SOFTRIK

Privacy Policy

Last Updated : 15 April, 2026

Name : Softrik

Location : Bangladesh

Scope : This policy applies to all users of our services worldwide

Introduction

Welcome to Softrik, a digital services company based in Dhaka, Bangladesh. We provide Web Design & Development, UI/UX Design, Software Design, Logo Design, Graphic Design, and Digital Marketing services to clients locally in Bangladesh and internationally.

We are committed to protecting your privacy and ensuring the security of your personal information, regardless of where you are located. This Privacy Policy explains how we collect, use, disclose, and safeguard your information in compliance with Bangladesh data protection regulations and international privacy standards.

Our Commitment: As a Bangladesh-based company serving a global clientele, we adhere to the highest standards of data protection, including compliance with the Bangladesh Digital Security Act, 2018, and respect for international frameworks such as GDPR (for EU clients) and CCPA (for California residents).

By accessing our website or engaging our services, you agree to the terms of this Privacy Policy. If you do not agree with this policy, please do not use our services.

Information We Collect

Personal Information

We may collect personal information that you voluntarily provide to us when you:

  • Request a quote or consultation for our services
  • Fill out contact forms on our website
  • Subscribe to our newsletter or marketing communications
  • Create an account on our platform
  • Participate in surveys or provide feedback
  • Communicate with us via email, phone, WhatsApp, or other messaging platforms
  • Engage us for project work

This information may include:

  • Full name
  • Email address
  • Phone number (including country code for international clients)
  • Company name and position
  • Mailing address
  • Billing information and payment details
  • Project requirements and specifications
  • Time zone and preferred language

Automatically Collected Information

When you visit our website, we automatically collect certain information about your device and browsing behavior, including:

  • IP address and approximate geographic location
  • Browser type and version
  • Operating system
  • Referring URLs
  • Pages viewed and time spent on pages
  • Click-through data
  • Device identifiers
  • Cookies and similar tracking technologies
  • Language preferences

Project-Related Information

When you engage our services, we may collect:

  • Business objectives and requirements
  • Brand guidelines and assets
  • Website analytics data (for web development and digital marketing services)
  • Social media account information (for digital marketing services)
  • Marketing campaign data and performance metrics
  • Content and creative materials you provide
  • Feedback, approval communications, and revision requests
  • Domain and hosting credentials (for web development services)
  • Third-party platform access (with your explicit permission)

Payment Information

For Bangladeshi clients, we may accept payment through:

  • Bank transfer (local Bangladesh banks)
  • Mobile financial services (bKash, Nagad, Rocket, etc.)
  • Credit/debit cards
  • Online payment gateways

For international clients, we accept:

  • International bank transfer/wire
  • PayPal, Stripe, and other international payment processors
  • Cryptocurrency (where applicable)

We do not store complete credit card information on our servers. Payment processing is handled by secure third-party payment processors.

How We Use Your Information

We use the collected information for the following purposes:

Service Delivery

  • To provide, maintain, and improve our Web Design & Development, UI/UX Design, Software Design, Logo Design, Graphic Design, and Digital Marketing services
  • To process your requests and fulfill contractual obligations
  • To communicate with you about project progress, deliverables, and revisions
  • To understand your requirements and deliver customized solutions
  • To provide technical support and customer service
  • To manage project timelines and deliverables

Business Operations

  • To process payments and manage billing in local currency (BDT) or foreign currencies
  • To send administrative information, updates, and notices
  • To respond to inquiries and provide customer support
  • To manage our relationship with you
  • To maintain business records and accounting
  • To comply with tax and financial regulations in Bangladesh

Marketing and Communication

  • To send newsletters, promotional materials, and service updates (with your consent)
  • To inform you about new services, features, or special offers
  • To conduct market research and gather feedback
  • To showcase your project in our portfolio (with your explicit permission)

Analytics and Improvement

  • To analyze website usage and improve user experience
  • To monitor and analyze trends, usage patterns, and engagement
  • To optimize our services and develop new offerings
  • To conduct A/B testing and performance analysis
  • To understand the needs of both local and international markets

Legal and Security

  • To comply with legal obligations under Bangladesh law and international regulations
  • To protect our rights, property, and safety
  • To prevent fraud, security breaches, and technical issues
  • To enforce our terms and conditions
  • To respond to lawful requests from authorities

Legal Basis for Processing (For International Clients)

We process your personal data based on the following legal grounds:

Contractual Necessity: Processing is necessary to perform our contract with you

Legitimate Interests: We have a legitimate business interest (e.g., improving our services, preventing fraud)

Consent: You have given explicit consent for specific processing activities (e.g., marketing communications)

Legal Obligation: Processing is required to comply with applicable laws and regulations

You have the right to withdraw consent at any time where consent is the legal basis for processing.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience and analyze website performance.

