PRIVACY POLICY
Data Privacy Policy
By entering this website, the visitor consents to the terms of this policy. By submitting his/her Information to ADP 25 (a mobile application), the visitor will be treated as having given his/her permission for processing the same in a manner provided in this policy.
Introduction
ADP 25 respects the privacy of individual/visitor and is committed to take reasonable precautions to protect information consisting of Personal information and `Sensitive Personal Data or Information’ (SPDI) (“Information”) of visitors of this website and comply with all legal, regulatory and/or contractual obligations related to privacy. ADP 25 has adopted the “Privacy by Default” principles in its approach to data privacy i.e. privacy of data and information is upheld first by default.
This policy covers the processing, storage and access to Information as required under lawful and/or contractual activities with ADP 25 or otherwise required in the normal course of business. It describes ADP 25’s policies and procedures on the collection, usage and disclosure of Information provided/received by natural persons and meets the requirements established under:
–> The Information Technology Act, 2000 – Section 43A;
–> The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Information) Rules, 2011.
1. Scope:
This policy applies to all visitors of ADP 25’s Mobile Application.
2. Information covered by this Policy:
This policy applies to Information collected and processed by ADP 25 consisting of following:
2.1 Personal information is information related to a visitor, or a combination of pieces of information that could reasonably allow him to be identified. Personal information will consist of full name, personal contact numbers.
2.2 Sensitive personal data or information (“SPDI”) is such personal information that is collected, received, transmitted or processed by ADP 25, consisting of Password
Please note that any information that is freely available or accessible in public domain or furnished under the Right to Information Act, 2005 or any other law for the time being in force shall not be regarded as sensitive personal information.
3. Purpose:
–> ADP 25 shall collect and use Information for legitimate business purposes in order:
–> That a visitor may download product information, order products and take advantage of certain other features of ADP 25’s Application;
–> To provide information or interactive services through this Mobile Application;
–> To process orders or applications submitted by the visitor;
–> To administer or otherwise carry out ADP 25’s obligations in relation to any agreement that the visitor may have with ADP 25;
–> To anticipate and resolve problems with any goods or services supplied to the visitor;
–> To create products or services that may meet the visitor’s needs;
–> To process and respond to requests, improve ADP 25’s operations, and communicate with visitor/s about ADP 25’s products, services and businesses; and
–> To allow the visitor to subscribe to ADP 25’s news alerts.
4. Collection of Information
Only minimum Information required to meet the purposes mentioned in this policy shall be collected from the visitor/s. Neither ADP 25 nor its representatives shall be responsible for the authenticity of such Information provided by the visitor/s. As normal business practice, ADP 25 may collect Information in order to enable the secure online authentication, interaction and transaction with natural persons. This may include the installation of cookies and the collection of other session data.
5. Aadhaar Authentications
ADP 25 does not store “any” Aadhaar data of individuals received from UIDAI. The data is used solely for verification purposes and is immediately discarded after the verification process is complete. ADP 25 ensures that no Aadhaar data is stored on its servers, either locally or centrally, and guarantees that it will not share, transfer, or sell such data to any third-party applications under any circumstances.
6. Face Verification
The face verification functionality will be used to match your Aadhaar image with the selfie image you provide. As per Clause 5, the Aadhaar image will be discarded immediately after the verification process is complete. However, the selfie image captured during the process will be stored securely on our server to identify and authenticate your profile in accordance with our privacy policy.
Data Collection and Use:
We collect a face image when you capture a profile picture during account setup. This image is used as your profile picture and for identity verification purposes via Zoop’s third-party facial recognition API. Zoop processes this image temporarily and does not store it after verification.
Data Sharing:
Your face image is shared with Zoop for identity verification purposes. Zoop processes this data solely for the purpose of verifying your identity and does not retain the image after the process is complete.
Data Retention:
The face image is stored on our secure servers for as long as your account remains active. If you delete your account, all associated data, including your face image, will be permanently deleted within 30 days.
User Rights:
You may request the deletion of your face image and associated data at any time by contacting us through the app’s support portal.
7. Access, Correction of Information and withdrawal of consent
Any modifications/corrections required to the Information can be carried out on the Application. In the event the visitor is unable to do so due to lack of functionality in ADP 25 application and / or the visitor wants to withdraw his / her consent to provide SPDI, he / she may contact the Grievance officer, the details whereof are provided in clause 8 of this policy.
8. Retention, Processing and storage of Information:
8.1 ADP 25 shall retain Information for only as long as necessary to meet legal or regulatory requirements or for legitimate business purposes as mentioned in this policy.
8.2 ADP 25 has implemented required security practices and standards in line with the global standards and have a comprehensive documented information security program and policy in place, which contains managerial, technical, operational and physical security control measures that commensurate with the information assets being protected with ADp 25’s nature of business. It is being reviewed periodically to keep pace with business, technology and regulatory changes.
9. Disclosure of Information
9.1 ADP 25 shall not use or disclose Information for purposes other than as mentioned in this policy, except with the consent of visitor providing such Information or as required by law. However, ADp 25 may be legally required to disclose the Information in the following cases:
–> Where the disclosure is necessary for compliance of a legal obligation;
–> Where mandated under the law by government agencies to disclose such Information.
9.2 Where necessary, ADP 25 may disclose Information to business partners or third parties during the normal course of business for the purposes mentioned in this policy. In such cases, ADP 25 will only share Information related data when ADP 25 is assured that:
–> The Information is processed legitimately and appropriately by the business partner or third party in line with the established consent or in line with legal requirements.
–> The business partner or third party has adopted a reasonable and equivalent level of security practices and procedures to ensure security of the Information shared.