Platform · Plain language

Privigo, in plain language: how it actually works

Privigo sits between your customers and your operational systems. It captures consent, isolates personal data in a secure vault layer, and gives you the audit trail you need when a regulator, enterprise client, or data principal asks what happened to their information.

Consent at collection
Vault-backed evidence
Rights fulfilment
Exportable audit trail

The flow

From first visit to audit-ready evidence

Most compliance tools stop at a privacy policy PDF. Privigo runs the full loop — so what you show a customer, what you store, and what you can prove later stay linked.

1 · Customer arrives

On your website, app, form, or WhatsApp journey — wherever personal data is collected.
2 · Consent captured

Notice text and purpose choices are recorded with a timestamp — not a generic checkbox buried in terms.
3 · Data vaulted

Sensitive identifiers and consent evidence sit in a controlled vault boundary, not scattered across app servers.
4 · Purposes verified

Before marketing, bureau pulls, or partner sharing — Privigo checks whether the lawful basis still holds.
5 · DSR fulfilled

Access, correction, erasure, and withdrawal requests route to the right queue with SLA tracking.
6 · Audit trail maintained

The same timeline your operators see is what you export for boards, clients, and regulatory dialogue.

Privigo Guardrails

Your chatbot and WhatsApp are leaking PII

Every time a customer types their Aadhaar number, PAN, or health details into a chatbot or WhatsApp Business thread, that data can hit an LLM or log file that was never designed for it. Privigo Guardrails intercepts it first.

Real-time PII scanner — PAN, Aadhaar, phone numbers, account numbers, health data, salary, addresses.
Tokenisation before storage — sensitive fragments never land in CRM or LLM logs in plaintext.
Per-message audit trail — every flagged message is logged for compliance review.
Works on live channels — chatbots, WhatsApp Business, and customer-facing messaging flows.

Three tiers

Start free. Earn the badge. Go full organisation.

Each step builds on the last. No prices on this page — scope and cohort-specific pricing are discussed after your Gap Analysis or setup call.

Free Digital presence

Cookie consent, AI privacy policy, compliant forms, Data Principal Portal (view-only), client admin portal, and digital-scoped audit logs.

Website and mobile app
One 30-min setup call · live in 48 hours
Free under per-cohort thresholds

See what's included →

Paid DPDPA Ready

Everything in free plus a publicly verifiable badge, full consent workflows, expanded audit logs, and higher volume thresholds.

Badge live in ~7 working days
Verification URL anyone can check
Digital presence fully defensible

See what's included →

Full DPDPA Compliant

Employee data lifecycle, third-party processor DPAs, internal system integrations, full DSR fulfilment, cohort regulatory overlays, and breach SOP.

HMS, LOS, ATS, ERP integrations
Organisation-wide audit trail
Typical timeline: 6–8 weeks

See what's included →

AI on Privigo

Specific AI capabilities — not vague "AI-powered" claims

The .ai in privigo.ai is not decoration. Privigo uses AI where it removes manual compliance work — and keeps humans in control of legal decisions.

AI privacy policy — generates a DPDPA-compliant, cohort-specific privacy policy from a short questionnaire. Updated as Rules evolve.
AI Gap Analysis — crawls your public website plus a short organisational questionnaire; synthesises a private findings report with evidence you can share with leadership.
AI-designed compliant forms — consent-capture forms with correct purpose statements and lawful grounds — not forms that merely look right.
Data Principal Request routing — classifies incoming rights requests (access, correction, erasure, withdrawal) and routes to the correct workflow with deadline tracking.

Customer data is never used to train Privigo's models.

Product surface

What it looks like in practice

Web form with data protection notice and purpose-based consent choices — Inform · Collection Notice and purposes at the point of capture.

Data principal portal showing consent history — Empower · Portal Principals see history and withdrawal paths.

Audit log with filters and export — Report · Audit Filter, drill, and export the same lineage regulators ask for.

For technical buyers

Architecture, APIs, webhooks & coexistence

Collection-edge and API-first modes, outbound webhooks, vault-backed ledger, and DP Portal — designed to coexist with CRM, CDP, and core apps. Click to expand.

Logical architecture

Three planes: collection, control, and trust

Collection surfaces stay thin. Policy, evidence, and sensitive material live behind explicit service boundaries.

Fig. 1 — Component topology

Read-only reference · not a deployment diagram

flowchart TB subgraph coll[Collection plane] W[Embeddable web forms] A[REST and webhooks] end subgraph ctrl[Control plane] CE[Consent and notice engine] RW[Rights workflow] RP[Reporting and exports] end subgraph trust[Trust layer] V[(Secrets vault)] L[(Consent and ops ledger)] X[(Encrypted principal context)] end W --> CE A --> CE CE --> L CE --> V RW --> X RW --> L RP --> L

Enterprise coexistence

Designed to sit next to CRM, CDP, core apps, and your data platform

Privigo is the system of record for lawful processing posture — your CRM and line-of-business systems receive webhooks bound to notice versions and correlation IDs.

Fig. 2 — Privigo in the IT landscape

flowchart TB subgraph dp[Data principals] P[Browser and mobile] end subgraph modes[How consent enters Privigo] EDGE[Privigo collection edge forms and embeds] LEGACY[Your applications] end subgraph k[Privigo platform] ENG[Consent and rights engine] VLT[(Vault and ledger)] REST[REST APIs] HOOK[Outbound webhooks] PORTAL[DP Portal] end subgraph est[Your estate] CRM[CRM CDP marketing] CORE[Line-of-business systems] end P --> EDGE P --> PORTAL EDGE --> ENG LEGACY --> REST REST --> ENG ENG --> VLT VLT --> HOOK HOOK --> CRM HOOK --> CORE PORTAL --> ENG

Operating models

Collection edge · API-first backplane

A Collection edge

Privigo-rendered notices and purpose controls at the moment personal data is collected.

B API-first

Your UX stays unchanged; server-side integration records consent and registers principals for rights handling.

Integrations

Webhooks and REST — machine contracts for your stack

Domain	Example events	Typical consumers
Consent	Granted, updated, withdrawn	CRM, CDP, campaign tools
Rights	Request opened, fulfilled, rejected	Ticketing, SLA dashboards
Notice	Published, superseded	CMS hooks, policy archives

Data Principal Portal

One front door for notices, consent history, and statutory rights

Authenticated experience where individuals see the same notice and consent lineage your operators and auditors see.

Security model

Vault-backed trust boundary

Signing material and integration secrets are brokered through controlled interfaces — not configuration files on worker nodes.

Next step

See where you stand — then start free

Gap Analysis scans your website and asks a few organisational questions. Or book a 30-minute setup call and go live in 48 hours.

From first visit to audit-ready evidence

1 · Customer arrives

2 · Consent captured

3 · Data vaulted

4 · Purposes verified

5 · DSR fulfilled

6 · Audit trail maintained

Your chatbot and WhatsApp are leaking PII

Start free. Earn the badge. Go full organisation.

Free Digital presence

Paid DPDPA Ready

Full DPDPA Compliant

Specific AI capabilities — not vague "AI-powered" claims

What it looks like in practice

Architecture, APIs, webhooks & coexistence

Three planes: collection, control, and trust

Fig. 1 — Component topology

Designed to sit next to CRM, CDP, core apps, and your data platform

Fig. 2 — Privigo in the IT landscape

Collection edge · API-first backplane

A Collection edge

B API-first

Webhooks and REST — machine contracts for your stack

One front door for notices, consent history, and statutory rights

Vault-backed trust boundary

See where you stand — then start free