Privacy Policy
Effective Date: April 14, 2026
Last Updated: June 07, 2026
1. Introduction
Saileor (“we,” “us,” or “our”) operates as a global Employer of Record (EOR) and Agent of Record (AOR) service, enabling companies worldwide to hire, onboard, and manage employees in India without establishing a local legal entity. We are committed to protecting the privacy and security of personal data entrusted to us by our clients, their employees, and visitors to our website (saileor.com).
This Privacy Policy explains how we collect, use, disclose, and safeguard personal information in connection with our services. By engaging our services or accessing our website, you acknowledge that you have read and understood this Privacy Policy.
2. Scope of This Policy
This Privacy Policy applies to:
- Client companies that engage Saileor for EOR or AOR services
- Employees and contractors managed through Saileor’s EOR/AOR services
- Prospective clients and employees who interact with our services
- Visitors to our website and digital platforms
3. Information We Collect
3.1 Client Company Information
We collect business information from client companies, including: company name and registration details, business address and contact information, authorized representative details, billing and payment information, and service agreement documentation.
3.2 Employee Information
To fulfill our EOR and AOR obligations, we collect and process the following categories of employee data:
Personal Identification
- Full legal name, date of birth, gender, nationality
- Government-issued identification (PAN, Aadhaar, passport)
- Residential and correspondence addresses
- Contact details (phone number, email address)
Employment Information
- Employment history and qualifications
- Job title, department, and reporting structure
- Employment contract terms and conditions
- Work permit and visa documentation (where applicable)
Financial Information
- Salary and compensation details
- Bank account information for payroll processing
- Tax identification numbers and withholding information
- Provident Fund (PF), Employee State Insurance (ESI), and Professional Tax details
Benefits and Statutory Information
- Health insurance enrollment and beneficiary details
- Leave balances and attendance records
- Emergency contact information
3.3 Website and Digital Information
When you visit our website, we may automatically collect: IP address and device information, browser type and operating system, pages visited and time spent on site, referring website addresses, and information submitted through contact forms.
4. How We Use Your Information
We process personal information for the following purposes:
4.1 Service Delivery
- Employee onboarding, payroll processing, and benefits administration
- Compliance with Indian employment laws and statutory requirements
- Tax withholding, filing, and remittance to government authorities
- Employment contract management and HR administration
4.2 Legal and Regulatory Compliance
- Compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act)
- Compliance with labour laws including the Shops and Establishments Act, Payment of Wages Act, EPF Act, ESI Act, and applicable state regulations
- Responding to lawful requests from regulatory authorities
- Maintaining records as required by applicable laws
4.3 Business Operations
- Communication with clients and employees regarding services
- Internal administration, analytics, and service improvement
- Fraud prevention and security monitoring
5. Legal Basis for Processing
We process personal data based on one or more of the following legal grounds:
- Contractual Necessity: Processing required to fulfill our EOR/AOR service agreements
- Legal Obligation: Processing required to comply with Indian employment, tax, and data protection laws
- Legitimate Interests: Processing for fraud prevention, security, and service improvement
- Consent: Where specifically required, we obtain explicit consent for processing
6. Data Sharing and Disclosure
We may share personal information with the following categories of recipients:
6.1 Client Companies
We share employee information with the client company that engaged our services for their employment relationship, including performance data, attendance, and payroll summaries as agreed in our service contract.
6.2 Government and Regulatory Authorities
We submit required information to: Income Tax Department (TDS filings, Form 16), Employees’ Provident Fund Organisation (EPFO), Employees’ State Insurance Corporation (ESIC), Professional Tax authorities, Ministry of Labour and Employment, and other regulatory bodies as mandated by law.
6.3 Service Providers
We engage trusted third-party service providers for: banking and payment processing, insurance and benefits administration, background verification (with consent), IT infrastructure and cloud services, and legal and compliance advisory. All service providers are bound by confidentiality obligations and data processing agreements.
6.4 Legal Requirements
We may disclose information when required by law, court order, or to protect our legal rights, investigate fraud, or respond to government requests.
7. International Data Transfers
As a global EOR service provider, we may transfer personal data across international borders. When transferring data outside India, we ensure compliance with applicable data protection laws, including the DPDP Act requirements for cross-border transfers. We implement appropriate safeguards such as standard contractual clauses and ensure receiving jurisdictions provide adequate data protection.
8. Data Security
We implement robust technical and organizational measures to protect personal data, including:
- Encryption of data in transit and at rest
- Secure access controls and authentication mechanisms
- Regular security assessments and vulnerability testing
- Employee training on data protection and security protocols
- Incident response and breach notification procedures
- Physical security measures for data storage locations
9. Data Retention
We retain personal data for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, and protect our legitimate interests. Specifically:
- Employment Records: Retained for the duration of employment plus 8 years, as required by Indian labour laws
- Tax Records: Retained for 8 years from the end of the relevant financial year
- Statutory Compliance Records: Retained as per requirements of respective statutes (PF, ESI, etc.)
- Website Data: Retained for 2 years unless longer retention is required for legal purposes
Upon expiration of retention periods, data is securely deleted or anonymized.
10. Your Rights
Under the DPDP Act and applicable laws, you have the following rights:
- Right to Access: Request confirmation of whether we process your data and obtain a copy
- Right to Correction: Request correction of inaccurate or incomplete personal data
- Right to Erasure: Request deletion of personal data, subject to legal retention requirements
- Right to Withdraw Consent: Withdraw consent where processing is based on consent
- Right to Grievance Redressal: File complaints with our Data Protection Officer or the Data Protection Board of India
To exercise these rights, please contact us using the details provided in Section 13 below.
11. Cookies and Tracking Technologies
Our website uses cookies and similar technologies to enhance user experience, analyze website traffic, and understand user preferences. You can manage cookie preferences through your browser settings. Essential cookies required for website functionality cannot be disabled.
12. Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices, services, or applicable laws. Material changes will be communicated through our website or direct notification. The “Last Updated” date at the top of this policy indicates when it was most recently revised.
13. Contact Us
For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Saileor
Email: sales@saileor.com
Website: www.saileor.com
Response Time: We aim to respond to all privacy-related inquiries within 30 days.
© 2026 Saileor. All rights reserved.
