DPDP Consultants (“DPDP Consultants,” “we,” “us,” or “our”) respects and understands the importance of your privacy – and is therefore committed to affording complete protection of your personal information. It is in recognition of this need for security, our commitment to the DPDP Act 2023, and secured management of any information received/collected by us that DPDP Consultants has established this Privacy Notice.
This Privacy Notice (“Privacy Notice”) explains how we collect, use, protect, and disclose your personal information when you use the DPDP Consultants websites (the “Websites”) and/or DPDP Consultants products, solutions and services (collectively with the Websites, the “Services”). This Privacy Notice also explains how you can manage your information preferences.
This Privacy Notice applies to our websites – (www.dpdpconsultants.com), products & solutions and our marketing practices. We ensure total transparency in all our interactions with data principals. Data Privacy is important to us, and we strive to be transparent in our data collection and use practices.
Please note that this website is not designed for children under the age of 18, and we do not intentionally gather information about minors.
DPDP Consultants is dedicated to ensuring the security of your personal data through:
The following table outlines the categories of personal data we collect, the types of information captured under each category, the purposes for processing, and the corresponding legal basis.
| Sr. No. | Category of Personal Data | Types of personal information collected by category | Purpose | Lawful Grounds |
|---|---|---|---|---|
| 1 | Personal Information from Website Visitors | Name, email, phone number (via "Contact Us" forms or job applications) | To respond to inquiries, process job applications, or provide requested information | Consent (Section 6 of DPDPA) |
| 2 | Support and Maintenance Information | Name, email, phone number, payment details, eligibility information | To provide support and maintain products or services | Consent (Section 6 of DPDPA) |
| 3 | Usage Information (Online Products & Applications) | IP address, device type, browser details, search terms | For website functionality, analytics, and service improvements | Consent (Section 6 of DPDPA) |
| 4 | Marketing Campaign Emails | Email activity data (email opened, links clicked) | To improve marketing strategies and engagement | Consent (Section 6 of DPDPA) |
| 5 | Social Media Interactions | Information about interactions with buttons or tools, browser data | To understand user engagement and improve user experience | Consent (Section 6 of DPDPA) |
| 6 | Job Applications | Resume data, contact details | To process job applications | Consent (Section 6 of DPDPA) |
| 7 | Hosted Services (Third party Service Providers) | Data processed by technology services (e.g., web hosting, analytics) | To provide technology services and maintain product offerings | Consent (Section 6 of DPDPA) |
| 8 | Customisation and contact information for Newsletter | Name, Email Address | To provide personalization of newsletters, newsletters updates and Managing subscriptions | Consent (Section 6 of DPDPA) |
| 9 | Legal Obligations | PI required by court orders or legal processes | Legal compliance | Legitimate use (Section 7 of DPDPA) |
| 10 | Mergers and Acquisitions | Customer PI (if transferred) | Continuity of service during company mergers or acquisitions | Legitimate use (Section 7 of DPDPA) |
DPDP Consultants retains personal data only for as long as necessary. Our records management and retention policies ensure timely deletion of data based on the following criteria:
Information and data files are stored on our servers and the servers of companies we hire to provide services to us. We use AWS Cloud, infrastructure to store such data, and the data is stored with strict security measures. We do not share, sell, or lease any kind of information collected to any third parties.
