Last Updated: 18 November 2025
Company: Cadenth Consulting Group Ltd. Liability Co. (“Cadenth,” “we,” “our,” “us”)
Legal Entity: California Limited Liability Company
Principal Office: 500 S. Sepulveda Blvd., Suite 4th FL – 100A, Los Angeles, CA 90049
Contact Email: hello@cadenth.com
Data Controller / LLC Manager: Astitva Sharma
This Data Protection Policy governs how Cadenth collects, processes, secures, retains, and transfers data.
It is designed to meet:
- CCPA (California Consumer Privacy Act)
- U.S. Federal commercial privacy norms
- GDPR-aligned transparency (where applicable)
This policy works in conjunction with Cadenth’s Privacy Policy and Terms & Conditions.
1. DEFINITIONS
Personal Data:
Information identifying a natural person.
Business/Operational Data:
Internal workflows, SOPs, exports, screenshots, CRM structures, system maps or documents provided by Client.
Data Controller:
Cadenth Consulting Group Ltd. Liability Co. (represented by Astitva Sharma).
Data Processor:
Third-party platforms Cadenth uses to store or process information.
2. SCOPE
This Policy applies to all data provided to Cadenth for consulting, diagnostics, analysis, system design, workflow mapping, automation building, and project delivery.
It does NOT apply to:
- Data stored only in third-party systems
- Client-managed internal systems
- Client-side cybersecurity responsibilities
- Data misused by the client or their employees
- Files shared insecurely by the client
3. CADENTH DATA CONTROLLER OBLIGATIONS
Cadenth will:
- Process data only for defined business purposes
- Apply reasonable security measures
- Ensure confidentiality within project scope
- Limit access to necessary personnel
- Comply with applicable privacy laws
Cadenth does not guarantee:
- Perfection of client systems
- Accuracy of client-provided data
- Non-interruption of third-party platforms
- Unlimited storage availability
- Permanent retention beyond legal/business requirements
4. CLIENT RESPONSIBILITY (MAXIMUM LIABILITY TRANSFER)
The Client explicitly accepts the following obligations:
4.1 Data Accuracy
Client is solely responsible for ensuring all information provided is:
- accurate
- complete
- lawful
- up-to-date
Cadenth is not liable for outcomes derived from inaccurate or incomplete client data.
4.2 Secure Transmission
Client is responsible for securely transmitting files. Cadenth is not liable for:
- intercepted emails
- insecure links
- unencrypted file transfers
- files compromised before reaching Cadenth
4.3 No Sensitive / Regulated Data Allowed
Client must NOT send:
- SSNs
- full credit card numbers
- bank account numbers
- protected health information (HIPAA)
- government ID scans
- biometric identifiers
- employee HR files
- authentication recovery codes
If client sends disallowed data, Cadenth bears no responsibility for its handling or protection.
4.4 Client Must Maintain Backups
Client must keep backup copies of all files they submit.
Cadenth is not responsible for lost, deleted, or corrupted client documents.
4.5 Client Responsible for Access Control
When Client grants Cadenth access to:
- CRM
- automation platforms
- dashboards
- email tools
- internal documentation
- shared workspaces
Client accepts full responsibility for:
- permission settings
- team access
- login integrity
- session management
- revoking access after project completion
5. PLATFORM-RISK TRANSFER CLAUSE
Cadenth uses third-party platforms (e.g., Notion, Zapier, Make, Airtable, CRMs, email service providers, analytics tools, meeting platforms).
Client understands and agrees:
Cadenth is NOT liable for:
- outages, downtime, or failures of third-party platforms
- data loss caused by third-party vendors
- API failures or automation misfires
- platform policy changes
- feature removals or software updates
- disruptions caused by CRM/automation/email systems
- client-side misconfigurations after project delivery
Any platform-related risk rests solely with the client.
6. NO DUTY TO MONITOR CLAUSE
After Cadenth delivers:
- workflows
- SOPs
- automation logic
- dashboards
- systems
- documentation
Cadenth has NO obligation to:
- monitor systems
- oversee automations
- check uptime
- maintain sequences
- ensure continued function after delivery
- review notifications, triggers, or alerts
Ongoing monitoring requires a separate paid agreement.
7. CLIENT SECURITY INFRASTRUCTURE RESPONSIBILITY
Client agrees:
- to maintain up-to-date antivirus/anti-malware
- to use secure, trusted devices
- to protect credentials
- to secure internal accounts
- to follow proper cybersecurity standards
Cadenth is not responsible for:
- breaches caused by client devices
- malware-infected submissions
- hacked client accounts
- credential leaks
- unauthorized access caused by client-side weaknesses
8. TYPES OF DATA PROCESSED
8.1 Personal Data
Includes:
- Name, email, phone
- Meeting recordings
- Communications
- Basic identifiers
8.2 Business/Operational Data
Includes:
- Workflows
- SOPs
- CRM exports
- Automation logic
- Screenshots
- Documents
- Notion/ClickUp/Airtable structures
Cadenth treats operational data as business data, not sensitive personal data.
9. PURPOSES OF PROCESSING
We process data to:
- deliver consulting, diagnostics, and systemization services
- build automations and workflows
- customize business systems
- facilitate communication
- maintain records
- comply with legal obligations
- prevent fraud
Cadenth NEVER sells data.
10. DATA SECURITY MEASURES
We apply commercially reasonable safeguards:
- HTTPS encryption
- access control
- MFA where supported
- secured cloud systems
- restricted internal access
Cadenth does not guarantee perfect security and is not liable for breaches beyond reasonable control.
11. DATA RETENTION
We retain:
- diagnostic data
- workflows
- documents
- reports
- recordings
for up to 7 years, unless law requires longer.
Client may request deletion unless retention is required by regulation.
12. INTERNATIONAL DATA TRANSFERS
Data may be processed in:
- the United States
- India (operations)
- globally distributed cloud environments
Cadenth ensures reasonable protection measures aligned with CCPA and GDPR principles.
13. THIRD-PARTY PROCESSORS
Cadenth uses third-party providers such as:
- Stripe/PayPal
- Zoom/Google Meet
- GA4
- Notion / ClickUp / Airtable
- Automation platforms (Make/Zapier)
- Email systems
- File hosting providers
Cadenth is not responsible for their operations, outages, or breaches.
14. DATA BREACH RESPONSE
In case of a Cadenth-controlled breach:
- notification will occur as required by law
- corrective measures will be taken
- liability is strictly limited to the total amount paid by the client
15. USER RIGHTS (GDPR & CCPA)
Clients may request:
- access
- correction
- deletion
- restriction
- data copy (where applicable)
Requests: hello@cadenth.com
16. RECORDING CONSENT
By engaging with Cadenth:
- you consent to call/session recordings
- recordings may be used internally
- recordings will be securely stored
- no external sharing without explicit client consent
17. DUTY TO REPORT SECURITY INCIDENTS
Client must immediately notify Cadenth if:
- credentials are compromised
- devices are infected
- unauthorized persons access shared systems
- breaches occur on their side
Failure to report invalidates related claims.
18. UPDATES TO THIS POLICY
Cadenth may modify this Policy at any time. Continued use = acceptance.
19. CONTACT INFORMATION
For Data Protection questions:
Cadenth Consulting Group Ltd. Liability Co.
Email: hello@cadenth.com
Address: 500 S. Sepulveda Blvd., Suite 4th FL – 100A, Los Angeles, CA 90049