Privacy Policy

We respect your privacy and are committed to safeguarding your personal data.

Introduction

FlexiEle respects Employees privacy and is committed to safeguarding your personal data. This privacy policy explains how we collect, use, store, and protect information when you use our HRMS platform and services.

Data Collection

We collect the following categories of information:

  • Personal Identification: Name, date of birth, contact details, address, and identification documents.
  • Employment Information: Job title, department, salary details, performance reviews, and employment history.
  • Login Credentials: Usernames and encrypted passwords for secure access to the platform.
  • Payroll Data: Bank account details, tax information, and salary processing data.

Data Usage

Your information is processed for the following purposes:

  • Operational service delivery and HR management
  • System communications and notifications
  • Legal compliance and statutory reporting
  • Payroll processing and tax calculations
  • Performance management and analytics
  • Sales and marketing communication where you have submitted a contact form, requested a demo, or otherwise opted in

Lawful basis (UK GDPR / EU GDPR): For HRMS customer data, we rely on the contract with the customer organisation and on legal obligations for statutory reporting. For marketing-website data (contact-form, demo bookings, newsletter), we rely on legitimate interest in responding to your enquiry, or on consent where you have explicitly given it. You can withdraw consent at any time using the rights listed below.

Security Measures

We employ robust security measures to protect your data:

Technical Safeguards

  • Secure, encrypted databases
  • SSL/TLS encryption for data transfer
  • Regular security audits
  • Firewall protection

Access Controls

  • Role-based access controls
  • Multi-factor authentication
  • Session management
  • Audit logging

Data Storage and International Transfers

FlexiEle is built so that HRMS customer data stays in the customer’s own region by default. The location of your data depends on whether it is HRMS production data (employee records of a customer organisation) or marketing-website data (e.g. a contact-form or demo enquiry):

HRMS production data (payroll, leave, performance, and HR records of a customer organisation) is stored in the AWS region matching the customer’s primary operations:
  • European customers — United Kingdom (London, AWS eu-west-2). Employee data of an EU/UK organisation does not leave the EU/UK.
  • Indian customers — Mumbai, India (AWS ap-south-1). Employee data of an Indian organisation stays in India.
  • Customers in other regions — deployed in the nearest AWS region that matches local data-residency requirements.
Marketing-website data (contact-form submissions, demo bookings, blog content) is stored on managed PostgreSQL infrastructure in the United Kingdom (London, AWS eu-west-2), regardless of the visitor’s country. This is sales-prospect data and is held under UK / EU data-protection frameworks.
File uploads (e.g. images attached to blog posts) are stored on Amazon S3 in Mumbai, India (ap-south-1). These do not contain customer or prospect personal data.
Email communications with our team are processed via Microsoft 365.

HRMS employee data does not cross regions in the normal course of operation. Marketing-website data submitted from outside the UK is transferred to our UK marketing database for sales and follow-up purposes; we rely on Standard Contractual Clauses (SCCs) and applicable adequacy frameworks to govern these transfers. EU and UK data subjects retain all rights described in the “Your Rights” section regardless of which region stores the data.

To request a copy of the data we hold about you, or to request deletion or correction, contact our Data Protection Officer at dpo@flexiele.com.

Third-Party Sharing

We do not sell, trade, or rent user data to third parties.

We may share data only with trusted processors for legal obligations, statutory compliance, or essential system functionality. All third-party processors are bound by strict confidentiality agreements.

Your Rights

Clients and their employees have the following rights regarding personal data:

Access your data
Request modifications
Request deletion
Restrict processing
Data portability
Withdraw consent

Data Retention

We retain information only for as long as necessary for service delivery and legitimate legal purposes. Specific retention periods:

  • HRMS customer data: retained for the duration of the customer’s contract, plus the period required by applicable tax, employment and statutory law (typically up to seven years after contract termination).
  • Marketing leads: contact-form and demo-request data is retained for up to 24 months from last meaningful contact, after which it is deleted or anonymised unless the prospect has converted to a paying customer.
  • Server logs and access records: retained for 90 days for security and incident-response purposes.

Upon a verified deletion request, we will delete or anonymise your personal data within 30 days, subject to any legal obligation to retain specific records.

Policy Updates

We may update this privacy policy from time to time. Any changes will be communicated to users through email notifications and/or prominent notices on our platform. Continued use of our services after such modifications constitutes acceptance of the updated policy.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

General enquiries: info@flexiele.com

Data Protection Officer (UK / EU / India): dpo@flexiele.com

UK registered office:

FlexiEle Technologies Private Limited
Company No. 15317667 (registered in England & Wales)
71-75 Shelton Street, Covent Garden, London WC2H 9JQ, United Kingdom

India registered office:

Unit No. A-320, 3rd Floor, Tower A, Grandthum, Plot No. 7, Sector-Techzone 4, Greater Noida West, U.P. 201308, India

Last updated: 30 April 2026