Corporate Privacy Policy and Data Protection Guidelines

About This Policy

Kresna Investments operates this digital infrastructure to provide stakeholders with clear insights into our financial services and venture capital operations. This document details the exact mechanisms we use to handle the data generated during your interaction with our systems. We treat data protection not as a compliance checklist, but as a core component of our operational integrity.

This policy applies specifically to the digital footprint created when you navigate our public-facing website. It governs the information collected through browser interactions, direct inquiries, and subscription forms. Offline interactions or specific investor relations portals operate under separate, dedicated confidentiality agreements.

Last updated: October 2023

Information We Collect

When you access our servers, our network infrastructure automatically records standard diagnostic and log data. This telemetry includes your IP address, the specific browser and operating system you use, the referring URL that directed you to our site, and precise timestamps of your page requests. We capture this data at the network edge before it reaches our application servers.

Direct interactions yield a different category of information. If you submit an inquiry through our Contact Us portal, we capture the exact details provided in those fields. This typically includes your name, corporate email address, organizational affiliation, and the substance of your message. We also maintain secure databases of email addresses submitted voluntarily for research reports or corporate newsletter subscriptions. We do not scrape public databases to append information to these profiles; we rely strictly on the data you provide.

Cookies and Tracking

We deploy cookies and similar local storage technologies to maintain session integrity and analyze traffic patterns. These small text files allow our servers to recognize your browser across multiple page loads.

Essential cookies form the foundation of our site functionality. They manage load balancing across our servers, maintain security tokens to prevent cross-site request forgery, and store your explicit consent preferences regarding other tracking technologies. Because the site cannot function safely without them, these cannot be disabled through our on-site consent manager.

Analytics cookies help us map user behavior. They track which pages hold attention, where navigation paths break down, and how different geographic regions interact with our content. While we currently focus our tracking efforts on these functional and analytical metrics, our digital roadmap includes the potential integration of advertising cookies. These future deployments would facilitate personalized content delivery and retargeting campaigns.

You retain ultimate control over this tracking. Modern browsers allow you to inspect, clear, or block cookies entirely. Disabling analytics or advertising cookies will not restrict your access to our core financial and corporate information.

How We Use Information

The telemetry and direct data we gather directly inform our platform engineering and communication strategies. We analyze aggregated traffic metrics to identify technical bottlenecks. If a specific venture capital report takes too long to load for users in a particular region, our log data highlights the latency, allowing our engineering team to adjust our content delivery network routing.

Performance monitoring allows us to allocate server resources effectively during high-traffic events, such as quarterly earnings announcements or major press releases. We process this data under the legal basis of legitimate interest in maintaining a secure and efficient digital presence.

When you provide contact information, the usage is strictly compartmentalized. We route your details exclusively to the relevant internal department to respond to your specific inquiry. We do not combine contact form data with marketing databases unless you explicitly opt-in to receive promotional communications.

External Services

We rely on specialized third-party infrastructure to deliver our services securely and efficiently. Hosting and Content Delivery Network providers process your initial web requests. These vendors operate at the network layer, caching our static assets globally to serve web pages quickly while filtering out malicious traffic.

We use external analytics platforms to process the aggregated traffic data mentioned earlier. These platforms act as data processors; they are contractually restricted from using Kresna Investments visitor data for their own independent purposes.

As our digital strategy evolves, we plan to integrate selected ad networks. Any future integration will require these networks to operate under strict data processing agreements that align with our corporate privacy standards. We audit our primary vendors regularly to ensure their security postures match our internal requirements.

Your Rights

You maintain specific, actionable rights regarding your personal data within our systems. You can request a comprehensive export of the information we hold about you, formatted in a standard, machine-readable structure.

You also hold the right to request the complete deletion of your personal data from our active databases. We provide straightforward mechanisms to opt-out of non-essential tracking and marketing communications. Every automated email we send includes a direct unsubscribe link that processes your request immediately.

To exercise your access or deletion rights, direct your requests to our compliance team via the Contact Us page. We require a standard identity verification step before processing these requests to prevent unauthorized access to your information. We aim to resolve all verified data requests within standard regulatory timeframes.

Retention Periods

We keep data only as long as necessary to fulfill the specific operational purposes outlined in this document. Server logs and diagnostic telemetry undergo automated rotation; our systems permanently overwrite this data after a standard retention cycle.

Contact form submissions remain in our active customer relationship management database until the specific inquiry is resolved. Once resolved, we transition these records to a secure archive state for compliance and historical reference.

Our disaster recovery backups operate on a separate lifecycle. Data marked for deletion in our active systems will naturally age out of our encrypted backups over our standard rolling backup schedule. We do not manually excise individual records from immutable backup archives unless legally compelled.

Revisions to This Policy

Data protection standards and technical capabilities evolve rapidly. We update these guidelines periodically to reflect changes in our underlying infrastructure, new vendor integrations, or shifting legal obligations across the jurisdictions where we operate.

We handle policy versioning transparently. Minor typographical corrections or clarifications are published immediately. For significant modifications that alter how we process your data or share it with external services, we will post a prominent notification on our homepage well before the changes take effect. We encourage you to review this document periodically to stay informed about our current privacy practices.