Data Controller:

Infosec First
Address: 105, Flora Apartments, Banjara Hills Road Number 2, Hyderabad 500034, Telangana, India
Email: admin@infosecfirst.com

​

Infosec First determines the purposes and means of processing your Personal Information and acts as a “data controller,” “business,” or the equivalent term as defined by applicable laws and regulations.

This Privacy Policy applies to:

​

• Visitors to our website: https://infosecfirst.com

• Individuals who submit Personal Information to us in connection with our recruitment services or job applications

• Clients or potential clients providing Personal Information in order to learn more about or procure our services

A. Information You Provide Directly
Account Registration:

• Name, email address, password, country, city, phone number, and company/organization details if you create an account or sign up on our website.

​

CV/Resume Submissions:

• Name, contact details (email address, mobile number), employment history, educational qualifications, references, salary details, visa and work status, and any other information you choose to include in your CV or résumé.

• Photographs or identification documents if voluntarily provided.

Contact/Inquiry Forms:

• Name, email address, phone number, and additional information if you reach out via a “Contact Us” form or similar inquiry mechanism.

• Communication records, including messages, feedback, or requests.

​

Surveys and Forms:

• Responses to questionnaires, preference forms, or other voluntary surveys.

B. Information We Collect Automatically
Log Information:

• Internet Protocol (IP) address, browser type, operating system, referring URLs, page views, and timestamps when you visit or interact with our website.

Cookies and Similar Technologies:

• We use cookies and other tracking technologies to improve website performance, personalize content, and analyze how you interact with our site. For details, see Section 8 (Cookies & Tracking).

Device and Location Data:

• General device information (e.g., device model, OS, unique identifiers) and approximate location (e.g., city-level geolocation) if enabled on your device.

​

C. Information from Third Parties
Publicly Available Sources:

• We may collect information about you from publicly accessible sources if permitted by law (e.g., LinkedIn profiles, online portfolios).

• Social Media Integration: If you choose to link or sign in with a social media account, we may access certain information authorized by that service (e.g., profile information, contact list).

​

Recruitment Service Partners:

• We may receive candidate information from recruiters or job boards where you have posted your CV.

​

We process your Personal Information for the following purposes, subject to applicable laws:

​

Providing Services

• Facilitate your job application process, match you with potential employers or roles, and send you relevant job alerts or career updates.

• Deliver our consulting or security-related services upon request.

Account Management & Customer Support

• Create and maintain your account on our website or service platform.

• Respond to your inquiries, requests, and feedback.

Recruitment & Employment

• Assess your suitability for employment or collaboration with Infosec First Private Limited or our clients/partners.

• Communicate with you regarding interviews, offers, or other recruitment steps.

Website Enhancement

• Improve website functionality, user experience, and content offerings.

• Conduct research, analytics, and statistical reporting on site usage.

Marketing & Communications

• Send you information about our services, new features, events, or promotions (only where permitted by law or based on your consent).

• Provide job recommendations and other career-related communications.

Legal Compliance & Enforcement

• Detect, investigate, or prevent fraud, malicious activity, or violations of our Terms and Conditions.

• Comply with legal obligations, respond to lawful requests, or protect our rights and interests (e.g., in litigation or regulatory proceedings).

Business Operations

• Conduct internal audits, data analysis, and research to improve operational efficiency.

• Support potential merger, acquisition, financing, or sale of all or part of our business (with necessary confidentiality obligations).

Depending on your jurisdiction (e.g., if the General Data Protection Regulation (GDPR) applies), we rely on one or more of the following lawful bases for processing your Personal Information:

​

Consent:

• Where you have given explicit consent (e.g., subscribing to marketing communications, submitting your CV).

​

Contractual Necessity:

• To fulfill our contractual obligations or process your requests (e.g., providing our services, responding to a job application).

​

Legitimate Interests:

• For our (or a third party’s) legitimate interests, provided they do not override your fundamental rights and freedoms (e.g., improving our services, fraud prevention).

​

Legal Obligations:

• To comply with a legal requirement (e.g., responding to a court order).

We restrict access to your Personal Information to only those personnel and third parties who need it for the purposes described in this Privacy Policy. We may share your Personal Information in the following ways:

​

Within Infosec First

• With employees or consultants who require the data to perform their job functions or provide services on our behalf.

​

Potential Recruiters/Employers

• If your CV or application matches a job description/vacancy, we may forward it to relevant recruiters, hiring managers, or clients, but only with appropriate confidentiality obligations.

​

Service Providers and Vendors

• Third-party service providers we engage to assist with IT infrastructure, analytics, marketing, payment processing, or other operational tasks, under written agreements requiring them to safeguard your data.

