Privacy Policy
Last updated: 13 July 2026
Maruti Infosoft (“Maruti Infosoft”, “we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard personal data when you visit marutiinfosoft.com, contact us, or use our services, and describes the rights available to you under applicable data-protection laws, including the EU and UK General Data Protection Regulation (GDPR), the UAE Personal Data Protection Law, Canada’s PIPEDA, and applicable United States state privacy laws.
Please read this policy carefully. By using our website or services, you acknowledge that you have read and understood it. If you do not agree, please do not use our website or services.
1. Who we are
Maruti Infosoft is a software development company based at 423 Apple Square, near Yogichawk, Surat, Gujarat 395010, India. For the purposes of the GDPR and similar laws, we act as the data controller for personal data we collect through our website and in the course of our business relationships. Where we process personal data on behalf of a client under a services agreement, we act as a data processor and process that data only per the client’s documented instructions.
You can reach us regarding privacy matters at info@marutiinfosoft.com.
2. Scope of this policy
This policy applies to personal data we collect: (a) through our website and web forms; (b) when you contact us by email, phone, WhatsApp, or a scheduling tool; (c) in the course of providing services to our clients; and (d) from third parties where permitted by law. It does not apply to third-party websites or services that we link to but do not operate.
3. Information we collect
Information you provide to us
- Contact and enquiry details — such as your name, email address, phone/WhatsApp number, company, and the contents of the message, quote request, or project brief you submit.
- Project and business information — details you share so we can scope, quote, or deliver work, which may include documents, credentials you choose to grant, and requirements.
- Contractual and billing information — where we engage commercially, information needed to invoice and be paid.
Information we collect automatically
- Device and usage data — IP address, browser type, device and operating system, referring pages, pages viewed, and the dates/times of access, collected through cookies and similar technologies.
- Analytics data — aggregated and pseudonymized information about how visitors use our site, used to improve it.
We do not intentionally collect special-category (sensitive) personal data through our website and ask that you do not submit it through our forms.
4. How we use information
- To respond to your enquiries and provide quotes and information you request.
- To provide, deliver, and support the services you or your organization engage us for.
- To operate, maintain, secure, and improve our website and services.
- To manage contracts, invoicing, and payments.
- To send service-related communications, and — only where you have opted in or where permitted by law — occasional updates you can unsubscribe from at any time.
- To detect, prevent, and address fraud, abuse, security, or technical issues.
- To comply with legal obligations and enforce our agreements.
We do not sell your personal data, and we do not share it for cross-context behavioral advertising.
5. Legal bases for processing (EEA & UK)
Where the GDPR or UK GDPR applies, we rely on the following legal bases:
- Consent — for optional analytics/marketing cookies and for marketing communications. You may withdraw consent at any time.
- Contract — where processing is necessary to take steps at your request before entering into, or to perform, a contract.
- Legitimate interests — to run and secure our business, respond to enquiries, and improve our services, where those interests are not overridden by your rights.
- Legal obligation — where we must process data to comply with the law (e.g., tax and accounting).
8. International data transfers
We operate from India and work with clients and providers in the United States, United Arab Emirates, United Kingdom, Canada, the EEA, and elsewhere. As a result, your personal data may be transferred to, stored in, or processed in countries other than your own. Where we transfer personal data across borders, we implement appropriate safeguards required by law — such as the European Commission’s Standard Contractual Clauses, the UK International Data Transfer Agreement/Addendum, or transfers to jurisdictions deemed to provide adequate protection. You may contact us at info@marutiinfosoft.com for more information about these safeguards.
9. Data retention
We retain personal data only for as long as necessary to fulfill the purposes described in this policy, including to provide services, maintain business records, and comply with legal, tax, and accounting obligations, after which we delete or anonymize it. Retention periods vary by data type and legal requirement; where you have a business relationship with us, we generally retain records for the duration of the engagement plus the period required by applicable law.
10. How we protect data
We maintain administrative, technical, and organizational measures designed to protect personal data against unauthorized access, loss, misuse, or alteration — including encryption in transit, access controls, least-privilege practices, and NDA-first engagements. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security. If we become aware of a personal-data breach that legally requires notification, we will notify affected individuals and regulators as required by applicable law.
11. Your privacy rights
Depending on where you live, you may have some or all of the following rights regarding your personal data: to access it; to correct inaccuracies; to delete it; to restrict or object to processing; to data portability; to withdraw consent; and to lodge a complaint with a regulator. To exercise any right, email info@marutiinfosoft.com. We will respond within the timeframe required by applicable law and will not discriminate against you for exercising your rights. We may need to verify your identity before acting on a request, and authorized agents may submit requests where the law permits.
12. Additional information — EEA & UK (GDPR)
If you are in the European Economic Area or the United Kingdom, you have the rights described above under the GDPR and UK GDPR. You also have the right to lodge a complaint with your local supervisory authority (in the UK, the Information Commissioner’s Office). We rely on the legal bases set out in Section 5, and where processing is based on consent you may withdraw it at any time without affecting prior processing.
13. Additional information — United Arab Emirates (PDPL)
If you are in the UAE, we handle personal data consistently with Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (PDPL). You have rights to access, correct, and request deletion of your personal data, to object to or restrict certain processing, to request the stopping of processing that causes harm, and to withdraw consent. Cross-border transfers of UAE personal data are carried out subject to the safeguards required under the PDPL.
14. Additional information — Canada (PIPEDA)
If you are in Canada, we handle personal information in accordance with the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial laws. We collect, use, and disclose personal information only for purposes a reasonable person would consider appropriate, obtain consent where required, and give you the right to access and correct your personal information. You may direct questions or complaints to us at info@marutiinfosoft.com, and you may also contact the Office of the Privacy Commissioner of Canada.
15. Additional information — United States
If you are a resident of California or another U.S. state with a comprehensive privacy law, you may have rights to know, access, correct, and delete personal information, and to opt out of the “sale” or “sharing” of personal information and certain profiling. We do not sell your personal information and do not share it for cross-context behavioral advertising. To exercise your rights, contact us at info@marutiinfosoft.com. We will not discriminate against you for exercising your privacy rights, and we honor recognized opt-out preference signals (such as GPC) where required.
16. Children's privacy
Our website and services are intended for businesses and adults. We do not knowingly collect personal data from children under 16 (or the age defined by local law). If you believe a child has provided us personal data, please contact us at info@marutiinfosoft.com and we will delete it.
17. Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices or the law. When we do, we will revise the “Last updated” date above and, where changes are material, provide a more prominent notice. Your continued use of our website or services after an update constitutes acceptance of the revised policy.
18. How to contact us
For any question, request, or complaint about this policy or your personal data, contact us at:
- Maruti Infosoft
- 423 Apple Square, near Yogichawk, Surat, Gujarat 395010, India
- Email: info@marutiinfosoft.com
- Phone: +91 99044 82945