I. Introduction
IDDAssurance LLP (“the LLP,” “we”, “us”) is committed to protecting the personally identifiable information, including sensitive personal data (“Personal Information”), collected from customers who access and use our services through the LLP mobile application and website (collectively referred to as the “Website”). This Privacy Policy outlines how we collect, process, and safeguard your Personal Information in compliance with the provisions of the Information Technology Act, 2000, and the Information Technology (Reasonable Security and Procedures and Sensitive Personal Data or Information) Rules, 2011 (“Data Protection Laws”). By using the Website and creating an account, you agree to this Privacy Policy. If you do not agree with the provisions of this Privacy Policy, please refrain from accessing the Website and creating an account.
II. Scope of the Privacy Policy
This Privacy Policy applies to the collection, storage, use, and protection of Personal Information by the LLP. It describes the guidelines and procedures followed by the LLP when dealing with Personal Information. By using the Website, you are legally bound by this Privacy Policy.
Please note that this Privacy Policy does not apply to third-party websites or social media websites accessed through hyperlinks on our website. The Company is not responsible for the privacy practices or content of such websites.
III. Information Collected by the Company
Personal Information When you create an account and access our services through the Website, we collect and store Personal Information provided by you. This may include your name, phone number, email address, age, date of birth, medical prescription, medical status, medical reports history, medication history, and account information such as username, password, and device preferences. We may also collect location data, images, and other relevant information to facilitate our services.
Anonymous Information During your visit to the Website and use of our services, we or our contracted third parties may collect anonymous information from server log files, cookies, and pixel tags. This may include information about your device, operating system, unique identifiers, language, time zone, mobile network, and more. We use cookies to track user activity on the Website and provide a personalized experience. You can manage your cookie preferences through your browser settings.
IV. Use and Disclosure of Collected Information
Use of Personal Information we use your Personal Information to facilitate your requests and provide our services. This includes contacting you, delivering targeted information, newsletters, communications, and improving our services. By accepting this Privacy Policy, you agree to receive such communications. You can unsubscribe/opt-out if you no longer wish to receive such information.
Disclosure of Personal Information We do not disclose your Personal Information without your permission unless required by law or lawful requests from government authorities. However, we may share aggregate information with selected clients, service providers, and partners, ensuring individual names and identifying information are not disclosed. In the event of a business transaction, your data may be transferred to the acquiring party, subject to their privacy policy.
Payment Related Information we do not store or retain any payment-related data. All payment transactions are securely processed by third-party payment gateways. We are not responsible for any loss or damage resulting from the disclosure of your payment-related information during these transactions.
V. Security of Personal Information
We implement robust data security measures to protect your Personal Information from unauthorized access, modification, destruction, or disclosure. Our security practices include:
Information Security Program
We maintain a comprehensive and well-documented information security program that aligns with industry best practices. This program covers managerial, technical, operational, and physical security control measures based on the nature of our business operations.
Secure Server and Encryption
We use secure servers and encryption to store and protect the information you provide us online. Personal Information is securely encrypted to prevent unauthorized access during transmission and storage.
Regular Audits and Updates
Our information security practices and codes of best practices undergo regular audits by independent auditors approved by the Central Government. We update our security measures and antivirus software regularly to minimize the risks of virus, malware, or trojan attacks.
Limited Access Data Facilities
Our servers and workstations are located in secure data facilities with limited access to further enhance security.
While we take all reasonable steps to protect your Personal Information, please be aware that no method of data transmission or storage is 100% secure. We cannot guarantee absolute security against all threats, but we strive to implement industry-leading security practices to safeguard your information.
VI. Access to Your Personal Information
You can request access, correction, or review of your Personal Information collected through the Website by contacting our Grievance Officer. We will take reasonable steps to verify your identity before granting access or making changes to your information.
VII. Sensitive Personal Data or Information (SPDI)
We handle SPDI, including medical history, medical reports, and medication history, with utmost care and confidentiality. We collect SPDI for the purpose of providing our services and do not disclose it without your explicit consent, except as required by law. We comply with the provisions of the Information Technology (Reasonable Security and Procedures and Sensitive Personal Data or Information) Rules, 2011 when processing SPDI.
VIII. Restrictive Covenants
You agree not to use the Website for hosting, transmitting, or sharing any information that is unlawful, offensive, infringing, or violates applicable laws. You must refrain from unauthorized access, disruption, copying, or any activity that compromises the integrity or security of the Website.
IX. Amendments to the Policy
We reserve the right to modify this Privacy Policy without prior notice. Any changes will be effective upon posting on the Website. By continuing to use the Website, you accept the revised Privacy Policy.
X. Grievance Officer
For any queries, corrections, or complaints regarding this Privacy Policy, please contact our Grievance Officer:
Name: Mrs. Helen George Moses
Email: contact@iddassurance.com
Mobile: +91 77100 01004
XI. Governing Law and Dispute Resolution
This Privacy Policy and the Terms and Conditions of Use are governed by the laws of India. Any disputes arising from this Privacy Policy and the Terms and Conditions of Use shall be resolved through arbitration in Mumbai, in accordance with the Arbitration and Conciliation Act, 1996. The seat of arbitration shall be Mumbai. The jurisdictional courts in Mumbai shall have the right to grant interim relief or injunctions.
By using the Website, you acknowledge and accept this Privacy Policy. If you do not agree with the terms, please refrain from using the Website.