Privacy Policy
Privacy Policy
Privacy Policy
Purpose
The Indian Information Technology Act, 2000 mandates the secure processing of personal information and prevention of misuse of information. On April 11, 2011, India’s Ministry of Communications and Information Technology passed the Information Technology (Reasonable Security Practices, Procedures and Sensitive Personal Data or Information) Rules, which deals with practices and procedures for protection and maintenance of Personal Information (as defined below). Complementing this, the DPDP Act (as and when it comes into effect) establishes principles for lawful, consent-based data processing, enforces accountability on data fiduciaries, and ensures individual rights such as access, correction, and grievance redressal. Together, these laws provide a robust mechanism for safeguarding personal data while promoting innovation and transparency. It is Opensite Technologies Private Limited (“Company”) policy to comply with the privacy legislations within each jurisdiction in which the Company entity operates.
The Company is committed to respecting the privacy of every person, including employees of the Company, business partners as well as vendors, dealers and all others who share their sensitive personal data or information with the Company.
The purpose of this Policy, as amended from time to time, is to give the Information Providers, an understanding on how the Company intends to collect, receive, possess, store, transfer, handle, deal with and use the Sensitive Personal Data provided.
Scope and Applicability
This privacy policy (‘Policy’) is applicable to employees, businesses partners/associates, vendors, dealers, customers etc. (‘Information Providers’), who disclose Sensitive Personal Data to the Company for lawful business requirements of the Company.
“Personal Data” means any information that relates to a natural person, which, either directly or indirectly, in combination with other information available or likely to be available with a body corporate, is capable of identifying such person.
“Sensitive Personal Data” of a person, means under the Indian Information Technology Rules 2011, means such Personal Data which consists of information relating to:
Password;
Financial Information such as bank account or credit card or debit card or other payment instrument details;
Physical, physiological and mental health condition;
Sexual orientation;
Medical records and history;
Biometric Information;
Any other details relating to the above mentioned, provided by any person to the Company for providing services; and
Any Information received pursuant to the above mentioned by the Company for processing, or storing such Information under a lawful contract or otherwise.
Provided that any Information that is freely available or accessible in public domain or furnished under the Right to Information Act, 2005 or any other law for the time being in force will not be considered to be Sensitive Personal Data.
Sensitive Personal Data of the Information Providers may be required to be collected, maintained and transferred for business and official purposes with the express consent of the Information Providers. Such Sensitive Personal Data may have to be shared with other group companies or third party, within and outside the country, as per lawful business requirements of the Company.
The Company shall ensure confidentiality of such Sensitive Personal Data and grievances, if any, related to such issues shall be resolved by the grievance officer appointed by the Company for this purpose (‘Grievance Officer’).
By executing a consent letter provided by the Company, the Information Providers shall consent to the collection, storage, usage, disclosure, processing and transfer of their Sensitive Personal Data provided to the Company for the purposes mentioned in this Policy.
Information Providers may choose not to provide their Sensitive Personal Data if they do not agree with this Policy or otherwise. Additionally, Information Providers may withdraw their previously given consent by providing written notice. In the event of death or incapacity, Information Providers shall have the right to nominate a representative to exercise these rights.
What information Company may collect?
The Company may collect the following types of Sensitive Personal Data, including but not limited to:
Name, contact details, details of past employment (in the case of employees, wherever relevant);
Financial details such as bank account, pan card, salary, provident fund details;
Password(s) used for company provided systems, websites/web pages;
Physical, physiological and mental health condition;
Medical records and history; and
Biometric information.
Purpose of collection
The Company may collect, use, receive, possess store, disclose, process and transfer the Sensitive Personal Data for various purposes, including but not limited to, the following:
To enable functioning of the Company’s business;
In connection with a variety of purposes relating to employment or engagement of employees, including but not limited to, general HR administration; organization planning and management;
Compliance with company policies, code of conduct and internal regulations;
Business mergers and acquisitions; business transfers, etc.;
Legal, judicial, governmental and regulatory compliance;
Tax administration and compliance;
Overseas affiliates’ compliance with foreign laws and cooperation with overseas regulators;
To transfer to IT services providers;
Back ground verification purposes; credit and security check;
To administer or otherwise carry out obligations in relation to any agreement the Information Providers have with the Company; and
To investigate, prevent, or initiate action regarding illegal activities, suspected fraud, violations of the law or as otherwise required by law.
