Acquire And Evolve

Get Started

Privacy Policy

1. Introduction

Acquire and Evolve (‘we’, ‘us’, ‘our’, or ‘Company’) is a full-service digital marketing agency with operations in India and Australia. We are committed to protecting the privacy and security of personal information that we collect, use, store, and disclose in the course of operating our business and providing our services.

This Privacy Policy explains how we handle personal data relating to our clients, website visitors, job applicants, and any individuals whose information we process in connection with the digital marketing services we provide. It applies to all personal information collected through our website at acquireandevolve.com, through direct client engagements, and through any other means.

By using our website or engaging our services, you consent to the collection and use of your information as described in this Policy. If you do not agree with the terms of this Policy, please do not use our website or services.

2. Who We Are & How to Contact Us

Acquire and Evolve is the data controller responsible for your personal information. We operate across two jurisdictions:

India Operations:

  • Registered and operating in India in accordance with Indian law
  • Governed by the Digital Personal Data Protection Act, 2023 (DPDPA) and the Information Technology Act, 2000

Australia Operations:

  • Operating in Australia in accordance with Australian law
  • Governed by the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs)

For any privacy-related queries, concerns, or requests, please contact our Privacy Officer at:

Email: privacy@acquireandevolve.com

Website: acquireandevolve.com

Response time: Within 30 days of receiving your request.

3. Information We Collect

We collect personal information only to the extent necessary to provide our services and operate our business. The categories of personal information we may collect include:

3.1 Information You Provide Directly

  • Identity information: full name, job title, company name
  • Contact information: email address, phone number, postal address
  • Business information: industry, company size, marketing goals, budget
  • Account credentials: usernames and passwords for platforms you grant us access to (e.g., Google Ads, Meta Business Manager, website CMS)
  • Financial information: billing address, payment details (processed securely via third-party payment processors)
  • Communications: emails, messages, feedback, survey responses, and meeting notes
  • Content and materials: brand assets, logos, images, copy, and other content you provide for campaign use

3.2 Information We Collect Automatically

When you visit our website, we may automatically collect:

  • Technical data: IP address, browser type and version, operating system, device type
  • Usage data: pages visited, time spent on pages, links clicked, referral URLs
  • Cookie data: session identifiers, preference settings, analytics identifiers (see Section 8 on Cookies)

3.3 Information We Receive from Third Parties

  • Data from advertising platforms (Google, Meta, LinkedIn, etc.) in connection with campaign management
  • Analytics data from tools such as Google Analytics, Search Console, and similar platforms
  • Information from publicly available sources for prospecting or market research purposes
  • Referral information from partners, affiliates, or existing clients

3.4 Sensitive Information

We do not intentionally collect sensitive personal information (such as health data, religious beliefs, political opinions, or biometric data) unless specifically required and with your explicit consent. Please do not submit sensitive information unless we have requested it for a specific purpose.

4. How We Use Your Information

We use personal information for the following purposes, relying on appropriate legal bases as applicable:

4.1 Service Delivery

  • To provide, manage, and improve the digital marketing services you have engaged us for
  • To set up, access, and manage advertising accounts, analytics platforms, and marketing tools on your behalf
  • To develop strategies, create content, run campaigns, and report on performance
  • To communicate with you regarding project updates, deliverables, approvals, and feedback

4.2 Business Operations

  • To issue invoices, process payments, and maintain financial records
  • To respond to enquiries, proposals, and business development activities
  • To manage our contractual obligations and enforce our Terms and Conditions
  • To carry out internal record-keeping, compliance, and audit functions

4.3 Marketing & Communications

  • To send you information about our services, case studies, insights, and promotions where you have given consent or where we have a legitimate interest
  • To invite you to events, webinars, or surveys
  • You may opt out of marketing communications at any time by clicking ‘unsubscribe’ in any email or contacting us directly

4.4 Legal & Compliance

  • To comply with applicable laws, regulations, and legal obligations in India and Australia
  • To respond to lawful requests from government authorities or courts
  • To protect the rights, property, and safety of Acquire and Evolve, our clients, and the public

4.5 Analytics & Improvement

  • To analyse website usage and improve our website’s functionality and content
  • To understand how our services are used and identify opportunities for improvement
  • To conduct market research and develop new service offerings

5. Legal Basis for Processing (India & Australia)

5.1 India — Digital Personal Data Protection Act, 2023

Under India’s DPDPA, we process personal data on the following lawful bases:

  • Consent: where you have given us clear consent to process your data for a specific purpose
  • Contract: where processing is necessary to perform our contract with you or take steps at your request before entering a contract
  • Legitimate use: where processing is necessary for our legitimate business interests, provided those interests are not overridden by your rights
  • Legal obligation: where processing is necessary to comply with a legal obligation under Indian law

5.2 Australia — Privacy Act 1988 and Australian Privacy Principles

Under Australian privacy law, we collect and handle personal information in accordance with the APPs. We collect personal information that is reasonably necessary for our business functions and activities. Where sensitive information is collected, we rely on your consent or another permitted ground under the APPs.

6. How We Share Your Information

We do not sell, rent, or trade your personal information to third parties. We may share your information in the following limited circumstances:

6.1 Service Providers & Sub-processors

We engage trusted third-party vendors to assist in delivering our services. These include:

  • Advertising platforms: Google LLC, Meta Platforms Inc., LinkedIn Corporation, and similar
  • Analytics providers: Google Analytics, Hotjar, and similar tools
  • Project management & communication tools: Slack, Asana, Notion, or similar
  • Cloud storage and file sharing: Google Workspace, Dropbox, or similar
  • Payment processors: Stripe, Razorpay, or similar secure payment gateways
  • Email marketing platforms: Mailchimp, HubSpot, or similar

All third-party service providers are required to handle your data securely, in accordance with our instructions, and in compliance with applicable privacy laws. We do not permit them to use your data for their own independent purposes.

