Privacy Policy

Overview

This Privacy Policy explains how Sajeesh Rajan ("I", "me", or "my") collects, uses, and protects your personal information when you visit my website, use my services, or communicate with me regarding web development, technology consulting, and related services.

Information I Collect

I may collect the following types of information:

• 📝
  Contact Information: Name, email address, phone number, company name, and location when you contact me through forms, email, or other communication channels.
• 💼
  Project Information: Details about your project requirements, business needs, budget, and technical specifications.
• 🌐
  Website Usage Data: IP address, browser type, device information, pages visited, time spent on pages, click patterns, referral sources, and general geographic location.
• 📊
  Analytics Data: User behavior patterns, session recordings, heatmaps, scroll depth, form interactions, and website performance metrics collected through Google Analytics and Microsoft Clarity.
• 💬
  Communication Records: Records of our conversations, emails, and meetings related to your projects and services.
• 🔍
  Search Console Data: Search queries, website performance in search results, and technical website data through Google Search Console.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google LLC ("Google"), to help understand how visitors interact with the website.

• 📈
  Data Collected: Google Analytics collects information about your website usage, including pages visited, time spent, bounce rate, traffic sources, device information, and approximate location.
• 🍪
  Cookies Used: Google Analytics uses cookies (like _ga, _gid, _ga_*) to distinguish unique users and track user sessions across visits.
• 🛡️
  Privacy Settings: I have configured Google Analytics with privacy-friendly settings, including IP anonymization and data sharing restrictions where applicable.
• 🚫
  Opt-Out Options: You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on or by adjusting your cookie preferences.

For more information about Google Analytics privacy practices, please visit Google's Privacy Policy.

Microsoft Clarity

This website uses Microsoft Clarity, a user behavior analytics service provided by Microsoft Corporation, to better understand user interactions and improve website experience.

• 📹
  Session Recordings: Clarity may record user sessions, including mouse movements, clicks, scrolling, and page interactions to help identify usability issues.
• 🔥
  Heatmaps: The service generates heatmaps showing where users click, scroll, and focus their attention on the website.
• 🛡️
  Privacy Measures: Microsoft Clarity automatically masks sensitive information like passwords, credit card numbers, and personally identifiable information in recordings.
• ⚙️
  Data Processing: Clarity data is processed in accordance with Microsoft's privacy standards and is used solely for website optimization purposes.

For more information about Microsoft Clarity's privacy practices, please visit Microsoft's Privacy Statement.

Google Search Console

I use Google Search Console to monitor and maintain my website's presence in Google search results and to identify technical issues.

• 🔍
  Search Performance Data: Information about how my website appears in search results, including search queries, impressions, clicks, and ranking positions.
• 🔧
  Technical Monitoring: Website crawling data, indexing status, mobile usability, and Core Web Vitals performance metrics.
• 👤
  User Impact: This service primarily processes website technical data and search performance metrics rather than individual user data.
• 📊
  Data Usage: Search Console data is used exclusively for website optimization, technical maintenance, and improving search engine visibility.

GDPR Compliance

As I operate internationally and serve clients in the European Union, I am committed to compliance with the General Data Protection Regulation (GDPR). This section outlines your rights and my obligations under GDPR.

• ⚖️
  Lawful Basis: I process personal data based on legitimate interests (service delivery), contractual necessity (client agreements), consent (marketing communications), and legal obligations.
• 🛡️
  Data Protection Principles: I ensure data processing is lawful, fair, transparent, purpose-limited, accurate, storage-limited, and secure with appropriate integrity and confidentiality.
• 🌍
  International Transfers: When transferring data outside the EU, I ensure adequate protection through standard contractual clauses, adequacy decisions, or other approved mechanisms.
• 📋
  Data Protection Impact Assessments: I conduct privacy impact assessments for high-risk processing activities to ensure appropriate safeguards.
• 🚨
  Breach Notification: In the unlikely event of a data breach, I will notify relevant authorities within 72 hours and affected individuals without undue delay when required.

How I Use Your Information

Your information is used solely for legitimate business purposes:

• 🤝
  Service Delivery: To understand your requirements, provide quotes, and deliver web development and consulting services.
• 📞
  Communication: To respond to your inquiries, provide project updates, and maintain professional relationships.
• 📈
  Website Optimization: To analyze website usage patterns, improve user experience, and optimize website performance through analytics tools.
• 🔍
  SEO & Marketing: To improve search engine visibility, content relevance, and targeted marketing efforts based on aggregated analytics data.
• ⚖️
  Legal Compliance: To comply with applicable laws and regulations in UAE, India, UK, Singapore, Saudi Arabia, and EU data protection requirements.

Data Protection & Security

I implement appropriate technical and organizational measures to protect your personal information:

• 🛡️
  Secure Storage: Data is stored securely using industry-standard encryption and security protocols with regular security updates and monitoring.
• 🔑
  Access Control: Strict access controls ensure only authorized personnel can access personal information, with regular access reviews and multi-factor authentication.
• 🌐
  Secure Transmission: All data transmission is encrypted using SSL/TLS protocols, and secure communication channels are used for sensitive information.
• 🗂️
  Data Minimization: I only collect and retain information that is necessary for providing services, with regular data audits and deletion of unnecessary information.
• 🔄
  Regular Backups: Secure, encrypted backups are maintained with appropriate retention periods and tested recovery procedures.

