Privacy Policy
We collect only the data needed to run the workshop, counsel participants, and improve the Interpersonal Trust Growth Framework™ (ITGF). All relationship details are pseudonymised before upload; personal data is never sold or used for marketing without explicit consent. Processing is limited to Indian servers, secured with Zoho’s encryption-at-rest protocols.
1. Scope & Legal Basis
This policy applies to any “digital personal data” we process under the Digital Personal Data Protection Act 2023 and the IT Act 2000 SPDI Rules 2011. Our lawful bases are consent (workshop registration, mentoring) and legitimate use for scientific research that improves ITGF.
2. Data We Collect
Category | Details | Purpose |
|---|---|---|
Identity | Name, age (18 +) | Registration & ID verification |
Workshop Metrics | Pseudonymised relationship type, self-rated trust level, ITGF notes, planned actions | Personal counselling & anonymised research |
Financial | Payment reference, GST invoice data | Statutory compliance |
Device / Cookies | Standard analytics cookies & IP | Site performance & consent records |
We do not knowingly collect data from persons under 18.
3. How We Process & Protect Data
- Storage – All digital records are held on Zoho Cloud’s India data centres with encryption at rest and disk-level encryption.
- Access Control – Role-based access, MFA for staff, and audit logs.
- Paper ITGF Sheets – Learners anonymise relationship names before optional upload; originals stay with the learner.
4. Retention
- Pseudonymised ITGF data: retained up to 24 months, then archived for aggregated research.
- GST invoices: retained minimum 6 years per tax guidance.
5. Your Rights
Email tarun@empanetics.in to:
- Request a copy of your data
- Correct / delete data
- Withdraw consent
We respond within 30 days as required by the DPDPA.
6. Cookies & Analytics
Our site uses essential cookies plus Google Analytics to understand page traffic. A cookie-consent banner compliant with DPDPA is displayed; continuing use implies consent.
7. Disclosures & Transfers
- No cross-border transfers; servers remain in India.
- No marketing use without written opt-in.
- Data shared only with contracted Context Specialists under NDA.
8. Security Incidents
In the unlikely event of a data breach affecting your personal data, we will notify you and the appropriate authority under DPDPA rules within the statutory timeframe.
9. Updates
Policy version 1.0 dated 28 July 2025. Any material change will be emailed to registered participants and posted on www.empanetics.in seven days before taking effect.
10. Contact & Complaints
- Data Protection Officer: Tarun Agarwala
- Email: tarun@empanetics.inIf unresolved, disputes fall under the jurisdiction of the courts of Bengaluru, Karnataka.
