Dataraksha by Datacharya.ai| Last updated : [insert date] | Website: www.datacharya.ai/dataraksha
Our Commitment to Data Protection
At Dataraksha, data protection is not just a requirement—it is the core philosophy of our platform. As a solution created to help organizations understand and comply with India’s Digital Personal Data Protection (DPDP) Act, 2023, we hold ourselves to the highest standards of transparency, privacy, and regulatory integrity.
We operate under the belief that compliance begins with internal accountability, and we apply the same principles to our own data handling practices that we recommend to our users.
Compliance with the DPDP Act, 2023
Our platform is built ground-up to comply with the provisions of the Digital Personal Data Protection Act and is continually updated to reflect legal and regulatory developments. Our internal processes adhere to the following key principles:
- Lawful and Purpose-Specific Processing: All data collected via questionnaires is directly linked to specific use cases—namely compliance scoring and recommendations.
- Data Minimization: We collect only the data necessary for the operation of the service and do not request or process sensitive personal information.
- Consent-Driven Interactions: Explicit user consent is required before any data is submitted. Consent is recorded and stored securely.
- Transparency: Users are clearly informed about what data is being collected, how it is used, and how long it is retained.
- Data Localization: All data is stored on servers located in India or in jurisdictions compliant with Indian data transfer regulations.
Platform and Organizational Safeguards
We implement a mix of technical and organizational measures to protect user data:
Technical Safeguards
- End-to-end encryption (in transit and at rest)
- Role-based access controls (RBAC)
- Secure session management using HTTP-only cookies
- Periodic vulnerability assessments and patch updates
- Incident response protocols for data breaches
Organizational Safeguards
- Role-specific access training for employees and contractors
- Internal audit of compliance workflows
- Data protection policies reviewed semi-annually
- Strict vendor contracts with data confidentiality clauses
Cookies and Tracking
We use only essential and functional cookies—for login authorization, session continuity, and user experience optimization. No tracking or advertising cookies are deployed. See our Cookie Policy for more.
User Rights and Access
In line with DPDP obligations, users have full control over their data:
| Right | How it is enabled |
|---|---|
| Access & Review | Users can view submitted responses via dashboard |
| Correction | Corrections can be requested by emailing us |
| Consent Withdrawal | Users may delete accounts or revoke consent anytime |
| Grievance Redressal | A dedicated officer handles queries and escalations |
Requests may be submitted at privacy@datacharya.ai.
Grievance Redressal Officer
- Name: [Insert Grievance Officer Name]
- Email: privacy@datacharya.ai
- Response Time: Within 7 working days
- Jurisdiction: Pune, Maharashtra, India
Ongoing Compliance and Improvements
As the regulatory landscape evolves, we are committed to:
- Continuously updating our compliance framework
- Working with external advisors and audit partners
- Publishing whitepapers, updates, and best practices to educate our user base
We are not liable for any data loss, delays, or disruptions in service, especially in beta or trial phases.
For questions related to compliance, privacy, or audit requests:
Dataraksha (by Datacharya.ai) | Email: privacy@datacharya.ai | Phone: +91 [Insert Number] | Website: www.datacharya.ai/dataraksha
