Data Privacy Policy

1. Introduction

STYRA ("Company", "we", "us", or "our") is committed to protecting the privacy and security of personal data processed through its services. This Data Privacy Policy explains how STYRA collects, uses, discloses, stores, and protects personal data when customers, users, and partners access or use our services.

It provides a platform for analyzing and managing thermal images and asset-related data captured using FLIR thermal cameras.

2. Scope

This Policy applies to website visitors, authorized users of the STYRA platform, customers uploading thermal images, and business partners.

3. Definitions

  • Personal Data: Information that identifies or can identify an individual directly or indirectly.
  • Thermal Image Data: Infrared images and videos capturing heat signatures of assets, equipment, or environments.
  • Asset Data: Information related to physical assets, including identifiers, condition metrics, location, and inspection history.
  • Processing: Any operation performed on data, including collection, analysis, storage, transmission, or deletion.

4. Categories of Data We Collect

Personal Data

  • User name, email address
  • Organization name and role
  • Login credentials and authentication data
  • Support communications

Thermal Image & Asset-Related Data

  • Thermal images via FLIR cameras
  • Temperature readings and heat maps
  • Asset identifiers (asset ID, tag number, equipment type)
  • Inspection timestamps and environmental metadata
  • Location data related to asset inspections (if enabled)

Technical & Usage Data

  • IP address
  • Device identifiers
  • Browser and application usage logs
  • System performance and diagnostic data

No sensitive data (health, biometrics) is collected.

5. Lawful Basis for Processing

Personal Data is processed based on one or more of the following lawful bases:

  • User consent
  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate interests related to service security and improvement

6. Data Processing

STYRA processes data solely for legitimate business and operational purposes, including:

  • Capturing, storing, and analyzing thermal images
  • Asset condition monitoring and fault detection
  • Predictive maintenance and inspection reporting
  • Reports, dashboards, and analytics
  • User authentication and account management
  • Customer support and issue resolution
  • Platform security, monitoring, and fraud prevention
  • Compliance with legal and regulatory obligations

7. How we use your Data

STYRA uses personal data in a lawful, fair, and transparent manner to deliver our services, ensure security, meet legal obligations, and improve user experience:

Service Provision & Operations

To provide, operate, administer, and maintain our services, including enabling users to securely access and effectively use our applications, platforms, websites, and related functionalities. This includes processing data that is strictly necessary to deliver the core and essential features of our products and services.

User Authentication & Account Management

To create, manage, and secure user accounts, authenticate users, manage access credentials, and enforce role-based access controls to ensure that only authorized individuals can access relevant systems and data.

Customer Communication & Support

To communicate with users, respond to inquiries, provide technical assistance, resolve issues, and manage service-related requests, including support tickets and service notifications.

Security, Monitoring & Fraud Prevention

To protect our systems, services, users, and data assets, including for monitoring system activity, detecting and preventing fraud, misuse, unauthorized access, or other malicious or unlawful activities, and maintaining the confidentiality, integrity, and availability of our services.

Service Improvement & Analytics

For analyzing usage data and related information to understand how our services are accessed and used, enabling us to improve performance, reliability, functionality, usability, and security, and to enhance the overall user experience.

Billing, Payments, and Financial Operations

Personal data is processed to support billing, invoicing, payment processing, subscription management, and related financial and accounting operations, including compliance with applicable tax and financial regulations.

Legal, Regulatory, and Contractual Compliance

To comply with applicable legal, regulatory, statutory, and contractual obligations, including responding to lawful requests from public authorities, enforcing our agreements, protecting legal rights, and meeting audit and compliance requirements.

Internal Business Administration

It may be used for internal administrative purposes, such as record-keeping, reporting, risk management, corporate governance, and business continuity planning, provided such processing is consistent with the purposes outlined in this policy.

Marketing and Promotional Communications

Where permitted by law and subject to your consent, we may use your data to:

  • Send product updates, newsletters, or promotional communications
  • Conduct surveys and collect feedback
  • Inform users about new features or offerings

Users may opt out of marketing communications at any time.

