1. Security statement

 

1.1 This is the Security Statement and Policy of SAASANT INFOTECH PRIVATE LIMITED in compliance with the Data Protection law and applicable regulations. The internal procedures of SAASANT INFOTECH PRIVATE LIMITED are designed to cover the storage, access and disclosure of your Personal Information.

1.2 SAASANT INFOTECH PRIVATE LIMITED are committed to online security. We maintain security measures to protect the sensitive data on our Website and to prevent unauthorized access of customer information that is transmitted to servers. We cannot however guarantee the security of any data sent over the internet. Details of our security policy and measures can be found below.

1.3 This Security Statement explains how we store and safeguard the information we collect about you, and procedures that we have in place to safeguard your privacy generally.

–We always use industry-standard [encryption technologies] when transferring and receiving consumer data exchanged with our Website. We have appropriate security measures in place in our physical facilities to protect against the loss, misuse or alteration of information that we have collected from you at our Website.

–Unfortunately, however, no data transmission over the Internet can be guaranteed to be 100% secure. As a result, while we strive to protect your Personal Information, we cannot guarantee or warrant the security of any Personal Information you transmit to or from our Website, and you do so at your own risk. Once we receive your transmission, we will do our best to protect its security on our systems.

–Ordering online using your credit card details can be just as safe as ordering goods over the telephone. Where we have one, our Website will display any issued Secure Server Digital Certificate by a relevant online Certification Authority such as COMODO CA Limited.

–Although the Internet is not a completely secure medium, we have put in place various security procedures as set out in this Security Policy as part of the Data Protection Privacy Policy and Security Statement.

 

2. To prevent unauthorized access and maintain the accuracy of our records and data to ensure proper use of information, we have put in place appropriate physical, electronic and managerial procedures to protect, secure and safeguard the personal data and information we collect on or through our website. The following provisions and arrangements are in place:

2.1 We have a management and corporate commitment to information security within the organization and provide clear direction, guidance and responsibilities and procedures in this respect.

2.2 SAASANT INFOTECH PRIVATE LIMITED has a designated or nominated compliance officer who deals with security of information and personal data together with relevant compliance with the Data Protection Act.

2.3 All employees are briefed on the importance of personal data and security and confidentiality of information obtained. Employees may attend training programmes and are provided with updates or practical guidance under the Law

2.4 We control physical security in relation to the information and personal data that is contained at our facilities and restrict access to the site, buildings, computer rooms, office desk, technology areas, equipment and other facilities where unauthorized access by people could compromise our security.

2.5 All proprietary or confidential information, including personal data, is contained or stored on computer and any that is contained and stored on manual files are locked up and secure.

2.6 We may seek to control access to information and personal data, including existing procedures for authorizing and authenticating users as well as software controls for restricting access and techniques for protecting data such as encryption. Encryption is used in connection with our payment facilities for customers.

2.7 We monitor and log access so as to assist in detection and investigation of security breaches and any attempted breaches where they occur.

2.8 We maintain a business continuity plan as a contingency plan which identifies our business functions and assets (including personal data) which would need to be maintained in the event of disaster and set out the procedures for protecting and restoring them if necessary.

2.9 Our staffs are trained on practical aspects of the Law, confidentiality, security systems and we have relevant procedures in place in relation to the obligations under the Law Accordingly, our staff should be aware of information security issues and they are able to contact our Data Protection compliance officer with any issues relating to the Data Protection, Privacy or personal data.

2.10 In respect of detection and investigation of breaches where they occur, we have in place relevant controls which should alert us to a breach in security. We endeavor to investigate every notified breach of security.

2.11 The personal data and information held by us are currently stored on a relevant technology system, mass email programme data base, individual account contact manager’s systems together with the training booking spreadsheet, invoicing spreadsheet, Excel spreadsheets and paper form.

2.12 We do not hold any of your credit card details on the Website. Such information would be securely passed on to the electronic payment system provider or processor for authorization by your bank.

2.13 We have implemented internet security technology to seek to ensure that it is safe for you to shop with us. We are constantly updating our technology to provide you with the maximum practicable level of security.

 

We seek to keep your Personal Information confidential and our security measures are reviewed from time to time.

We are taking and will endeavor to continue to take all reasonable steps in order to protect our information and all personal data obtained by or provided to SAASANT INFOTECH PRIVATE LIMITED. However, SAASANT INFOTECH PRIVATE LIMITED cannot guarantee the security of any Personal Information or data disclosed to it or collected by it as we have no control over the public or third party network through which Personal Information may be sent to our website.