Privacy & Data Governance

JSRRB Technologies operates with institutional grade transparency. Our privacy architecture is designed to protect global enterprise assets with military grade integrity.

EFFECTIVE: MAY 2026|VERSION 2.4.0

1. Introduction and Global Scope

JSRRB Technologies Company operates as a premier global provider of enterprise artificial intelligence, scalable cloud architecture, and intelligent SaaS solutions. As an organization operating on a global scale paralleling the compliance frameworks of leading multinational technology providers, we recognize that data privacy is a fundamental human right and a core business imperative.

This Privacy & Data Governance Statement explicitly outlines our global privacy framework. It applies to all JSRRB Technologies digital properties, APIs, cloud environments, enterprise software deployments, offline corporate events, and direct communications (collectively, the “Services”). By utilizing our Services, you acknowledge the exhaustive data processing practices detailed within this framework.

2. Exhaustive Categories of Personal Data Collected

To provide institutional grade technology services, JSRRB Technologies collects data through direct engagement, automated telemetry, and integrated third party ecosystems.

Account & Identity Data

Full name, corporate email address, job title, company name, department, physical corporate address, and authorized user credentials.

Transactional & Financial Data

Billing addresses, payment gateway tokens, subscription tiers, procurement records, and enterprise licensing agreements.

Communications & Interaction Data

Transcripts of support tickets, email correspondence, VoIP call recordings (with explicit consent), feedback forms, and chatbot interactions.

System Telemetry & Device Data

IP addresses, MAC addresses, browser types, operating systems, internet service providers (ISPs), date/time stamps, clickstream data, and exact API request payloads.

Diagnostic & Performance Data

Crash logs, latency metrics, error reports, and hardware/software diagnostic data generated during the use of our cloud infrastructure.

Third Party Ecosystem Data

Data ingested via authorized OAuth integrations (e.g., Microsoft Entra ID, Google Workspace, AWS IAM, Salesforce) strictly necessary to authenticate users and synchronize enterprise services.

4. Artificial Intelligence, LLMs, and Automated Processing

As an enterprise AI infrastructure firm, JSRRB Technologies adheres to the strictest ethical AI data handling standards in the industry.

  • Client Data Isolation: Customer datasets, proprietary code, and prompt inputs processed through our enterprise APIs are strictly isolated. We utilize multi tenant logical partitioning to ensure your data never leaks across organizational boundaries.
  • No Covert Model Training: JSRRB Technologies explicitly guarantees that customer operational data, telemetry, and input prompts are never utilized to train, retrain, or fine tune our public foundational Large Language Models (LLMs) without a signed, explicit legal addendum.
  • Automated Decision Making: While we utilize AI to route support tickets, detect cybersecurity anomalies, and optimize network traffic, we do not subject individuals to automated decision making processes that produce legal or similarly significant effects without human oversight.

5. Cookies, Web Beacons, and Tracking Technologies

JSRRB Technologies utilizes a sophisticated array of tracking technologies to deliver enterprise grade web experiences.

  • Strictly Necessary Cookies: Essential for session management, load balancing, and zero-trust security authentication. These cannot be disabled in our systems.
  • Performance & Analytics Cookies: Utilized to aggregate anonymous metrics on page load speeds, geographic traffic distribution, and navigation paths.
  • Functional Cookies: Deployed to remember user preferences, localization settings, and complex configuration states across sessions.
  • Targeting & Advertising Cookies: Used selectively to deliver relevant B2B insights and track the efficacy of corporate marketing campaigns. Users are presented with a granular Cookie Consent Manager upon their first visit to tailor these preferences.

6. Global Disclosure and Sub-Processing

JSRRB Technologies does not monetize, rent, or sell Personal Data. Disclosure is strictly limited to the following operational necessities:

  • Internal Corporate Affiliates: Data may be shared among JSRRB Technologies subsidiaries worldwide to ensure continuous 24/7 follow the sun enterprise support.
  • Authorized Sub-Processors: We engage elite third party vendors for cloud hosting (e.g., AWS, Azure), payment processing, and security auditing. All sub-processors undergo rigorous compliance audits and are legally bound by Data Processing Agreements (DPAs).
  • Corporate Restructuring: In the event of a merger, acquisition, divestiture, or bankruptcy, Personal Data may be transferred as a corporate asset under strict, continued confidentiality obligations.
  • Law Enforcement & Public Safety: We will disclose data only when legally compelled by a valid subpoena, court order, or to protect the vital interests, physical safety, and intellectual property of JSRRB Technologies and its global clients.

7. International Data Transfers

As a global entity headquartered in India, JSRRB Technologies transfers data across international borders. To ensure legal compliance parity with the EU GDPR and UK GDPR:

  • Adequacy Decisions: We prioritize routing data through jurisdictions recognized by the European Commission as providing adequate protection.
  • Standard Contractual Clauses (SCCs): Where adequacy decisions are absent, we execute the latest unamended SCCs approved by the European Commission for all intra group and vendor data transfers.
  • Data Localization: Upon request, enterprise clients may opt for strict data localization (e.g., data residency entirely within the EU or India) pursuant to their specific Enterprise Service Agreement.

8. Enterprise Data Security Architecture

JSRRB Technologies implements military grade, defense in depth security measures to protect the confidentiality, integrity, and availability of your data:

  • Cryptographic Standards: All Personal Data is encrypted in transit using TLS 1.3 or higher and at rest utilizing AES-256 bit encryption.
  • Access Controls: We enforce strict Role Based Access Control (RBAC), multi factor authentication (MFA), and zero-trust network architectures for all internal employee access to client data.
  • Vulnerability Management: Our infrastructure is subjected to continuous automated penetration testing, heuristic anomaly detection, and annual third party SOC 2 Type II and ISO 27001 compliance audits.

9. Global Privacy Rights & Jurisdictional Addendums

Depending on your geographic location, you are granted extensive rights regarding your Personal Data under frameworks such as the GDPR (EU), CCPA/CPRA (California), and DPDP Act (India):

  • Right to Access & Portability: Request a comprehensive export of your Personal Data in a structured, commonly used, machine readable format.
  • Right to Rectification: Mandate the immediate correction of any inaccurate or incomplete Personal Data.
  • Right to Erasure: Request the deletion of Personal Data when it is no longer necessary for the purposes collected, subject to legal overrides.
  • Right to Object & Restrict: Object to data processing based on legitimate interests or request a freeze on processing during an active dispute.
  • Right to Non-Discrimination: Exercise your privacy rights without fear of service degradation, pricing penalties, or operational retaliation.

10. Data Retention Lifecycles

We retain Personal Data only for the duration required to fulfill the operational purposes outlined in this statement. Active subscription data is retained for the life of the contract. Upon termination, data is held in a suspended state for a maximum of 90 days before being subjected to cryptographic erasure, unless extended retention is mandated by financial compliance laws (typically 7 years).

11. Policy Modifications and Version Control

JSRRB Technologies reserves the right to dynamically update this Master Privacy Statement to reflect evolving global compliance laws, new AI capabilities, and architectural changes. Material changes will be communicated via direct email to corporate administrators and accompanied by an updated “Effective Date” at the top of this document.

12. Contact Our Data Protection Office

To exercise your Data Subject Access Rights (DSAR) or for exhaustive inquiries regarding our privacy architecture, contact our Global CDPO.

labs@jsrrb.com
JSRRB Technologies Headquarters, Mohali, India