We understand that the security of your information is vital and have in place strong administrative, technical, and physical security controls and measures to keep data safe and secure. Our privacy practices are designed to provide protection for your personal information, all over the world. To protect information stored in our servers, through Amazon Web Service infrastructure at India, access is limited (through user/password credentials and two-factor authentication) to those employees who require it to perform their job functions. We use industry-standard Secure Socket Layer (SSL) encryption technology to safeguard the account registration process and sign-up information. Other security safeguards include but are not limited to multifactor authentication, data encryption, firewalls, and physical access controls to buildings and files We would like to caution our visitors about phishing attacks, wherein unscrupulous third parties seek to extract sensitive and confidential information from you by posing as a genuine website or by sending an email misrepresenting it to be from a genuine source. Please be aware that we never seek sensitive or confidential information such as regarding your financial or health record through emails or through our websites. If you receive such a message claiming to be from DPPD Consultants, then please do not reply to it and immediately bring it to our attention by contacting us at dpo@dpdpconsultants.com. DPDP Consultants also recognizes the receipt, transmission, or distribution of spam emails (unsolicited bulk emails) as a major concern and has taken reasonable measures, to minimize the transmission and effect of spam emails in its computing environment.
In some cases, and at our discretion this information may be accessed by respective organizations to correct any mistake in that information, and to delete any information we no longer have business reasons for retaining. You can do this by sending us an email. DPDP Consultants strives to comply with all applicable laws around the globe that are designed to protect your privacy and information, no matter where that information is collected, transferred, or retained. Although legal requirements may vary from country to country, we intend to adhere to the principles set forth in this Privacy Notice even if information is transferred from your country to other countries that may not require an adequate level of protection for your information.
DPDP Consultants does not transfer personal data outside India. We ensure that all data collected and processed remains within the country's jurisdiction, in compliance with the provisions of the Digital Personal Data Protection Act, 2023, while maintaining stringent security measures to protect your information.
Under certain circumstances, by law, you have the right to:
You may request the correction of inaccurate or incomplete personal data held by us, ensuring it remains accurate and current. Please inform us if your personal data changes during your association with us.
You can request the deletion of personal data where you believe there are no lawful grounds for its continued processing.
Requests for access to or copies of your personal data must be submitted in writing. We will endeavour to respond within a reasonable timeframe, typically within one month, in compliance with Data Protection Legislation. This information will be provided free of charge unless the request is manifestly unfounded or excessive.
You may nominate an individual who, in the event of your death or incapacity, can exercise your data rights on your behalf.
You have the right to access grievance redressal mechanisms provided by data fiduciaries or consent managers, ensuring prompt responses within specified timeframes. If your grievance remains unresolved after exhausting these mechanisms, you have the right to file a complaint with the Data Protection Board.
To ensure your privacy and security, we may take reasonable measures to confirm your identity before processing any request. To exercise your Data Protection rights, please visit our Principal rights page
If you have additional queries – reach out to dpo@dpdpconsultants.com
If you feel that your data privacy rights have been compromised despite our efforts, we encourage you to approach DPDP Consultants first to resolve the issue. You may also choose to file a complaint with the relevant Data Protection Board or pursue legal action in a competent court within your country of residence, workplace, or where the alleged violation took place.
To request data erasure, rectification, or access as a job applicant, please contact us directly. For any other rights, feel free to reach out using the contact information provided.
We’re constantly trying to improve our Websites and Services, so we may need to change this Privacy Notice from time to time as well. We will inform you regarding material changes, for example, placing a notice on our websites when we are required to do so by applicable law. You can see when this Privacy Notice was last updated by checking the date at the top of this page. You are responsible for periodically reviewing this Privacy Notice.
You may contact the Data Protection Board of India if you have any concerns about how DPDP Consultants has handled your personal data and you also have the right to make a complaint at any time to the Data Protection board of India, the Indian enforcement authority for data protection issues if DPDP Consultants has not been able to provide reasonable and timely resolution to your request or grievances.
If we decide to change our Privacy Notice, we will post those changes on this page, so our users are always aware of the information we collect and how we use it. If at any point we decide to use personally identifiable information in a manner different from that stated at the time it was collected, we will notify users by way of an email. Users will have a choice as to whether we use their information in this different manner. We will use information in accordance with the Privacy Notice under which the information was collected. Where links are provided to other websites it should be noted that they are not and cannot be governed by our Privacy Notice. We cannot guarantee your privacy when you access other websites through any link provided on this website.