Impaqt Robotics respects your privacy and is committed to protecting the personal data we collect and process. 

This Privacy Policy explains what information we collect, how we use it, and the rights available to you under applicable data protection laws, including the EU General Data Protection Regulation (GDPR) and India’s Digital Personal Data Protection Act, 2023 (DPDPA). 

By using our website, submitting a form, or engaging with our services, you agree to the practices described in this Policy. 

1. Definitions 

For clarity, the following terms are used throughout this Policy: 

• Personal Data – any information that relates to an identified or identifiable individual, such as name, email address, phone number, or online identifiers. 

  
  

• Processing – any operation performed on personal data, such as collection, storage, use, disclosure, or deletion. 

• Data Controller – the entity that determines the purpose and means of processing personal data. For this website, the Data Controller is Impaqt Robotics Private Limited. 

• Data Processor – a third party that processes personal data on behalf of Impaqt Robotics according to written instructions. 

• Consent – a clear, freely given, specific, informed, and unambiguous indication by which an individual agrees to the processing of their personal data. 

• GDPR – the General Data Protection Regulation (EU) 2016/679, governing data protection and privacy within the European Union. 

• DPDPA – the Digital Personal Data Protection Act 2023 (India), which regulates the processing of personal data within India. 

2. Who We Are 

This website is operated by: 

Impaqt Robotics Private Limited 

267, Kilpauk Garden Road, Chennai 600 010, India 

Email: privacy@impaqt-robotics.com 

Impaqt Robotics develops and manufactures modular robotic products and automation solutions, including pneumatic and vacuum interfaces, end-of-arm tooling, and palletizing systems designed to simplify and accelerate robot deployment. 

We collect and process personal data to provide information about our products, manage customer relationships, and improve our digital services. 

3. Scope of This Policy 

This Policy applies to: 

• Visitors to our website, 

• Individuals who contact us or complete forms, 

• Subscribers to our marketing communications, and 

• Representatives of our partners, customers, and suppliers. 

This Policy covers personal data collected through our website and marketing activities. 

 It does not apply to information processed as part of employment, supplier, or distributor relationships, or to external websites linked from this site. 

4. The Data We Collect 

We collect personal data only when necessary for a clear purpose. 

a) Information you provide 

When you interact with us (for example, through contact forms, email, or event sign-ups), we may collect: 

• Name and contact information (email, phone, company name, country) 

• Job title and business role 

• Message content or inquiry details 

• Marketing preferences and consent 

b) Information collected automatically 

When you visit our website, we may automatically collect: 

• IP address and general location (region/country) 

• Device type and browser information 

• Pages visited, time spent, and referring URLs 

• Cookie preferences and tracking data (see our [Cookie Policy]) 

c) Information from partners or public sources 

We may receive limited business contact data from public websites, trade shows, or partners who refer potential customers or distributors. 

We do not collect sensitive personal data (such as health, religious, or financial information). 

5. Purpose and Legal Basis for Processing 

We process personal data for the following purposes and under the legal bases described below: 

Purpose 

Type of Data 

Legal Basis 

Responding to inquiries or contact requests 

Contact details (name, email, phone, company, message) 

Legitimate interest (Art. 6(1)(f) GDPR) – to respond to requests and manage ongoing communication. 

Managing business and partner relationships 

Contact details, company information, correspondence 

Contract (Art. 6(1)(b) GDPR) – when needed to perform an agreement. 

Legitimate interest (Art. 6(1)(f)) – to maintain professional relationships. 

Sending newsletters or product updates 

Name, email, marketing preferences 

Consent (Art. 6(1)(a)) – users actively subscribe and may opt out at any time. 

Website analytics and improvements 

Technical and usage data collected via cookies or tracking tools 

Consent – required for non-essential cookies and analytics (see our [Cookie Policy]). 

Legal compliance and record keeping 

Business records, correspondence, mandatory identifiers 

Legal obligation (Art. 6(1)(c)) – to comply with statutory or regulatory requirements. 

You may withdraw consent at any time by contacting privacy@impaqt-robotics.com or using the unsubscribe link in our emails. 

Additional Basis under India’s Digital Personal Data Protection Act (DPDPA) 

For individuals or data processed within India, Impaqt Robotics processes personal data in accordance with the Digital Personal Data Protection Act, 2023 (DPDPA). 

Under this law, processing is based on: 

• Consent, obtained when individuals voluntarily provide their data (for example, through contact forms, subscriptions, or inquiries); or 

• Legitimate use, where processing is reasonably necessary for business operations such as responding to inquiries, fulfilling contracts, maintaining business records, or ensuring network and information security. 

All processing is carried out in good faith, for lawful purposes, and with due regard to the privacy of individuals as required by the DPDPA. 

6. Data Sharing and Processors 

We use trusted third-party service providers (“data processors”) to operate our website, manage marketing systems, and support internal collaboration. 

These processors handle data only on our behalf, under written agreements, and in full compliance with the GDPR and the Digital Personal Data Protection Act (DPDPA). 

