Asking for consent
We consider that consent is the most appropriate lawful basis for processing personal data.
The request for consent is prominent and separate from our terms and conditions.
We ask people to positively opt in.
We don’t use pre-ticked boxes or any other type of default consent.
We use clear, plain language that is easy to understand.
We specify why we want the data and what we’re going to do with it.
We give individual detailed options to consent separately to different purposes and types of processing.
We name our organisation and any third party controllers who will be relying on the consent. We tell individuals they can withdraw their consent.
We ensure that individuals can refuse to consent without detriment.
We avoid making consent a precondition of a service.
If we offer online services directly to children, we only seek consent if we have age-verification measures (and parental-consent measures for younger children) in place.
A record is kept of when and how we gained consent from an individual.
We regularly review consents to check that the relationship, the processing and the purposes have not changed.
There are processes in place to refresh consent at appropriate intervals, including any parental consents.
Individuals may withdraw their consent at any time, and we publicise how to do so.
Withdrawals of consent are acted on as soon as possible.
We will not penalise individuals who wish to withdraw consent.
We consider that legitimate interests is also another appropriate basis for processing and storing of for instance photographic images.
We understand our responsibility to protect the individual’s interests.
We have conducted a legitimate interest’s assessment (LIA) and kept a record of it, to ensure that we can justify our decision.
We have identified the relevant legitimate interests.
We have checked that the processing is necessary and there is no less intrusive way to achieve the same result.
We have done a balancing test, and are confident that the individual’s interests do not override those legitimate interests.
We only use individuals’ data in ways they would reasonably expect, unless we have a very good reason.
We are not using people’s data in ways they would find intrusive or which could cause them harm, unless we have a very good reason.
If we process children’s data, we take extra care to make sure we protect their interests. We have considered safeguards to reduce the impact where possible.
We have considered whether we can offer an opt-out.
If our LIA identifies a significant privacy impact, we have considered whether we also need to conduct a DPIA.
We keep our LIA under review, and repeat it if circumstances change.
We include information about our legitimate interests in our privacy notice.
Security of your personal information
We will take reasonable technical and organisational precautions to prevent the loss, misuse or alteration of your personal information. We will store all the personal information you provide on our secure (password- and firewall- protected) servers. All electronic transactions you make to or receive from us will be encrypted using SSL technology. All information is handled in accordance with the data protection act 1998. Of course, data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.
Any breach which leads to accidental, unlawful destruction or the loss or alteration of personal data will be notified to the ICO within 72 hours and to all affected individuals without undue delay.
You have the absolute right to object to your data being processed and profiled for direct marketing purposes. You have the right to have your information withdrawn at any time. Your information will be provided to you within one month and no fee will be levied. You may instruct us to provide you with any personal information we hold about you. Provision of such information will be subject to:
We may withhold such personal information to the extent permitted by law. You may instruct us not to process your personal information for marketing purposes by email at any time. In practice, you will usually either expressly agree in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt-out of the use of your personal information for marketing purposes.
Third party websites
The website contains links to other websites. We are not responsible for the privacy policies or practices of third party websites.
Please let us know if the personal information which we hold about you needs to be corrected or updated.
Address – Q 53 Rajouri Garden, New Delhi, 110027
The data controller responsible in respect of the information collected at Logicsofts Webtech Pvt Ltd.