Skip to Content

Privacy Policy

Wytmode Cloud Private Limited

Created Date: September 15, 2025

Last Reviewed Date: September 15, 2025



1. Introduction and Scope

Wytmode Cloud Private Limited (“Wytmode”, “we”, “us”, or “our”) is a technology company incorporated in India and operated under the legal name Wytmode Cloud Private Limited. We design and provide secure, privacy-centric software, staffing, workforce augmentation, and technology services for clients, candidates, employees, vendors, and partners around the world. Our registered office is located at #63, H Colony, 2nd Main, 1st Stage, Indira Nagar, Bengaluru (Karnataka, India) – 560038. This Privacy Policy is intended to explain in detail how Wytmode collects, uses, stores, transfers, and protects personal and professional data that comes under our care.

This Policy applies to all operations and services offered by Wytmode. It covers our enterprise services, SaaS-based technology solutions, staffing and workforce services, and all our corporate websites, product websites, mobile and desktop applications, APIs, and customer support systems. The Policy is designed to provide clarity and transparency so that our clients, users, and partners understand our approach to privacy and data protection.

Wytmode structures its privacy program in alignment with leading data protection regulations including the European Union General Data Protection Regulation (GDPR), the UK GDPR and Data Protection Act, the California Consumer Privacy Act as amended by the CPRA, India’s Digital Personal Data Protection Act of 2023, and other applicable regimes globally such as Brazil’s LGPD, Canada’s PIPEDA, Singapore’s PDPA, and South Africa’s POPIA. Although Wytmode is not formally certified under GDPR or ISO 27001, our practices and policies are aligned with their standards and reflect our strong commitment to responsible data management.


2. Definitions and Key Terms

For the purposes of this Policy, the term Personal Data refers to any information that relates to an identified or identifiable individual. This includes, but is not limited to, names, addresses, phone numbers, email addresses, government-issued identification numbers, IP addresses, geolocation data, and factors specific to the identity of a natural person.

Professional or Business Data refers to information that relates to an individual’s or an organization’s professional activities in the context of our services. Examples include resumes, employment history, project details, statements of work, business proposals, and other records supplied to us in the course of business.

Sensitive Data is defined as categories of information that require heightened safeguards under applicable law. Such data may include health records, government identifiers, financial account details, biometric identifiers, race or ethnic origin, religious beliefs, political opinions, or sexual orientation.

The term Data Subject means any individual whose personal data is processed by Wytmode. This may include employees, candidates, clients, users of our platforms, contractors, vendors, and visitors to our websites.

Controller refers to Wytmode when we determine the purpose and means of processing personal data. In some cases, Wytmode also acts as a Processor, for example when we process data on behalf of a client in accordance with their explicit instructions.

Third Parties or Sub-processors are external organizations engaged to support our services, such as hosting providers, authentication services, analytics platforms, and payment processors. These parties operate under strict contractual agreements and confidentiality obligations to safeguard the data entrusted to them.


3. Collection of Personal Data

Wytmode collects personal data from a variety of sources. The majority of data comes directly from individuals when they engage with our services, create accounts, submit resumes, fill out forms, communicate with us, or enter into contracts. We also collect data automatically when individuals interact with our websites or applications, such as through cookies and telemetry data that record device information, IP addresses, and browsing patterns. Additionally, we may obtain data from trusted partners, background screening providers, clients, or publicly available sources, but always in accordance with applicable law.

In the context of our staffing and workforce services, we collect and process candidate information such as resumes, identification documents, educational and employment history, background verification details where permitted, immigration compliance data, payroll and benefits information, and performance-related records. For employees, we also process HR records necessary to manage lawful employment relationships. For clients, we process contractual details, invoicing data, project requirements, and communications necessary to deliver our services.

When dealing with vendors, suppliers, and partners, Wytmode collects organizational details, tax and payment records, banking information, and compliance attestations. This allows us to manage financial transactions, ensure compliance with law, and maintain secure business relationships.

Through our websites and digital platforms, we may collect telemetry and technical information such as device type, browser version, operating system, session identifiers, timestamps, referrer information, and interaction logs. This information enables us to improve service reliability, maintain security, and enhance the user experience. Where legally required, we seek consent for non-essential analytics or marketing cookies and always honor user choices.


4. Purpose and Use of Data

The personal and professional data collected by Wytmode is used only for specified and legitimate purposes. For staffing and workforce-related services, we use data to evaluate candidates, conduct interviews, carry out background checks where lawful, onboard and pay employees, allocate personnel to client projects, administer benefits, and comply with employment and tax regulations. Data is also used to maintain reporting and audit records for clients and regulators.

For our client relationship and account management activities, data is used to manage contracts, billing, and customer support. It also enables us to respond to inquiries, provide service notices, and maintain accurate records of communications.

