Privacy
Policy

1. Data Controller

Praxis Structures LLC ("Praxis", "we", "our", "us") is the data controller for processing personal data described in this policy.

Contact: hello@praxistructures.com
Location: Gurugram, India

2. Categories of Personal Data We Process

• Identity and contact data (name, email, company, phone, job title).
• Project and commercial data you submit (scope, files, requirements, timelines, budget context).
• Communication data (messages, inquiries, support exchanges, proposal discussions).
• Technical and usage data (IP address, browser/device data, pages visited, timestamps, referrer, diagnostic logs).

3. Purposes of Processing and Legal Bases (GDPR Art. 6)

• To respond to inquiries, prepare quotations, and manage onboarding — legal basis: pre-contractual steps and contract performance (Art. 6(1)(b)).
• To deliver steel detailing/BIM services, project coordination, and client support — legal basis: contract performance (Art. 6(1)(b)).
• To maintain security, prevent abuse, troubleshoot, and defend legal claims — legal basis: legitimate interests (Art. 6(1)(f)).
• To meet legal and regulatory obligations (tax, accounting, compliance records) — legal basis: legal obligation (Art. 6(1)(c)).
• For optional analytics/marketing communications where required — legal basis: consent (Art. 6(1)(a)).

4. Data Sources

We collect personal data directly from you (forms, emails, calls, project files), from your organization, and from technical systems used to operate our website and services.

5. Recipients and Processors

We may share personal data with trusted processors and service providers, such as:

• Cloud hosting and infrastructure providers.
• Communication and email service providers.
• Analytics and performance monitoring providers.
• Professional advisers (legal, accounting, audit) when necessary.

We require processors to process data only on documented instructions and with appropriate security.

6. International Data Transfers

Because we operate internationally, personal data may be processed outside the EEA/UK. Where GDPR applies and data is transferred to countries without an adequacy decision, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) and related transfer risk measures.

7. Retention Periods

• Inquiry and lead data: typically up to 24 months after last meaningful contact.
• Project and contract records: generally for contract term plus applicable limitation periods.
• Financial and invoicing records: retained as required by applicable law.
• Security/technical logs: retained for limited periods necessary for security and diagnostics.

8. Your GDPR Rights

Subject to legal conditions, you have the right to:

• Access your personal data.
• Rectify inaccurate or incomplete data.
• Erase data in certain circumstances.
• Restrict processing in certain circumstances.
• Data portability for data processed by contract/consent and automated means.
• Object to processing based on legitimate interests.
• Withdraw consent at any time where processing relies on consent.
• Not be subject to decisions based solely on automated processing with legal/similar effects.

To exercise rights, email hello@praxistructures.com. You also have the right to lodge a complaint with your local supervisory authority.

9. Security Measures

We use technical and organizational measures designed to protect personal data against unauthorized access, loss, misuse, alteration, and disclosure. Measures include access controls, restricted permissions, logging, and secure service providers. No method of transmission or storage is absolutely secure.

10. Children’s Data

Our services are intended for business users and not directed to children. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this policy to reflect legal, technical, or business changes. Material updates will be posted on this page with an updated effective date.