Skip to content Skip to footer

CCPA, GDPR, and PECR Compliance Policy

Home...CCPA, GDPR, and PECR Compliance Policy
Close

🌿GDPR Compliance Policy

This GDPR Compliance Policy outlines how AgroNest Ventures Private Limited (“AgroNest,” “we,” “us,” or “our”) complies with the General Data Protection Regulation (GDPR) (EU) 2016/679, which regulates the processing of personal data of individuals within the European Union (EU) and European Economic Area (EEA). This policy applies to all personal data we collect, process, and store.

2. Definitions

  • Personal Data: Any information relating to an identified or identifiable natural person (“Data Subject”).
  • Processing: Any operation performed on personal data, such as collection, storage, use, and destruction.
  • Controller: The entity that determines the purposes and means of processing personal data.
  • Processor: The entity that processes personal data on behalf of the controller.

3. Legal Basis for Processing

AgroNest processes personal data based on one or more of the following legal grounds:

  • Consent: The Data Subject has provided explicit consent for the processing of their personal data.
  • Contractual Necessity: Processing is necessary for the performance of a contract to which the Data Subject is a party.
  • Legal Obligation: Processing is required to comply with a legal obligation to which AgroNest is subject.
  • Legitimate Interests: Processing is necessary for the legitimate interests pursued by AgroNest or a third party, provided these interests are not overridden by the rights and freedoms of the Data Subject.

4. Data Subject Rights

Under the GDPR, Data Subjects have the following rights:

  • Right to Access: The right to obtain confirmation as to whether personal data concerning them is being processed and, if so, access to the personal data.
  • Right to Rectification: The right to request the rectification of inaccurate personal data.
  • Right to Erasure (“Right to be Forgotten”): The right to request the deletion of personal data in certain circumstances.
  • Right to Restriction of Processing: The right to request the restriction of processing under certain conditions.
  • Right to Data Portability: The right to receive personal data in a structured, commonly used, and machine-readable format and transmit it to another controller.
  • Right to Object: The right to object to the processing of personal data based on legitimate interests or direct marketing.
  • Right to Withdraw Consent: The right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

5. Data Transfers

Personal data collected within the EU/EEA may be transferred to and processed in countries outside the EU/EEA. AgroNest ensures that such data transfers are subject to appropriate safeguards, such as Standard Contractual Clauses or Binding Corporate Rules, to ensure an adequate level of data protection.

6. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption, pseudonymization, and access controls.

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Once the data is no longer needed, we securely delete or anonymize it.

8. Data Protection Officer

AgroNest has appointed a Data Protection Officer (DPO) responsible for overseeing our GDPR compliance efforts. If you have any questions or concerns regarding our data protection practices, you can contact our DPO at:

Email: sandeep.tripathi@agronest.org
Phone: +91 (942) 572-1255 

9. Complaints

If you believe that AgroNest has not complied with the GDPR, you have the right to lodge a complaint with a supervisory authority in your EU member state.

🌿PECR Compliance Policy

This PECR Compliance Policy explains how AgroNest Ventures Private Limited (“AgroNest,” “we,” “us,” or “our”) adheres to the Privacy and Electronic Communications Regulations (PECR) 2003 (as amended), which govern electronic marketing, the use of cookies, and the confidentiality of communications.

2. Electronic Marketing

a. Consent for Marketing Communications:
We will only send electronic marketing communications (e.g., emails, text messages) to individuals who have given their explicit consent, unless the communication is related to similar products or services that the individual has previously purchased from us (soft opt-in).

b. Opt-Out Mechanism:
Every marketing communication we send includes an opt-out mechanism, allowing recipients to withdraw their consent at any time. We will honor opt-out requests promptly.

3. Cookies and Similar Technologies

a. Use of Cookies:
We use cookies and similar technologies on our platform to enhance user experience, analyze platform traffic, and deliver targeted advertising.

b. Consent for Cookies:
We will obtain your consent before placing any non-essential cookies on your device. Essential cookies, which are necessary for the functioning of our platform, do not require consent.

c. Cookie Information:
We provide clear and comprehensive information about the cookies we use, including their purpose, duration, and how you can manage your cookie preferences. This information is available in our Cookie Policy.

