Last updated: 22 May 2026
EPMLogic is committed to protecting the privacy of individuals who visit our website and engage with our services. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and your rights in relation to it.
EPMLogic - Finstarte Consulting ("EPMLogic - Finstarte Consulting", "EPMLogic", "we", "us", "our") is a boutique enterprise planning and FP&A consulting practice specialising in Workday Adaptive Planning architecture, AI-driven forecasting, and enterprise finance systems. Our principal place of business is Bengaluru, Karnataka and Varanasi, Uttar Pradesh, India.
For the purposes of applicable data protection legislation, including the Digital Personal Data Protection Act 2023 (India) and the General Data Protection Regulation (EU) 2016/679 (GDPR) where applicable, EPMLogic is the data controller in respect of personal data collected through this website and our service engagements.
Contact: info@epmlogic.com
We may collect the following categories of personal data:
Contact and enquiry data: When you contact us via email, we collect your email address and the content of your message. We do not operate a contact form on our website. The only personal data collected through this website is your email address when you choose to contact us directly at info@epmlogic.com.
Usage data: We may collect information about how you interact with our website, including pages visited, time spent on pages, referring URLs, browser type, and approximate geographic location derived from IP address.
Communication data: Records of correspondence between you and EPMLogic, including emails and meeting notes relevant to a service engagement.
Client engagement data: In the course of delivering consulting services, we may process personal data provided to us by clients relating to their employees or systems, subject to separate data processing agreements where required.
We do not collect sensitive personal data (such as health, financial account, or government identification data) through this website. We do not knowingly collect personal data from individuals under the age of 18.
We collect personal data through the following means:
Directly from you: When you contact us by email, submit an enquiry, or engage us for consulting services.
Automatically: Through standard web server logs and analytics tools that record how visitors interact with our website. Where analytics tools are used, these may set cookies on your device. You may manage cookie preferences through your browser settings.
From third parties: Where you have provided your details to a third party who refers you to us, or through publicly available professional profiles such as LinkedIn.
For individuals located in the European Economic Area (EEA) or United Kingdom, we process personal data on the following legal bases under GDPR:
Legitimate interests (Article 6(1)(f)): To respond to enquiries, maintain business records, improve our website, and market our services to business professionals who have expressed interest in our work. We have assessed that our legitimate interests are not overridden by your rights and freedoms.
Performance of a contract (Article 6(1)(b)): Where processing is necessary to deliver consulting services you have engaged us for, or to take steps at your request prior to entering a contract.
Legal obligation (Article 6(1)(c)): Where we are required to retain records for tax, accounting, or other legal compliance purposes.
Consent (Article 6(1)(a)): Where we have obtained your explicit consent, such as for marketing communications. You may withdraw consent at any time by contacting info@epmlogic.com.
For individuals in India, we process personal data in accordance with the Digital Personal Data Protection Act 2023 (DPDP Act), on the basis of consent or legitimate use as defined under that Act.
We use personal data collected for the following purposes:
— To respond to enquiries and communicate with prospective clients
— To deliver consulting and architecture services under engagement agreements
— To manage our business relationship and maintain engagement records
— To send relevant updates, insights, or service information where you have opted in or where we have a legitimate interest in doing so
— To improve the content and functionality of our website
— To comply with applicable legal and regulatory obligations
— To enforce our contractual rights where necessary
We do not use personal data for automated decision-making or profiling in a way that produces legal or similarly significant effects on individuals.
We retain personal data for as long as necessary to fulfil the purposes for which it was collected, subject to the following guidelines:
Enquiry and contact data: Up to 2 years from the date of last contact, or longer if an engagement commenced.
Client engagement records: Up to 7 years from the conclusion of an engagement, in line with standard accounting and legal retention requirements under Indian law.
Website analytics data: Aggregated or anonymised within 26 months.
Where retention beyond these periods is required by law or for the defence of legal claims, we will retain data for that extended period only.
We do not sell, rent, or trade personal data. We may share personal data with:
Service providers: Third-party tools and platforms used to operate our business, including email hosting, cloud storage, and website analytics providers. These providers are engaged under appropriate data processing terms and are not permitted to use your data for their own purposes.
Professional advisors: Lawyers, accountants, or auditors where necessary for legal compliance or dispute resolution.
Workday and related platform vendors: Where required in the course of delivering Workday Adaptive Planning or related services, data may be processed within Workday's platform environment subject to Workday's own privacy and data processing terms.
Legal and regulatory authorities: Where required by law, court order, or regulatory obligation.
All third parties are required to handle personal data in accordance with applicable privacy laws. Where data is transferred outside India or the EEA, we implement appropriate safeguards including standard contractual clauses or equivalent mechanisms.
EPMLogic operates globally and may transfer personal data to countries outside India or the European Economic Area in the course of delivering services to clients in APAC, EMEA, and North America. Where such transfers occur, we ensure appropriate safeguards are in place, including:
— Standard Contractual Clauses (SCCs) approved by the European Commission, where applicable
— Adequacy decisions, where the receiving country has been deemed to provide adequate protection
— Binding contractual protections in client and vendor agreements
By engaging with our website or services, you acknowledge that your data may be processed in countries outside your own jurisdiction, subject to these safeguards.
Depending on your location, you may have the following rights in relation to your personal data:
Right of access: To request a copy of the personal data we hold about you.
Right to rectification: To request correction of inaccurate or incomplete personal data.
Right to erasure: To request deletion of your personal data, subject to our legal retention obligations.
Right to restriction: To request that we limit processing of your personal data in certain circumstances.
Right to data portability: To receive your personal data in a structured, machine-readable format (EEA/UK individuals under GDPR).
Right to object: To object to processing based on legitimate interests, including for direct marketing purposes.
Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time.
Rights under the DPDP Act 2023 (India): Including the right to obtain information about processing, right to correction and erasure, right to grievance redressal, and the right to nominate a representative.
To exercise any of these rights, please contact us at info@epmlogic.com. We will respond within 30 days. We may need to verify your identity before processing your request. You also have the right to lodge a complaint with the relevant supervisory authority in your jurisdiction.
Our website may use cookies and similar tracking technologies to improve functionality and understand how visitors use the site. Cookies are small text files stored on your device.
We may use the following types of cookies:
Strictly necessary cookies: Required for the website to function and cannot be disabled.
Analytics cookies: Used to understand how visitors interact with the website on an aggregated, anonymised basis. These may include third-party analytics tools.
You can control and manage cookies through your browser settings. Disabling certain cookies may affect the functionality of the website. Where required by law, we will obtain your consent before placing non-essential cookies.
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, disclosure, alteration, or destruction. These measures include encrypted communications, access controls, and regular review of our data handling practices.
No method of transmission over the internet is completely secure. While we take reasonable steps to protect your personal data, we cannot guarantee absolute security. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority and affected individuals in accordance with applicable law.
Our website may contain links to third-party websites, including Workday, LinkedIn, and other platforms. This Privacy Policy applies only to EPMLogic's website and services. We are not responsible for the privacy practices of third-party websites and encourage you to review their privacy policies before providing personal data.
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. The date at the top of this page indicates when the policy was last updated. We encourage you to review this policy periodically. Where changes are material, we will take reasonable steps to notify affected individuals.
If you have any questions, concerns, or requests relating to this Privacy Policy or our data practices, please contact us at:
EPMLogic
Email: info@epmlogic.com
Offices: Bengaluru, Karnataka & Varanasi, Uttar Pradesh, India
We are committed to resolving any concerns promptly and transparently.
If you have any questions about how EPMLogic handles your personal data, please contact us directly.
Email info@epmlogic.com