Types of Cookies We Use

Essential Cookies: Required for basic website functionality, security, and language selection

Analytics Cookies: Help us understand how visitors interact with our website (e.g., Google Analytics)

Functional Cookies: Remember your preferences, settings, and language choices

Marketing Cookies: Track your online activity to deliver relevant advertisements and measure campaign effectiveness

Managing Cookies

You can control cookie preferences through your browser settings. Please note that disabling certain cookies may limit website functionality. To manage cookies:

  • Chrome: Settings > Privacy and Security > Cookies
  • Firefox: Settings > Privacy & Security > Cookies and Site Data
  • Safari: Preferences > Privacy > Cookies

For more information about managing cookies, visit www.allaboutcookies.org .

Third-Party Services and Integrations

We may share your information with trusted third-party service providers who assist us in operating our business. These providers may be located in Bangladesh or internationally.

Service Categories and Providers

Payment Processors:

  • Local: bKash, Nagad, Rocket, SSL Commerz
  • International: PayPal, Stripe, Wise (TransferWise)

Cloud Hosting and Storage:

  • Amazon Web Services (AWS), Google Cloud Platform, DigitalOcean
  • Dropbox, Google Drive for file sharing

Analytics Platforms:

  • Google Analytics, Hotjar, Facebook Pixel

Email and Communication Services:

  • Gmail/Google Workspace, Mailchimp, SendGrid
  • WhatsApp Business, Messenger for customer communication

CRM and Project Management:

  • Trello, Asana, Monday.com, ClickUp
  • HubSpot, Zoho CRM

Design and Development Tools:

  • Adobe Creative Cloud, Figma, Canva
  • GitHub, GitLab, Bitbucket
  • WordPress, Shopify, custom CMS platforms

Digital Marketing Platforms:

  • Google Ads, Facebook Ads Manager, Instagram Business
  • LinkedIn Campaign Manager, Twitter Ads
  • Hootsuite, Buffer for social media management
  • SEMrush, Ahrefs for SEO analysis

Communication Tools:

  • Zoom, Google Meet, Skype for client meetings
  • Slack for team collaboration

These third parties are contractually obligated to protect your information and use it only for the purposes we specify. They may be located in various countries including the USA, EU, Singapore, and other jurisdictions with appropriate data protection standards.

Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices of these third-party sites. We encourage you to review their privacy policies before providing any personal information.

Data Storage, Security, and International Transfers

Data Storage Location

Your data is primarily stored on secure servers located in:

  • Bangladesh (local servers)
  • International cloud servers (AWS, Google Cloud) with data centers in Singapore, USA, EU, and other regions

Security Measures

We implement comprehensive security measures to protect your personal information:

Technical Safeguards:

  • SSL/TLS encryption for data transmission
  • Encryption of sensitive data at rest
  • Secure cloud infrastructure with redundancy
  • Regular security updates and patches
  • Firewall protection and intrusion detection
  • Two-factor authentication for administrative access

Organizational Safeguards:

  • Limited access to personal data (need-to-know basis)
  • Employee confidentiality agreements
  • Regular security training for staff
  • Incident response procedures
  • Regular security audits and assessments

Physical Safeguards:

  • Secure office premises with access controls
  • Locked storage for physical documents
  • Secure disposal of sensitive materials

Data Retention

We retain your personal information for the following periods:

  • Active Client Data: Duration of project plus 2 years for support and warranty
  • Financial Records: 7 years (as required by Bangladesh tax law)
  • Marketing Data: Until you unsubscribe or request deletion
  • Website Analytics: 24-38 months
  • Communications: 3 years unless deletion is requested

When data is no longer needed, we securely delete or anonymize it in accordance with industry best practices.

International Data Transfers

From Bangladesh to Other Countries: As a Bangladesh-based company, when we transfer your data to international service providers (e.g., AWS in Singapore, Google services in USA), we ensure:

  • The recipient country has adequate data protection laws, or
  • Contractual safeguards are in place (Standard Contractual Clauses), or
  • The recipient is certified under recognized frameworks (e.g., EU-US Data Privacy Framework)

From Other Countries to Bangladesh: If you are located outside Bangladesh, please note that your information will be transferred to and processed in Bangladesh. While Bangladesh is developing its data protection framework, we implement appropriate safeguards to protect your data in accordance with international standards.

