Intixus Technologies aligns its practices with Indian data protection and technology regulations, and with international norms where we serve global customers.
Information Technology Act, 2000
We comply with the IT Act 2000 and its amendments, including provisions on electronic records, digital signatures, and cyber offences. Our security practices are designed to meet the reasonable security standards expected under the Act.
Digital Personal Data Protection Act, 2023 (DPDP Act)
We are preparing for and implementing measures to comply with the DPDP Act 2023, including:
- Consent and purpose limitation
- Data minimisation
- Data accuracy and retention
- Security safeguards
- Individual rights (access, correction, erasure, grievance redressal)
- Responsible handling of children's data
IT (Reasonable Security Practices) Rules, 2011
We follow reasonable security practices and procedures for sensitive personal data as defined under the Rules. This includes documented policies, access controls, and security measures appropriate to the nature of data we process.
Secure Development Lifecycle
Our development processes include security considerations throughout the software lifecycle: requirements review, secure design, code review, testing, and deployment. We address known vulnerabilities promptly and maintain patching and update procedures.
Vendor Risk Assessment
Where we engage third-party vendors for hosting, analytics, or other services that process data, we assess their security and compliance posture. We use contracts and data processing agreements to ensure appropriate protection of data.
Future-Ready Approach
We monitor regulatory developments in India and internationally and adapt our practices as new laws and standards come into effect. For certifications (e.g., ISO 27001), we will make claims only when formally achieved and verified.
Compliance inquiries: compliance@intixus.com