Last Modified on: 16-Jan-2026
At Arete-IR LLP, (hereinafter referred to as âAreteâ or âWe/weâ or âUs/usâ, and shall include its successors and permitted assigns), protecting your private information is our priority. This privacy policy (âPrivacy Policyâ) applies to the Website and governs data collection and usage from you in accordance with the Digital Personal Data Protection Act, 2023 (âDPDPAâ) and the Digital Personal Data Protection Rules, 2025 (âDPDPRâ). The terms âPersonal Dataâ, âInformationâ, âDataâ and âPersonal Informationâ are used interchangeably under this Privacy Policy. For the purposes of this Privacy Policy, unless otherwise noted, all references to Arete include www.areteir.com (âWebsiteâ). By using the Website, you consent to the data practices described in this Privacy Policy.
The term âPersonal Dataâ shall have the meaning as provided under the DPDPA and shall mean any data about an individual who is identifiable by or in relation to such data. This includes, but is not limited to, name, gender, mobile number, phone number, address, email, date of birth, any identity proof issued by the government such as Aadhaar, PAN Card, employer, job title, location, work experience, educational qualifications, reason for contact, any information which one would usually include in a resume, password, financial information such as bank account or credit card or debit card or other payment instrument details, physical, physiological and mental health condition, sexual orientation, medical records and history, biometric information, current and past remuneration or salary details, any detail provided to Arete in furtherance to providing services, and any of the information received by Arete for processing, information stored or processed under lawful contract or otherwise, including the Internet Protocol (âIPâ)address, browser type and Internet Service Provider (âISPâ).
The term âYou/youâ or âYour/yourâ or âYourself/yourselfâ shall refer to any user accessing the Website.
In order to better provide you with the services offered on the Website, Arete will collect Personal Data that may be personally identifiable to you as defined under this Privacy Policy. You acknowledge that any Personal Data provided by you shall be true, correct, accurate and up-to-date.We do not collect any Personal Data about you unless you voluntarily provide it to us with your consent. However, you may be required to provide certain Personal Data to us when you elect to use certain services available on the site. These may include:a) information you manually provide;b) Information from your browser or device andc) Information collected by cookies and other technologies.
The Personal Data that you share with Arete shall be kept strictly confidential. . The Personal Dataalong with all supporting documents submitted by you shall be used for the limited purpose of:
a) providing our services;
b) allowing you to participate in surveys regarding services being provided by Arete;
c) providing custom, personalized content and information;
d) monitoring aggregated metrics such as total number of visitors and traffic;
e) contacting you and respond to your questions or requests;
f) delivering email notifications, confirmations, technical notices, updates, security alerts, andsupport and administrative messages that you may request;
g) for archival or backup purposes;
h) to alert you about updated information and such other new or updated services that may be offered by Us;
i) if you contact Us through the âContact Usâ function on the Website, or by any other means, Arete will process your Personal Data to the extent it is necessary for the purpose of its legitimate interests to fulfil your request and communicate with you;
j) to cooperate with public and government authorities, courts or regulators in accordance with Areteâs legal obligations under applicable laws to the extent required; and
k) to send you marketing information, product recommendations and other non-transactional communications (e.g., marketing newsletters) about Arete and its affiliates and partners, including information about its promotions or events as necessary for Areteâs legitimate interests to conduct direct marketing, for which specific consent will be sought.
Arete shall take all reasonable measures as prescribed under law to prevent unauthorized access and misuse of your Personal Data. However, Arete shall not be responsible for any such unauthorized access and misuse of your Personal Data by unauthorized persons despite having taken all such measures.
1. In line with the principles of purpose limitation and data minimization, your Personal Data shall be processed only for the specific, explicit and legitimate purposes for which you have provided consent and only such Personal Data as is necessary for that purpose will be collected. Arete shall not use your Personal Data for any purpose other than other than those for which you have provided consent. 2. The employees of Arete shall only have read-only access to your Personal Data to fulfil the specified purposes. 3. Arete may share the Information in the following instances:a) upon serving you a âprior noticeâ, to its successors or permitted assigns as permitted under law and/or to its subsidiary;b) upon taking your express written âprior consentâ and on âneed to knowâ basis, with its business partners (acting as Data Processors) in furtherance to providing the services including for verification of your credentials / profile;c) Arete will ensure through contractual obligations that such Data Processors adhere to adequate security standards; andd) to any judicial, quasi-judicial, regulatory, statutory and/or any government agencypursuant to any legal requirement.
