BOOK DEMO
BOOK DEMO
BOOK DEMO
BOOK DEMO
BOOK DEMO
BOOK DEMO
Privacy Policy
Last updated: 19-Sep-2024

Welcome to Ecobillz Private Limited ("we," "our," "us"). We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://www.ecobillz.com, use our services, or interact with us in other ways. Please read this policy carefully to understand our views and practices regarding your personal data and how we will treat it.

Our Role

Our primary role is to process and securely store personally identifiable information (PII) collected by our customers on behalf of their guests. We act as a trusted service provider, diligently managing and safeguarding the PII entrusted to us. We do not use the collected PII for any purpose other than fulfilling our contractual obligations with our customers. We have designated Mr. Purushottam as our Data Protection Officer (DPO) to oversee our privacy practices and ensure compliance with applicable data protection laws. Mr. Purushottam serves as the main point of contact for all queries, concerns, or requests related to the processing of PII.

1. Information We Collect

We may collect and process the following data about you:

  1. Personal Data Personal data refers to any information that relates to an identifiable person who can be directly or indirectly identified. We may collect the following types of personal data: Identity Data: First name, last name, username or similar identifier, title. Contact Data: Billing address, delivery address, email address, and telephone numbers. Financial Data: Bank account and payment card details. Transaction Data: Details about payments to and from you and other details of products and services you have purchased from us. Technical Data: Internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website. Profile Data: Your username and password, purchases or orders made by you, your interests, preferences, feedback, and survey responses. Usage Data: Information about how you use our website, products, and services. Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

  2. Special Categories of Personal Data We do not collect any special categories of personal data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data).
2. How We Collect Your Data

We use different methods to collect data from and about you, including through:

  • Direct interactions: You may give us your identity, contact, and financial data by filling in forms or by corresponding with us by post, phone, email, or otherwise.
  • Automated technologies or interactions: As you interact with our website or products and/or services, we may automatically collect technical data about your equipment, browsing actions, and patterns.
  • Third parties or publicly available sources: We may receive personal data about you from various third parties and public sources may or may not use our products/services.
3. How We Use Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

  • To provide you with the services or information you request.
  • To manage our relationship with you, including notifying you about changes to our terms or privacy policy.
  • To provide your information to any third party or government services as per instructions or laws of the country/sate/region applicable in the local jurisdiction where the data was collected.
  • To administer and protect our business and this website.
  • To deliver relevant website content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you.
  • To use data analytics to improve our website, products/services, marketing, customer relationships, and experiences.
  • To make suggestions and recommendations to you about goods or services that may be of interest to you.
4. Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we must have a lawful basis to process your
personal data. We rely on the following legal bases:

  • Performance of a contract: We process your data to perform our obligations under a contract with you or to take steps at your request before entering into such a contract.
  • Consent: We rely on your consent to process personal data for certain purposes. You have the right to withdraw your consent at any time.
  • Legitimate interests: We process your data to pursue our legitimate interests in a way that does not override your fundamental rights and freedoms.
  • Compliance with a legal obligation: We process your data to comply with our legal obligations.
5. Data Sharing

We may share your personal data with: Service providers:

  • We engage service providers to help us operate our business, such as IT services, payment processing, and delivery services.
  • Business partners: We may share data with business partners to provide you with specific products or services.
  • Legal and regulatory authorities: We may be required to share your personal data to comply with legal obligations or to protect our rights, property, or safety.
6. International Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place to protect your data and comply with GDPR requirements for international transfers.

7. Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. We also limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know.

8. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

9. Your Rights

Under GDPR, you have the following rights regarding your personal data: • Right to access: You can request a copy of the personal data we hold about you. • Right to rectification: You can request that we correct any inaccurate or incomplete data. • Right to erasure: You can request that we delete your personal data in certain circumstances. • Right to restrict processing: You can request that we restrict the processing of your data in certain circumstances. • Right to data portability: You can request that we transfer your personal data to another organization, or to you, in a structured, commonly used, and machine-readable format. • Right to object: You can object to our processing of your personal data in certain circumstances. • Right to withdraw consent: You can withdraw your consent at any time where we are relying on consent to process your personal data. To exercise any of these rights, please contact us by submitted the form here.

10. Storage of PII Data in India and Compliance with Jurisdiction Laws

We store personally identifiable information (PII) data in servers located within India. We are committed to adhering to the laws and regulations governing the protection of personal data in this jurisdiction. We have taken the necessary steps to ensure compliance with these requirements and maintain the privacy and security of your information. We continuously monitor and update our systems and protocols to align with any changes in Indian data protection laws.

11. PII Collected by our Application

Our application collects certain types of PII in order to provide our services effectively. The following categories of PII may be collected:

1. Name: We may collect your full name, or any other name provided voluntarily.

2. Address: We may collect your residential or business address to facilitate specific features or services within our application.

