Legal

Privacy Policy

We respect your privacy and are committed to protecting your personal data. This policy explains what we collect, why, and how you can control it.

Last updated: May 10, 2026 · Applies to: IntelliX Solutions

1. Overview

IntelliX Solutions (“we”, “us”, or “our”) operates the website intellix-solutions.com and related services. This Privacy Policy describes how we collect, use, disclose, and safeguard personal information when you visit our website, submit an enquiry, use our free tools, or engage with our services.

By using our website or submitting your information through any of our forms, you acknowledge the practices described in this policy. If you do not agree, please refrain from using our website.

This policy complies with the General Data Protection Regulation (GDPR), the Information Technology Act, 2000 (India), and the Digital Personal Data Protection Act, 2023 (DPDP Act).

2. Data We Collect

We collect personal data only when you voluntarily provide it or when it is generated automatically during your use of our website.

2.1 Information You Provide Directly

Data Point	Where Collected	Required?
Full name	Contact form, Demo booking, Lead forms, Onboarding	Yes
Email address	All lead capture forms, Newsletter signup	Yes
Phone / WhatsApp	Contact form, Demo booking	No
Organisation name	Contact form, Demo booking	No
Organisation type	Contact form, Demo booking	No
Project details / message	Contact form, Demo booking	No
Budget range	Demo booking form	No
Project timeline	Demo booking form	No
Product interests	Demo booking form	No
Star rating & review	Token-gated review submission page	Yes (if submitting)

2.2 Information Collected Automatically

Page views — The URL and date of pages you visit, recorded server-side in our analytics table.
Google Analytics 4 data — Aggregated usage data including device type, country, session duration, and pages visited (see Section 5).
Cookies — Session cookies for client portal access and preference cookies for cookie consent state.

2.3 Employee & Contractor Data

If you apply for a position or are engaged as an employee or contractor, we collect additional data including educational history, work experience, government identification, and banking details. This data is processed separately under our internal HR data policy and is not covered by this public privacy notice.

3. How We Use Your Data

Purpose	Data Used	Basis
Respond to your enquiry or demo request	Name, email, phone, message	Legitimate interest / Contract
Score and prioritise sales leads	Org type, budget, product interest	Legitimate interest
Send you a quote or proposal	Name, email, org name	Pre-contractual steps
Send project updates via client portal	Name, email	Contract performance
Send the newsletter you subscribed to	Email	Consent
Deliver gated resources you requested	Name, email	Consent
Unlock demo videos you requested	Name, email	Consent
Analyse website traffic to improve the site	Anonymised page views, GA4 data	Consent (cookies) / Legitimate interest
Detect and prevent spam submissions	Honeypot field value	Legitimate interest
Comply with legal obligations	Any relevant data	Legal obligation

We do not sell, rent, or trade your personal data with third parties for their own marketing purposes.

4. Legal Basis for Processing

Where GDPR applies (visitors from the European Economic Area), we rely on the following legal bases:

Consent — Newsletter subscriptions, gated resource downloads, demo video unlocks, and analytics cookies. You may withdraw consent at any time.
Legitimate Interests — Responding to general enquiries, improving our website, lead scoring, and fraud prevention. We have assessed that these interests are not overridden by your fundamental rights.
Pre-contractual / Contractual Steps — Processing required to prepare a quote, proposal, or service agreement at your request.
Legal Obligation — Processing required to comply with applicable Indian or EU law.

Under the Indian DPDP Act 2023, our lawful basis is consent (for marketing and analytics) and legitimate uses (for responding to enquiries and performing services).

5. Cookies & Tracking Technologies

We use cookies and similar technologies. You can control these via the cookie consent banner shown on your first visit, or by clearing cookies in your browser.

