GET In Touch

Privacy Policy

How Ibexlabs protects personal data across our website, services, and customer engagements.

At Ibexlabs, privacy and security are built into how we deliver cloud, data, AI, and managed services. This policy explains what data we collect, how we use it, how we protect it, and what rights individuals have when you:

1. Visit our website at ibexlabs.com, or any website of ours that links to this privacy notice

2. Engage with us in other related ways, including any sales, marketing, or events

By accessing or using our website or services, you agree to the collection and use of information in accordance with this Privacy Policy.

If you still have any questions or concerns, please contact us at engage@ibexlabs.com

Last updated: 6th, May 2026

Section 1: Overview

Our Commitment to Privacy

Ibexlabs is committed to protecting personal data through responsible data handling, strong security practices, and transparent privacy processes.

Our privacy and security practices are designed to align with globally recognized standards and regulations, where applicable, and other enterprise compliance expectations.

Section 2: What This Policy Covers

Scope of This Policy

This Privacy Policy applies to personal data collected through:

  • The Ibexlabs website
  • Contact us forms, email, and demo requests
  • Sales, marketing, and business communications
  • Engagement with us for sales, marketing, events, webinars, or business discussions 
  • Professional services and managed services engagements

When Ibexlabs processes customer data on behalf of a client, that processing may also be governed by a separate customer agreement, Data Processing Agreement, or Business Associate Agreement where applicable.

This Privacy Policy does not replace contractual privacy, security, or compliance obligations agreed separately with customers as part of professional services, managed services, or regulated engagements.

Section 3: Information We Collect

The Data We May Collect

We collect personal information that you voluntarily provide to us.  We do not process sensitive information.

  • Name
  • Business email address
  • Phone number
  • Company name
  • Job title
  • AWS spend
  • Country or region
  • Inquiry details
  • Event registration details
  • Communications with our team


All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.

Information Collected Automatically

When you visit our website, we may collect:

  • IP address
  • Browser and device information
  • Pages visited
  • Referral source
  • Session activity
  • Cookies and similar tracking data
  • Log and diagnostic data

Information from Third Parties

We may receive business contact information from:

  • Partners
  • Event organizers
  • Referral sources
  • Public business directories
  • Marketing or enrichment providers

Ibexlabs seeks to collect only the personal information reasonably necessary for legitimate business, operational, legal, security, and service-related purposes.

Section 4: How We Use Your Information

Why We Process Personal Information

When you visit, use, or navigate our services, we may process personal information depending on how you interact with Ibexlabs and our services, the choices you make, and the products and features you use. These include:

  • Respond to inquiries
  • Provide requested information or services
  • Deliver cloud, data, AI, security, and managed services
  • Manage customer, partner, and vendor relationships
  • Send relevant sales, marketing, or event communications
  • Improve our website, content, and user experience
  • Assist service improvement, operational planning, technology development, security monitoring, and internal analysis 
  • Monitor systems, prevent fraud, and protect security
  • Meet legal, regulatory, contractual, and compliance obligations

If you are located in the EU or UK

Data protection laws such as the GDPR and UK GDPR require us to clearly explain the legal grounds we rely on when processing personal information.

Ibexlabs may process your personal data based on the following legal bases:

Consent
We may process your information where you have explicitly agreed to a specific use. You have the right to withdraw your consent at any time.

Performance of a Contract
We may process your information where it is necessary to enter into or fulfill a contract with you, including delivering our services or responding to requests prior to entering into an agreement.

Legitimate Interests
We may process your information where necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. These interests may include operating and improving our website and services, maintaining security, communicating with prospective customers and partners, conducting analytics, preventing fraud, and supporting our business operations.

Legal Obligations
We may process your information where required to comply with applicable laws or regulatory requirements, including cooperating with authorities, enforcing our rights, or responding to legal proceedings.

Vital Interests
In limited situations, we may process personal data where necessary to protect the life, safety, or well-being of you or another individual.

If you are located in Canada

Under applicable Canadian privacy laws, we may process your personal information based on consent or where permitted by law.

Consent
We may collect, use, or disclose your information with your explicit consent, or where consent can reasonably be inferred from your actions or relationship with us. You may withdraw your consent at any time, subject to legal or contractual restrictions.

Processing Without Consent (Limited Circumstances)
In certain cases permitted by law, we may process your information without obtaining consent. These situations may include:

  • Where immediate collection is necessary for an individual’s best interests and consent cannot be obtained in time
  • For fraud detection, prevention, or investigation
  • In connection with business transactions, where legal conditions are satisfied
  • For handling insurance-related matters involving witness statements
  • To identify individuals who are injured, ill, or deceased and to contact appropriate persons
  • Where there are reasonable grounds to suspect financial abuse
  • Where obtaining consent could compromise an investigation into a breach of law or agreement
  • Where disclosure is required to comply with legal processes such as court orders, warrants, or subpoenas
  • Where information is generated in a professional or business context and used consistently with its original purpose
  • Where the data is collected for journalistic, artistic, or literary purposes
  • Where the information is publicly available as defined by applicable regulations

Section 5: Legal Basis for Processing

Our Legal Grounds

Where GDPR or similar laws apply, we process personal information based on:

Consent — for optional cookies, marketing, and event communications

Contractual necessity — to deliver requested services

Legitimate interests — to operate, secure, and improve our business

Legal obligations — to comply with applicable laws and regulations

Section 6: Sharing Your Information

When We May Share Data

Ibexlabs may share personal information with trusted third-party service providers that support the delivery of our services. These providers process personal information on our behalf under written agreements that require them to maintain appropriate confidentiality, security, and data protection standards. These agreements may also require service providers to implement safeguards appropriate to the nature of the services provided and the information processed.