Data Processor 

Purpose 

Brevo (Sendinblue SAS) 

Email marketing, automation, and newsletter distribution 

Google (Analytics, Workspace, Tag Manager) 

Analytics, website performance monitoring, and productivity tools 

Framer.io 

Website design, hosting, and performance tracking 

Strapi.io 

Content management and backend data storage 

Bluehost 

Domain and web hosting infrastructure 

LinkedIn Corporation 

Analytics, campaign tracking, and advertising insights 

All processors are bound by Data Processing Agreements (DPAs) or equivalent contractual safeguards that define security measures, data handling obligations, and limitations on data use. 

They are not permitted to access, use, or disclose personal data for any purpose other than delivering the contracted service to Impaqt Robotics. 

7. International Data Transfers 

Some personal data may be processed outside the European Union (EU), the European Economic Area (EEA), or India when our service providers or partners operate globally. 

Whenever such transfers occur, we ensure that appropriate safeguards are in place to maintain the same level of data protection as required under applicable law. 

We rely on one or more of the following mechanisms: 

• Standard Contractual Clauses (SCCs) approved by the European Commission; 

• Adequacy decisions issued by the European Commission or other competent authorities; or 

• Other legally recognized mechanisms that guarantee an equivalent level of protection. 

8. Data Retention 

We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, to comply with legal or contractual obligations, or to establish, exercise, or defend legal claims. 

Category of Data 

Purpose 

Retention Period / Criteria 

Inquiries and correspondence 

Responding to contact requests and managing follow-up communication 

Up to 12 months after the last interaction, unless a longer period is required for ongoing discussions or legal obligations 

Marketing contacts and newsletter subscriptions 

Providing marketing communications and product updates 

Until consent is withdrawn or after 24 months of inactivity, whichever comes first 

Business partner and customer records 

Maintaining contractual relationships and compliance documentation 

For the duration of the contract and up to 5 years thereafter, in accordance with accounting and legal record-keeping requirements 

Analytics and website usage data 

Understanding and improving website performance 

As described in our [Cookie Policy], typically up to 26 months for Google Analytics data 

Recruitment or event participation data (if applicable) 

Managing applications or event registrations 

Up to 12 months after process completion unless longer retention is required by law 

When personal data is no longer required, it is securely deleted, anonymized, or archived in accordance with our internal data retention policy and applicable legal standards. 

9. Data Security 

We apply appropriate technical and organizational measures to protect personal data against unauthorized access, loss, misuse, or alteration. 

These include: 

• Secure servers and encrypted connections (SSL/HTTPS) for all data transmissions 

• Access restrictions based on business roles and legitimate need 

• Regular monitoring for unauthorized activity or data misuse 

• Vendor safeguards, ensuring all service providers meet equivalent security standards 

• Incident response procedures for prompt investigation and notification in case of a data breach 

While we take reasonable precautions, no online transmission or storage system is completely secure. You use our website at your own risk. 

10. Your Rights 

You have the following rights regarding your personal data, which we respect in accordance with applicable data protection laws (including GDPR and relevant local laws): 

• Access – request confirmation and a copy of the personal data we hold about you 

• Correction – request correction of inaccurate or incomplete information 

• Deletion (“Right to be Forgotten”) – request that we delete your data where legally applicable 

• Restriction – request that we limit the processing of your data in certain circumstances (for example, while accuracy or purpose is being reviewed) 

• Withdraw consent – withdraw previously given consent for marketing or other non-essential processing at any time 

• Object – object to processing based on our legitimate interests 

• Portability – request a copy of your data in a structured, commonly used, machine-readable format 

• Complaint – lodge a complaint with your local data protection authority if you believe your rights have been infringed 

To exercise these rights, contact us at privacy@impaqt-robotics.com. 

We will respond within one month of receiving your request, in accordance with applicable data protection laws. 

If more time is needed due to complexity or volume of requests, we will inform you accordingly. 

11. Links to Other Websites 

Our website may contain links to partner or third-party websites for your convenience or reference. 

These sites operate independently and are governed by their own privacy policies. 

We are not responsible for the content, security, or data practices of third-party websites and services. 

We encourage you to review their privacy policies before providing any personal information. 

12. Changes to This Policy 

We may update this Privacy Policy from time to time to reflect changes in our operations, technology, or legal obligations. 

Significant updates will be posted on this page, and the “Last Updated” date at the top will indicate when the latest revision took effect. 

We encourage you to review this Policy periodically to stay informed about how we protect your personal data. 

13. Contact for Data Protection 

If you have any questions about this Policy or wish to exercise your rights, contact: 

Data Protection Contact 

Impaqt Robotics Private Limited 

Email: privacy@impaqt-robotics.com

Address: 267, Kilpauk Garden Road, Chennai 600 010, India 

Impaqt Robotics Private Limited is the data controller responsible for processing personal data as described in this Policy. 

We aim to respond to all verified requests within one month, as required by applicable data protection laws.