Nearby Group is committed to protecting the privacy and confidentiality of Personal Information about its employees, customers, business partners and other identifiable individuals. “Nearby Group” shall mean Nearby Technologies Private Limited and/or any of its subsidiaries. THE GROUP policies, procedure, guidelines and actions support this commitment in protecting Personal Identifiable Information. Each employee bears a personal responsibility for complying with this Policy in the fulfillment of their responsibilities at THE GROUP.
This Policy sets the minimum standard and shall guide all the Group employees and Contract employees to abide by the policies of the Group. Supplemental policy/ procedure may provide for stricter or specific privacy and protection standards than are set forth in this Policy. Privacy policy of the Group intends to cover Debit and Credit Card information, AADHAAR information, PAN card details, Voter ID, Driving License and Bank account number and other critical information.
We respect the privacy of employees and third parties such as customers, business partners, vendors, service providers, suppliers, former employees and candidates for employment and recognizes the need for appropriate protection and management of Personal Information. When collecting Personal Information directly from individuals, the Group strives to provide clear and appropriate notice about the: Purposes for which it collects and uses their Personal Information, Types of non-Agent third parties to which the Group may disclose that information (the Regulator).
On transfer of Personal Information to the Regulator, the Group strives to take reasonable and appropriate
steps to:
• Transfer such Personal Information only for specified purposes and limit for the use of specified
purposes only
• Obligate the Regulator to provide the same level of privacy protection as is required by this Policy,
help ensure that the Regulator is effectively processing the Personal Information in a manner
consistent with its obligations under this Policy.
• Require the Regulator to notify the Group, if the Regulator determines it can no longer meet its
obligation to provide the same level of protection as is required by this Policy, and Upon notice from
the Regulator, the Group will take further steps to help stop and remediate any unauthorized
Processing
The Group takes reasonable and appropriate measures to protect Personal Information from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into due account the risks involved in the Processing and the nature of the Personal Information.
The Group shall take steps to help ensure that Personal Information is accurate, reliable, current and relevant to its intended use.
The Group provides individuals with reasonable access to their Personal Information for purposes of correcting, amending or deleting that information where it is inaccurate or has been Processed in violation of the the Group data privacy principles
Violation of this Policy by an employee or contractor of the Group will result in appropriate disciplinary action and including termination.
The procedure will be reviewed by the Owner once in annual to ensure its completeness, effectiveness and usability.
The ISO will also review and evaluate the procedure in response to any changes affecting the basis of the original risk assessment such as organizational changes, technological changes, significant security incidents, new vulnerabilities, etc.