- The nature of information we collect from you
- The sources from where your information is collected (Including the cases where personal data is not directly collected from you)
- The manner in which your information is collected, stored, used, and processed
- The rights that can be exercised by you
This Policy applies to all vendors, visitors, customers, and other individuals who provide their personal data to the Company and all such individuals who are hereinafter referred to as "Data Subject(s)/PII Principal".
|1||Personal Data/PII||Personal data/PII means any information relating to an identified or identifiable natural person ('data subject/PII Principal'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.|
|2||Data Subject/PII Principal||A data subject/PII Principal is the individual whose personal information is being collected, held or processed.|
|3||IP Address||An Internet Protocol address (IP address) is a logical numeric address that is assigned to every single computer, printer, switch, router, or any other device that is part of a TCP/IP-based network.|
|4||Data/PII Controller||A data/PII controller is a person, company, or other body that determines the purpose and means of personal data processing (this can be determined alone, or jointly with another person/company/body).|
|5||Machine Readable Format||Machine-readable data, or computer-readable data, is data in a format that can be easily processed by a computer. Machine-readable data must be structured data. E.g.: word document, pdf document, excel sheet, etc.|
|6||Data/PII Processor||Data Processor/PII means a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.|
|DPO||Data Protection Officer|
|TCP/IP||Transmission Control Protocol/Internet Protocol|
|PII||Personal Identifiable Information|
ROLES & RESPONSIBILITIES
- Data/PII Controller detail: 247/1 Block D, 2nd floor, Sector 63, Noida, UP 201301
- Data Protection Officer (DPO) Contact Details: We envisage protecting and safeguarding your personal data and in lieu of the same, our nominated representative is -------------------------------can be reached at firstname.lastname@example.org
Gravity Infosolutions is committed to improving health in partnership with its clients. We bring cloud services to our customers.
Gravity Infosolutions is committed to protecting and respecting your privacy.
Gravity Infosolutions undertake to adopt all measures to prevent the misuse of the personal data provided by you. Your data will only be processed when there are legal grounds for their processing. Thank you for using our services.
We may collect and process the following data:
Personal data is information that you or a third party provides concerning details of, for instance, your name, postal address, e-mail address, age, nationality, contact number which will be disclosed by completing one of our standard forms posted on our site.
Personal data collected from our website (https://www.gravityinfosolutions.com) when you apply for a job, register for a newsletter, through social media, customer support includes name, email ID, phone number, address, family details, nationality, and country.
If you log on to our website, we collect information about your computer, including where available your IP address, operating system, and browser type, for system administration. This is statistical data about our users' browsing actions and patterns and does not identify any individual. We use this information to provide a better browsing experience to the website.
When visitors come to our site, third parties may place cookies on visitors' browsers for targeted advertising purposes. You may avoid that by utilizing an ad blocker on your browser or by opting out of receiving targeted advertising.
The types of data collected will include IP addresses, cookie identifiers, website activity, and in the cases where a customer fills out a form, it will include all field information filled out by the customer.
USING THE DATA
We use the personal data we collect from you for a range of different business purposes and according to different legal basis of processing. The following is a summary of how and according to which legal bases we use your personal data:
We may use personal data:
To respond to your enquiry and fulfill your requests, such as to send you newsletters or marketing mailers, apply for job openings.
To send administrative information to you, such as information regarding the Services and changes to our terms and conditions, and policies.
To facilitate social sharing functionality.
To improve the services that we offer.
To deliver a better and more personalized service.
To process reports on adverse events.
To carry out our obligations arising from any contracts we have entered into relating to your personal data.
As we believe to be necessary or appropriate:
Under applicable law, including laws outside your state or country of residence;
To comply with legal process and to prevent, detect, or suppress abuse, fraud, or criminal activity;
To respond to requests from public and government authorities and self-regulatory organizations, including public and government authorities and self-regulatory organizations outside your state or country of residence;
To enforce our terms and conditions;
To protect our operations, assets, or interests or those of any of our affiliates;
To protect our rights, privacy, safety, or property, and/or that of our affiliates, you, or others; and
To allow us to pursue available remedies or limit the damages that we may sustain.
