About This Privacy Notice
Data Protection Consultants provides Data Protection, Regulatory, Information Security, Penetration Testing, and Security Operation Centre Services. This Privacy Statement applies to personal information collected by Data Protection Consultants as a data controller.
This policy applies when you:
How Does Data Protection Consultants Protect Your Personal Data?
Data Protection Consultants places a high value on your privacy and the safeguarding of your personal data. We aim to ensure that you feel confident your personal data is well-protected when you engage with us.
We protect your personal data in accordance with applicable laws and our internal data privacy policies and procedures. We also maintain appropriate technical and organizational measures to protect your data against unauthorized or unlawful processing, accidental loss, alteration, disclosure, or access.
Which Categories of Personal Data Do We Collect?
We collect personal data of our employees, potential employees, clients and their current/former/prospective employees/directors, suppliers, business contacts, shareholders, and website users.
Automatically collected: When you visit the website, we collect internet activity data such as your device's IP address, pages visited, and visit timestamps. We may also use analytics as described in our Cookie Policy.
| # | Category | Types of Information Captured |
|---|---|---|
| 1 | Personal & Contact | Name, pronoun, identifiers, contact details (email, phone, address), and occasionally gender, date of birth, age, place of birth |
| 2 | Commercial | History and records of services obtained from Data Protection Consultants; correspondence via email or electronic communication for account receivables and commercial follow-ups |
| 3 | Marketing & Research | Identifiers (IP, social media handle, email, mobile, name, address); demographic data; browser/web history; mobile device info; social media content; analytics and profiling data; voice-enabled search inputs (not stored) |
| 4 | Sensitive & Biometric | Health/medical information (disability, dietary requirements, allergies for events); biometric data (only when permitted by law or with consent) |
| 5 | Professional | Job title, current position, employer, location, and Data Protection Consultants contact details |
| 6 | Cookies & Geo | Geolocation data (in certain circumstances) and cookie-related data as per the Cookies Policy |
Purposes & Legal Basis for Processing
Data Protection Consultants uses your personal data only where required for specific purposes. Below is an overview of the purposes and corresponding legal basis.
| Purpose | Legal Basis |
|---|---|
| Website administration, events, internal operations, troubleshooting, data analysis, and testing | Legitimate Interest |
| Improving website to ensure effective content presentation | Legitimate Interest |
| Trend monitoring, marketing, and advertising | |
| Keeping the website secure | Legitimate Interest |
| Analysing job applications and communicating with candidates | Pre-contractual |
| Communicating the decision of your job application | Legitimate Interest |
| Ensuring network and information security | Legitimate Interest |
| Contacting you about similar services previously purchased or shown interest in | Legitimate Interest |
We will process your personal information based on your prior consent (whenever applicable), to the extent such consent is mandatory under applicable laws. We will not use your personal information for purposes incompatible with those described above.
With Whom Do We Share Your Personal Data?
We may transfer personal data to service providers, public and governmental authorities, affiliates, or third parties in connection with Data Protection Consultants's operations. Before doing so, we take necessary steps to ensure adequate protection per relevant data privacy laws.
What About Your Sensitive Personal Data?
We do not generally seek to collect sensitive personal data through this website. In the limited cases where we do collect such data, we do so in accordance with data privacy law requirements and/or with your explicit consent.
Sensitive data includes: racial or ethnic origin, political opinions, religious beliefs, trade union membership, health/medical data, biometric/genetic data, sexual life or orientation, and criminal convictions or offences.
For How Long Do We Store Your Personal Information?
Data Protection Consultants will retain your personal data only for as long as is necessary. We follow specific records management and retention policies so that personal data is deleted after a reasonable time based on:
Active Relationship
We retain your data as long as we have an ongoing relationship or active account with you.
Service Delivery
Data is kept for as long as needed to provide services to you.
Legal Obligations
We retain data as long as required to comply with our global legal and contractual obligations.
How Do We Secure Your Data?
We maintain organizational, physical, and technical security arrangements for all personal data we hold. We adopt market-leading security measures including:
ISO 27001:2022 & 2019 Certified
Highest international information security standards
Regular Penetration Testing
Performed by third-party providers
Do We Transfer Your Personal Data Across International Borders?
Personal information shared with us may be sent to India and processed there or in other countries on our service provider's cloud servers (AWS). We will always take appropriate safeguards to protect your information wherever it is processed.
Data Protection Consultants will inform third parties with whom personal data has been shared of any modification, withdrawal, or objections pertaining to personal data, and implement appropriate policies and procedures accordingly.
Which Rights Do You Have?
You are entitled to the following rights (subject to the conditions and exceptions set out in applicable law):
Right to Access
Know whether we hold your data and obtain a copy of it.
Right to Rectification
Have your data corrected if it is inaccurate or incomplete.
Right to Object
Request that we no longer process your personal data.
Right to Erasure
Request deletion of your personal data where it is no longer necessary.
Right to Restriction
Request that we only process your data in limited circumstances.
Right to Portability
Receive a copy of your data in a machine-readable format.
To withdraw consent or exercise your rights, contact us at [email protected]. You also have the right to lodge a complaint with the relevant supervisory authority at any time.
Use of Services by Minors
This website is not intended for children under the age of 16. We do not knowingly collect personal information from minors. If we learn that we have collected data from a child under 16, we will delete it promptly. If you believe a minor has provided us with their data, please contact [email protected].
Updates to This Privacy Statement
We're constantly improving our websites and services, so we may update this Privacy Statement from time to time. We will notify you of material changes as required by applicable law. You can check the date at the top of this page for the last update. You are responsible for periodically reviewing this statement.
Redressal & Contact
Have questions, complaints, or want to exercise your rights? We're here to help. We respect every user's privacy equally, irrespective of jurisdiction.
📩 [email protected]