Privacy Policy
Bright Galix Security Monitoring Platform
Last Updated: January 15, 2025
Overview
At Bright Galix, we understand that your privacy forms the foundation of trust in our security monitoring services. This comprehensive privacy policy explains how we collect, process, store, and protect your personal information when you use our platform at purevisionlab.sbs. Our approach aligns with India's Digital Personal Data Protection Act, 2023, and international privacy standards.
As a security monitoring platform, we handle sensitive data daily. This responsibility shapes every decision we make about data handling. We believe transparency about our practices helps you make informed choices about sharing your information with us.
Information We Collect
Personal Information
We collect personal information that you voluntarily provide when creating an account, configuring monitoring services, or contacting our support team. This includes your name, email address, phone number, company details, and billing information.
Technical Data
Our security monitoring services automatically collect technical information about your systems and network activities. This data enables us to provide effective security monitoring and threat detection services.
| Data Category | Collection Purpose | Retention Period |
|---|---|---|
| System logs and network traffic | Security monitoring and threat detection | 90 days active, 2 years archived |
| Device and browser information | Platform optimization and security | Duration of account plus 1 year |
| Usage patterns and preferences | Service improvement and customization | 3 years from last activity |
How We Use Your Information
We process your personal information based on legitimate business interests, contractual necessity, and your explicit consent where required. Our primary goal is delivering effective security monitoring services while maintaining your privacy.
Service Delivery: We use your information to provide security monitoring services, detect threats, generate reports, and maintain system performance. This includes analyzing patterns in your network traffic to identify potential security incidents.
Beyond core service delivery, we use collected information to improve our platform capabilities, develop new security features, and provide personalized recommendations for enhancing your security posture. We also use contact information to send important service updates, security alerts, and relevant educational content about emerging threats.
Information Sharing and Disclosure
We maintain strict controls over information sharing and never sell your personal data to third parties. Information sharing occurs only in specific circumstances that directly support our service delivery or comply with legal requirements.
Service Providers
We work with carefully selected third-party service providers who assist in delivering our security monitoring services. These partners include cloud infrastructure providers, payment processors, and specialized security tools vendors. All service providers undergo rigorous security assessments and sign comprehensive data processing agreements.
Legal Requirements
We may disclose personal information when required by Indian law enforcement agencies, regulatory authorities, or court orders. Such disclosures occur only when legally mandated and are limited to the specific information requested. We maintain records of all legal disclosure requests and notify affected users when permitted by law.
Data Security Measures
As a security monitoring platform, we apply enterprise-grade security measures to protect your information. Our security framework incorporates multiple layers of protection, from encryption and access controls to regular security assessments and incident response procedures.
Your Privacy Rights
Under India's Digital Personal Data Protection Act, 2023, you have specific rights regarding your personal information. We respect these rights and provide mechanisms for exercising them effectively.
Access and Portability
You can request access to all personal information we hold about you. We provide this information in a structured, commonly used format within 30 days of your request. This includes account details, service usage data, and communication records.
Correction and Updates
You can update most personal information directly through your account dashboard. For information that cannot be self-updated, contact our support team with correction requests. We process correction requests within 15 business days and notify you of any changes made.
Data Deletion: You can request deletion of your personal information, subject to legal retention requirements and legitimate business needs. Security monitoring data may be retained longer for threat analysis purposes, but personal identifiers are removed after account closure.
Data Retention and Deletion
We retain personal information only as long as necessary to fulfill the purposes outlined in this policy, meet legal obligations, and maintain service quality. Retention periods vary based on data type and regulatory requirements.
Account information is retained for the duration of your subscription plus one additional year for support purposes. Security monitoring data follows a tiered retention approach: active monitoring data for 90 days, archived analysis data for two years, and anonymized threat intelligence indefinitely for security research.
Upon account termination, we begin a systematic deletion process. Personal identifiers are removed within 30 days, while anonymized security data may be retained for threat research purposes. You can request expedited deletion of specific information categories by contacting our privacy team.
International Data Transfers
While our primary operations are based in India, some service providers and backup systems may involve international data transfers. We ensure all cross-border data transfers comply with applicable regulations and include appropriate safeguards.
When transferring data internationally, we use standard contractual clauses approved by Indian authorities and implement additional technical safeguards such as encryption and access controls. We maintain detailed records of all international transfers and the legal basis for each transfer.
Cookies and Tracking Technologies
Our platform uses cookies and similar tracking technologies to enhance user experience, maintain session security, and gather usage analytics. We categorize cookies based on their purpose and provide options for managing your preferences.
Essential cookies are necessary for platform functionality and cannot be disabled. These include authentication tokens, session management, and security features. Optional cookies support analytics and personalization features, which you can control through your account settings.
Changes to This Policy
We review and update this privacy policy annually or when significant changes occur in our data processing practices. Material changes are communicated through email notifications and prominent website notices at least 30 days before implementation.
Minor clarifications and administrative updates may be made without advance notice, but we maintain a version history showing all policy changes. Continued use of our services after policy updates constitutes acceptance of the revised terms.
Privacy Contact Information
For privacy-related questions, data requests, or concerns about our data practices, please contact us:
Email: [email protected]
Phone: +91 7977802175
Address: CP-1205/2, Sector 12, Indira Nagar
Lucknow, Uttar Pradesh 226016, India
We respond to privacy inquiries within 72 hours and resolve most requests within 15 business days.