Arete may, from time to time, expand or reduce its business and this may involve the sale and/or transfer of control of all or part of Arete. The Personal Data provided shall, where it is relevant to any part of the business so transferred, be transferred along with that and the new owner or newly controlling party will, under the terms of this Privacy Policy, be permitted to use the Personal Data for the purposes for which it was originally given to Arete.Arete may also disclose the Personal Data to a prospective purchaser of its business or any part of it. Data may be transferred to or from different jurisdictions and we will take steps to ensure that privacy is protected.
1. It is clarified that any Personal Data that is freely available or accessible in the public domain
2. Arete shall not be responsible in any manner of whatsoever nature for any unauthorized use,violation or misuse of such Personal Data.
1. Arete shall retain your Personal Data only for such periods required for the purposes for which such Personal Data may be lawfully used and/or as may be prescribed by law from time to time.
However, the documents submitted by you shall not be stored by Arete post the detailed verification process.
2. Notwithstanding the above, Arete shall retain Personal Data, traffic data and related processing logs for a minimum period of 1 (one) year for purposes specified under applicable law, including for national security or the performance of statutory functions.
3. In the event that Arete is unable to process the Personal Data submitted by you for any reason whatsoever, the same shall be deleted unless otherwise required under law and/or as may be required for any internal or external audit purposes.
4. Arete is committed to complying with applicable laws to ensure that all measures prescribed by law are taken for storing the Personal Data in order to ensure that such Personal Data is safe
and secure.
1. Arete has necessary policies, mechanism and tools in place to ensure all the Personal Data that is collected and stored is deleted as soon as the purpose as described in this Policy is completed, unless it is mandated by law to be maintained by Arete.
2. Any data destroyed shall be disposed of in a manner that protects the privacy of your Information, in an appropriate manner as per the industry standard practices and norms.
3. You will be provided with at least 48 (forty-eight) hoursâ notice before your Personal Data is scheduled for erasure, providing you an opportunity to exercise your rights.
Under the DPDPA, you have the following rights with respect to your Personal Data:
1. Right to Access: You have the right to obtain a summary of your Personal Data that is being processed by Arete and the processing activities undertaken by us.
2. Right to Correction and Erasure: You have the right to request the correction of inaccurate or misleading Personal Data, the completion of incomplete Personal Data, the updating of
outdated Personal Data, and the erasure of Personal Data that is no longer necessary for the purpose for which it was processed.
3. Right to Grievance Redressal: You have the right to lodge a complaint with our Grievance Officer regarding any concerns with the processing of your Personal Data. You must exhaust
this mechanism before approaching the Data Protection Board of India.
4. Right to Nominate: You have the right to nominate any other individual who shall, in the event of your death or incapacity, exercise your rights under the DPDPA on your behalf.
5. Right to Withdraw Consent: As detailed in the âConsentâ section, you have the right to
withdraw your consent at any time.
To exercise any of these rights, please contact us using the information provided in the âGrievance Redressalâ section.
1. Arete secures your Personal Data from unauthorized access, use, or disclosure.
2. When Personal Data is transmitted to other websites, it is protected through encryption. We strive to take appropriate security measures to protect against unauthorized access to or alteration of your Personal Data.
3. Arete shall endeavor to take reasonable measures to prevent unauthorized access to and improper use of your Personal Data. It shall adopt all the suitable measures to diagnose any problems with its server and to administer the application including by blocking certain addresses that it feels are inappropriately using its application. In the event of any breach or attempted breach by any third party, Arete shall endeavor to rectify the problems as soon as
possible.
4. Arete may collect the following information:
a) anonymous data from every visitor of the Website to monitor traffic and fix bugs which includes (without limitation) information like web requests, the data sent in response to such requests, the Internet Protocol address, the browser type, the browser language, unique
identifiers of the device through which the application is accessed, such as VPN, information of Wi-Fi connectivity and a timestamp for the request; and
b) log file information is automatically reported by your browser each time the application is
viewed. The server supporting the application logs may include information such as web
request, Internet Protocol (âIPâ) address, Analytical Code, Geo Stamp, browser type, browser
language, referring/exit pages and Universal Resource Locators (âURLâ), Website type,
number of clicks, domain names, landing pages, pages viewed and the order of those pages, the
amount of time spent on particular page, the date and time of the request (âLog File
Informationâ). Such Log File Information collected is not associated with any Personal
Information and is only tagged to the unique identifier for a particular device.