6.2 Cross-Border Data Transfers

As we operate across India and Australia, your personal information may be transferred between these two countries. Such transfers are conducted in compliance with the cross-border data transfer requirements of the DPDPA (India) and the APPs (Australia). We take appropriate measures to ensure that your data remains protected during international transfers, including using contractual protections where required.

Where your data is transferred to service providers located outside India or Australia (for example, to servers maintained by US-based technology companies such as Google or Meta), such transfers are subject to the applicable data transfer mechanisms and safeguards required under Indian and Australian law.

6.3 Business Transfers

In the event of a merger, acquisition, restructuring, or sale of all or part of our business, your personal information may be transferred to the acquiring entity, subject to equivalent privacy protections.

6.4 Legal Requirements

We may disclose your information where required to do so by law, court order, or government authority, or where we believe disclosure is necessary to protect the rights, property, or safety of Acquire and Evolve, our clients, or others.

7. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, regulatory, accounting, or reporting obligations.

Our general retention principles are:

  • Client data: retained for the duration of the engagement and for seven (7) years thereafter, in accordance with tax and legal record-keeping requirements in India and Australia
  • Prospect and marketing data: retained for up to three (3) years from last interaction, or until you withdraw consent
  • Website usage and analytics data: retained for up to twenty-six (26) months, in line with Google Analytics default settings
  • Job applicant data: retained for twelve (12) months from the date of application, unless you are hired

When personal information is no longer required, we will securely delete or anonymise it in accordance with our data destruction procedures.

8. Cookies & Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your browsing experience and gather analytics data. Cookies are small text files placed on your device by your browser.

8.1 Types of Cookies We Use

  • Essential cookies: necessary for the website to function correctly (e.g., session management, security)
  • Analytics cookies: used to understand how visitors use our website (e.g., Google Analytics — tracking page views, session duration, traffic sources)
  • Marketing cookies: used to track the effectiveness of our advertising campaigns and retarget visitors across other platforms
  • Preference cookies: used to remember your settings and preferences

8.2 Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to refuse or delete cookies. Please note that disabling certain cookies may affect the functionality of our website. You may also opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on available at tools.google.com/dlpage/gaoptout.

9. Your Privacy Rights

Depending on your location, you have the following rights regarding your personal information:

9.1 Rights Under Indian Law (DPDPA 2023)

  • Right to access: you have the right to obtain confirmation of whether we process your personal data and to access that data
  • Right to correction: you have the right to have inaccurate or incomplete personal data corrected or completed
  • Right to erasure: you have the right to request deletion of your personal data where it is no longer necessary for the purposes for which it was collected
  • Right to grievance redressal: you have the right to raise a complaint or grievance with us regarding our handling of your personal data
  • Right to nominate: you may nominate another individual to exercise your rights on your behalf in the event of your death or incapacity

9.2 Rights Under Australian Law (Privacy Act 1988 / APPs)

  • Right to access: you may request access to the personal information we hold about you
  • Right to correction: you may request that we correct personal information that is inaccurate, out of date, incomplete, irrelevant, or misleading
  • Right to complain: you have the right to lodge a complaint with us, and if unresolved, with the Office of the Australian Information Commissioner (OAIC)

9.3 How to Exercise Your Rights

To exercise any of the above rights, please contact us at privacy@acquireandevolve.com with your full name, contact details, and a description of your request. We will respond within thirty (30) days. We may need to verify your identity before processing your request.

We will not charge a fee for access requests unless the request is manifestly unfounded, excessive, or repetitive, in which case we will notify you of any applicable charge before proceeding.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, disclosure, alteration, loss, or destruction. These measures include:

  • Secure HTTPS encryption on our website
  • Access controls limiting who within our organisation can access personal data
  • Use of reputable, security-certified third-party platforms for data processing
  • Regular review of our data handling and security practices
  • Staff awareness of data protection obligations

While we take all reasonable steps to protect your data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security, and you provide information at your own risk. In the event of a data breach that poses a risk to your rights, we will notify you and the relevant regulatory authorities as required by applicable law.

11. Children’s Privacy

Our website and services are not directed at children under the age of 18 (or 13 in Australia, as applicable). We do not knowingly collect personal information from minors. If you believe that a child has provided us with personal information without appropriate parental consent, please contact us immediately at privacy@acquireandevolve.com and we will take steps to delete such information promptly.

12. Third-Party Websites & Links

Our website may contain links to third-party websites, platforms, or resources (for example, social media profiles, partner sites, or advertising platforms). This Privacy Policy applies only to Acquire and Evolve’s website and services. We are not responsible for the privacy practices of any third-party websites and encourage you to review their respective privacy policies before submitting any personal information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the ‘Last Updated’ date at the top of this Policy and, where appropriate, notify you by email or by a prominent notice on our website.

We encourage you to review this Policy periodically to stay informed about how we are protecting your information. Your continued use of our website or services following any changes constitutes your acceptance of the updated Policy.

14. Complaints & Regulatory Authorities

If you have a concern or complaint about how we have handled your personal information, please contact us first at privacy@acquireandevolve.com. We are committed to resolving complaints fairly and promptly.

If you are not satisfied with our response, you have the right to escalate your complaint to the relevant regulatory authority:

India:

Data Protection Board of India (once constituted under the DPDPA 2023) or the Ministry of Electronics and Information Technology (MeitY).

Australia: Office of the Australian Information Commissioner (OAIC) — www.oaic.gov.au | Phone: 1300 363 992