CTC Infotech (the expression means and includes CTC Infotech (Holdings) Limited and its subsidiaries) admires your confidentiality and is dedicated towards protection of your personal information and/ or sensitive personal information.
"Sensitive Personal information" is any information that relates to a natural person, which, either directly or indirectly, is capable of identifying such person.
1. Purpose and applicability
- Purpose of collection of your personal/sensitive personal information;
- The retention period as required by business for lawful purposes;
- Disclosure/ transfer of personal information;
- Your rights to access and control information;
- Measures taken to ensure privacy and security of collected personal/ sensitive personal information;
2. Gathering of information
In order to provide you services CTC Infotech is required to gather personal information/sensitive personal information. CTC Infotech is dedicated to protect such information in line with the applicable laws.
Before collection of such information, CTC Infotech will obtain your consent.
CTC Infotech also provides you an option to later on withdraw your consent for usage of the information so gathered. In case you withdraw your consent, CTC Infotech reserves the right to terminate the services for which the information was collected. We may obtain passively-collected information through a variety of methods including Cookies
3. Gathering of information by third parties
Please note that at times the information may be collected by third party on behalf of CTC Infotech, under a lawful contract. These third partiesâ websites have their own privacy policies and we request you to review them. These websites will administer the use of personal information you submit whilst visiting these websites. CTC Infotech does not accept any responsibility or liability for the privacy practices of such third party websites and your use of such websites is at your own risk.
4. Usage & retention of information
While collecting your information, CTC Infotech provides information as to why we are collecting your information and how we will use it.
CTC Infotech retains the information gathered for a period rationally required for business purposes or for a period as required under any law.
5. Access to your personal information
CTC Infotech permits, as and when requested in writing, to review the information provided. You can write to us at firstname.lastname@example.org for any updation /rectification in the information provided.
6. Disclosure and transfer of personal information
CTC Infotech keeps your personal information confidential except where disclosure/transfer of personal information is required by an order under the law for the time being in force or by government agencies including law enforcement agencies having authority of law, upon their request in writing, even without obtaining your consent.
However, sometimes CTC Infotech uses third parties to process your information. CTC Infotech requires these third parties to comply strictly with its instructions and not to further transfer your personal information.
CTC Infotech also requires that they do not use your personal information for their own business purposes, unless you have explicitly consented.
7. Handling of grievances
CTC Infotech remains committed to safeguard your personal information collected and handled by it. In case of any grievances with respect to collection, handling, access, disclosure, transfer, security procedures and protection of your personal information, you can write to us at email@example.com.
CTC Infotech strives to address your concerns and grievances in a timely and effective manner and shall try to resolve them within 30 days of receiving the grievances. In case of any exceptional situations, where such grievances cannot be handled within 30 days, CTC Infotech shall update you.
8. Reasonable security practices and procedures
CTC Infotech has formulated and documented CTC Infotech Information Security Policy (hereinafter called as âthe Policyâ) based on international standard IS/ ISO/ICE 27001.
CTC Infotech adopts reasonable security practices and procedures, in line with the Policy, which includes technical, operational, managerial and physical security control measures in order to protect your personal information from unauthorized access or disclosure while it is under CTC Infotechâs control.
The Policy limits access to personal information on business need basis. Our employees, to the extent they may have access to your personal information, are bound by Code of Business Ethics and Conduct and non-disclosure agreements which obligate them to protect the confidentiality of your personal information. CTC Infotech shall undergo independent assessment/audit of its reasonable security practices and procedures, by an independent third party auditor, approved by the Government of India at least once a year.
There is information about your computer hardware and software that is automatically gathered by CTC Infotech while collecting/processing your personal information/sensitive personal information. This information can include your IP address, browser type, domain names, access times and referring Web site addresses. This information is used by CTC Infotech for the operation of the service, to maintain quality of the service, and to provide general statistics regarding use of the CTC Infotech Web site. Certain provisions of this Policy such as access to your personal information may not be applicable to this information.