Where permitted by law, we may use contact details for marketing and communications. This includes sending service updates, security advisories, product announcements, or educational content. Such communications are always subject to applicable consent or opt-out rights, and individuals may withdraw consent at any time.

Wytmode also processes data to maintain and enhance the security of our systems. We use data to prevent fraud and abuse, conduct logging and monitoring, manage vulnerabilities, and comply with regulatory requirements. Our use of data for these purposes is carefully balanced with the rights and freedoms of individuals.


5. Lawful Basis for Processing

Wytmode processes personal data on several legal bases. First, we process data when it is necessary for the performance of a contract, including the provision of staffing, workforce, or technology services to clients and users. Without this processing, we would be unable to deliver the services requested.

Second, we process data to comply with legal obligations such as employment law, tax regulations, immigration requirements, and data protection statutes.

Third, where required by law, we rely on consent for certain processing activities such as marketing communications, cookie-based tracking, or processing sensitive categories of personal data. Consent is always freely given, specific, and can be withdrawn at any time.

Finally, Wytmode relies on legitimate interests to process data for purposes such as service improvement, fraud prevention, and efficient operations. In doing so, we carefully balance our interests against the rights and expectations of data subjects and implement safeguards to minimize impact.


6. Data Retention and Minimization

Wytmode retains data only for as long as it is necessary to fulfill the purposes for which it was collected or as required by law. For workforce-related data, this generally means retention for the duration of an engagement and for legally mandated periods thereafter. Candidate profiles may be retained for a limited period to consider individuals for future opportunities, subject to applicable rights and opt-out requests.

Vendor and partner data is retained for the duration of the contractual relationship and for the periods required by audit and tax regulations. Where data is no longer required, it is securely deleted or anonymized.

We apply the principle of data minimization across all operations. This means we collect only the data that is necessary, design our systems with privacy in mind, and periodically review data collection practices to remove unnecessary or redundant records.



7. Data Sharing and Disclosures

Wytmode recognizes that personal and professional data entrusted to us must be handled with the highest level of confidentiality. Data is shared only when it is necessary, proportionate, and lawful to do so. Within Wytmode, personal data may be accessed by authorized teams for legitimate business purposes such as centralized security, billing, legal compliance, customer support, and service delivery. Access is always restricted on a strict need-to-know basis and governed by least-privilege principles to reduce unnecessary exposure.

We also share data with our clients when it is essential to evaluate candidates, manage assignments, or fulfill contractual obligations. In such cases, information is provided under confidentiality agreements and for the sole purpose of delivering services. Similarly, we may disclose information to vendors, suppliers, or partners who provide infrastructure, authentication services, payroll processing, cloud hosting, analytics, customer support, or other business functions. Every third-party provider is carefully vetted, contractually bound to protect confidentiality, and required to adhere to strong security and compliance standards.

Where specific services depend on third-party platforms, we may engage sub-processors such as cloud hosting providers, authentication vendors, or database services. These sub-processors operate exclusively under our instructions and are bound by data processing agreements that require them to implement technical and organizational safeguards consistent with global privacy requirements.

Wytmode may also be required to disclose personal data in response to lawful requests by courts, government agencies, or regulators. Such disclosures are evaluated carefully to ensure compliance with applicable law, and overbroad or unlawful demands are challenged wherever feasible. In cases involving international transfers, we employ mechanisms such as Standard Contractual Clauses, adequacy decisions, and binding contractual safeguards to ensure that the data continues to receive appropriate protection outside its country of origin.


8. International Data Transfers

Because Wytmode provides services to clients, users, and partners globally, it may be necessary to transfer personal data across international borders. Such transfers are undertaken only where required for hosting, support, security monitoring, or cross-border team collaboration. Internal transfers within Wytmode’s operations are governed by internal policies that require the same high standards of protection regardless of the geographic location of the data.

Data may also be transferred to clients or affiliates located outside the country of origin when this is required for contract performance or to provide project support. All such transfers are limited in scope, subject to confidentiality obligations, and bound by data protection requirements equivalent to those in this Policy.

When data is transferred from regions with stricter laws, such as the European Economic Area or the United Kingdom, we rely on approved mechanisms including the European Commission’s Standard Contractual Clauses, the UK’s International Data Transfer Addendum, and, where available, adequacy decisions recognizing certain jurisdictions as providing an adequate level of protection. Where necessary, supplementary measures such as encryption and access restrictions are applied to mitigate legal or surveillance risks.

Wytmode continually monitors international developments in data protection law to ensure that our safeguards remain valid and effective. By applying binding legal and contractual instruments, we ensure that the fundamental rights of individuals are respected regardless of where their data is processed.


9. Security of Processing

Wytmode places information security at the heart of its operations. Our systems are designed with the objective of ensuring confidentiality, integrity, and availability at every stage of data processing. Technical safeguards include the use of encryption technologies such as TLS for data in transit and strong encryption protocols for data at rest. Our infrastructure is further protected by network segmentation, firewalls, intrusion detection and prevention systems, hardened configurations, continuous logging, and rate-limiting measures to defend against abuse or malicious attacks.

Organizational safeguards complement these technical measures. Wytmode maintains written information security policies and requires all employees, contractors, and vendors to comply with strict confidentiality obligations. Staff undergo background checks where legally permitted, and all personnel receive ongoing training in security and privacy best practices. Oversight is exercised by senior leadership, who ensure that risks are identified, incidents are tracked, and remedial measures are promptly applied.

Access to systems and data is strictly controlled. Wytmode enforces least-privilege access, role-based permissions, multi-factor authentication, periodic access reviews, and credential rotation. Administrative access to production environments is monitored and segregated to prevent misuse.

In the unlikely event of a security incident, Wytmode follows a documented incident response plan that covers detection, containment, eradication, and recovery. Where required by law, affected individuals and regulatory authorities are notified without undue delay, and detailed remedial guidance is provided. Continuous improvement is embedded in our practices through regular audits, vulnerability testing, and corrective actions aligned with ISO/IEC 27001 principles.


10. Rights of Data Subjects

Wytmode respects the fundamental rights of individuals to control their personal data. Data subjects have the right to request access to the personal information that we hold about them. Upon verification of identity, we will provide a copy of the data along with details about how it is processed.

Individuals also have the right to request rectification of inaccurate or incomplete data. Corrections are promptly applied, and where appropriate, updates are propagated to downstream systems or vendors. In certain circumstances, individuals may exercise their right to erasure, also known as the “right to be forgotten.” This applies when data is no longer necessary, consent is withdrawn, or processing is unlawful. Where erasure is not possible due to legal obligations, the data is restricted to the minimum required for compliance.

Data subjects may request the restriction of processing while disputes are resolved or object to processing that is based on legitimate interests or used for direct marketing. Wytmode will honor such objections unless overriding legal grounds exist. Where applicable, individuals also have the right to data portability, allowing them to receive their data in a structured, machine-readable format and transmit it to another controller.

We recognize rights related to automated decision-making and profiling, and individuals can request meaningful information about the logic involved and human review where such processing has significant effects.

All rights requests can be exercised by contacting Wytmode via email at legal@wytmode.com, by phone at (+91) 8884557972, or by mail at our registered office. We respond within legally mandated timelines, normally within one month, and may request additional verification to ensure security.



11. Cookies and Digital Tracking

Wytmode uses cookies and similar technologies to provide essential functionality, maintain secure sessions, and enhance the user experience. Cookies allow us to remember preferences, balance server loads, and deliver consistent performance. We also use analytics cookies to understand how users interact with our services, diagnose errors, and improve reliability. Where permitted, marketing cookies may be used to deliver tailored communications and measure engagement with our services.

We distinguish between essential cookies, which are strictly necessary for the functioning of our services, and non-essential cookies, which operate only with a valid legal basis such as user consent. Users are given clear options to manage cookie preferences through browser settings or consent management tools provided on our platforms. Wytmode also honors legally recognized signals, such as global privacy controls, where supported by law.

It should be noted that disabling certain categories of cookies may impact service performance or limit available features. Nevertheless, Wytmode ensures that essential services remain accessible even where optional cookies are declined.


12. Vendor and Sub-processor Management

Wytmode relies on a trusted network of vendors and sub-processors to deliver and support its services. We take careful steps to select partners that demonstrate strong technical competence, reliable service delivery, and proven security and privacy safeguards. Before engaging a vendor, we conduct due diligence through questionnaires, reviews of documentation, and risk assessments proportionate to the nature of the services provided.

All vendor relationships are governed by written contracts that include confidentiality obligations, data protection clauses, incident notification requirements, and provisions for audit or attestation. Where a vendor acts as a sub-processor, we enter into Data Processing Agreements to ensure that obligations flow down in line with applicable law.

Our responsibility does not end with vendor onboarding. Wytmode engages in continuous monitoring of vendor performance and compliance. We review vendor certifications, assess changes in ownership or geographic footprint, and evaluate risk evidence on a periodic basis. Where material issues are identified, we require corrective actions and may terminate relationships to protect the rights of data subjects and the integrity of our services.



13. Accountability and Governance

At Wytmode, accountability is central to the way we handle personal and professional data. Responsibility for data protection begins at the leadership level and extends to every employee, contractor, and partner who processes data on our behalf. Our senior leadership team provides oversight and ensures that privacy and security are embedded into business strategy, product design, and day-to-day operations.