8. Data Sharing

STYRA shares data only when necessary to deliver its services, maintain platform security, comply with legal obligations, and support customers. All data sharing is conducted in accordance with applicable data protection laws, and is governed by strict contractual, technical, and organizational safeguards.

Data is shared solely for legitimate purposes, including:

  • Service hosting, maintenance, and performance optimization
  • Processing and analyzing thermal images and asset data
  • Providing customer support and technical assistance
  • Security monitoring, fraud prevention, and incident response
  • Legal and regulatory compliance

No Sale of Personal Data

We do not sell, rent, or trade personal data to third parties for marketing or advertising purposes.

9. Cross-Border Transfers

Cross-Border Data Transfers refer to the movement, storage, remote access, or processing of personal data outside the country or region where it was originally collected, including through server, global support operations, or third-party service providers.

In Europe (EU/EEA), such transfers are strictly regulated under the GDPR (Articles 44–49) and are permitted only where the destination country provides an adequate level of protection (via an EU adequacy decision) or where appropriate safeguards are most commonly Standard Contractual Clauses (SCCs), Binding Corporate Rules, or approved codes of conduct are implemented, supported by a Transfer Impact Assessment (TIA) and supplementary technical and organizational measures such as encryption and access controls.

In the United States, which does not have a comprehensive federal privacy law, cross-border transfers rely on sector-specific regulations (e.g., CCPA/CPRA, HIPAA, GLBA) and, for EU data, either participation in the EU-US Data Privacy Framework or the use of SCCs with additional safeguards.

In the United Kingdom, transfers are governed by UK GDPR using UK adequacy regulations, the International Data Transfer Agreement (IDTA), or the UK addendum to EU SCCs.

India, under the Digital Personal Data Protection (DPDP) Act, 2023, allows cross-border transfers unless restricted by the government, provided lawful purpose, contractual safeguards, and reasonable security measures are maintained.

Other jurisdictions such as Canada, Japan, Australia, and Singapore permit cross-border transfers subject to ensuring comparable levels of data protection through legal, contractual, and technical controls.

Across all regions, transparency in privacy notices, strong security measures, vendor risk management, and enforceable contractual obligations are essential to ensure that personal data continues to receive an equivalent level of protection when transferred internationally.

10. Data Security

STYRA implements appropriate technical and organizational measures to safeguard personal data against unauthorized or unlawful access, use, disclosure, alteration, or destruction. Such measures include role-based access controls and least-privilege principles, multi-factor authentication for privileged access, and comprehensive audit logging and monitoring.

Personal data is protected through encryption in transit using industry-recognized cryptographic standards, including TLS 1.3 for data in transit. The Organization’s information security program is aligned with ISO/IEC 27001 requirements and is subject to periodic independent security assessments, including annual penetration testing.

11. Data Retention & User Rights

Retention

  • Personal data: Duration of relationship + 90 days
  • Asset data: Until deleted by user or 7 years (compliance)
  • Anonymized analytics: Indefinite

Your Rights (DPDP/GDPR/CCPA)

Right How to Exercise Response Time
Access info@styra.in 30 days
Rectify Account settings/email 7 days
Delete "Delete Account" or request 30 days
Portability Download data request 30 days
Object/Restrict Email request Immediate review

India users: DPDP Data Fiduciary
Contact: info@styra.in

12. Cookies

STYRA uses cookies to ensure the proper functioning and security of our website and services.

13. Contact

Email: info@styra.in

Prasanna Technologies Pvt. Ltd
2nd Floor, Essel centre,
M.G Road, Mangalore -575003
menu
Home
About Us
contact
Verticals
Power
Water
Gas
Solutions
WorkForce Management
Warehouse Management
Asset Lifecycle Management
Condition Monitoring
Meter Outlet Management
Policy Links
Privacy Policy
Cookie Policy
Case Studies
Google Disclosure Notice
Disclaimer
© Copyright - Prasanna Technologies Pvt. Ltd | Designed by Tikanga