Last updated: 26 April 2026 · Version 1.0
Contents
1. Who we are
The Navis Arca platform is operated by Necurity Solutions Network Security Private Limited, a company incorporated in India with its registered office at Block 3, II Floor, Equinox Managed Workspaces, 6/13 North Ave, Kesavaperumalpuram, Raja Annamalaipuram, Chennai 600028, India.
For platform telemetry submitted by a Customer, Necurity Solutions acts as a data processor and the Customer is the data controller. For our website, marketing activities and the contracting relationship with you, Necurity Solutions acts as the data controller.
2. What we collect
2.1 Information you give us
- Contact details — name, work email, phone, company, role — provided through enquiry forms or sales conversations.
- Account details — operator credentials and profile information used to access the Navis Arca console.
- Communications — messages, support requests, and feedback you send us.
2.2 Information generated by use of the Service
- Endpoint telemetry — device posture, OS configuration, security score, vulnerability findings, USB events, agent health.
- Operator activity — login, action history, configuration changes, support sessions.
- Audit log — cryptographically chained record of operator actions and significant agent events.
2.3 Information from your device when visiting the website
- Technical information — IP address, device type, browser, referring URL — collected by standard server logs.
- Cookies — see section 10.
3. Why we process it
- Provide and operate the Navis Arca Service.
- Authenticate operators and protect Customer accounts.
- Detect, investigate and respond to security events.
- Generate compliance reporting and coverage exports.
- Communicate with Customers about the Service, support, and material updates.
- Respond to enquiries and process commercial relationships.
- Comply with applicable legal and regulatory obligations.
4. Legal basis
Where the GDPR or analogous laws apply, we rely on one or more of the following bases: performance of a contract with you; our legitimate interests in operating and improving the Service and growing our business; your consent (for example, optional marketing communications); and compliance with legal obligations.
5. Who we share it with
We do not sell personal information. We share it only with:
- Sub-processors we engage to help operate the Service (cloud hosting, transactional email, support tooling). A current list is available on request and is included in the Data Processing Addendum signed with each Customer.
- Authorised personnel within Necurity Solutions on a need-to-know basis, subject to confidentiality obligations.
- Authorities when required by enforceable legal process, after legal review.
- Successors in the event of a merger, acquisition, or restructuring, subject to equivalent protections.
6. International transfers
Navis Arca is operated from infrastructure in selectable regions including India, Singapore and the European Union. Where personal information is transferred across borders, we apply appropriate safeguards (such as Standard Contractual Clauses) where required by applicable law.
7. Retention
Customer Data is retained for the duration of the subscription and for the export window of thirty (30) days following termination, after which it is permanently deleted in accordance with our retention schedule.
Audit-trail data may be retained for up to seven (7) years to support survey, insurance and incident-review obligations, where the Customer instructs us to do so.
Marketing and enquiry contact data is retained for up to three (3) years from last interaction unless you ask us to delete it sooner.
8. Security
We protect personal information using technical and organisational measures appropriate to the risk, including:
- Encryption of data in transit (TLS 1.2+) and at rest;
- Mandatory MFA for all operator accounts;
- Role-based access control internally, with audited just-in-time access for support;
- Regular Red Team / VAPT exercises against the platform;
- An ISO/IEC 27001 certified information security management system at the parent company.
9. Your rights
Depending on the law applicable to you, you may have the right to: access the personal information we hold about you; request correction or deletion; object to or restrict certain processing; request portability; and lodge a complaint with a supervisory authority.
To exercise any right, contact us using the details in section 13. Where we process information on behalf of a Customer (data controller), we will direct your request to the Customer to handle in the first instance.
10. Cookies & analytics
The Navis Arca website uses a minimal set of cookies and similar technologies necessary for site operation and basic, privacy-respecting analytics. We do not use third-party advertising cookies or cross-site tracking. Where required, a cookie banner provides granular control.
11. Children
Navis Arca is a B2B service intended for use by maritime professionals. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can take action.
12. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be notified through the operator console or to the email address on file. The "last updated" date at the top of this page indicates when the policy was last revised.
13. Contact us
For privacy questions, data-subject requests, or to ask about our sub-processor list:
- Email: privacy@navisarca.com (data subject & privacy requests)
- Phone: +91 89390 56056
- Post: Necurity Solutions Network Security Private Limited, Block 3, II Floor, Equinox Managed Workspaces, 6/13 North Ave, Kesavaperumalpuram, Raja Annamalaipuram, Chennai 600028, India.