Company Logo

06 Feb 2026

Privacy Policy

Mobius DTaaS

Security Illustration

Effective Date: 06 Feb 2026

Last Updated: 06 Feb 2026

Controller / Data Fiduciary: Gaian Solutions Pvt. Ltd. (operating Mobius)

Contact: privacy@mobiusdtaas.ai | 5th Floor, Gaian Solutions, Navayuga Vizva, Gachibowlig-Miyapur Road, Gachibowli, Hyderabad 500032

This Privacy Policy describes how Mobius collects, uses, discloses, and protects Personal Data when you visit our websites, use our products and services, interact with our digital properties, or otherwise engage with us (collectively, the “Services”). It also describes your privacy rights and how you can exercise them.

Scope

This policy applies to:

  • Visitors to the Mobius website and related microsites.
  • Prospective customers, partners, and applicants.
  • Customers and authorized users of Mobius products where Mobius acts as a Controller for account, billing, and service administration data.

Where Mobius processes Customer Content or End-User Data on behalf of an enterprise customer (i.e., Mobius is a Processor), the customer’s privacy notice and contractual terms (including a DPA) govern those processing activities.

Definitions

  • Personal Data: Information that identifies or can reasonably identify a natural person.
  • Customer Content: Data submitted into Mobius by a customer or their end users.
  • Processing: Any operation performed on data (collection, storage, use, transfer, deletion, etc.).
  • Controller / Processor: As defined under applicable law.

Personal Data We Collect

A. Data you provide directly

  • Account & profile data: name, work email, phone, title, organization, credentials.
  • Commercial data: billing contact details, invoicing info, tax identifiers (where applicable).
  • Communications: messages sent via forms, email, support tickets, chat, or surveys.
  • Events & marketing: registrations, attendance, preferences, feedback.
  • Security verification data: when needed to verify identity or prevent fraud.

B. Data collected automatically (Site and platform telemetry)

  • Device and usage data: IP address, device identifiers, browser type, OS, pages viewed, timestamps, referral URLs.
  • Cookies and similar technologies: for essential operations, analytics, performance, and marketing (subject to your choices).

C. Data from third parties

Business contact enrichment (where used), marketing partners, resellers, and public sources (e.g., LinkedIn) in accordance with their policies and applicable law.

D. AI/ML-related data

  • Prompt and interaction metadata (e.g., time, tool invocation, session identifiers) and limited content necessary to provide the requested functionality.
  • Model improvement: Unless explicitly stated in your contract or settings, Mobius does not use Customer Content to train generalized models. Where model improvement is offered, it is governed by contract and controls (opt-in/opt-out where applicable).

Note: If you are an end user of a customer organization, the enterprise customer determines what data is submitted into Mobius and how it is used within that organization’s configured workflows.

How We Use Personal Data

We process Personal Data for the following purposes:

  • Provide and operate the Services — account creation, authentication, access control, feature delivery.
  • Security, integrity, and fraud prevention — monitoring, incident detection, vulnerability prevention, abuse prevention.
  • Customer support and success — respond to requests, troubleshoot, and provide technical assistance.
  • Analytics and service improvement — usage analytics, performance optimization, reliability engineering.
  • Marketing and communications — product updates, newsletters, event invitations, and targeted campaigns (subject to consent/opt-out).
  • Sales and contracting — lead management, proposals, onboarding, renewals.
  • Compliance and legal obligations — tax, accounting, regulatory compliance, and lawful requests.
  • Corporate transactions — mergers, acquisitions, financing, and reorganization (with appropriate safeguards).

Legal Bases for Processing (where applicable)

Depending on jurisdiction, Mobius relies on one or more of:

  • Contract necessity (to deliver Services).
  • Legitimate interests (security, service improvement, B2B communications), balanced against your rights.
  • Consent (cookies/marketing where required).
  • Legal obligation (compliance with law).
  • Vital interests (rare; safety/security emergencies).

Cookies and Similar Technologies

Mobius uses cookies and similar technologies for:

  • Strictly necessary: site functionality, session management, security.
  • Preferences: language and UI preferences.
  • Analytics: aggregate insights to improve site performance.
  • Marketing: measuring campaigns and, where permitted, delivering relevant ads.

