1. Who we are

SanmigGRC Technologies Private Limited (“SanmigGRC”, “we”, “us”) operates this website and provides Governance, Risk and Compliance (GRC), audit and AI-governance advisory services to regulated entities in India and globally.

2. Data we collect

• Identifiers you submit through forms (name, email, phone, organisation).
• Inbound communications (email, scheduled meeting requests, transcripts you share).
• Technical data (IP, user-agent, page views) limited to operating the site securely.

3. Lawful purposes

We process personal data to (a) respond to enquiries and deliver requested services, (b) maintain audit, security and regulatory records, (c) comply with applicable law including the Digital Personal Data Protection Act, 2023.

4. Retention

Lead and engagement records are retained for the period required to discharge our services, statutory record-keeping and BFSI regulatory expectations, and are then securely deleted or anonymised.

5. Rights of Data Principals

You may request access, correction, erasure, grievance redressal or withdrawal of consent in line with the DPDP Act. Write to sanjeev1911@gmail.com. We respond within statutory timelines.

6. Sharing

We do not sell personal data. Limited sharing occurs only with vetted sub-processors (e.g. cloud, email infrastructure, calendaring) bound by confidentiality and DPDP-aligned data-processing terms.

7. Security

See our Security page for technical and organisational measures, including encryption in transit and at rest, role-based access, audit logging and SLA-bound incident response.

8. Grievance Officer

Sanjeev Bhardwaj, Founder & CEO, SanmigGRC Technologies Private Limited. sanjeev1911@gmail.com