The Information Providers consent that the collection, usage, storage, disclosure, processing and transfer of any Sensitive Personal Data or any other information as disclosed under this Policy shall not cause any loss or wrongful gain to the Information Providers, if the same is used for the above-mentioned lawful purposes.
Sharing and transferring of Sensitive Personal Data
The Company may need to share the Sensitive Personal Data with group companies within and outside India, business associates and/or third parties, within and outside India in connection with the lawful purposes, as mentioned above.
The Information Providers authorize the Company to exchange, disclose, transfer, share, part with the Sensitive Personal Data and/or any information provided, within or outside India for the above purposes.
Security
The Company has adopted reasonable security practices and procedure to ensure that the Sensitive Personal Data is collected and preserved in a secured manner. In case the Information Providers wish to know more details about the adopted reasonable security practices and procedures, they may contact the designated person for the same.
While the Company will endeavour to take all reasonable and appropriate steps to keep secure any information and prevent its unauthorized access, the Information Providers agree and acknowledge that the Company cannot provide any absolute assurance regarding the security of the Sensitive Personal Data. To the fullest extent permissible under applicable laws, the Company disclaims any liability in relation to any breach of security or loss or disclosure of information in relation to the Personal Data.
If the Information Provider needs to access update or correct the Sensitive Personal Data, he/she may contact the designated person for the same.
Data Retention
It is the Company’s policy to retain Sensitive Personal Data of the Information Providers only for as long as the Company believes it to be necessary for the purposes for which such Sensitive Personal Data was collected, subject to any legal requirements for the information to be retained for longer period, if any.
Changes to this Privacy Policy
The Company reserves the right to revise and update this Privacy Policy at any time without expressly informing the Information Providers. Any such revisions will be effective on and from the date of posting the same to the intranet/internet website of the Company and will apply to all information collected both prior to and following the effective date. You should visit the website, internal database and/or intranet periodically to review the current policies with regard to Sensitive Personal Data.
Grievance
The Company has nominated Mr. Harshil Devang Naik as the Grievance Officer of the Company. The Information Providers may approach the Grievance Officer if they have any grievance, questions or concerns with respect to the processing and use of their Sensitive Personal Data. The Grievance Officer can be contacted by mail at harshil@contineu.ai.
Purpose
The Indian Information Technology Act, 2000 mandates the secure processing of personal information and prevention of misuse of information. On April 11, 2011, India’s Ministry of Communications and Information Technology passed the Information Technology (Reasonable Security Practices, Procedures and Sensitive Personal Data or Information) Rules, which deals with practices and procedures for protection and maintenance of Personal Information (as defined below). Complementing this, the DPDP Act (as and when it comes into effect) establishes principles for lawful, consent-based data processing, enforces accountability on data fiduciaries, and ensures individual rights such as access, correction, and grievance redressal. Together, these laws provide a robust mechanism for safeguarding personal data while promoting innovation and transparency. It is Opensite Technologies Private Limited (“Company”) policy to comply with the privacy legislations within each jurisdiction in which the Company entity operates.
The Company is committed to respecting the privacy of every person, including employees of the Company, business partners as well as vendors, dealers and all others who share their sensitive personal data or information with the Company.
The purpose of this Policy, as amended from time to time, is to give the Information Providers, an understanding on how the Company intends to collect, receive, possess, store, transfer, handle, deal with and use the Sensitive Personal Data provided.
Scope and Applicability
This privacy policy (‘Policy’) is applicable to employees, businesses partners/associates, vendors, dealers, customers etc. (‘Information Providers’), who disclose Sensitive Personal Data to the Company for lawful business requirements of the Company.
“Personal Data” means any information that relates to a natural person, which, either directly or indirectly, in combination with other information available or likely to be available with a body corporate, is capable of identifying such person.
“Sensitive Personal Data” of a person, means under the Indian Information Technology Rules 2011, means such Personal Data which consists of information relating to:
Password;
Financial Information such as bank account or credit card or debit card or other payment instrument details;
Physical, physiological and mental health condition;
Sexual orientation;
Medical records and history;
Biometric Information;
Any other details relating to the above mentioned, provided by any person to the Company for providing services; and
Any Information received pursuant to the above mentioned by the Company for processing, or storing such Information under a lawful contract or otherwise.
Provided that any Information that is freely available or accessible in public domain or furnished under the Right to Information Act, 2005 or any other law for the time being in force will not be considered to be Sensitive Personal Data.
