Data Policy

Data Policy for Moiret, operated by SYNTARION INDIA CONSULTING PRIVATE LIMITED.

DATA POLICY

Effective Date: 09-06-2025
Last Updated: 08-06-2025

1. Purpose

This Data Policy outlines the principles and practices followed by SYNTARION INDIA CONSULTING PRIVATE LIMITED (“Company”, “we”, “our”, or “us”), operating under the brand name Moiret, in the collection, usage, storage, processing, sharing, and protection of all forms of data, particularly Personal Data, within our organization and across our digital platforms.

2. Applicability

This policy applies to:

• All employees, contractors, and third-party partners;
• All business units and digital assets of the Company;
• All forms of data: electronic, paper-based, structured, and unstructured.

3. Legal Framework

We comply with applicable data laws and regulations, including but not limited to:

• The Information Technology Act, 2000;
• The Digital Personal Data Protection Act, 2023 (DPDP Act);
• Any applicable industry-specific standards, contractual obligations, and global frameworks like GDPR and ISO/IEC 27001.

4. Classification of Data

We categorize data into the following types:

• Public Data – Freely available information;
• Internal Data – Confidential business records;
• Personal Data – Information related to an identifiable individual;
• Sensitive Personal Data – Financial, biometric, or health-related information;
• Critical Business Data – Strategic, legal, or operational information requiring high-level security.

5. Data Collection Principles

We collect data only when:

• There is a clear business or legal purpose;
• Data subjects have provided consent, where applicable;
• The collection is fair, lawful, and transparent.

6. Usage of Data

Collected data is used for:

• Providing services to customers;
• Internal business operations and analytics;
• Legal compliance and audits;
• Customer engagement, feedback, and marketing (based on consent);
• Security, fraud prevention, and platform performance.

7. Data Minimization & Accuracy

We collect only data that is necessary and relevant for the intended purpose and ensure its accuracy, completeness, and currency.

8. Storage & Retention

Data is stored securely on encrypted infrastructure, with access controls and audit trails. Retention periods are defined in our internal Data Retention Policy, and data is securely deleted when no longer required.

9. Sharing & Disclosure

Data is shared only with:

• Authorized internal departments;
• Third-party vendors under data processing agreements;
• Government authorities, as required by law.

International data transfers, if any, are conducted under lawful cross-border transfer mechanisms.

10. Data Security

Our data protection measures include:

• Access control and identity verification;
• Secure transmission protocols (e.g., SSL, TLS);
• Encryption at rest and in transit;
• Periodic penetration testing and risk assessments.

11. Employee Responsibility

All staff must:

• Comply with this policy and applicable confidentiality terms;
• Report any unauthorized access, leak, or misuse of data immediately;
• Undergo periodic training on data handling and security.

12. Violations & Enforcement

Violation of this policy may result in:

• Disciplinary action;
• Contract termination (for vendors);
• Legal proceedings under the DPDP Act or other applicable laws.

13. Policy Updates

This policy will be reviewed annually or when significant regulatory or operational changes occur.

14. Contact Information

Questions or concerns about this Data Policy can be directed to:

Email: supports@moiret.com
Address: SYNTARION INDIA CONSULTING PRIVATE LIMITED
2nd Phase Gokula Ext., Kyathsandra, Tumkur City, Tumkur, Karnataka

This is not legal advice. For legal compliance validation, consider having a privacy and data security lawyer review your data policy or using this lawyer-supervised AI for a custom audit. (Sponsored Mention).