3. Gender: We may collect gender information for purposes such as personalization or to ensure our services cater to your preferences.

4. Passport and Visa: We may collect your passport and Visa details.

Please note that the collection of PII is done in compliance with applicable laws and regulations, and we take appropriate measures to protect the confidentiality and security of the collected information. We do not share this information with any third parties except as required by law.

12. Security of PII

Security Measures for PII Storage: We employ rigorous security measures to ensure the secure storage of the collected PII. A matrix of the data along with its controls is maintained:

1. Encryption: All PII is encrypted both in transit and at rest using industry-standard encryption protocols to protect against unauthorized access.

2. Access Control: Access to the stored PII is strictly limited to authorized personnel who require access to fulfil their job responsibilities. Access controls, including unique user credentials and role-based permissions, are enforced to prevent unauthorized disclosure or alteration of the data.

3. Data Integrity: We employ measures to maintain the integrity and accuracy of the stored PII, including regular data backups, monitoring for data corruption, and implementing errorchecking mechanisms.

4. Physical Security: Our servers and data storage facilities are located in secure environments with restricted access. We utilize physical safeguards, such as access controls and surveillance systems, to protect against unauthorized physical access.

5. Security Audits: We conduct periodic security audits and assessments to identify and address potential vulnerabilities, ensuring that our security measures remain robust and up to date.

Please note that while we implement these security measures, no method of data transmission or storage can be guaranteed to be 100% secure. However, we continuously strive to employ industry best practices to protect the confidentiality and integrity of the collected PII. Customer Obligations to its PII Principles Our application also allows Modification, Deletion, Consent Withdrawal of PII of its Principles

13. Security Incidents

We take the security of your PII seriously and have implemented measures to promptly address any security incidents. The following guidelines outline our approach:

1. Critical Security Incidents: In the event of a critical security incident that poses a significant risk to the confidentiality, integrity, or availability of your PII, we have established a dedicated response team to address the incident promptly. Our response team will take appropriate measures to mitigate the impact of the incident, investigate its cause, and implement corrective actions to prevent recurrence.

2. Incidents Involving PII: If an incident occurs that involves unauthorized access, disclosure, alteration, or destruction of PII, we will promptly assess the situation and take necessary actions to mitigate the impact. This includes identifying the affected individuals and the nature of the exposed information. We will communicate with the individuals whose PII has been affected, providing them with relevant information about the incident and steps they can take to protect themselves.

3. Customer and CERT-In Notification: In the case of incidents involving PII, we will notify the affected customers without undue delay, providing them with all necessary details about the incident and the potential impact on their data. Additionally, we will adhere to applicable laws and regulations and promptly report such incidents to the relevant government bodies, such as CERT-In (Indian Computer Emergency Response Team) or other relevant authorities, as required by law.

Security Protocols with Vendors

We have implemented robust security protocols to safeguard your data when shared with our trusted vendors:

  1. Confidentiality Measures: We enter into legally binding agreements with our vendors that require them to
    maintain the confidentiality of any personal data shared with them.
    • Our vendors are only granted access to the specific data necessary to perform their services and are prohibited from using the data for any other purposes.
    • We regularly assess and evaluate our vendors' security practices to ensure compliance
      with our stringent confidentiality requirements.
  2. Data Encryption: 
    • All data transmitted between our systems and our vendors systems is encrypted using industry-standard encryption protocols.
    • We employ Transport Layer Security (TLS) encryption to protect the confidentiality of data during transmission.
    • Encryption mechanisms are used to protect sensitive information, such as payment details or personal identifiers, when stored on our vendors servers.
  3. Security Audits and Assessments:
    • We conduct regular audits and assessments of our vendors security measures to verify the adequacy and effectiveness of their controls.
    • These assessments include evaluating their physical security, data storage practices, access controls, and vulnerability management procedures.
  4. Incident Response and Notification:
    • In the event of a data breach or security incident involving our vendors, we have established an incident response plan to mitigate any potential impact.
    • We promptly notify affected individuals and relevant authorities in accordance with applicable laws and regulations.
14. Changes to Our Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at below address or submit the online form here:

Ecobillz Private Limited CTS NO. 27/1, 3rd Floor, NASCO Ishaanya Building,Opp Gogte Petrol Pump, Goaves, Khanapur Rd,
Tilakwadi, Belagavi – 590006 Karnataka, India.

See how digitizing your operations will impact your business

Try and Go with the Best solution available today!

BOOK DEMO
13. Security Incidents
13. Security Incidents

Error: Contact form not found.

The great explorer of the truth, the master-builder of human happiness no one rejects dislikes avoids pleasure itself because it is pleasure but because know who do not those how to pursue pleasures rationally encounter consequences that are extremely painful desires to obtain.

Read More

Latest News

© 2023 Ecobillz. All Rights Reserved.