idcube

Privacy & security policy

This privacy policy will explain how our organization uses the personal data we collect from you when you use our website.

Foreword

We at Our Organisation are committed to protecting the information that you share with us and explaining how we collect process and share that information online. When you use our services, you’re trusting us with your information. We understand this is a big responsibility and work hard to protect and entrust your information to keep it secure. We provide you with insight into the privacy practices employed here at Our Organisation.

Background

This Policy provides an overview of how Our Organisation’s information of “data subjects” (hereinafter referred to as “You or you’re”) personal data are collected, how they’re handled, and how your privacy is protected. In this policy, “we”, “us” and “our” may refer to Our Organisation Inc. or its subsidiaries and affiliates.

Services Provided by Our Organisation

Our Organisation platform is designed to help you consistently with our services. We offer the capacity to provide a platform for all the services required by small and medium enterprises, providing an end-to-end solution enabling businesses.

What data do we collect and where we store?

Our Company collects the following data:

  • Personal identification information (Name, Email Address, Phone Number, etc.)
  • Geographical location of PII data is Central India Azure Microsoft-SQL Database.

How do we collect your data?

You or your employer directly provide Our Company with the data we intend to collect. We collect data and process data when you:

  • Register online or avail of our products or services.

Our Company may also receive your data indirectly from the following sources:

  • None

Consent Management

Obtaining Consent:

When you visit our website or platform, we will request your consent before collecting any personal information. Clear and easily understandable explanations will be provided regarding the purpose and scope of data processing activities. You have the right to grant or deny consent.

Modification of Consent:

If you wish to modify your consent for data processing,You can do so easily by contacting our DPO or our helpline. Modification will not affect the lawfulness of any processing based on prior consent.

Withdrawal of Consent:

If you wish to withdraw your consent for data processing, you can do so easily by contacting our DPO or our helpline. Withdrawal will not affect the lawfulness of any processing based on prior consent.

By incorporating this consent management facility, we aim to empower you with control over your personal data, ensuring transparency and compliance with privacy regulations.

How will we use your data?

Our Company collects your data so that we can:

  • Provide your service, and manage your account to provide the service.
  • Email you with special offers on other products and services we think you might like.
  • Email you with real-time alerts of your organization.

If you agree, Our Company will share your data with our partners who are also an essential part of the service we intend to provide.

How do we store your data? (If you are not located in the EU)

Our Company securely stores your data at a Secure storage location in Central India. We collect PII data like Email ID, Contact Number, Photograph, Date of Birth, Cookies, Mobile Location etc. Our Company will keep your PII data for as long as our service is availed. In Sql Database it is stored as encrypted form and can’t be decrypted. Only it is visible by application after valid login authentication. Once this period has expired, we will delete the data by scrubbing off all PII within a month of Service Termination.

Marketing

Our Company would like to send you information about our products and services that we think you might like. If you no longer wish to be contacted for marketing purposes, you can drop us a mail.

What are the data subject rights?

Our Company would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request Our Company for copies of your personal data.

The right to rectification – You have the right to request that Our Company correct any information you believe is inaccurate. You also have the right to request Our Company to complete information you believe is incomplete.

The right to erasure – You have the right to request that Our Company erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that Our Company restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to Our Company’s processing of your personal data, under certain conditions.

What are your data protection rights?

Our Company wants to ensure you are fully aware of your data protection rights. Every user is entitled to the following: The right to access – You have the right to request Our Company copies of your data. We may charge you a small fee for this service.

The right to rectification – You have the right to request that Our Company correct any information you believe is inaccurate. You also have the right to request Our Company to complete information you believe is incomplete. The right to erasure — You have the right to request that Our Company erase your data, under certain conditions. The right to restrict processing – You have the right to request that Our Company restrict the processing of your personal data, under certain conditions. The right to restrict processing – You have the right to request that Our Company restrict processing your data under certain conditions. The right to object to processing – You have the right to object to Our Company’s processing of your data, under certain conditions. The right to data portability – You have the right to request that Our Company transfer the data that we have collected to another organization, or directly to you, under certain conditions. If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email: Email us at: Contact@idcubesystems.com Call us: +91-120-4130715

DPO details and Responsibilities

Name: Mr. Ujjal Sarmah
Email: Ujjal@idcubesystems.com
Contact:+91 9871647776

The responsibilities of the Data Protection Officer (DPO) typically include:

Monitoring Compliance: Ensuring that the organization complies with data protection laws and regulations, such as GDPR (General Data Protection Regulation) or CCPA (California Consumer Privacy Act).

Advising on Data Protection Obligations: Providing guidance and advice to the organization and its employees on their data protection obligations and responsibilities.

Conducting Data Protection Impact Assessments (DPIAs): Assessing the potential risks and impact of data processing activities on individuals’ privacy rights and advising on measures to mitigate these risks.

Cooperating with Data Protection Authorities: Acting as a point of contact for data protection authorities and cooperating with them on matters relating to data protection compliance.

Educating and Training Staff: Conducting training sessions and raising awareness among employees about data protection laws, policies, and best practices.

Monitoring Data Breaches: Investigating and reporting data breaches to the relevant authorities and individuals affected, as required by data protection laws.

Reviewing Data Protection Policies and Procedures: Regularly reviewing and updating the organization’s data protection policies, procedures, and practices to ensure they remain effective and compliant with applicable laws and regulations.

Handling Data Subject Requests: Managing requests from individuals to exercise their rights under data protection laws, such as the right to access, rectify, or erase their personal data.

Conducting Privacy Impact Assessments (PIAs): Assessing the impact of new projects, products, or systems on individuals’ privacy and advising on measures to minimize privacy risks.

Acting as a Liaison with Stakeholders: Serving as a liaison between the organization, data subjects, data protection authorities, and other stakeholders on matters relating to data protection and privacy.

These responsibilities may vary depending on the specific requirements of the organization and the applicable data protection laws in their jurisdiction.

What are cookies?

Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our websites, we may collect information from you automatically through cookies or similar technology. For further information, visit the cookie link (wiki).

How do we use cookies?

Our Company does not use cookies. We only use a session variable that is to

  • Keeping you signed in to our application

Privacy policies of other websites

The Our Company website contains links to other websites. Our privacy policy applies only to our website, so if you click on a link to another website, you should read their privacy policy.

Changes to our privacy policy

Our Company keeps its privacy policy under regular review and places any updates on this web page. This privacy policy was last updated on 07-May-2024.

How to contact us?

If you have any questions about Our Company’s privacy policy or the data we hold on you or would like to exercise one of your data protection rights, please do not hesitate to contact us.
Email: contact@idcubesystems.com
Call: +91-120-4130715

How to contact the appropriate authority?

Should you wish to report a complaint or if you feel that Our Company has not addressed your concern satisfactorily, you may contact the Information Commissioner’s Office.

Disclosure of transfer of Data?

IDCUBE not sharing any PII data with any third party vendors.

ENFORCEMENT

We expect all employees to comply with this policy and any related policies, standards, processes, procedures, and guidelines. Failure and/or refusal to abide by this policy may be deemed a violation. Compliance with the policies will be a matter of periodic review by the Information security officer / Information Security Team. Any employee found to have violated this policy may be subject to disciplinary action, as deemed appropriate by management and Human Resources policies.