;
  • recruitment and HR tools;
  • analytics, CRM, and marketing tools (where used).
These providers process personal information only on our instructions and are contractually obligated to protect it.

5.3 Clients (Processor / BA Context)

When we process data on behalf of a client:
  • we may share information with that client and its authorized representatives (e.g., reports, logs, support records) consistent with our contract;
  • if we receive a data-subject request relating to such data, we may forward the request to the client and act in line with their instructions.

5.4 Legal, Regulatory, and Safety Requirements

We may disclose personal information where we reasonably believe it is necessary to:
  • comply with applicable laws, lawful requests, or legal processes (e.g., court orders, subpoenas);
  • respond to requests from regulators, supervisory authorities, or law enforcement;
  • enforce or apply our contracts and policies;
  • protect our rights, property, safety, or the rights, property, or safety of others.

5.5 Business Transfers

If we undergo a merger, acquisition, reorganization, or sale of all or part of our business or assets, personal information may be transferred as part of that transaction, subject to appropriate confidentiality and data-protection safeguards.

6. International Transfers

As a global group, we may transfer personal information to, and process it in, countries other than the one in which it was collected (for example, between India, the United States, and the United Arab Emirates).
Where such transfers are subject to legal restrictions (for example, in certain jurisdictions):
  • we will implement appropriate safeguards such as Standard Contractual Clauses or other lawful transfer mechanisms; and
  • we will ensure that the receiving entities are obligated to protect personal information in a manner consistent with this Policy and applicable law.

7. Data Security

We maintain a comprehensive information-security program with technical and organizational measures designed to protect personal information against:
  • unauthorized access, disclosure, alteration, or destruction;
  • accidental loss or damage;
  • misuse, fraud, and cyberattacks.
Measures may include, as appropriate:
  • role-based access controls and least-privilege principles;
  • encryption of data in transit and/or at rest;
  • secure network architecture, firewalls, and monitoring;
  • employee training and confidentiality obligations;
  • incident response and breach notification procedures.
While we take reasonable steps to protect your data, no system is completely secure, and we cannot guarantee absolute security.

8. Your Privacy Rights

Depending on your location and the applicable law, you may have some or all of the following rights regarding your personal information:
  • Right of access – to obtain confirmation of whether we process your personal data and to request a copy.
  • Right to rectification – to request correction of inaccurate or incomplete data.
  • Right to erasure (“right to be forgotten”) – to request deletion of your data, subject to legal and contractual obligations.
  • Right to restriction of processing – to request that we restrict processing of your data in certain circumstances.
  • Right to data portability – to receive your data in a structured, commonly used, machine-readable format (where applicable).
  • Right to object – to object to certain types of processing, including direct marketing.
  • Right to withdraw consent – where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal.
To exercise these rights, or to raise a privacy question or concern, please contact us using the details in Section 12. We may need to verify your identity before processing your request.
Important:
For data we process on behalf of a client (as a processor or Business Associate), we may be legally required to redirect or support your request via that client. In such cases, we will inform you and/or forward your request to the relevant client/controller.

9. Data Retention

We retain personal information for as long as reasonably necessary to:
  • fulfill the purposes described in this Policy;
  • comply with legal, regulatory, accounting, or reporting requirements; and
  • resolve disputes and enforce our agreements.

Retention periods may vary depending on the category of data and the context, but typical examples include:

  • Job application data: usually retained for up to 2 years from the date of last interaction, unless a longer period is permitted or required by law or you consent to being kept in our talent pool for longer.
  • Website contact and inquiry data: retained for as long as necessary to handle your inquiry and for a reasonable follow-up period.
  • Client service data: retained as required by our contracts with clients and applicable law (for example, for audit and record-keeping obligations).
When data is no longer needed, we will delete it or anonymize it in accordance with our data-retention and destruction policies.

10. Cookies and Similar Technologies

Our Site uses cookies and similar technologies (such as pixels or tags) to:
  • remember your preferences and settings;
  • understand how visitors use and navigate the Site;
  • improve Site performance and security;
  • support certain analytics and, where applicable, marketing activities.

10.1 What Are Cookies?

Cookies are small text files placed on your device when you visit a website. They are widely used to make websites work or work more efficiently, as well as to provide information to site owners.

10.2 Types of Cookies We May Use

  • Strictly necessary cookies – required for basic Site functionality (e.g., page navigation, session management).
  • Performance/analytics cookies – help us understand how the Site is used (e.g., pages visited, time spent).
  • Functionality cookies – remember your preferences (e.g., language, region).
  • Marketing / tracking cookies (if used) – support marketing efforts and measure the effectiveness of campaigns.
The specific cookies in use and their purposes may be described in a separate Cookie Notice or banner on the Site.

10.3 Your Choices

Most web browsers allow you to control cookies through their settings. You may:
  • set your browser to block or delete cookies;
  • use built-in tools or extensions to manage tracking;
  • respond to cookie banners or consent tools we present.
Please note that disabling certain cookies may affect the functionality or performance of the Site.

11. Children’s Privacy

Our Site and services are not directed to children under the age of 16 (or the age defined by local law), and we do not knowingly collect personal information from children via the Site.
If you believe that a child has provided personal information to us without appropriate consent, please contact us (see Section 13), and we will take steps to delete such information as required by law.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors.
When we make material changes, we will:
  • update the “Last Updated” date at the top of this page; and
  • where appropriate, provide additional notice (for example, by posting a notice on the Site or emailing registered users).
We encourage you to review this Policy periodically. Your continued use of the Site after any changes become effective constitutes your acceptance of the updated Policy.

13. Contact Details and DPDPA Grievance Officer

If you have any questions, concerns, or requests regarding this Privacy Policy or our data-handling practices, please contact us at:
Global Privacy / Data Protection Contact
Salzer Technologies Limited
#20 Nandanam Extension, Sixth Street
Nandanam, Chennai – 600035
Tamil Nadu, India
  • Email: info@salzertechnologies.com
  • Phone: +91 1800 2704 471
(You may also contact the relevant regional entity using the details on our Legal Notice / Imprint page.)

13.1 India – DPDPA Grievance Officer

For matters arising under India’s Digital Personal Data Protection Act, 2023, you may contact us at:
We will endeavor to acknowledge and respond to grievances within the timelines prescribed under applicable law.
Scroll to Top