PRIVACY POLICY
Last Updated: 26 June 2026
DigiArmada Ltd (“we,” “our,” or “us”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website, purchase our services, or collaborate with us.
For the purpose of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, the Data Controller is DigiArmada Ltd, a company registered in England and Wales under Company Registration Number 17235230.
1. Data We Collect
We may collect and process the following types of personal data:
- Identity Data: Name, job title, and business entity name.
- Contact Data: Email address, telephone number, and billing address.
- Technical Data: IP address, browser type, time zone settings, and operating system.
- Project Data: Source code, login credentials, business data, and assets provided by you to execute our Growth Solutions and Enterprise Engineering services.
2. How We Use Your Data
We use your data strictly to fulfill our contract with you, including:
- Delivering technical, development, and operational services.
- Managing payments, fees, and charges.
- Communicating project updates, strategy adjustments, and client support.
- Complying with legal or regulatory obligations.
3. Global Infrastructure and International Data Transfers
DigiArmada Ltd operates a centralized project delivery model leveraging our dedicated global technical operations and engineering networks. Consequently, the processing of client data, technical architecture, and system source code may necessitate cross-border data transfers to our authorized technical personnel, international vendors, and corporate partners outside the United Kingdom (UK).
To guarantee a uniform level of data protection equivalent to UK statutory requirements, all international data vectors are governed by the following strict enterprise safeguards:
- Statutory Transfer Mechanisms: Trans-border data flows are institutionalized via the International Data Transfer Agreement (IDTA) and Standard Contractual Clauses (SCCs) as prescribed and approved by the UK Information Commissioner’s Office (ICO).
- Sovereign Compliance Realignment: Our global technical partners and overseas vendors operate in strict structural alignment with localized data protection safety frameworks, including the encryption, security, and purpose-limitation principles mandated under their respective sovereign jurisdictions (such as the Digital Personal Data Protection Act, 2023 of India for our South Asian operations).
4. Corporate Data Security & Sovereign Isolation
We enforce a zero-trust architecture regarding project data security. To mitigate risks of unauthorized access or data compromise, the following infrastructure protocols are strictly maintained:
- Cryptographic Transport: All active data pipelines between UK client interfaces and our international engineering networks are secured using advanced SSL/TLS and AES-256 encryption standards.
- Role-Based Access Control (RBAC): Access to project environments, source code repos, and underlying customer databases is strictly sandboxed. Data access is restricted solely to designated technical engineers with a validated, contractually defined "need-to-know."
- Contractual Confidentiality: Every member of our global technical network and third-party vendor teams is bound by institutional, legally enforceable Non-Disclosure Agreements (NDAs) and clean-desk data processing obligations.
5. Data Retention
We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Once our contract is concluded, active project data held on our processing servers is securely deleted.
6. Your Legal Rights
Under the UK GDPR, you have the following explicit statutory rights regarding your data:
- Right of Access: Request a copy of the personal data we hold about you.
- Right to Rectification: Request correction of any incomplete or inaccurate data.
- Right to Erasure: Request the complete deletion of your personal data from both our local and international databases.
- Right to Object: Object to or restrict the processing of your personal data.
To exercise any of these rights, please contact our data compliance point of contact at the details below.
7. Contact Us & Grievances
If you have any questions about this Privacy Policy or our data protection practices, please contact us:
Use contact number +44 7554 464385