Privacy Policy

DemoniX Labs is a software engineering and technology consulting company offering Web Development, App Development, AI Automation, Agentic AI, Cybersecurity, and AI/ML Engineering services.

This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit our website (demonixlabs.com), submit an inquiry, or engage us for services. Please read this policy carefully.

For privacy-related inquiries or to exercise your rights, contact us at: legal@demonixlabs.com

Information You Provide Directly

We collect information you voluntarily provide when you:

• Submit a contact or project inquiry form (name, email address, company name, project description)
• Request a demo or consultation (name, email, availability preferences)
• Send us an email or initiate communication through any channel
• Execute a project agreement or SOW (business name, billing address, payment details via our payment processor)

Information Collected Automatically

When you visit our website, we may automatically collect certain technical data, including:

• IP address and approximate geographic location (country/city level)
• Browser type and version, operating system
• Pages viewed, time on site, referring URL
• Device type (desktop/mobile)

This data is collected through standard server logs and, where applicable, analytics tools. We do not use advertising trackers or sell this data.

Client Project Data

During a service engagement, you may provide us access to your systems, databases, codebases, business data, or end-user data. We treat all such data as Confidential Information under our Terms of Service and process it only as necessary to perform services.

We use the personal information we collect for the following purposes:

• To respond to your inquiries and provide information about our services
• To scope, negotiate, and fulfil project agreements
• To communicate with you about project progress, invoices, and deliverables
• To process payments through our payment processor (we do not store card details)
• To send operational communications relevant to your engagement (no unsolicited marketing without consent)
• To maintain records of services provided for legal, accounting, and dispute-resolution purposes
• To improve our website and services based on aggregate, anonymised usage data
• To comply with legal obligations

We do not sell, rent, or share your personal information with third parties for their own marketing purposes.

If you are located in the European Economic Area (EEA) or the United Kingdom, we process your personal data on the following legal bases:

• Contract performance: processing is necessary to enter into or perform a contract with you
• Legitimate interests: processing is necessary for our legitimate business interests, such as improving our services and preventing fraud, where those interests are not overridden by your rights
• Legal obligation: processing is necessary to comply with applicable law (e.g., retaining accounting records)
• Consent: where we have obtained your explicit consent (e.g., optional newsletter communications), which you may withdraw at any time

We do not sell your personal data. We may share your information in limited circumstances:

Service Providers

We engage trusted third-party service providers who process data on our behalf, including: payment processors (e.g., Stripe), cloud infrastructure providers (e.g., AWS, Vercel), project management and communication tools, and analytics platforms. All providers are contractually bound to process data only as instructed and maintain appropriate security standards.

Legal Requirements

We may disclose information if required to do so by law, court order, or governmental authority, or when we believe in good faith that disclosure is necessary to protect our rights, prevent fraud, or protect the safety of individuals.

Business Transfer

In the event of a merger, acquisition, or sale of substantially all of our assets, your information may be transferred as part of that transaction. We will notify you in advance of any such transfer.

Professional Advisors

We may share information with our legal counsel, accountants, and insurers under professional confidentiality obligations.

We retain personal information for as long as necessary to fulfil the purposes described in this Policy, or as required by applicable law.

• Inquiry and contact data: retained for up to 2 years from last communication, or until you request deletion
• Client project data and records: retained for 7 years after project completion for legal, accounting, and audit purposes
• Payment records: retained as required by applicable financial regulations (typically 7 years)
• Website analytics: retained in aggregated, anonymised form

Once data is no longer required, we delete or anonymise it securely.

We implement appropriate technical and organisational measures to protect personal information against unauthorised access, disclosure, alteration, or destruction.

Our security practices include:

• Encryption of data in transit using TLS/HTTPS for all web communications
• Encryption of sensitive data at rest where applicable
• Access controls: personal data is accessible only to team members who need it to perform their role
• Secure credential management: passwords and secrets are never stored in plain text
• Regular review of access permissions and third-party provider security practices

No method of transmission over the internet is 100% secure. While we implement commercially reasonable safeguards, we cannot guarantee absolute security. In the event of a data breach that creates a risk to your rights, we will notify you and any applicable authorities as required by law.

Depending on your location, you may have the following rights regarding your personal data:

• Right to access: request a copy of the personal data we hold about you
• Right to rectification: request correction of inaccurate or incomplete data
• Right to erasure ("right to be forgotten"): request deletion of your personal data, subject to legal retention requirements
• Right to restrict processing: request that we limit how we use your data
• Right to data portability: receive your data in a structured, machine-readable format
• Right to object: object to processing based on legitimate interests
• Right to withdraw consent: where processing is based on consent, withdraw it at any time
• Right to lodge a complaint: file a complaint with your local data protection authority

To exercise any of these rights, contact us at legal@demonixlabs.com. We will respond within 30 days and may need to verify your identity before processing requests.

Our website may use cookies and similar tracking technologies to improve your browsing experience and collect analytics data.

Strictly Necessary Cookies

These cookies are required for the website to function. They cannot be disabled and do not collect personal information for marketing purposes.

Analytics Cookies

We may use analytics tools that set cookies to understand how visitors use our site. This data is aggregated and anonymised. You may opt out via your browser settings or any cookie preference controls on our site.

By continuing to use our website after being informed of our cookie practices, you consent to our use of cookies. You can manage or disable cookies in your browser settings, but doing so may affect website functionality.

DemoniX Labs operates globally and your information may be transferred to, stored in, and processed in countries other than your country of residence. These countries may have different data protection laws.

Where we transfer data internationally, we take steps to ensure adequate protections are in place, including relying on standard contractual clauses approved by relevant authorities, adequacy decisions, or other lawful transfer mechanisms.

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If we become aware that we have inadvertently collected such information, we will delete it promptly. If you believe we have collected information from a minor, please contact us at legal@demonixlabs.com.

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. We recommend reviewing the privacy policy of any third-party site you visit.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal obligations. We will update the date at the top of this page when changes are made.

Continued use of our website or services after changes are posted constitutes your acceptance of the revised Policy.