Cookie / Technology	Purpose	Duration	Consent Required?
cookie_consent	Stores your cookie preference (accepted / declined)	Persistent (localStorage)	No — functional
portal_session	Authenticates client portal access	Session / 8 hours	No — functional
_ga, _ga_*	Google Analytics 4 — measures site usage	Up to 2 years	Yes
Google gtag.js script	Loads GA4 measurement library	N/A (script)	Yes

We implement GA4 Consent Mode v2: Google Analytics is loaded in a consent-denied state by default. Analytics cookies are only activated after you click “Accept” on the consent banner. If you decline, no analytics cookies are set and no tracking events are fired.

To opt out of Google Analytics across all websites, you can install the Google Analytics Opt-out Browser Add-on .

6. Third-Party Services

We use trusted third-party services to operate our platform. Each provider processes data under their own privacy policy and applicable data processing agreements.

Provider	Purpose	Data Shared	Location
Supabase (AWS)	Database hosting & authentication	All form submissions, user accounts	AWS (multiple regions)
Cloudinary	Image & file hosting	Uploaded images and documents	USA / EU
Google Analytics 4	Website analytics	Anonymised usage data (with consent)	USA
Nodemailer / SMTP	Transactional email delivery	Name, email, message content	Configured server
WhatsApp Business	Internal lead alert notifications	Lead name, email, phone (admin only)	Meta servers
Upstash Redis	Rate limiting for login endpoints	IP addresses (temporary)	USA / EU
Vercel	Website hosting & serverless functions	Request metadata, logs	USA / EU

We do not transfer your personal data to countries outside the EEA / India without appropriate safeguards (Standard Contractual Clauses or equivalent).

7. Data Retention

Data Category	Retention Period	Reason
Lead & enquiry data	3 years from last contact	Business relationship & follow-up
Converted client data	Duration of contract + 7 years	Legal & contractual obligations
Newsletter subscriptions	Until you unsubscribe	Consent-based
Resource / video gate leads	3 years from collection	Business interest
Admin activity logs	2 years	Security & audit trail
Google Analytics data	Per GA4 settings (up to 14 months)	Analytics platform default
Cookie consent preference	Until browser data is cleared	User preference

When the retention period expires, data is either deleted or anonymised. You may request earlier deletion — see Section 8.

8. Your Rights

Depending on your location, you have the following rights regarding your personal data:

Right of Access — Request a copy of the personal data we hold about you.
Right to Rectification — Ask us to correct inaccurate or incomplete data.
Right to Erasure(“Right to be Forgotten”) — Request deletion of your data where we have no overriding legal obligation to retain it.
Right to Restriction — Ask us to pause processing of your data in certain circumstances.
Right to Data Portability — Receive your data in a structured, machine-readable format.
Right to Object — Object to processing based on legitimate interests, including direct marketing.
Right to Withdraw Consent — Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

Under the DPDP Act 2023, Indian residents have the right to access, correction, erasure, and grievance redressal as defined in that Act.

To exercise any right, contact us at team@intellix-solutions.com. We will respond within 30 days. We may need to verify your identity before fulfilling a request.

If you are in the EU / UK and are dissatisfied with our response, you have the right to lodge a complaint with your local data protection authority.

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. Measures include:

All data transmitted via HTTPS (TLS encryption in transit)
Passwords hashed with bcrypt (cost factor 12) — never stored in plaintext
Database access protected by Row-Level Security (Supabase RLS policies)
Authentication tokens stored in httpOnly, Secure cookies
Rate limiting on all login and form submission endpoints
Role-based access control limiting internal data access to authorised staff
Regular activity logging of all admin actions for audit purposes

No method of electronic transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. In the event of a data breach affecting your rights, we will notify you and relevant authorities as required by law.

10. Children's Privacy

Our website and services are directed at businesses and professionals and are not intended for children under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately and we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the “Last updated” date at the top of this page.

We encourage you to review this policy periodically. Your continued use of our website after any changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, requests, or concerns about this Privacy Policy or how we handle your personal data, please contact our data point of contact:

team@intellix-solutions.com

Phone / WhatsApp

+91 70513 64737

Address

India

We aim to respond to all privacy-related requests within 30 days. For urgent matters, please include “Privacy Request” in your email subject line.