VayuAarambh Innovations Logo
VayuAarambh

Privacy Policy

Your privacy is important to us. This policy explains what personal data we collect and how we use it.

Data We Collect

Account Information:

Name, email address, and contact information.

Device and Usage Data:

Technical data such as device model, operating system, browser type, IP address, and interactions with our services.

Location Data:

With user permission, we may collect general location data to provide location-specific features.

How and Why We Use Your Data
  • Provide and Maintain Services: To manage accounts and enable core features.
  • Improve Our Services: To understand usage behavior, enhance features, and resolve technical issues.
  • Communicate with Users: To send updates, alerts, and reminders.
  • Security and Fraud Prevention: To comply with legal obligations and protect user data.
Your Data Rights

In accordance with applicable data protection laws (Indian IT Act and GDPR principles):

  • Right to Access
  • Right to Correction
  • Right to Deletion
  • Right to Withdraw Consent

You can contact our support team to exercise these rights.

Data Sharing and Third Parties

We do not sell your personal data.

We may share it with secure third-party services such as:

  • Cloud Storage Providers (e.g., Google Cloud, AWS)
  • Analytics Tools (e.g., Google Analytics)
  • Payment Gateways (we do not store your credit card details)
Data Retention and Security
  • Data is retained only as long as necessary.
  • All sensitive data is encrypted and access-controlled.
Data Protection Policy

This policy describes our internal procedures for safeguarding personal data.

Encryption:

  • In Transit: TLS (Transport Layer Security) protects all communications.
  • At Rest: Sensitive data is encrypted using AES-256.

Access Control:

  • Principle of Least Privilege: Data access is role-restricted.
  • Role-Based Access Control (RBAC): Defined per responsibility.
  • Authentication: Access requires multi-factor authentication (MFA).

Data Breach Response Plan:

  • Containment: Immediate isolation of systems.
  • Assessment: Analyze impact and affected individuals.
  • Notification: Inform affected users without undue delay and notify authorities such as CERT-In.
  • Review: Investigate root cause and apply improvements.

Compliance and Responsibilities:

  • Legal Basis: Indian IT Act, 2000 and GDPR alignment
  • Technical Team: Secures infrastructure and responds to incidents.
  • Operational Team: Defines policies and manages communications.
  • Data Protection Officer (DPO): Ensures compliance and oversees privacy governance.

Employee Training:

  • Data privacy laws
  • Security protocols
  • Handling sensitive information
Contact Information

Privacy: privacy@aarambh.example.com

Data Protection Officer (DPO): dpo@aarambh.example.com

Built with v0