We may also use personal information for our own legitimate business purposes, including internal analysis, service improvement, and technology development. Such use is not considered a “sale” or “sharing” of personal information under applicable laws.

Unless expressly agreed in writing as part of a customer engagement, Ibexlabs does not use customer confidential information submitted through managed services engagements to train publicly available artificial intelligence models.

We may need to share your personal information during business transfers in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

Ibexlabs does not sell personal information and has not sold or shared personal information for cross-context behavioral advertising or other commercial purposes in the preceding twelve (12) months. We do not intend to sell or share personal information belonging to website visitors, users, or other individuals.

International Data Transfers
Ibexlabs may process, store, or transfer personal information in countries where we operate or where our service providers maintain facilities, including the United States, India, and other jurisdictions. Where required by applicable law, we implement reasonable safeguards designed to protect personal information during international transfers, including contractual protections and appropriate security measures.

Section 7: Cookies and Tracking

Website Cookies

We may use cookies and similar technologies to:

  • Keep the website functional
  • Understand website performance
  • Improve content and user experience
  • Support marketing and campaign measurement
  • Where required by law, we ask for consent before using non-essential cookies.

We may use third-party analytics, CRM, advertising, webinar, marketing automation, communication, and cloud hosting providers to support website operations, business communications, analytics, and marketing activities. These providers may use cookies, scripts, tags, pixels, or similar technologies in accordance with their own privacy practices and applicable legal requirements.

Some web browsers may transmit “Do Not Track” (“DNT”) signals. Because there is currently no universally accepted standard for responding to DNT signals, our website may not respond to such signals at this time.

Section 8: Data Retention

How Long We Keep Information

We retain personal information only for as long as necessary to:

  • Fulfill the purposes described in this Privacy Policy
  • Provide services
  • Maintain business records
  • Meet legal, regulatory, tax, accounting, security, and contractual obligations
  • Resolve disputes and enforce agreements

Retention periods vary depending on the nature of the data and applicable legal obligations. Once data is no longer required, it is securely deleted or anonymized in accordance with industry standards.

Section 9: How We Protect Information

Security and Compliance

Ibexlabs uses technical and organizational safeguards designed to protect personal information from unauthorized access, loss, misuse, alteration, or disclosure.

These safeguards may include:

  • Access controls and least-privilege permissions
  • Encryption where appropriate
  • Logging and monitoring
  • Vulnerability management
  • Incident response processes
  • Secure cloud architecture practices
  • Vendor and subprocessor review

Our approach is designed to support SOC 2, ISO 27001, GDPR, HIPAA where applicable, and other enterprise security expectations.

However, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information.

Section 10: Sensitive Information

Sensitive and Healthcare Data

We do not intentionally collect sensitive personal information through our website.

Where sensitive data or protected health information is processed as part of a customer engagement, it is handled under appropriate contractual safeguards, including a Business Associate Agreement where required.

Section 11: Privacy Rights

Your Choices and Rights

Depending on your location, you may have the right to:

  • Request access and information
  • Correct inaccurate information
  • Request deletion
  • Request correction
  • Restrict or object to processing
  • Withdraw consent
  • Request portability
  • Opt out of certain marketing communications

We will not discriminate against you for exercising your privacy rights.

Ibexlabs does not make decisions that produce legal or similarly significant effects based solely on automated processing of personal information.

If you are located in the EEA or UK and you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection supervisory authority. You can find their contact details here: https://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.

Verification of Requests

To protect your privacy and security, we may need to verify your identity before processing your request.

This may include:

  • Matching information you provide with information already in our records
  • Contacting you through previously provided communication channels (such as email)
  • Requesting additional information where necessary to confirm your identity

We will only use the information provided for verification purposes and will not retain it longer than necessary.

Ibexlabs will respond to verified privacy requests within the timeframe required by applicable law or within a commercially reasonable period where no specific legal timeframe applies.

To exercise your rights, contact us at: engage@ibexlabs.com

Section 12: Marketing Communications

How to Opt Out

You may unsubscribe from marketing emails at any time by using the unsubscribe link in our emails or contacting us directly.

Even if you opt out of marketing, we may still send service-related or transactional communications.

Secion 13: Data Incidents

Breach Notification

If a data incident affects personal information, Ibexlabs will investigate, take appropriate action, and notify affected parties or regulators where required by applicable law or contract.

Section 14: Children’s Privacy

Not Intended for Children

Our website and services are not directed to children under 16. We do not knowingly collect personal information from children.

Update and Contact

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Updates will be posted on this page with a revised “Last updated” date.

Questions About Privacy?

For questions, concerns, or privacy requests, contact:

Ibexlabs LLC

100 Overlook Center

Floor 2

Princeton, NJ 08540

United States

Email: engage@ibexlabs.com