Sensitive Personal Data of the Information Providers may be required to be collected, maintained and transferred for business and official purposes with the express consent of the Information Providers. Such Sensitive Personal Data may have to be shared with other group companies or third party, within and outside the country, as per lawful business requirements of the Company.
The Company shall ensure confidentiality of such Sensitive Personal Data and grievances, if any, related to such issues shall be resolved by the grievance officer appointed by the Company for this purpose (‘Grievance Officer’).
By executing a consent letter provided by the Company, the Information Providers shall consent to the collection, storage, usage, disclosure, processing and transfer of their Sensitive Personal Data provided to the Company for the purposes mentioned in this Policy.
Information Providers may choose not to provide their Sensitive Personal Data if they do not agree with this Policy or otherwise. Additionally, Information Providers may withdraw their previously given consent by providing written notice. In the event of death or incapacity, Information Providers shall have the right to nominate a representative to exercise these rights.
What information Company may collect?
The Company may collect the following types of Sensitive Personal Data, including but not limited to:
Name, contact details, details of past employment (in the case of employees, wherever relevant);
Financial details such as bank account, pan card, salary, provident fund details;
Password(s) used for company provided systems, websites/web pages;
Physical, physiological and mental health condition;
Medical records and history; and
Biometric information.
Purpose of collection
The Company may collect, use, receive, possess store, disclose, process and transfer the Sensitive Personal Data for various purposes, including but not limited to, the following:
To enable functioning of the Company’s business;
In connection with a variety of purposes relating to employment or engagement of employees, including but not limited to, general HR administration; organization planning and management;
Compliance with company policies, code of conduct and internal regulations;
Business mergers and acquisitions; business transfers, etc.;
Legal, judicial, governmental and regulatory compliance;
Tax administration and compliance;
Overseas affiliates’ compliance with foreign laws and cooperation with overseas regulators;
To transfer to IT services providers;
Back ground verification purposes; credit and security check;
To administer or otherwise carry out obligations in relation to any agreement the Information Providers have with the Company; and
To investigate, prevent, or initiate action regarding illegal activities, suspected fraud, violations of the law or as otherwise required by law.
The Information Providers consent that the collection, usage, storage, disclosure, processing and transfer of any Sensitive Personal Data or any other information as disclosed under this Policy shall not cause any loss or wrongful gain to the Information Providers, if the same is used for the above-mentioned lawful purposes.
Sharing and transferring of Sensitive Personal Data
The Company may need to share the Sensitive Personal Data with group companies within and outside India, business associates and/or third parties, within and outside India in connection with the lawful purposes, as mentioned above.
The Information Providers authorize the Company to exchange, disclose, transfer, share, part with the Sensitive Personal Data and/or any information provided, within or outside India for the above purposes.
Security
The Company has adopted reasonable security practices and procedure to ensure that the Sensitive Personal Data is collected and preserved in a secured manner. In case the Information Providers wish to know more details about the adopted reasonable security practices and procedures, they may contact the designated person for the same.
While the Company will endeavour to take all reasonable and appropriate steps to keep secure any information and prevent its unauthorized access, the Information Providers agree and acknowledge that the Company cannot provide any absolute assurance regarding the security of the Sensitive Personal Data. To the fullest extent permissible under applicable laws, the Company disclaims any liability in relation to any breach of security or loss or disclosure of information in relation to the Personal Data.
If the Information Provider needs to access update or correct the Sensitive Personal Data, he/she may contact the designated person for the same.
Data Retention
It is the Company’s policy to retain Sensitive Personal Data of the Information Providers only for as long as the Company believes it to be necessary for the purposes for which such Sensitive Personal Data was collected, subject to any legal requirements for the information to be retained for longer period, if any.
Changes to this Privacy Policy
The Company reserves the right to revise and update this Privacy Policy at any time without expressly informing the Information Providers. Any such revisions will be effective on and from the date of posting the same to the intranet/internet website of the Company and will apply to all information collected both prior to and following the effective date. You should visit the website, internal database and/or intranet periodically to review the current policies with regard to Sensitive Personal Data.
Grievance
The Company has nominated Mr. Harshil Devang Naik as the Grievance Officer of the Company. The Information Providers may approach the Grievance Officer if they have any grievance, questions or concerns with respect to the processing and use of their Sensitive Personal Data. The Grievance Officer can be contacted by mail at harshil@contineu.ai.
