Legal
Privacy Policy
Effective 26 May 2026
Overview
Kyrex ('we', 'us', 'our') operates the website kyrex.org and provides software engineering and consulting services. This Privacy Policy explains what information we collect when you visit the site, contact us, or book a paid Blueprint session, how we use it, who processes it on our behalf, and your rights in relation to it.
We collect the minimum data necessary to run the site, respond to you, and deliver what you've booked. We use privacy-respecting analytics, we do not run advertising networks, and we never sell your data.
What we collect
Contact form submissions
When you submit the contact form, we collect your name, email, optional company/project name, what you're working on, and optional timeline and budget. This is delivered to us by email and is not stored in a database.
Blueprint bookings
When you book a Blueprint session, we collect your name, email, optional company, optional notes, your chosen time slot, and payment metadata (a Razorpay order and payment reference — never your card details). This is stored in our booking records (Microsoft Azure Table Storage, India region) so we can manage and deliver the session.
Meeting scheduling
A confirmed booking creates a calendar event and a Microsoft Teams meeting on our Microsoft 365 calendar, with you added as an attendee. Microsoft processes this as described in their privacy terms.
Analytics
We measure aggregate site usage with Plausible (cookieless, no personal data) and use Microsoft Clarity for anonymised heatmaps and session replay to understand how pages are used. Clarity masks text and form inputs by default. See our Cookie Policy for the cookies these set.
Server logs
Our hosting provider records standard log data (IP address, browser type, referring URL, pages, timestamps) for operational and security purposes. It is not used for marketing.
Payments
Blueprint payments are processed by Razorpay, a PCI-DSS-compliant payment provider. Your card, UPI, or bank details are entered on Razorpay's secure checkout and handled by Razorpay under their own privacy terms — Kyrex never sees or stores your full payment instrument. We retain only the order and payment reference needed to reconcile your booking and process any refund.
How we use your information
Responding to inquiries
Contact details you share are used solely to evaluate and respond to your inquiry. We do not add you to a marketing sequence without your explicit consent.
Delivering the Blueprint
Booking and payment data are used to schedule your session, create the meeting, deliver your report, send confirmation and reminder emails, and process refunds where applicable.
Improving the site
Aggregated, anonymised analytics help us understand what's useful and fix what isn't. We do not use this to identify you.
Who processes your data
We share data only with the service providers needed to run the site and deliver bookings, each bound by their own terms and acting on our instructions:
Microsoft Azure
Website hosting and booking-records storage (Table Storage), Central India region.
Microsoft 365 / Graph
Calendar and Microsoft Teams meeting creation for booked sessions.
Microsoft Clarity
Anonymised product analytics — heatmaps and session replay.
Razorpay
Payment processing for Blueprint bookings.
Cloudflare Turnstile
Bot/abuse protection on our forms.
Plausible
Cookieless, privacy-friendly site analytics.
Email relay (ZeptoMail)
Transactional and contact email delivery.
Data sharing
We do not sell, rent, or share your personal information with third parties for their own marketing.
If you engage us for a project, we may share relevant information with subcontractors or technical partners who assist in delivery, bound by confidentiality obligations.
We may disclose information if required by law, court order, or a competent regulatory authority.
International transfers
Some of our processors (for example Microsoft, Razorpay, and Cloudflare) operate globally and may process data on servers outside India. Where that happens, the provider's contractual and technical safeguards apply.
Data retention
Contact submissions live in our email inbox only as long as needed to evaluate and respond, plus a reasonable follow-up period.
Booking records are retained for as long as needed to deliver the session, honour the project-credit window, and meet tax and accounting obligations, then deleted or anonymised.
Analytics data is retained in aggregate per the provider's defaults and is not tied to your identity.
Your rights
Under applicable law — including India's Digital Personal Data Protection Act, 2023 — you may access the personal data we hold about you, request correction of inaccurate data, request deletion where we have no legal obligation to retain it, and withdraw consent where processing is based on consent.
To exercise any of these, email [email protected] with the subject 'Privacy Request'. We will respond within 30 days.
Security
We take reasonable technical and organisational measures to protect your data: traffic is served over HTTPS, booking records sit in access-controlled Azure storage, and payment details are handled entirely by Razorpay. No method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.
Changes to this policy
We may update this Privacy Policy from time to time. When we do, we update the effective date above. Continued use of the site after changes constitutes acceptance of the updated policy.
Contact
Questions about this policy or your personal data? Reach us at: