Intellectual

Privacy

Privacy policy.

How we handle personal data across this website, our chat, our contact forms, and the engagements that follow.

Last updated · 28 May 2026

1. Who we are

In this policy, “Intellectual”, “we”, “us” and “our” refer to the Intellectual technology group, which operates through the following legal entities:

  • Intellectual Computing Solutions Pvt Ltd — registered in India; engineering headquarters in Hyderabad.
  • Intellectual Information Technology Services LLC — registered in the United Arab Emirates; office in Abu Dhabi.

The data controller for personal data collected through this website is the Intellectual entity that engages with you. Where the engagement spans both entities, we operate jointly under this policy.

2. What data we collect

We collect different categories of personal data depending on how you interact with us.

Website visitors

  • Technical data — IP address (truncated where applicable), browser type, operating system, language, referrer, pages viewed, time on page, links clicked. Collected through server logs and our analytics tools.
  • Device and session data — when you grant analytics consent, we collect session recordings and heatmaps via Microsoft Clarity. Input fields are masked by default so we don’t capture what you type.

Contact and inquiry submissions

  • Name, organisation, email address, phone number where you provide it.
  • The content of your inquiry or message.
  • Any documents you attach (CVs to careers, RFP responses, capability briefs).

Chat interactions

  • Messages exchanged with our chat widget (Tidio / Lyro), session metadata, and any contact details you share during a chat. Tidio acts as our processor.

Client engagement data

  • Where we deliver services to your organisation, we process personal data of your staff, contractors, or end users under the terms of our master services agreement and any associated data processing addendum. That processing is governed by the engagement contract, not by this policy.

3. How we use it — purposes and lawful bases

Under the GDPR and equivalent frameworks, we rely on the following lawful bases:

  • Consent — for non-essential cookies (analytics, chat), marketing communications, and case study or testimonial usage.
  • Contractual necessity — for responding to your inquiry, delivering services we have agreed to provide, and managing the engagement.
  • Legitimate interest — for security monitoring of our infrastructure, fraud prevention, and limited analytics where we conduct a balancing assessment that confirms your interests don’t override ours.
  • Legal obligation — for retaining specific records (tax, employment, audit) for the periods required by applicable law.

Specific uses

  • Site operation and security — keeping the site available, defending against abuse, fixing issues. Legal basis: legitimate interest.
  • Analytics and improvement — understanding what content is useful, how the site is used, where it can be improved. Legal basis: consent.
  • Responding to inquiries — handling your messages and following up. Legal basis: contractual necessity (pre-contract) or consent.
  • Recruitment — assessing applications, scheduling interviews, communicating outcomes. Legal basis: contractual necessity (pre-employment).
  • Direct marketing — sending you our newsletter or relevant updates if you subscribe. Legal basis: consent. You may withdraw at any time.
  • Compliance and audit — meeting our obligations under tax, employment, and sector-specific laws. Legal basis: legal obligation.

4. Third parties and processors

We rely on the following third-party services. Each has its own privacy policy.

  • Google Analytics 4 + Google Tag Manager (Google Ireland Ltd / Google LLC) — website analytics. We have implemented Google Consent Mode v2 with default-denied for ad and analytics signals; tags load but emit cookieless pings until you consent.
  • Microsoft Clarity (Microsoft Corporation) — session recordings and heatmaps. Loaded only when you grant analytics consent. Input masking is configured at the project level.
  • Tidio / Lyro (Tidio Poland sp. z o.o.) — chat widget and AI assistant. Loaded only when you grant marketing consent.
  • Pagefind — static site search. Runs entirely in your browser; no data leaves your device.
  • Amazon Web Services (Amazon Web Services, Inc.) — site hosting via S3 and CloudFront. Standard access logs.
  • Anthropic (Anthropic, PBC) — model provider for some content workflows. No site visitor data is sent to Anthropic.

5. International transfers

Personal data we collect may be processed in countries other than the one in which it was collected, including India, the United Arab Emirates, the United States, and the European Union. Where data leaves the European Economic Area or the UK, we rely on appropriate safeguards including the European Commission’s Standard Contractual Clauses and any UK addendum, or equivalent transfer mechanisms recognised in the destination country’s adequacy framework.

6. Retention

We retain personal data only as long as needed for the purposes set out above, or as required by applicable law.

  • Server logs and analytics events — typically 14 months in GA4, configurable at the property level.
  • Session recordings (Clarity) — 30 days (Clarity default).
  • Contact-form submissions — retained for the duration of our communication plus 24 months for relationship continuity, unless you ask us to delete sooner.
  • Newsletter subscribers — until you unsubscribe, plus 90 days suppression to prevent accidental re-add.
  • Client engagement records — for the term of the engagement plus the statutory retention period for the relevant jurisdiction (typically 7 years for tax-related records).
  • Recruitment data — 12 months from application close unless you consent to longer retention for future roles.

7. Your rights

Depending on your jurisdiction, you have some or all of the following rights:

  • Access — request a copy of the personal data we hold about you.
  • Rectification — ask us to correct inaccurate or incomplete data.
  • Erasure — ask us to delete your data (subject to legal retention requirements).
  • Restriction — ask us to limit our processing in specific situations.
  • Portability — request a structured, machine-readable copy of data you provided.
  • Objection — object to processing based on legitimate interest, including direct marketing.
  • Withdraw consent — withdraw any consent you have given, at any time, with no effect on the lawfulness of processing carried out before the withdrawal.
  • Complain to a supervisory authority — under the GDPR, you may lodge a complaint with your national data protection authority. Under the UAE Federal PDPL, you may complain to the relevant UAE data protection authority. Under the India DPDPA, you may complain to the Data Protection Board.

To exercise any of these rights, email privacy@icsuniverse.com. We will respond within 30 days (60 days for complex requests). For California residents under CCPA/CPRA, the same address is our designated channel for Do Not Sell or Share My Personal Information requests.

8. Cookies

We use cookies and similar technologies. See our cookie policy for the complete list of cookies, providers, durations, and the consent categories they belong to. You can change your choices at any time:

9. Children

This website is not directed at children under 16, and we do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us at privacy@icsuniverse.com and we will delete it promptly.

10. Security

We implement technical and organisational measures designed to protect personal data against unauthorised access, loss, or disclosure. These include encryption in transit (HTTPS across the site), access controls aligned with the principle of least privilege, regular security review of the systems we operate, and contractual safeguards with our processors. No system is perfectly secure; we will notify you and the relevant authority of any data breach in accordance with the applicable timelines.

11. Changes to this policy

We will update this policy as our practices evolve. Material changes will be highlighted on this page; the “Last updated” date at the top reflects the most recent revision. For significant changes that affect your rights, we will notify subscribers via email and, where appropriate, by a notice on the site.

12. Contact

Privacy questions, data subject requests, and breach reports go to:

  • Email: privacy@icsuniverse.com
  • Data Protection Contact: Deepak Mantri
  • Postal addresses: see /contact for office details across India, the UAE, and the United States.

For service-specific data processing (where Intellectual is your processor under an MSA or DPA), please contact your delivery lead in addition to the address above.

Questions about your data?

Email privacy@icsuniverse.comCookie policy →