Data Protection Policy
Data Protection Policy
Preamble
SSD Foundation is committed to processing data in accordance with its responsibilities under the IT Act 2000. Sensitive Personal Data or Information Rules (SPDI) 2011 under the Information Technology Act, 2000, currently protects our data.
Purpose
This policy requires that personal data shall be:
Processed lawfully, fairly and in a transparent manner in relation to individual;
Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes or statistical purposes shall not be considered to be incompatible with the initial purposes;
Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;
Accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures.
Data Minimization
SSD Foundation shall ensure that personal data are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
4 Accuracy
The Organization shall take reasonable steps to ensure personal data is accurate.
Where necessary for the lawful basis on which data is processed, steps shall be put in place to ensure that personal data is kept up to date.
Security
SSD Foundation shall ensure that personal data is stored securely using modern software that is kept-up-to-date.
Access to personal data shall be limited to personnel who need access and appropriate security should be in place to avoid unauthorized sharing of information.
When personal data is deleted this should be done safely such that the data is irrecoverable.
Appropriate back-up and disaster recovery solutions shall be in place.
For the purposes of social media, SSD Foundation website, newspaper articles, it must be ensured that the data of all persons involved with SSD Foundation in any way is collected, displayed and shared with complete consent of the subject. In case the subject is a minor, the consent of parents or guardians is required.
Copyright Protection
All content on this Site including graphics, text, icons, interfaces, audio clips, logos, images and software is the property of SSD Foundation and/or its content suppliers. The arrangement and compilation (meaning the collection, arrangement, and assembly) of all content on this Site is the exclusive property of SSD Foundation and protected by Copyright (Amendment) Act 2012 . Any use including the reproduction, modification, distribution, transmission, republication, display or performance, of the content on this site can only be made with the expressed permission of SSD Foundation.
Breach
In the event of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data, SSD Foundation shall promptly assess the risk to people’s rights and freedoms and if appropriate, shall report this breach to the legal and police authorities.