What we collect,
and why.

When you fill out the contact form, we collect the fields you submit. Depending on which form variant you use (project inquiry or sprint plan), that includes:

• Name: so we know who we're replying to.
• Email address: to send our reply.
• Phone number with country (sprint plan form only), if you'd prefer a call.
• Company name: context for the conversation.
• Company revenue band or stage: to route you to the right partner internally.
• Role / title: so we understand decision authority.
• LinkedIn profile (optional), context for who you are professionally.
• Free-text notes (optional), anything you choose to share about your project.

Separately, Google Analytics 4 collects limited website usage data such as pages viewed, interactions, approximate location derived from IP address, and browser or device information. Cloudflare Web Analytics may also collect aggregated usage and performance data. We do not send contact-form fields or other directly identifying information to either analytics service.

We use what you submit for one purpose: to respond to your inquiry and, if it leads somewhere, to scope and deliver a project together. Specifically:

• Replying to you over email or scheduling a call.
• Internal triage. Which engineer or partner is the right person to take the conversation.
• Light record-keeping if our conversation continues into a paid engagement.
• Understanding which pages and interactions are useful so we can improve the website.

We do not use your data to train AI models, to sell to other companies, to send unrelated marketing, or to add you to mailing lists you didn't ask to join. If we ever want to send you a broader update (a newsletter, an event invite), we'll ask first.

Lawful basis (EU/UK GDPR users): We process your inquiry data on the basis of your consent (you submitted the form) and our legitimate interest in responding to a business inquiry. You can withdraw consent at any time by emailing us. See Your rights below.

The site relies on the following providers. Contact-form data is sent only to Web3Forms and the infrastructure needed to deliver it; analytics providers receive website usage data, not your form fields:

• Web3Forms (web3forms.com), our form-to-email service. They forward your submission to our inbox and don't store it long-term beyond delivery. Their privacy policy: web3forms.com/privacy-policy.
• Our hosting provider: serves the site and routes the form submission. They process the data only as needed to operate the site (load balancing, TLS termination, anti-abuse).
• Google Analytics 4: measures website visits and interactions. We do not enable Google signals or advertising personalization without first confirming the required privacy and consent controls.
• Cloudflare Web Analytics: provides aggregated website usage and performance measurement when enabled.

We may also share data if we're legally required to (subpoena, court order, government request) or to protect our rights. For example, if someone abuses the contact form. If a buyer ever acquires our business, your data would transfer as part of that sale; we'd notify you and give you a chance to opt out before that happens.

Beyond those, no one else gets your data. We don't share with advertisers, data brokers, or affiliate networks.

We keep contact-form submissions for as long as the conversation is alive, plus a buffer for record-keeping. Practically:

• Inquiries that don't progress: deleted within 12 months of the last reply.
• Inquiries that lead to engagements: kept for the duration of the engagement plus 24 months for legal and tax record-keeping.
• Anything you ask us to delete: removed within 30 days of your request, unless we have a specific legal obligation to retain it.

Across all users, you can ask us to:

• Access the personal data we hold about you.
• Correct anything that's wrong or out of date.
• Delete your data, subject to retention obligations.
• Port your data to another service in a structured, machine-readable format.

If you're in the EU, UK, or Switzerland (GDPR / UK GDPR)

You also have the right to restrict processing, object to processing based on legitimate interests, and withdraw consent at any time. You can lodge a complaint with your local data protection authority. For the UK that's the ICO (ico.org.uk); in the EU it's the supervisory authority in your member state.

If you're in California (CCPA / CPRA)

You have the right to know what personal information we collect, delete it, correct it, and opt out of sale or sharing. We do not sell or share your personal information for cross-context behavioral advertising. That line is firm. You also have the right to non-discrimination: we won't treat you worse for exercising any of these rights.

If you're in India (Digital Personal Data Protection Act)

You have the right to access, correction, erasure, and grievance redressal. Our grievance officer is reachable at growth@tglobal.in and will respond within 7 days. If you're unsatisfied, you can escalate to the Data Protection Board of India.

How to make a request: email growth@tglobal.in from the address you used to contact us. Include the request type and any details that help us find your record. We'll verify your identity (a follow-up email is usually enough) and respond within 30 days, or 7 days for India DPDP grievances.

Google Analytics 4 may set first-party analytics cookies, including _ga, to distinguish visits and measure site usage. Our hosting provider may also set short-lived cookies for caching, anti-abuse, and HTTPS. We do not use Meta Pixel, LinkedIn Insight, or advertising cookies.

We use analytics to improve the site, not for advertising. Where applicable law requires consent before analytics storage, we will apply the required consent controls before enabling it.

TGlobal is a B2B service. We don't sell to or knowingly collect data from children under 16. If you believe a minor has submitted information through our forms, email growth@tglobal.in and we'll delete it promptly.

We apply reasonable safeguards proportionate to the data we hold. The site is served over HTTPS only, with HSTS preloaded. Form submissions travel over TLS to Web3Forms and into our inbox. Internally, access to inquiry data is limited to the partners and engineers who need it for the conversation.

No system is perfectly secure. If we ever experience a breach that puts your data at risk, we'll notify you and any required regulator within the timelines the law sets: 72 hours for GDPR, the equivalent under DPDP and US state laws.

Because our team is split between India and the United States, your data may be processed in either country regardless of where you submitted it from. Both transfers happen under contracts that include the EU's Standard Contractual Clauses (or the UK addendum) for users protected by GDPR / UK GDPR. If you'd like a copy of the relevant transfer mechanism, email growth@tglobal.in.

If we change this policy, we'll update the version number and last-updated date at the top of the page. Material changes (anything that meaningfully expands what we collect, who we share with, or how we use it) will be flagged with a notice on the site for at least 30 days, and we'll email anyone with an active inquiry.

Email growth@tglobal.in. A real person reads it.

Postal addresses if you prefer paper:

• India: TGlobal Digital Private Limited, WeWork Rajapushpa Summit, Financial District, Hyderabad.
• United States: TGlobal, 2 Shaw Alley, SoMa, San Francisco, CA.