​

Business Transfers

• If we engage in or are subject to a merger, acquisition, financing, reorganization, or sale of all or part of our business, we may transfer user data as part of that transaction, subject to confidentiality.

​

Legal and Regulatory Disclosures

• To comply with applicable laws, regulations, legal processes, or enforceable governmental requests.

• To protect our rights, privacy, safety, or property, or that of our users and affiliates (e.g., enforcing our Terms and Conditions).

Consent

• Where you have expressly given us permission to share your data with specific entities or for specific purposes.

​

We do not sell, rent, or otherwise disclose your Personal Information for monetary or other valuable consideration.

If you reside outside India, be aware that we may transfer your Personal Information to India or other jurisdictions where our servers or third-party service providers are located. We will take all steps reasonably necessary to ensure your data is protected according to this Privacy Policy and applicable data protection laws (e.g., using EU Standard Contractual Clauses or equivalent measures, if relevant).

We use cookies and similar technologies (e.g., web beacons, pixel tags) to collect information automatically. This helps us:

​

• Remember your preferences and improve user experience

• Analyze site traffic and performance

• Deliver targeted content and communications (if applicable)

You can control or disable cookies through your browser settings, though certain website features may not function properly if you do so. For more information on how we use cookies, please refer to our Cookie Policy.

We retain your Personal Information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or comply with applicable legal, regulatory, contractual, or statutory obligations.

​

CVs and Employment Data:

• We may retain these for a defined period (e.g., 1–2 years) in case of future opportunities, unless you request deletion sooner.

Account Data:

• Retained as long as you have an active account, or as otherwise required by law.

Marketing Communications:

• Stored until you opt out or request deletion.

Once the retention period expires, or upon verified request, we will securely delete or anonymize your Personal Information, unless we are required to retain it for legal reasons.

Depending on your jurisdiction, you may have certain rights regarding the Personal Information we hold about you. These can include:

​

Access:

• Request a copy of your Personal Information.

​

Rectification:

• Ask us to update or correct inaccurate data.

​

Erasure (Right to be Forgotten):

• Request deletion of your data, subject to certain exceptions.

​

Restriction of Processing:

• Ask us to limit how we process your data.

Data Portability:

• Receive your Personal Information in a machine-readable format or request its transfer to another provider.

Objection:

• Object to certain processing activities, such as direct marketing.

Withdrawal of Consent:

• If processing is based on consent, you can withdraw at any time (this does not affect the lawfulness of processing prior to withdrawal).

​

To exercise these rights, please contact us (see Section 15). We may need to verify your identity to fulfill your request. Note that these rights are subject to limitations under applicable law.

Our website and services are intended for users who are at least 18 years old. We do not knowingly collect or process Personal Information from minors under 18 years of age without appropriate consent from a parent or legal guardian. If you become aware of any data we may have collected from a minor without proper consent, please contact us immediately.

We take appropriate technical and organizational measures to protect your Personal Information from loss, misuse, unauthorized access, disclosure, alteration, or destruction. Examples include:

​

• Encryption of data in transit or at rest (where applicable)

• Regularly updated security protocols and secure servers

• Employee access controls and confidentiality obligations

• Use of reputable third-party data centers with robust security certifications

Despite our efforts, no security measure is 100% foolproof. By using our website or services, you acknowledge that any transmission of data is at your own risk.

Our website may contain links to third-party websites, plug-ins, or services that are not operated by us. We are not responsible for the privacy practices or content of those third parties. We encourage you to review the privacy policies of any third-party sites or services you visit.

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we do, we will revise the Last Updated date at the top. If changes are material, we may provide additional notice (e.g., a prominent statement on our website or an email to registered users). We encourage you to review this page periodically for the latest information on our privacy practices.

If you have any questions, concerns, or complaints regarding this Privacy Policy or our handling of your Personal Information, or if you wish to exercise your data protection rights, please contact our Grievance Officer (or Data Protection Officer, if required by law):

​

Grievance Officer
Infosec First
105, Flora Apartments, Banjara Hills Road Number 2,
Hyderabad 500034, Telangana, India

Email: admin@infosecfirst.com

We will respond to your request within a reasonable timeframe, as required by applicable law.

No Guarantee:

While we take every reasonable step to secure your Personal Information, we cannot fully guarantee its absolute security due to inherent risks of data transmission or storage.

​

Unrequested Information:

If you choose to share Personal Information that we have not expressly requested (e.g., overly sensitive or extraneous data), we are not liable for any security breach or disclosure related to such information.

​

Legal Advice:

This Privacy Policy does not constitute legal advice. Please consult a legal professional to ensure full compliance with applicable data protection laws.

​

By continuing to use our website and services, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use immediately.