GDPR

At Tech Ziddi (https://techziddi.net/), we are committed to upholding the privacy and data protection rights of all our users, particularly those who reside in the European Union (EU) and European Economic Area (EEA), in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This policy explains how we collect, use, process, and protect your personal data, and outlines your rights under GDPR.

While Tech Ziddi primarily focuses on Indian PM Yojanas, government schemes, and financial knowledge, we recognize the global reach of the internet and the importance of adhering to robust data protection standards for all visitors.

1. Definitions

For the purpose of this GDPR Policy:

  • Personal Data: Any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • Data Subject: The individual to whom Personal Data relates (i.e., you, the user of Tech Ziddi).
  • Data Controller: The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. For Tech Ziddi, we are the Data Controller.
  • Data Processor: A natural or legal person, public authority, agency or other body which processes personal data on behalf of the Controller. This could include third-party service providers like analytics providers or hosting companies.
  • Processing: Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • Consent: Any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

2. Principles for Processing Personal Data

We adhere to the following principles when processing your personal data:

  • Lawfulness, fairness, and transparency: We process personal data lawfully, fairly, and in a transparent manner.
  • Purpose limitation: We collect personal data for specified, explicit, and legitimate purposes and do not further process it in a manner that is incompatible with those purposes.
  • Data minimization: We collect only adequate, relevant, and limited personal data necessary for the purposes for which they are processed.
  • Accuracy: We keep personal data accurate and, where necessary, up to date.
  • Storage limitation: We keep personal data in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed.
  • Integrity and confidentiality: We process personal data in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational
  • Accountability: We are responsible for, and are able to demonstrate compliance with, the above principles.

3. Types of Personal Data We Collect

Depending on how you interact with Tech Ziddi, we may collect the following types of personal data:

  • Information you provide directly:
    • Name and email address (e.g., when you subscribe to our newsletter, submit a comment, or contact us through a form).
    • Any other information you choose to provide in your communications with us.
  • Information collected automatically:
    • Usage Data: Information about how you access and use the website, such as your IP address, browser type, operating system, referring pages, pages viewed, time spent on pages, and dates/times of access. This data is collected through cookies and similar tracking technologies.
    • Device Data: Information about the device you use to access our website, such as device type, unique device identifiers, and mobile network information.

4. Legal Basis for Processing Your Personal Data

We will only process your personal data when we have a valid legal basis to do so under GDPR. The legal bases we rely on include:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose (e.g., signing up for our newsletter). You have the right to withdraw your consent at any time.
  • Legitimate Interests: Where the processing is necessary for our legitimate interests or the legitimate interests of a third party, provided those interests are not overridden by your fundamental rights and freedoms. Our legitimate interests include operating and maintaining our website, improving user experience, analyzing website traffic, and preventing fraud.
  • Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.
  • Contractual Necessity: Where processing is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract (e.g., if we were to offer paid services in the future).

5. How We Use Your Personal Data

We use the personal data we collect for the following purposes:

  • To provide and maintain the functionality of Tech Ziddi.
  • To improve, personalize, and expand our website’s content and features.
  • To understand and analyze how you use our website, enabling us to enhance user experience.
  • To send you newsletters, updates, and other relevant information about Indian PM Yojanas, schemes, and financial knowledge, if you have consented to receive them.
  • To respond to your inquiries and provide customer support.
  • To detect, prevent, and address technical issues or fraudulent activity.
  • To comply with legal obligations.

6. Data Retention

We will retain your personal data only for as long as is necessary for the purposes set out in this GDPR Policy. This means we will keep your data for as long as you use our services, or as required to fulfill our legal obligations, resolve disputes, and enforce our agreements.

The retention period for different types of personal data varies depending on the purpose of collection and the legal basis. For example:

  • Newsletter subscription data: Retained until you unsubscribe.
  • Comment data: Retained as long as the comment is visible on the site, unless you request deletion.
  • Analytics data: Typically anonymized or aggregated after a certain period (e.g., 26 months for Google Analytics default) or as per the respective service provider’s policy.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include, but are not limited to, using SSL encryption, maintaining secure servers, and regularly reviewing our security practices. While we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure.

8. Your Data Protection Rights (Data Subject Rights)

Under the GDPR, you have the following rights regarding your personal data:

  • The Right to Be Informed: You have the right to be informed about the collection and use of your personal data. This policy serves to fulfill that right.
  • The Right of Access: You have the right to request copies of your personal data held by us. We may charge a small fee for this service if the request is manifestly unfounded or excessive.
  • The Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or incomplete.
  • The Right to Erasure (Right to Be Forgotten): You have the right to request that we erase your personal data, under certain conditions (e.g., the data is no longer necessary for the purpose for which it was collected, or you withdraw consent).
  • The Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions (e.g., you contest the accuracy of the data, and we need time to verify it).
  • The Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, in a structured, commonly used, and machine-readable format, under certain conditions.
  • The Right to Object: You have the right to object to our processing of your personal data, under certain conditions, particularly where processing is based on legitimate interests or for direct marketing.
  • Rights in Relation to Automated Decision-Making and Profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

To exercise any of these rights, please contact our Data Protection Point of Contact using the details provided below. We will respond to your request within one month.

9. International Data Transfers

As Tech Ziddi is based in Bangladesh, your personal data may be processed and stored in countries outside of the EU/EEA, including Bangladesh or other locations where our service providers operate. When such transfers occur, we will take all reasonable steps necessary to ensure your data is treated securely and in accordance with this GDPR Policy and applicable data protection laws. This may involve relying on Standard Contractual Clauses (SCCs) approved by the European Commission or other appropriate safeguards as required by GDPR.

10. Children’s Privacy

Tech Ziddi does not knowingly collect or process personal data from children under the age of 16 without parental consent. If you are a parent or guardian and you believe that your child has provided us with personal data, please contact us immediately. If we become aware that we have collected personal data from children without verification of parental consent, we will take steps to remove that information from our servers.

11. Changes to This GDPR Policy

We may update our GDPR Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any changes by posting the new GDPR Policy on this page. We encourage you to review this page periodically for any changes.

12. Contact Us and Your Right to Complain

If you have any questions or concerns about this GDPR Policy, our data practices, or if you wish to exercise any of your data protection rights, please contact our Data Protection Point of Contact:

Data Protection Point of Contact: Tech Ziddi Data Privacy Email: privacy@techziddi.net (Please title your email: “GDPR Inquiry”)

If you are not satisfied with our response or believe we are processing your personal data unlawfully, you have the right to lodge a complaint with a supervisory authority in the EU/EEA member state where you reside or where the alleged infringement occurred.