GDPR

Introduction: Gencanyon recognizes the importance of data protection and privacy for individuals in India. This Data Protection Policy outlines our commitment to safeguarding personal data and ensuring compliance with the applicable laws and regulations, including the Indian data protection framework.

Scope: This policy applies to all personal data processed by Gencanyon, whether collected from employees, clients, or other stakeholders within the territory of India.

Principles: Gencanyon adheres to the following principles in managing and processing personal data:

1. Lawful Basis and Purpose: Personal data will be processed lawfully and for specified, explicit, and legitimate purposes. The lawful basis for processing will be clearly communicated to individuals.

2. Data Minimization and Protection: We implement measures to ensure that the personal data processed is adequate, relevant, and limited to what is necessary for the intended purposes. Appropriate technical and organizational measures are in place to protect the data.

3. Transparency and Accountability: Gencanyon is committed to transparency in data processing. We provide clear information on data collection, the lawful basis for processing, the purpose of processing, data retention periods, and any sharing with third parties.

4. Individual Rights: Data subjects have the right to request access to their data, request corrections, and, under certain circumstances, request the erasure of their data. We respect individuals' rights to data portability and the right to revoke consent when processing is based on consent.

5. Data Protection Officer (DPO): Gencanyon designates a Data Protection Officer responsible for managing compliance with this policy and relevant data protection laws.

Data Breach Reporting: In the event of a data breach impacting the privacy of individuals, Gencanyon is committed to reporting such incidents to the appropriate supervisory authorities within 72 hours.

Enforcement and Penalties: Gencanyon recognizes the legal obligations and potential penalties under Indian data protection laws. Violators of this policy may face disciplinary action, and fines may be imposed in accordance with applicable regulations.

Review and Updates: This policy will be regularly reviewed and updated to ensure alignment with changes in Indian data protection laws and Gencanyon's business practices.

Note: This policy is modeled after the Indian data protection framework and the principles of the General Data Protection Regulation (GDPR). It is designed to provide guidance on Gencanyon's data protection practices in the Indian context.