4. Confidentiality of Communications

a. Communications Privacy:
We take measures to ensure the confidentiality of your communications, including emails and other electronic messages, by implementing appropriate technical and organizational safeguards.

b. Security of Networks and Services:
We ensure that our electronic communications networks and services are secure and that appropriate measures are in place to prevent unauthorized access, interception, or disclosure of communications.

5. Reporting Breaches

If we become aware of a breach of the PECR that affects your privacy rights, we will notify the Information Commissioner’s Office (ICO) in accordance with the regulatory requirements. If the breach poses a high risk to your rights and freedoms, we will also notify you without undue delay.

6. Contact Information

If you have any questions or concerns regarding our compliance with the PECR, please contact us:

Email: compliance@agronest.org
Phone: +91 (934) 377-8224

🌿CCPA Compliance Policy

This CCPA Compliance Policy outlines how AgroNest Ventures Private Limited (“AgroNest,” “we,” “us,” or “our”) complies with the California Consumer Privacy Act (CCPA) of 2018, which provides California residents (“Consumers,” “you,” or “your”) with certain rights regarding their personal information.

2. Definitions

  • Personal Information: Information that identifies, relates to, describes, or is capable of being associated with a particular individual.
  • Business: A legal entity that collects personal information and determines the purposes and means of processing personal information.
  • Service Provider: A legal entity that processes personal information on behalf of a business.

3. Categories of Personal Information Collected

We collect the following categories of personal information:

  • Identifiers (e.g., name, email address, IP address)
  • Commercial information (e.g., purchase history)
  • Internet or other electronic network activity (e.g., browsing history)
  • Geolocation data
  • Professional or employment-related information

4. Purpose of Collecting Personal Information

We collect personal information for the following purposes:

  • To provide and improve our products and services
  • To process transactions and manage payments
  • To communicate with you about our offerings
  • To comply with legal obligations and prevent fraud

5. Consumer Rights

Under the CCPA, California residents have the following rights:

a. Right to Know:
You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which the information was collected, the business or commercial purpose for collecting or selling the information, and the categories of third parties with whom we share personal information.

b. Right to Delete:
You have the right to request that we delete any personal information we have collected from you, subject to certain exceptions (e.g., to complete a transaction or comply with a legal obligation).

c. Right to Opt-Out of Sale:
You have the right to opt-out of the sale of your personal information. AgroNest does not sell personal information to third parties.

d. Right to Non-Discrimination:
You have the right to not be discriminated against for exercising your CCPA rights. We will not deny you goods or services, charge you different prices, or provide a different level of service based on your exercise of these rights.

6. How to Exercise Your Rights

To exercise your rights under the CCPA, please submit a verifiable consumer request by contacting us:

Email: compliance@agronest.org
Phone: +91 (934) 377-8224
Address: First Floor, Omaya Office, GNB Road, Silpukhuri, GMC, Kamrup, Guwahati, 781003, Assam, India

We will respond to your request within 45 days of receiving it. If we require more time, we will inform you of the reason and extension period in writing.

7. Authorized Agents

You may designate an authorized agent to make a request on your behalf. The authorized agent must provide written proof that they are authorized to act on your behalf.

8. Data Security

We implement reasonable security measures to protect your personal information from unauthorized access, use, and disclosure.

9. Updates to This Policy

We may update this policy from time to time to reflect changes in our practices or legal requirements. Any changes will be posted on our platform, and the effective date will be updated accordingly.

10. Contact Information

If you have any questions or concerns regarding our compliance with the CCPA, please contact us:

AgroNest Ventures Private Limited
Address: First Floor, Omaya Office, GNB Road, Silpukhuri, GMC, Kamrup, Guwahati, 781003, Assam, India
Email: compliance@agronest.org
Phone: +91 (934) 377-8224