We only transfer data internationally when necessary for service delivery and with appropriate protections in place.

Your Rights and Choices

We respect your privacy rights regardless of your location. You have the following rights:

For All Users

Access: Request access to the personal information we hold about you

Correction: Request correction of inaccurate or incomplete information

Deletion: Request deletion of your personal information (subject to legal retention requirements)

Portability: Request a copy of your data in a structured, commonly used format

Objection: Object to certain types of processing (e.g., marketing)

Restriction: Request restriction of processing in certain circumstances

Withdrawal of Consent: Withdraw consent for processing where consent is the legal basis

For EU Clients (GDPR Rights)

If you are located in the European Economic Area (EEA), you have additional rights under GDPR:

  • Right to lodge a complaint with your local supervisory authority
  • Right to data portability in machine-readable format
  • Right to object to automated decision-making and profiling

For California Residents (CCPA Rights)

If you are a California resident, you have rights under CCPA including:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of sale of personal information (Note: We do not sell personal information)
  • Right to deletion
  • Right to non-discrimination for exercising your rights

For Bangladesh Residents

Under Bangladesh law, you have the right to:

  • Know what information we collect and how it’s used
  • Access your personal information
  • Request correction of inaccurate data
  • File complaints with relevant Bangladesh authorities if your privacy rights are violated

How to Exercise Your Rights

To exercise any of these rights, please contact us at:

We will respond to your request within:

  • 30 days for general requests
  • 1 month for GDPR requests (extendable by 2 months for complex requests)
  • 45 days for CCPA requests (extendable by 45 days)

We may request additional information to verify your identity before fulfilling your request.

Children's Privacy

Our services are intended for businesses and individuals aged 18 and above. We do not knowingly collect personal information from children under 18. If we become aware that we have inadvertently collected information from a child under 18, we will take immediate steps to delete it.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

Digital Marketing Specific Privacy Practices

Client Campaign Data

When providing Digital Marketing services, we may access and process data from your:

  • Website analytics platforms (Google Analytics, etc.)
  • Social media accounts (Facebook, Instagram, LinkedIn, Twitter)
  • Advertising platforms (Google Ads, Facebook Ads)
  • Email marketing systems (Mailchimp, SendGrid)
  • Customer relationship management (CRM) systems
  • E-commerce platforms

Our Commitment: We access this data solely to deliver marketing services and optimize campaign performance. We will not use it for any other purpose without your explicit written consent.

Data We May Access

  • Website visitor behavior and demographics
  • Social media engagement metrics and audience insights
  • Ad campaign performance data
  • Email marketing statistics
  • Conversion and sales data
  • Customer lists (only with your permission)

Advertising and Tracking

We may implement tracking technologies for our clients, including:

  • Conversion tracking pixels (Facebook Pixel, Google Ads Conversion)
  • Remarketing tags for retargeting campaigns
  • Analytics codes for measuring campaign effectiveness
  • UTM parameters for traffic source tracking

When we implement these technologies on client websites, we ensure:

  • Proper disclosure in the client’s privacy policy
  • Compliance with applicable advertising regulations
  • Use of data only for agreed-upon marketing purposes
  • Secure handling of all audience and campaign data

Social Media Management

When managing social media accounts on your behalf, we:

  • Access only the platforms and data you explicitly authorize
  • Use credentials securely and change them periodically
  • Do not share your account access with unauthorized parties
  • Create content in accordance with your brand guidelines
  • Respond to messages and comments as per your instructions

Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

Immediate Action:

  • Contain the breach and assess the impact
  • Investigate the cause and scope of the incident
  • Implement measures to prevent recurrence

Notification:

  • Notify affected individuals within 72 hours of discovering the breach (for GDPR)
  • Notify relevant authorities as required by law
  • Provide details about the breach, data affected, and remedial actions
  • Offer guidance on protective measures you can take

For Bangladesh Users: We will notify the Bangladesh Telecommunications Regulatory Commission (BTRC) and relevant authorities as required under the Digital Security Act, 2018.

For EU Users: We will notify the appropriate EU supervisory authority within 72 hours as required under GDPR.

