GDPR Compliance Policy
Effective Date: 05 Jan 2016
Last Updated: 05 Jan 2025
1. Introduction
At CK MEHTA & TEAM, we are committed to protecting your privacy and ensuring the security of your personal data. We comply with the General Data Protection Regulation (GDPR), which governs the collection, processing, and storage of personal data of individuals residing in the European Economic Area (EEA).
This GDPR Compliance Policy outlines how we collect, use, and safeguard your personal data in accordance with GDPR guidelines.
2. What is GDPR?
GDPR (General Data Protection Regulation) is a European privacy law that enhances the rights of individuals regarding their personal data. It requires businesses to be transparent about data collection, provide clear opt-in consent, and ensure the security of user data.
3. What Data Do We Collect?
We may collect and process the following types of personal data:
✔ Identity Data (Name, Email, Phone Number, Business Details)
✔ Technical Data (IP Address, Browser Type, Device Information)
✔ Marketing & Communication Data (Preferences, Newsletter Subscriptions)
✔ Transaction Data (Billing Information, Payment History)
4. Legal Basis for Processing Data
Under GDPR, we only process personal data when there is a lawful basis, such as:
✅ Consent – When you provide explicit consent to receive marketing communications.
✅ Contractual Necessity – When data processing is required to fulfill a contract or service.
✅ Legal Obligation – When we are required to retain data for tax or legal reasons.
✅ Legitimate Interest – When processing is necessary for business operations, fraud prevention, or improving our services.
5. How We Use Your Data
We use your personal data for the following purposes:
📌 To provide and manage our services
📌 To personalize and improve user experience
📌 To process payments and manage transactions
📌 To send newsletters, updates, and promotional offers (with consent)
📌 To comply with legal and regulatory requirements
6. Your Rights Under GDPR
As a data subject, you have the following rights under GDPR:
🔹 Right to Access – You can request access to the personal data we hold about you.
🔹 Right to Rectification – You can request corrections to inaccurate or incomplete data.
🔹 Right to Erasure (Right to Be Forgotten) – You can request the deletion of your personal data.
🔹 Right to Restrict Processing – You can ask us to stop processing your data in certain cases.
🔹 Right to Data Portability – You can request a copy of your data in a machine-readable format.
🔹 Right to Object – You can object to the processing of your data for marketing purposes.
To exercise any of these rights, please contact us at [email protected].
7. Data Security Measures
We implement robust security measures to protect your personal data from unauthorized access, loss, misuse, or alteration. These include:
🔐 Encryption – Secure encryption protocols for data transmission and storage.
🔐 Access Control – Limited access to personal data for authorized personnel only.
🔐 Regular Security Audits – Frequent security reviews to prevent data breaches.
8. Data Retention Policy
We retain personal data only as long as necessary to fulfill legal, contractual, and business obligations. Once data is no longer needed, it is securely deleted.
9. Third-Party Data Sharing
We do not sell, trade, or rent personal data. However, we may share data with:
✔ Service Providers & Partners – To enhance user experience and process transactions.
✔ Legal & Regulatory Authorities – When required by law.
All third parties are required to comply with GDPR and ensure data security.
10. Cookies & Tracking Technologies
We use cookies and similar tracking technologies to enhance user experience and analyze website performance. You can manage your cookie preferences through your browser settings.
For more details, refer to our [Cookie Policy].
11. International Data Transfers
If we transfer personal data outside the EEA, we ensure appropriate safeguards such as:
✅ Standard Contractual Clauses (SCCs)
✅ Data Processing Agreements (DPAs)
✅ Compliance with Privacy Shield Frameworks
12. Contact Us
If you have any questions or concerns regarding our GDPR Compliance, you can contact us:
📩 Email: [email protected]
📍 Address: CK MEHTA & TEAM, New Delhi 110017, India
By using our website and services, you acknowledge that you have read and understood our GDPR Compliance Policy.