We maintain a governance structure that assigns clear roles for privacy and security. Product teams are responsible for implementing privacy-by-design principles, the human resources team ensures compliance with employment-related data protection requirements, the finance team handles data related to payments and taxation in line with regulatory expectations, and the legal and compliance team monitors adherence to applicable laws and contractual commitments. All staff members are required to act responsibly and in accordance with this Privacy Policy.

Where applicable law requires the appointment of a Data Protection Officer or equivalent role, Wytmode designates a qualified individual with the authority and resources necessary to monitor compliance, provide advice on obligations, and act as a point of contact for supervisory authorities and data subjects. The Data Protection Officer’s role is to ensure that data subjects’ rights are respected and that privacy is safeguarded at every stage of processing.

To maintain transparency and accountability, Wytmode conducts internal audits, risk assessments, and program reviews at regular intervals. These reviews evaluate the effectiveness of our controls, test our readiness for incidents, and ensure that our practices remain aligned with evolving laws and standards. We maintain detailed records of processing activities that describe the categories of data collected, the purposes of processing, the recipients of data, the duration of retention, and the safeguards applied. These records are critical for demonstrating compliance and for responding to inquiries from regulators or clients.


14. Policy for Minors and Sensitive Data

Wytmode’s services are designed primarily for adults and business professionals, and we do not knowingly collect personal data from children under the minimum age required by applicable law. Accounts and services may not be created by or for minors without verified parental or guardian consent where permitted. If we discover that data belonging to children has been inadvertently collected, we take immediate steps to delete such information and prevent further processing.

With regard to sensitive categories of data, Wytmode exercises particular care. Sensitive Data may include government identifiers, financial information, health data, biometric identifiers, racial or ethnic details, political opinions, religious beliefs, or union membership. We process such data only when it is strictly necessary and lawful, such as in the context of employment, benefits administration, health and safety obligations, or compliance with legal requirements. Sensitive data is subject to enhanced security measures, strict access control, and purpose limitation to ensure that risks are minimized and privacy is preserved.


15. Complaints and Grievances

Wytmode takes privacy concerns seriously and encourages individuals to contact us directly with any complaints or grievances. We are committed to addressing concerns promptly and fairly. Complaints may be submitted by email to legal@wytmode.com, by calling us at (+91) 8884557972, or by writing to our registered office address. Our privacy and compliance teams investigate all complaints thoroughly, and we aim to resolve issues as quickly as possible through direct engagement with the concerned individual.


If a complaint cannot be resolved internally, individuals have the right to escalate their concerns to the relevant supervisory authority in their jurisdiction. For example, residents of the European Union may contact their national Data Protection Authority, individuals in the United Kingdom may contact the Information Commissioner’s Office, California residents may contact the California Privacy Protection Agency, and Indian residents may escalate issues to the Data Protection Board of India under the Digital Personal Data Protection Act.

Wytmode fully cooperates with regulators, provides transparent responses to inquiries, and implements remedial actions when required by law or regulatory decision. Our approach to complaints handling and regulatory engagement reflects our commitment to accountability, transparency, and respect for the rights of individuals.


16. Updates to this Privacy Policy

Privacy is an evolving area of law and practice, and Wytmode is committed to keeping this Policy up to date. We review our Privacy Policy regularly to reflect changes in legislation, technology, and business operations. Reviews include input from our legal, compliance, product, and security teams to ensure accuracy and completeness.

When significant updates are made to this Policy, Wytmode communicates these changes in a transparent manner. Notices may be provided through our websites, within our applications, or via direct communications where appropriate. The “Last Reviewed On” date at the beginning of this Policy indicates the most recent update. Continued use of our services after changes are published signifies acceptance of the revised terms.

Wytmode maintains version control for all iterations of this Privacy Policy and archives past versions to demonstrate compliance over time. Upon request, we may provide copies of prior versions to clients, partners, or regulators when legally appropriate.


17. Contact Information

Wytmode Cloud Private Limited is headquartered at #63, H Colony, 2nd Main, 1st Stage, Indira Nagar, Bengaluru (Karnataka, India) – 560038. For all matters related to privacy, individuals may contact us by phone at (+91) 8884557972 or by email at legal@wytmode.com.


All product and service privacy inquiries are directed internally to the appropriate teams while maintaining confidentiality and access control. Where a Data Protection Officer or equivalent role has been appointed under applicable law, their contact details will be made available upon request or through official publications.


Closing Statement

This Privacy Policy reflects Wytmode’s commitment to protecting personal and professional data in line with global standards. By using our services, clients, candidates, employees, vendors, and partners acknowledge the practices described in this Policy. Wytmode remains dedicated to continual improvement, accountability, and transparency in all aspects of data protection.