5. In compliance with the DPDPA, Arete has implemented reasonable security safeguards to protect Personal Data in our possession or control. These measures include:
a) deployment of encryption, obfuscation, masking, or tokenization;
b) effective measures to restrict access to relevant computer resources;
c) maintaining logs, monitoring, and conducting periodic reviews to detect and remediate
unauthorized access;
d) data backup and other measures to ensure continued processing if confidentiality, integrity, or availability is compromised;
e) retaining logs and relevant Personal Data for at least one year to facilitate investigation and remediation; and
f) incorporating appropriate security safeguard obligations in contracts with our Data Processors.
Arete shall in no manner be liable for any violation under this Privacy Policy, if the Personal Data,
a) is already available in public domain; or
b) is collected by way of any illegal and unlawful means; or
c) is provided by any person who is incompetent under Section 11 of Indian Contract Act, 1872.
Arete may keep track of the websites and pages our users visit within the Website to determine what
Arete services are the most popular. This data is used to deliver customized content and advertising within the Website to customers whose behavior indicates that they are interested in a particular subject area. We will not engage in tracking, behavioral monitoring or targeted advertising directed at children.
Areteâs Website may use âcookiesâ to help you personalize your online experience. A cookie is a text
file placed on your hard disk by a web page server. Cookies are uniquely assigned to you and can only be read by a web server in the domain that issued the cookie to you. Cookies cannot be used to run
programs or deliver viruses to your computer. For any non-essential cookies, your explicit consent will be obtained.
1. From time to time, Arete may contact you via email to provide announcements, promotional offers, alerts, confirmations, surveys, and/or other general communication. To improve our products and/or services, we may receive a notification when you open an email from us or
click on a link therein provided.
2. If you would like to stop receiving marketing or promotional communications via email from Arete, you may opt-out of such communications by clicking on the âUNSUBSCRIBEâ button,
thereby withdrawing your consent for that specific purpose.
We may store your data on servers provided by third-party hosting vendors that we have contracted with. We will ensure that such vendors adhere to the security standards mandated by the DPDPA through binding contractual agreements.
1. Arete reserves the right to amend this Privacy Policy from time to time as may be required
under law.
2. We will notify you about significant changes in how we treat Personal Information by sending a notice to the primary email address specified in your account, placing a prominent notice on our site, and/or by updating any privacy information on this page. Your continued use of the site and/or services available through this site after such modifications will constitute your:
a) Acknowledgment of the modified Privacy Policy
b) Agreement to abide and be bound by that Policy
Raising a Complaint: All grievances by you should be addressed in writing to our Grievance Officer.
Your complaint or query shall be acknowledged promptly and we will work to resolve the complaint and take appropriate action required for such resolution within a reasonable timeframe, not exceeding 90 (ninety) days from the date of receipt. Grievance Officer: A designated grievance officer shall endeavor to resolve your grievances within a month of receipt of the complaint. The complaints in this
regard may be addressed to the address mentioned below:
Name: Pardhasaradhi Ch
Designation: Deputy CISO
Grievance Officer Email ID: [email protected]
You must exhaust this grievance redressal mechanism before approaching the Data Protection Board
of India with a complaint.
Grievance Redressal Escalation: In the event that you are not satisfied with the resolution provided,
an escalation of the complaint may be made in writing address to Escalation Officer to
[email protected] or call the officer at (+91) 9948421964 or post a letter addressed to Arete at
Arete Incident Response, 4th Floor, B- Wing Forming part of Sy No 83/1, Plot, 1, Galaxy by
Aurobindo Realty, Hyderabad Knowledge City TSIIC Raidurg, Panmaktha, Hitech City Rd, opp.IKEA, Hyderabad, Telangana 500032 such Escalation Officer shall address your complaints within a reasonable time frame.
CONTACT INFORMATION
Arete welcomes your questions or comments regarding this Privacy Policy [email protected].