Zintlr is committed to ensuring compliance with the Indian Personal Data Protection Act, 2023 (PDPA) while providing valuable data services to our clients. This PDPA compliance document outlines how we adhere to PDPA as both a data processor and data controller.

The Indian Personal Data Protection Act, 2023 (PDPA) is an Indian data protection law designed to safeguard the privacy of individuals' personal data. PDPA imposes obligations on entities that collect, process, or control personal data, including businesses and organizations.

PDPA has significant implications for the Sales and Marketing industry. Key aspects include:

1. Consent: PDPA requires explicit consent for the processing of personal data.

2. Data Subject Rights: PDPA grants individuals rights over their personal data, including the right to access, correct, and delete data.

3. Data Localization: PDPA may impose data localization requirements, impacting the storage and processing of data.

Zintlr may process personal data for various purposes, acting as both a data processor and data controller, depending on the specific context of data processing.

1. Consent:

   Explanation: Zintlr processes personal data when explicit consent has been obtained from the data subject for specific processing purposes.Example: Zintlr obtains consent from individuals to process their contact information for the purpose of sending them marketing communications.

2. Legitimate Interests:

   Explanation: Zintlr may process personal data when we have a legitimate interest, provided that this interest is not overridden by the rights and interests of individuals.Example: Zintlr may use legitimate interests to process data for direct marketing purposes, such as targeting marketing communications to individuals who have shown an interest in our services.

By using the Zintlr extension, users agree to allow the aforementioned permissions for the purpose of accessing relevant data and providing enhanced intelligence and information during their browsing experience. We are committed to ensuring the privacy and security of user data in accordance with applicable laws and regulations.

Under PDPA, individuals have specific rights regarding their personal data. Zintlr respects these rights and is committed to facilitating their exercise:

1. Right to Access

2. Right to Correct Data

3. Right to Delete Data

4. Right to Data Portability

5. Right to Object

As permitted by applicable data laws and security exchanges, our Data Processing Addendum, and other business agreements with our Licensees, we strictly retain the Data on behalf of our Licensees only.

The data present in Zintlr’s data lake is stored in an unstructured format for 3 years to be able to verify and collate the relevant information to create a Business Contact in the Zintlr Business Database.

We also retain contact data in our Opt-out list for a necessary duration to be able to provide services. The list includes information about public figures or those who have requested to have their data removed from the Zintlr Business Database.

Zintlr is committed to transparency in data processing. We provide clear information about data processing activities, including purposes, legal bases, and rights of data subjects. Consent is obtained when required, and individuals are informed about their rights regarding data processing.

Zintlr employs robust data security measures to protect personal data from unauthorized access, disclosure, alteration, and destruction. We conduct regular security assessments and maintain industry standards in information security.

Zintlr has established data incident response processes to address and notify data breaches promptly. We take steps to minimize any potential impact on data subjects.

For inquiries or requests related to PDPA compliance, please contact our Data Protection Officer (DPO) at [email protected].

Zintlr is dedicated to PDPA compliance and ensuring the privacy rights of individuals while delivering high-quality data services to our clients. This document outlines our commitment to data protection and our compliance with PDPA.