Privacy Policy | IDRIL Services Corporation

Privacy Policy

IDRIL Services Corporation — A Georgia Corporation (United States)

Effective Date: January 1, 2026  ·  Last Reviewed: December 12, 2025

1. Overview

IDRIL Services Corporation (“IDRIL,” “we,” “us,” or “our”) respects your privacy and is committed to protecting personal information in accordance with applicable United States federal and state laws and, where applicable, international data protection laws including the EU General Data Protection Regulation (GDPR), UK GDPR, Brazil’s Lei Geral de Proteção de Dados (LGPD), UAE Federal Decree-Law No. 45 of 2021 (PDPL), and other applicable regulations.

This Privacy Policy explains how we collect, use, disclose, transfer, store, and safeguard personal information when you use our website, engage our services, or otherwise interact with us.

2. Scope

This Policy applies where IDRIL acts as a:

  • Data Controller, and/or
  • Data Processor pursuant to contractual arrangements.

It applies to:

  • Clients and prospective clients
  • Vendors and business partners
  • Website visitors
  • Contractors and consultants
  • Individuals located in the United States and internationally

Separate internal notices may apply to employees and job applicants.

3. Personal Information We Collect

Depending on the nature of your interaction with us, we may collect:

A. Identifiers and Contact Information

  • Name
  • Email address
  • Telephone number
  • Mailing address
  • Government-issued identification (where legally required)

B. Professional Information

  • Employer or company name
  • Job title
  • Professional credentials

C. Financial and Transaction Information

  • Billing and payment information
  • Tax identification numbers (where required)

D. Compliance and Due Diligence Information

  • Background verification information (where permitted)
  • Regulatory documentation
  • Immigration-related documentation (if required for services)

E. Technical and Usage Information

  • IP address
  • Device identifiers
  • Browser type
  • Log data
  • Cookies and similar technologies

F. Sensitive Personal Information

Sensitive personal information is processed only where legally permitted, necessary, and subject to appropriate safeguards.

4. How We Collect Information

We collect information:

  • Directly from you
  • From your organization
  • From publicly available sources
  • From service providers assisting our operations
  • Through website technologies such as cookies
  • From regulatory or compliance sources where legally authorized

5. How We Use Personal Information

We use personal information for legitimate business purposes, including:

  • Providing and administering services
  • Contract formation and performance
  • Client onboarding and compliance
  • Billing and financial processing
  • Communications and support
  • Business operations and governance
  • Security monitoring and fraud prevention
  • Legal compliance and regulatory obligations
  • Establishing, exercising, or defending legal claims
  • Improving services and website functionality

IDRIL does not sell personal information for monetary consideration.

7. Disclosure of Personal Information

We may disclose personal information to:

  • Service providers performing services on our behalf
  • Professional advisors (legal, financial, compliance)
  • Regulatory authorities and government agencies
  • Courts or law enforcement pursuant to lawful request
  • Successors in connection with a merger, acquisition, or restructuring

All service providers are required to implement appropriate confidentiality and security safeguards.

8. International Data Transfers

As a U.S.-based organization operating globally, personal information may be transferred to and processed in the United States or other jurisdictions.

Where required, we implement appropriate safeguards, including:

  • EU Standard Contractual Clauses
  • UK International Data Transfer Addendum
  • Contractual data protection provisions
  • Technical and organizational safeguards

9. Data Retention

We retain personal information only for as long as reasonably necessary to:

  • Fulfill contractual obligations
  • Comply with legal and regulatory requirements
  • Resolve disputes
  • Enforce agreements

Retention periods vary depending on the nature of the data and applicable law.

10. Data Security

We maintain reasonable administrative, technical, and physical safeguards, including:

  • Access controls and authentication measures
  • Encryption in transit
  • Security monitoring
  • Incident response procedures
  • Vendor risk management

While we apply commercially reasonable protections, no method of transmission or storage is completely secure.

11. Data Breach Response

In the event of a data breach, we will:

  • Conduct a prompt investigation
  • Take appropriate remediation measures
  • Notify affected individuals and regulators where required by law

12. Your Privacy Rights

Depending on your jurisdiction, you may have rights to:

  • Access your personal information
  • Correct inaccurate information
  • Request deletion
  • Restrict or object to processing
  • Request data portability
  • Withdraw consent
  • Opt out of certain processing activities

To exercise these rights, please contact us using the information below. We may verify your identity before responding.

13. U.S. State Privacy Rights (Including California)

Residents of certain U.S. states, including California, may have additional rights under applicable law, including:

  • The right to know categories of personal information collected
  • The right to access, correct, or delete personal information
  • The right to opt out of sale or sharing (if applicable)
  • The right to non-discrimination for exercising privacy rights

IDRIL does not sell personal information for monetary consideration.

14. Cookies and Tracking Technologies

We use cookies and similar technologies for:

  • Website functionality and security
  • Performance and analytics
  • Improving user experience

You may manage cookie settings through your browser. Where required by law, consent mechanisms are provided.

15. AI and Automated Processing

IDRIL may use automated systems or analytical tools to support:

  • Compliance screening
  • Fraud detection
  • Risk management
  • Operational analytics

We do not rely solely on automated decision-making that produces legal or similarly significant effects without appropriate safeguards and, where required, human oversight.

16. Children’s Privacy

Our services are not directed to children under the age of 13 (or higher-age thresholds where required by law). We do not knowingly collect personal information from children without appropriate consent.

18. Privacy Contact (All Jurisdictions)

For all privacy-related inquiries, including under U.S. federal and state laws and international laws such as GDPR, UK GDPR, LGPD, and UAE PDPL, please contact:

Santosh Kamane

IDRIL Services Corporation

172 Prospect Pl
Alpharetta, GA 30005
United States

Email: [email protected]

19. Governing Law

This Privacy Policy shall be governed by the laws of the State of Georgia, United States, without regard to its conflict of law principles.

21. AI & Automated Systems Transparency Addendum

IDRIL may use automated tools to support:

  • Compliance screening
  • Fraud detection
  • Risk assessment
  • Operational analytics

We do not rely solely on automated systems to make significant decisions without appropriate safeguards and oversight.

Individuals may request additional information by contacting:

Santosh Kamane

Email: santosh@idrilservices.com