Information Sharing

I do not sell, trade, or rent your personal information to third parties. Information may only be shared in the following limited circumstances:

• 🤝
  Service Partners: With trusted partners (like Google Analytics, Microsoft Clarity, hosting providers) who assist in service delivery, under strict data processing agreements and privacy-compliant terms.
• ⚖️
  Legal Requirements: When required by law, legal process, or to protect rights, property, or safety, with appropriate legal basis and minimal disclosure.
• ✅
  With Your Consent: When you explicitly authorize information sharing for specific purposes, with clear consent mechanisms and withdrawal options.
• 🔄
  Business Transfers: In the unlikely event of business sale or merger, with advance notice and continued privacy protection commitments.

Your Rights Under GDPR

Under the GDPR, you have comprehensive rights regarding your personal information. I am committed to facilitating the exercise of these rights:

• 👁️
  Right of Access: Request confirmation of processing and obtain a copy of your personal data, including details about processing purposes and recipients.
• ✏️
  Right to Rectification: Request correction of inaccurate or incomplete personal information without undue delay.
• 🗑️
  Right to Erasure ("Right to be Forgotten"): Request deletion of personal data when it's no longer necessary, consent is withdrawn, or processing is unlawful.
• ⏸️
  Right to Restrict Processing: Request limitation of processing in specific circumstances, such as when accuracy is contested or processing is unlawful.
• 📤
  Right to Data Portability: Receive your personal data in a structured, machine-readable format and transmit it to another controller.
• 🚫
  Right to Object: Object to processing based on legitimate interests, direct marketing, or profiling, with immediate effect for marketing purposes.
• 🤖
  Rights Related to Automated Decision Making: Protection against decisions based solely on automated processing, including profiling, that produce legal or significant effects.
• ↩️
  Right to Withdraw Consent: Withdraw consent for consent-based processing at any time, without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, please contact me at privacy@sajeeshrajan.com. I will respond to your request within one month, with possible extension to three months for complex requests.

Cookies & Analytics

My website uses cookies and similar technologies to enhance your browsing experience and analyze website performance. Here's a detailed breakdown:

• ⚙️
  Essential Cookies: Required for website functionality, security, and user authentication. These cannot be disabled without affecting website functionality.
• 📊
  Analytics Cookies: Google Analytics (_ga, _gid, _ga_*) and Microsoft Clarity cookies to understand website usage and improve user experience. These are used for statistical purposes only.
• 🎨
  Preference Cookies: To remember your settings like theme preferences, language choices, and other customization options.
• 📈
  Performance Cookies: To collect information about website performance, load times, and technical functionality for optimization purposes.

You can control cookie preferences through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, and set preferences for specific websites. Note that disabling certain cookies may affect website functionality and user experience.

Data Retention

I retain your personal information only as long as necessary for the purposes outlined in this policy, in compliance with GDPR and other applicable data protection laws:

• 📋
  Active Projects: During the project lifecycle and for ongoing support needs, typically 1-3 years after project completion.
• 📁
  Completed Projects: For up to 7 years for legal, tax, and business purposes, or as required by applicable laws.
• 📧
  Marketing Communications: Until you unsubscribe, withdraw consent, or for a maximum of 3 years from last interaction.
• 📊
  Analytics Data: Google Analytics data is retained for 26 months by default; Microsoft Clarity data is retained for 90 days unless extended for specific analysis needs.
• ⚖️
  Legal Requirements: As required by applicable laws, regulations, and legitimate business interests, with regular review and deletion schedules.

I regularly review retained data and implement automatic deletion processes where appropriate to ensure compliance with data minimization principles.

International Operations

I operate across multiple jurisdictions including UAE, India, UK, Singapore, and Saudi Arabia. Your information may be processed in any of these locations in accordance with this privacy policy and applicable local laws.

• 🛡️
  GDPR Compliance: For EU residents, I ensure GDPR compliance regardless of processing location, with appropriate safeguards and legal mechanisms.
• 📋
  Standard Contractual Clauses: When transferring data outside the EU, I use EU-approved standard contractual clauses and other approved transfer mechanisms.
• ⚖️
  Local Law Compliance: I comply with applicable data protection laws in each jurisdiction, including UAE PDPL, India DPDP Act, UK GDPR, and Singapore PDPA.
• 🔒
  Data Security: Consistent security standards are applied across all locations, with regular audits and compliance assessments.

Children's Privacy

My services are not directed to individuals under the age of 16 (or the minimum age for digital consent in your jurisdiction). I do not knowingly collect personal information from children.

• 👶
  Age Verification: If I become aware that personal information has been collected from a child without parental consent, I will take steps to delete such information promptly.
• 👨‍👩‍👧‍👦
  Parental Rights: Parents or guardians can contact me to request access to, correction of, or deletion of their child's personal information.

Policy Updates

This privacy policy may be updated periodically to reflect changes in my practices, services, or legal requirements. I will notify you of significant changes through:

• 🌐
  Website Notice: Prominent notice on my website with the updated policy and clear indication of changes made.
• 📧
  Email Notification: Direct notification to existing clients and contacts for material changes that affect your rights.
• 📅
  Effective Date: Clear indication of when changes take effect, with reasonable notice period for significant changes.
• 📚
  Version History: Previous versions of the privacy policy are available upon request for transparency and comparison purposes.

Data Subject Complaints

If you believe your privacy rights have been violated or you're unsatisfied with how I've handled your personal information, you have the right to lodge a complaint:

• 📞
  Direct Contact: Contact me first at privacy@sajeeshrajan.com to resolve the issue directly and promptly.
• 🏛️
  Supervisory Authority: EU residents can lodge complaints with their local data protection authority or the lead supervisory authority.
• ⚖️
  Other Jurisdictions: Residents of other countries can contact their respective data protection authorities or regulatory bodies.