About this policy
Your privacy is of paramount importance to us, and we are devoted to protecting it. We at IRIS Business Services Limited (“IRIS”, “we” or “us”), believe it is vital for you to know what personal data we collect from you, why we collect it, how we use it and what rights you might be entitled to as a data subject or consumer.
It is imperative that you read this policy, together with any additional and/or more specific information we may provide to you on various occasions, as and when we are collecting or processing personal data. Your use of our websites, products or services is assumed to be an implicit agreement on your part to our collection, usage, and release of your data as described in this Privacy Policy.
Information we collect
We only collect data or information that is necessary for legitimate corporate commercial purposes.
You may need to furnish us with some personal information such as your full name, email address, contact details and designation when you sign up for an account, register for an event, ask for customer support, and/or wish to buy our products or services.
If you are availing of our products or services, we may collect the following personal information from you or through your employer:
- Your full name
- Your email address
- Your contact details
- Your residence/office address
- Your designation at your place of work
We may collect personal information directly from publicly available archives, records and/or databases, social media websites, or in association with our affiliates from time to time. You may also need to provide some personal information if you wish to explore employment opportunities with us.
What we do with your personal information
We do not sell or share your personal information to or with anyone. It is used by us solely for the purpose of interacting with you and to enable you to avail of our product or services. Your personal information is used by us only for this specific purpose and to provide you with the best possible experience during your engagement with us.
Some personal information is vital:
- to handle, govern and comply with obligations under contracts
- to configure/tailor product features and services we offer
- for marketing and research functions
- for ancillary responsibilities related to our daily business activities, such as auditing, accounting, or employment related activities
- for reporting to regulatory or supervisory authorities
We may dispatch marketing communications through various channels, such as email or phone. To do so, we may use your name, email address, and/or contact details. You can opt-out of receiving such communications at the time of first contact over email or at any time by writing to us at [email protected].
Your personal data will be utilized by us only for the reason for which it was first collected, unless there is reasonable consensus that we need to use it for another reason which is compatible with the original purpose and applicable by local law. Any exceptions to the above will be brought to your notice by us and the legal basis for the same will be clarified.
We will not share your personal information
We do not distribute your personal data to anyone else nor sell it for monetary gain or otherwise. However, exemptions to the above are made where IRIS is asked to provide information because of any legal or regulatory requirements. Every effort will be made, should such mandated disclosures arise from any regulatory authorities, to communicate the same with you.
How long we will keep your information?
We shall only retain your personal data for as long as it is deemed necessary, to fulfil the purposes we collected it for, including that of satisfying any legal, accounting, or reporting requirements.
In some cases, we may anonymize your personal data so that it can no longer be directly associated with you.
How we will keep your information safe?
We are fully committed to information security and compliance with applicable regulations. We have employed strong security controls for the protection of data. We have conceived and implemented an information security program in line with the International Organization for Standardization (ISO) 27001:2013 standard and Service Organization Controls 1 (SOC). We have put in place appropriate measures to conform with the European Union (EU) General Data Protection Regulation (GDPR).
Though we take rigorous measures to protect our assets against unauthorized access or attacks, the internet inherently is not fully secure. While we strive to protect your personal information/privacy by working hard towards it, we would like you to take note of inherent internet risks associated with data transfer and processing. You also need to ensure that your user ID, password etc. are not divulged to anyone and your local systems are safe for usage.
At any point, if you suspect any security issues or incidents, or you receive any suspicious mail from someone impersonating an IRIS employee or from a fake website claiming to be affiliated with IRIS, you may reach out to us at [email protected].
How are cookies used?
A cookie is a small piece of data stored on the user’s computer by their web browser while browsing a website. We use cookies to enhance the quality of our websites and services, and to try and make your browsing experience consequential. Cookies may be used to trace how you interact with our websites and to evaluate trends. The types of data collected here may include things like IP addresses, cookie identifiers, and website activities.
We use first-party and third-party cookies for several purposes. First-party cookies are typically necessary for the website to function correctly.
Third-party cookies on our websites are used mainly to gain insight into how the website performs, how one interacts with our website, how we can keep our services secure, how can relevant information be provided to you by us, and all in all providing you with a superior and improved user experience.
You can control the use of cookies, but if you choose to disable cookies, it may limit your use of certain features or functions on our website or service.
How to contact us?
If you have a privacy concern, complaint, or queries regarding this privacy statement, please let us know by sending an email to [email protected]. We value your trust and shall take the appropriate measures to make sure that we fulfil your request.
You have certain choices
You may contact us at [email protected] on various issues pertaining to your personal information such as:
- requesting access
- requesting rectification
- requesting deletion
- requesting data portability
- requesting to opt out from receiving email newsletters, alerts, or other marketing emails
Upon receiving your request, we shall make every effort to fulfil it, provided it is not otherwise required to be treated differently by law or for legitimate business purposes. You must identify yourself prior to making a request, as we may not be able to process it if it is deemed unreasonable or inappropriate.
We will respond to your questions within a reasonable time period. Please note that we may need to retain residual copies even after your information or data gets expunged from the active environment (e.g. backup copies or to ensure we don’t contact you if you have opted out).
Legal Notice
IRIS may need to disclose personal information or data to legal authorities for the purpose of fraud investigation, compliance, statutory functions or for other legal activities as per the local laws and government orders.
Changes to this privacy statement
We reserve the right to revise this privacy notice at any time. We will provide you with a new privacy notice if/when substantial updates are made by us. You may also be alerted by us in other ways from time to time about the processing of your personal data.
(Last Updated on 24/03/2021)