This Privacy Policy describes how Digital Task Force (“DTF”, “we”, “our”, or “us”) collects, uses, processes, stores, and protects personal data in accordance with applicable Indian laws.

By accessing or using www.dtfservice.com (“Website”), you agree to the practices described in this Policy.

1. Information We Collect

We collect only such data as is necessary for lawful purposes related to our Cyber Security, digital forensic, and advisory services.

• Personal Data
• Full name
• Email address
• Contact number
• Organization name and designation (if applicable)
• Client & Case-Specific Data
• Company details and operational information
• Case-related digital evidence
• Device data (logs, metadata, forensic images)
• Incident-related information
• Technical & Usage Data
• IP address
• Browser type and version
• Device identifiers
• Pages visited, time spent, and interaction data
• Voluntarily Provided Data
• Information submitted via contact forms
• Training registrations, webinar participation
• Emails or direct communications
• Legal Basis for Processing (DPDP Compliance)

We process personal data based on:

• Consent provided by the Data Principal
• Legitimate uses as permitted under law (e.g., Cyber Security incident response, fraud prevention)
• Legal obligations, including cooperation with law enforcement and regulatory authorities

Where required, explicit consent will be obtained before processing sensitive or case-related data.

2. Purpose of Data Processing

We use the collected information for purposes including:

• Delivering Cyber Security, digital forensic, and techno-legal services
• Handling and managing investigation cases
• Incident response and risk mitigation
• Communicating reports, updates, and advisories
• Conducting training, awareness, and workshops
• Improving website performance and service delivery
• Maintaining audit trails and internal compliance
• Fulfilling statutory and legal obligations

We do not process personal data for profiling or automated decision-making without explicit consent.

3. Data Security & Protection Measures

DTF implements industry-standard safeguards as per the IT Act and reasonable security practices:

• End-to-end encryption (where applicable)
• Secure servers and controlled infrastructure
• Role-based access control (RBAC)
• Multi-factor authentication (MFA)
• Secure forensic data handling protocols
• Regular vulnerability assessments and audits

Note: While we maintain high security standards, no system is completely immune from cyber risks.

4. Data Sharing & Confidentiality

We maintain strict confidentiality, especially in forensic and investigation matters.

We may share data only under the following circumstances:

• With authorized internal experts on a need-to-know basis
• With law enforcement agencies, CERT-In, or government bodies when legally mandated
• With vetted third-party service providers under binding confidentiality agreements
• During legal proceedings or compliance requirements

We do not sell, rent, or trade personal data.

5. Cross-Border Data Transfers

If data is transferred outside India, we ensure:

• Compliance with applicable legal frameworks
• Adequate data protection safeguards
• Transfer only to jurisdictions permitted under Indian law
6. Data Retention Policy

We retain data only as long as necessary:

• For the duration of service engagement
• As required under legal, regulatory, or evidentiary obligations
• For forensic integrity and audit requirements

Post-retention, data is securely deleted or anonymized.

7. Your Rights (Data Principal Rights under DPDP Act)

You have the following rights:

• Right to access your personal data
• Right to correction and updating of inaccurate data
• Right to erasure (subject to legal obligations)
• Right to withdraw consent at any time
• Right to grievance redressal
• Right to nominate another person in case of incapacity

Requests can be made via the contact details below.

8. Cookies & Tracking Technologies
• Improve user experience
• Analyze website traffic and performance
• Enhance functionality

Users may control or disable cookies via browser settings. Disabling cookies may affect certain features.

9. Third-Party Services

Our website may include integrations with third-party tools (e.g., analytics platforms, form services).

DTF is not responsible for:

• Privacy practices of third-party platforms
• External websites linked from our platform

Users are encouraged to review respective privacy policies.

10. Grievance Redressal Mechanism

In compliance with applicable laws, we have a designated grievance mechanism. All complaints or concerns regarding data processing will be addressed within a reasonable timeframe.

11. Children’s Privacy

Our services are not intended for individuals under 18 years of age.

We do not knowingly collect data from minors without verifiable parental consent.

12. Updates to This Privacy Policy

DTF reserves the right to update or modify this Privacy Policy periodically. Changes will be reflected with a revised “Last Updated” date. Continued use of the website constitutes acceptance of such updates.

13. Contact Information

For privacy-related queries, requests, or grievances:

Email: cert@dtfservice.com

Website: www.dtfservice.com

Disclaimer:

This Privacy Policy is designed in alignment with Indian data protection laws and Cyber Security best practices. It may be further customized based on specific contractual, governmental, or sectoral compliance requirements.