Legal

Privacy Policy

Last updatedMay 28, 2026

Engain is an AI-native software development agency. We are committed to respecting your online privacy and recognizing your need for proper data protection. We comply with applicable data protection laws to protect any personal information you share with us and ensure secure and trustworthy business cooperation.

This Privacy Policy is transparent about the way we use information gathered on our site. It ensures the level of data protection prescribed by the European Union Data Protection Regulations (GDPR) and explains how we collect, process, and store the collected data.

Personal Information We Collect and Use

The following types of your personal data may be collected:

  • Contact form and email data — information you provide via contact forms or email messages, which may include your name, email address, company name, phone number, and other information you choose to share.
  • Job application data — information you provide when applying for a position or sending your résumé, which may include your name, email address, work experience, phone number, and other information you choose to share.
  • Browsing behavior data — information regarding your behavior on our web pages in the course of browsing the Engain website, which may include the pages you visit, navigation patterns, time spent on each page, the browser you use and its version, etc. For more information, please refer to our Cookie Policy.

How We Use Your Personal Information

We gather and process your personal information for the following purposes:

  • Analysis of the efficiency of our marketing campaigns.
  • Delivery of relevant communications, offers, and updates about Engain services via various channels.
  • Improvement of our website's performance and user experience.
  • Display of personalized content tailored to you based on your previous website visits and behavior.
  • Statistics gathering for the further analysis of our audience and clients.
  • Compliance with internal and external audit requirements, as well as for information security purposes.
  • Improvement of safety during your visit to our website and interaction with our services.

How We Process and Retain Your Personal Data

We follow a particular set of principles to ensure that your data is processed and retained in a secure and lawful way:

  • We process data lawfully and transparently based on a valid legal ground.
  • We only collect your personal information to the minimum extent necessary to achieve the purposes for which it is collected.
  • We follow best security practices to protect your personal information against unauthorized access, data breaches, loss, and any other possible damage.
  • All collected data is stored according to the storage limitation principle — we store it only for the time necessary for the purposes for which the information is processed.
  • All collected personal data is retained for as long as it is necessary for the purposes outlined in this Privacy Policy and for compliance with our legal obligations, after which it will be deleted or archived.

Please note that a longer retention period may be required to resolve disputes, implement agreements, protect our assets, or respond to regulatory requests. In these cases, the gathered data will be used and retained until the case is closed.

Lawfulness of Processing

To process your data legally, at least one of the following legitimate grounds must apply:

  • Consent — you have given us consent to collect and process your data for one or more specific purposes.
  • Contractual necessity — the processing of personal data is necessary to execute an agreement between you (or your employer) and Engain, or to take the necessary steps prior to entering into such an agreement.
  • Legal obligation — the processing of personal data is necessary for compliance with a legal obligation to which Engain is subject.

Security of Personal Data

In order to ensure the safety of your personal data, we strictly follow a set of security guidelines and protect your data in accordance with applicable data protection requirements. Our main security measures include:

  • Data transfer only in encrypted form.
  • Restricted access to collected data on a need-to-know basis.
  • All external HTTP/HTTPS requests proceed through a proxy server protected against SQL injection, file injection, and other malicious activity.
  • Use of Intrusion Detection System (IDS) and Intrusion Prevention System (IPS).
  • Enforcement of a password policy across all systems.
  • Firewall protection on servers; secure connections established via SSH keys and limited to authorized IP addresses.
  • A software vulnerability detection system is in place and consistently updated.

Changes to This Privacy Policy

Engain reserves the right to make amendments to this Privacy Policy and modify it at any time. Changes take effect as soon as they are published. You are advised to review this Privacy Policy periodically to stay informed of any updates.

Contact Information

If you have any questions or comments regarding our Privacy Policy and described data collection practices, please contact us: