Privacy Policy (PDPA & International Compliance)

Data Controller & Contact

The Quantum Primes acts as the Data Controller of your personal data.
For all privacy related matters, contact:
Data Security Officer (DSO): Muhammad Mustafa
dso@thequantumprimes.com

Scope of Policy

This policy applies to all users, clients, partners, and website visitors globally, including jurisdictions governed by data protection laws such as GDPR and similar regulations.

Categories of Personal Data

We may collect and process:

  • Identity Data: Name, date of birth, identifiers
  • Contact Data: Email, phone, address
  • Technical Data: IP address, browser, device, location
  • Usage Data: Interaction with our website/services

We may also process aggregated/anonymized data for analytics.

Legal Basis for Processing

We process personal data under the following lawful bases:

  • Contractual Necessity : to deliver agreed services
  • Consent : for marketing, cookies, or inquiries
  • Legitimate Interests : business operations, security, improvement
  • Legal Obligation : compliance with applicable laws

Purpose of Processing

We use your data to:

  • Provide and manage services
  • Verify identity and ensure security
  • Improve products and user experience
  • Communicate updates, offers, or support
  • Comply with legal and regulatory requirements

Sensitive Personal Data

We do not intentionally collect sensitive personal data (e.g., health, religion, biometrics). If required, it will only be processed with explicit consent and in compliance with applicable law.

Data Sharing & International Transfers

We may share data with:

  • Trusted service providers and partners
  • Legal and regulatory authorities (when required)

For international clients, data may be transferred across borders. We ensure:

  • Adequate data protection safeguards
  • Contractual protections (e.g., standard contractual clauses)
  • Compliance with applicable cross border transfer laws

Data Retention

We retain personal data only as long as necessary:

  • Service delivery: duration of contract
  • Legal/tax compliance: as required by law
  • Job applicants: up to 3 years
  • Employees: up to 6 years post employment

Your Rights (PDPA & GDPR-Aligned)

You have the right to:

  • Access your personal data
  • Request correction or updates
  • Request deletion (right to erasure)
  • Restrict or object to processing
  • Withdraw consent at any time
  • Request data portability (where applicable)

All requests are subject to identity verification.

Cookies & Tracking Technologies

We use cookies to:

  • Enable website functionality
  • Analyze usage and performance

You may manage cookie preferences via your browser. Consent is obtained where required.

Data Security

We implement industry standard safeguards including:

  • SSL encryption
  • Access controls
  • Secure infrastructure

to protect your data against unauthorized access, loss, or misuse.

Children’s Privacy

Our services are not intended for individuals under 18 without parental/guardian consent.

Complaints

If you have concerns about how your data is handled, please contact us.
You also have the right to lodge a complaint with the relevant data protection authority (where applicable).

Compliance with Laws

We are committed to compliance with:

  • Pakistan Personal Data Protection Bill (PDPA)
  • GDPR principles (for international clients)
  • Other applicable data protection laws

Updates to Policy

We may update this policy periodically. The latest version will always be available on our website.

Scroll to Top