Cross-Border Data Protection

Working with International Clients

When working with clients outside Bangladesh, we:

  • Adapt our practices to meet local data protection requirements
  • Sign Data Processing Agreements (DPAs) when required
  • Implement Standard Contractual Clauses for EU data transfers
  • Ensure compliance with client-specific security requirements
  • Maintain documentation of data processing activities

Working with Bangladeshi Clients

When working with local clients, we:

  • Comply with Bangladesh Digital Security Act, 2018
  • Follow Bangladesh Bank regulations for financial data
  • Adhere to sector-specific regulations where applicable
  • Maintain records in accordance with Bangladesh Companies Act

Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your personal information may be transferred as part of the business transaction. We will:

  • Notify you via email and website notice before the transfer
  • Ensure the acquiring party honors this Privacy Policy
  • Provide you with options regarding your data if the privacy practices change
  • Comply with applicable laws regarding business transfers and data protection

Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

  • Changes in our business practices
  • New technologies or services we adopt
  • Legal or regulatory requirements
  • Feedback from clients and stakeholders

Notification of Changes: We will notify you of any material changes by:

  • Posting the updated policy on our website with a new “Last Updated” date
  • Sending email notification to registered users and active clients
  • Displaying a prominent notice on our website homepage for 30 days
  • For significant changes, requesting your renewed consent where required

Your Continued Use: Your continued use of our services after the effective date of changes constitutes acceptance of the updated Privacy Policy. If you do not agree with the changes, please discontinue use and contact us to close your account or remove your data.

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your information.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Softrik

Business Address: 72/1, Luxmipura, Gazipur Sadar - 1700, Gazipur, Dhaka, Bangladesh

Contact Details:

Email: info@softrik.com

Privacy Email: privacy@softrik.com

Phone: +8801575834376

WhatsApp: +8801575834376

Website: www.softrik.com

Business Hours:

Saturday to Friday: 24 Hour Open

For International Clients: Please include your country code when calling. We accommodate different time zones for meetings and consultations.

Response Time: We aim to respond to all privacy inquiries within 2-3 business days.

Legal Compliance and Governing Law

Bangladesh Legal Framework

This Privacy Policy is governed by the laws of Bangladesh, including:

  • Digital Security Act, 2018: Governs digital data protection and cybersecurity
  • Information and Communication Technology Act, 2006 (amended 2013)
  • Bangladesh Companies Act, 1994
  • Right to Information Act, 2009
  • Mobile Financial Services Regulations (Bangladesh Bank)

Compliance with Bangladesh Regulations

We comply with:

  • Bangladesh Telecommunications Regulatory Commission (BTRC) guidelines
  • Bangladesh Bank regulations for financial data
  • National Telecommunication Monitoring Centre (NTMC) requirements
  • E-commerce Association of Bangladesh (e-CAB) standards (if applicable)

International Compliance

For our international clients, we respect and comply with:

GDPR (For EU/EEA Clients):

  • Legal bases for processing: Consent, contractual necessity, legitimate interests
  • Data subject rights: Access, rectification, erasure, portability, objection
  • Cross-border data transfer safeguards
  • Data Protection Impact Assessments where required

CCPA (For California Residents):

  • Transparency in data collection and use
  • Right to know, delete, and opt-out
  • No sale of personal information
  • Non-discrimination for exercising rights

Other Jurisdictions:

  • We comply with applicable data protection laws in all jurisdictions where we serve clients
  • We adapt our practices to meet client-specific legal requirements
  • We sign Data Processing Agreements (DPAs) when required by law or contract

Dispute Resolution

For Bangladesh Clients: Any disputes arising from this Privacy Policy will be subject to the jurisdiction of courts in Dhaka, Bangladesh.

For International Clients: We prefer to resolve disputes amicably through good-faith negotiations. If formal proceedings are necessary, jurisdiction and applicable law will be as specified in our service agreement.

Consent and Acknowledgment

By using our website and services, you acknowledge that you have:

  • Read and understood this Privacy Policy in its entirety
  • Understood how we collect, use, and protect your personal information
  • Consented to the collection, use, and disclosure of your information as described herein
  • Understood your rights and how to exercise them
  • Acknowledged the cross-border nature of our services and potential data transfers

For Specific Consents: We will obtain your explicit consent for:

  • Marketing communications
  • Sharing testimonials or portfolio items
  • Access to third-party accounts and platforms
  • Use of cookies beyond essential functionality
  • Any processing not covered by other legal bases

You may withdraw your consent at any time by contacting us.