You can control cookies through:

  • the Site cookie banner/preferences center (if enabled),
  • browser settings,
  • opt-out mechanisms provided by certain analytics/advertising providers.

How We Share Personal Data

We may share Personal Data with:

  • Service providers (processors) — hosting, CDN, analytics, CRM, customer support tooling, email delivery, security monitoring, payment processing.
  • Affiliates — within Gaian group entities where needed for operations and support.
  • Business partners — resellers/integration partners when you engage them (subject to your direction).
  • Legal and compliance — to comply with law, enforce rights, prevent harm, or respond to valid legal process.
  • Corporate transactions — as part of due diligence/transfer, subject to confidentiality and data protection measures.

We do not sell Personal Data in the ordinary sense. If a jurisdiction defines “sale” or “sharing” broadly (e.g., certain ad-tech contexts), Mobius will provide appropriate opt-out mechanisms where required.

International Data Transfers

Your data may be processed in countries other than where you reside. When transferring Personal Data internationally, Mobius implements appropriate safeguards, which may include:

  • Standard contractual clauses (SCCs) or equivalent contractual protections,
  • Data transfer impact assessments where required,
  • Encryption and access controls.

Data Retention

We retain Personal Data only as long as necessary for the purposes in this policy, including:

  • duration of your account relationship,
  • contractual requirements,
  • legal, tax, and compliance obligations,
  • dispute resolution and enforcement.

Retention periods may vary by data category. Where feasible, data is anonymized or aggregated.

Security

Mobius implements technical and organizational measures designed to protect Personal Data, including:

  • encryption in transit and (where applicable) at rest,
  • least-privilege access controls and audit logging,
  • monitoring, vulnerability management, and incident response processes,
  • vendor security due diligence.

No method of transmission or storage is 100% secure; however, we maintain safeguards appropriate to the risk profile of the data processed.

Your Rights and Choices

Depending on your location, you may have rights to:

  • Access your Personal Data,
  • Correct inaccurate data,
  • Delete data (subject to legal exceptions),
  • Restrict or object to processing,
  • Data portability,
  • Withdraw consent (where processing is based on consent),
  • Opt out of marketing communications at any time (unsubscribe links or contact us),
  • Appeal decisions or lodge a complaint with a regulator.

To exercise rights, contact: privacy@mobiusdtaas.ai . We may verify your identity before fulfilling requests.

Children’s Privacy

The Services are not intended for children under the age of 13 (or the minimum age in your jurisdiction). We do not knowingly collect Personal Data from children. If you believe a child has provided Personal Data, contact us to request deletion.

Third-Party Links and Integrations

The Site and Services may link to third-party websites or integrate with third-party services (e.g., identity providers, collaboration tools). Their privacy practices are governed by their own policies. Mobius is not responsible for third-party privacy practices.

Sensitive Data

Unless explicitly required for a specific use case and governed by contract, Mobius does not request sensitive categories of Personal Data (e.g., health, biometric identifiers, political opinions). Please avoid submitting such data unless instructed under an agreed enterprise configuration.

Automated Decision-Making

Mobius may use automated processing to assist with security (fraud/abuse detection), personalization, and workflow automation. Where legally required, we will provide information about meaningful logic and allow you to request human review.

Jurisdiction-Specific Disclosures

A. EEA/UK

If you are in the EEA/UK, you may contact your local data protection authority. Where applicable, Mobius’s lawful bases are described in Section 5, and transfer safeguards in Section 8.

B. United States (State Privacy Laws)

If applicable, you may have rights to access, delete, correct, and opt out of certain processing. Mobius will honor legally required opt-out signals where applicable (e.g., Global Privacy Control) when technically feasible.

C. India

Where applicable under Indian privacy law, Mobius acts as a Data Fiduciary for relevant Personal Data and implements reasonable security safeguards. You may contact the grievance officer in Section 17.

Contact and Grievance Officer

Privacy Contact: privacy@mobiusdtaas.ai

Grievance Officer (India, if applicable): Ashwini Kotaru, ash@mobiusdtaas.ai

We will respond within timelines required by applicable law.

Changes to This Policy

We may update this Privacy Policy to reflect changes in practices, technologies, or legal requirements. We will post the updated version with a revised “Last Updated” date. Material changes may be notified via the Site or other appropriate channels.