Privacy Policy

Last Updated: 01-January-2024

This Privacy Policy (“Policy”) describes how CONSYSTENT INFOTECH PRIVATE LIMITED ("we," "us," or "our") collects, uses, and discloses personal information when providing data processing services. This Policy is in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Information We Collect

  1. Personal Information: We collect personal information that is necessary for providing our data processing services. This may include, but is not limited to, names, contact details, identification information, and any other data provided by our clients or their authorized representatives.
  2. Sensitive Data: We may also process sensitive personal data when explicitly provided by our clients for the purpose of providing our services. We handle sensitive data with utmost care and in compliance with applicable data protection laws.

Use of Information

  1. Data Processing: We process personal information as a data processor on behalf of our clients. We process the data solely for the purpose of providing our data processing services in accordance with our agreement with the client.
  2. Legal Basis: We process personal information based on the legal bases specified in Article 6 of the GDPR, including the necessity of processing for the performance of a contract, compliance with legal obligations, and legitimate interests pursued by the client or us.
  3. Data Security: We implement appropriate technical and organizational measures to protect personal information from unauthorized access, loss, or alteration. We maintain strict security protocols and conduct regular audits to ensure data security.

Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in our agreement with the client or as required by applicable laws and regulations. Once the retention period expires, we securely dispose of or anonymize the data.

Data Disclosure and Transfers

  1. Data Disclosure: We do not disclose personal information to third parties unless authorized by the client or required by law. Any disclosure made is limited to the purpose of providing our data processing services and is subject to appropriate safeguards.
  2. International Transfers: If personal information is transferred to countries outside the European Economic Area (EEA), we ensure that appropriate safeguards, such as standard contractual clauses or adequacy decisions, are in place to protect the data in accordance with applicable data protection laws.

Client Responsibilities

  1. Data Controller Obligations: Our clients, as data controllers, are responsible for ensuring a valid legal basis for processing personal information and obtaining necessary consents from data subjects where applicable. They are also responsible for providing any necessary notices to data subjects regarding data processing activities.
  2. Instructions and Compliance: Our clients are responsible for providing clear instructions for data processing and ensuring that our services are used in compliance with applicable data protection laws and regulations.

Individual Rights

We support our clients in fulfilling data subjects' rights as specified in the GDPR, including the right to access, rectification, erasure, restriction, data portability, and objection. Data subjects should direct their requests to the respective client, the data controller.

Changes to this Policy

We reserve the right to modify or update this Privacy Policy at any time. We will provide notice of any material changes through appropriate means. Your continued use of our services after the effective date of the updated Policy constitutes your acceptance of the changes.

Contact Us

If you have any questions or concerns regarding these Terms, please contact us using the information provided below.

Email: [email protected]

Phone: +91-776-031-9999