Effective Date: 28-February-2024
1. Purpose & Scope
This policy ensures that HEARTIE complies with data protection laws, including the Information Technology Act, 2000 and global data protection standards where applicable.
2. Data Processing Principles
We adhere to:
- Transparency: Clearly informing users about data collection.
- Purpose Limitation: Using data only for legitimate business purposes.
- Data Minimization: Collecting only necessary data.
- Security: Implementing strong security controls.
3. Data Retention
We retain personal data only as long as required for business, tax, or legal compliance purposes. After this, it is securely deleted.
4. Data Breach Response
In case of a breach, we will:
- Investigate and contain the breach.
- Notify affected users if required.
- Take corrective measures to prevent recurrence.
5. User Consent & Rights
Users have the right to:
- Withdraw consent anytime.
- Request data access, correction, or deletion.
- Report concerns regarding data handling.