Archisurance (“we,” “our,” “us”) is a boutique consulting firm headquartered in Lahore, Pakistan with clients in the Middle East, Africa, Europe and North America. We provide Enterprise-Architecture advisory, AI-architecture design, training, webinars and related professional services. This Privacy Policy explains: what personal information we collect when you visit archisurance.com, register for a webinar, download content or engage our consulting services; how we use, store and protect that information; the choices and rights available to you. For GDPR purposes the data controller is Archisurance Pvt. Ltd., Etihad Town, Lahore, Pakistan. You can reach us at hello@archisurance.com.

1. Information we collect Category Typical data points Source Contact & identity name, job title, company, business e-mail, phone website forms, webinar registrations, business cards Engagement data project scopes, statements of work, meeting records direct from clients Usage data IP address, browser type, pages visited, event timestamps cookies, HubSpot analytics Marketing preferences newsletter opt-in status, email opens & clicks HubSpot CRM Payment details billing address, bank/IBAN, VAT/Tax IDs invoicing systems (Stripe, bank transfers) We do not collect sensitive personal data (race, religion, health, biometric) unless required by law and with explicit consent. 2. How we use your information Contract delivery – to scope, price and execute consulting projects. Account administration – invoicing, licence management and customer support. Webinars & events – to confirm attendance, provide joining links and send post-event materials. Thought-leadership & marketing – to send white papers, case studies or newsletters you have opted to receive. Site optimisation – to analyse aggregated traffic patterns, improve content and detect abuse. Legal bases: contract performance, legitimate interest (B2B marketing & security) and consent (where required). 3. Retention Project documentation is kept for 7 years (statutory accounting period). Marketing data is deleted 24 months after your last interaction or immediately upon request. 4. Security Data resides on ISO 27001-certified cloud providers (AWS, Azure, HubSpot) with encryption in transit (TLS 1.2+) and at rest. Access is role-based and logged. We run quarterly vulnerability scans and an annual penetration test. 5. Your rights Depending on your jurisdiction (e.g., GDPR, UK DPA, PIPEDA, POPIA) you may: request access, correction or deletion of your data; object to processing or ask for restriction; withdraw consent at any time; lodge a complaint with a supervisory authority. Email privacy@archisurance.com to exercise any right; we respond within 30 days.

We share data only with providers essential to our operations, each under contract and bound by confidentiality. We never sell personal information. Transfers outside the EU/UK rely on Standard Contractual Clauses or an adequacy decision. Links to third-party websites are provided for convenience; their privacy practices are outside our control. Always review the destination site’s policy.

Archisurance’s services target corporate and government clients. We do not knowingly collect data from anyone under 16 years of age. If you believe a minor has provided us personal information, contact hello@archisurance.com and we will promptly delete it.

We may revise this policy to reflect regulatory changes or new services. The “Last updated” date will change; material changes will be announced via email or site banner. Last updated: 25 June 2025