Retention and Storage
We will retain your Personal data for the period necessary to fulfill the purposes outlined in this policy unless a longer retention period is required or permitted by law. For details on our retention Policy, please contact our DPO at DPO@gravityinfosolutions.com. Rest assured, data will be deleted/destroyed/archived post the retention period as per the data destruction mechanism developed by Gravity Infosolutions in accordance with applicable laws, industry best practices, regional sectoral guidelines, and contractual arrangements.
Data Subject/PII Principal Rights
As a customer and/or data subject, you may enquire and raise requests regarding the following:
How to access, seek correction and/or erasure of your personal data
How to object to processing of your personal data
How to request for restricting processing of your personal data
How to request for a copy of your personal data, or have a copy thereof sent to another controller, in a structured, commonly used and machine-readable format under the right of data portability
For your protection, we may only implement requests with respect to the Personal data associated with the particular email address that you use to send us your request, and we may need to verify your identity before acting on your request.
To raise a request under this section or for clarification regarding your rights as a data subject, please send us a request on the following email ID: DPO@gravityinfosolutions.com. While we envisage to comply with your request within 30 working days of receiving your requests, we might require some additional time depending upon the circumstances under which the request was made.
Objecting to Legitimate Interest/Direct Marketing: Any data subject/PII Principal whose personal data has been collected may object to personal data processed pursuant to Gravity Infosolutions’s legitimate interest. In such case, Gravity Infosolutions will no longer process their personal data unless Gravity Infosolutions demonstrates appropriate overriding legitimate grounds for the processing or if needed for the establishment, exercise, or defense of legal claims. Natural persons also may object at any time to processing of their personal data for direct marketing purposes. In such case, their personal data shall no longer be used for that purpose. In cases of direct marketing, natural persons will be able to fulfill such rights directly via an 'Unsubscribe' link or similar mechanism (e.g., device settings for push notifications).
Use of Services by Minors: Gravity Infosolutions's services are not directed towards minors. In case the personal data of a minor is collected without the oversight of their guardian/parents, then we request you to contact our DPO.
Security of Personal Data
Please note that all information you provide to us will be secured using strict procedures and security features to prevent unauthorized access, breach, or leakage.
Gravity Infosolutions endeavors to ensure that the data disclosed by you is as secure as possible. To that end, we have implemented a number of technical and organizational measures, which we utilize to protect your personal data from unauthorized or unlawful processing and from unintentional loss, destruction, or damage.
We may disclose your information to any of our employees, officers, insurers, professional advisers, agents, partners, suppliers, or subcontractors insofar as reasonably necessary for the purposes set out in this policy and for the purpose of providing services to you.
- We may disclose your personal data to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries.
- To our third-party service providers who provide services such as website hosting and webinars. The information we provide to third-party service providers is subject to confidentiality obligations and is intended to be used solely for the purpose(s) permitted thereby.
- To identify you to anyone to whom you send messages through the Services. You may also choose to disclose your Personal data on chat, social media, blogs, and other services to which you are able to post information and materials. Please note that any information you post or disclose through these services will become public and may be available to other users and the general public. We urge you to be very careful when deciding to disclose any information on the Services.
- To a third party, in the event of any reorganization, merger, sale, joint venture, assignment, transfer, or other disposition of all or any portion of our business, assets, or stock (including in connection with any bankruptcy or similar proceedings).
- As we believe to be necessary or appropriate: (a) under applicable law, including laws outside your state or country of residence; (b) to comply with legal process and to prevent, detect, or suppress abuse, fraud, or criminal activity; (c) to respond to requests from public and government authorities and self-regulatory organizations, including public and government authorities and self-regulatory organizations outside your state or country of residence; (d) to enforce our terms and conditions; (e) to protect our operations, assets, or interests or those of any of our affiliates; (f) to protect our rights, privacy, safety, or property, and/or that of our affiliates, you, or others; and (g) to allow us to pursue available remedies or limit the damages that we may sustain.
Cross Border Data Transfer
The data that we collect or are provided with may be transferred to and stored at a destination outside the base location or outside European Economic Area (“EEA”) and the United States of America (“US”). It may also be processed by staff operating outside the base location/EEA and the US who work for us or for one of our related companies and affiliates.
Gravity Infosolutions will ensure that a legitimate transfer of your personal data takes place to a location abroad keeping in mind the transfer mechanisms mandated by applicable laws.
Questions and Queries