WhatsApp
Home About Services Portfolio Blog Careers Contact
+91 9652554793

GDPR Policy

1. Introduction

Meridian Nexon is committed to protecting the privacy and security of personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This GDPR Policy outlines how we collect, use, disclose, and protect personal data.

2. Definitions

2.1. Personal Data: Any information relating to an identified or identifiable natural person.

2.2. Data Subject: An identified or identifiable natural person to whom the personal data relates.

2.3. Processing: Any operation or set of operations performed on personal data, whether by automated means or not, such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction.

3. Principles of Data Processing

3.1. Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and in a transparent manner.

3.2. Purpose Limitation: We collect personal data for specified, explicit, and legitimate purposes and do not process it in a manner incompatible with those purposes.

3.3. Data Minimization: We collect only the personal data that is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.

3.4. Accuracy: We take reasonable steps to ensure that personal data is accurate and kept up to date.

3.5. Storage Limitation: We keep personal data in a form that permits identification of data subjects for no longer than is necessary for the purposes for which the personal data is processed.

3.6. Integrity and Confidentiality: We process personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and accidental loss, destruction, or damage.

4. Data Subject Rights

4.1. Right to Access: Data subjects have the right to access their personal data and to obtain information about how it is being processed.

4.2. Right to Rectification: Data subjects have the right to request correction of inaccurate or incomplete personal data.

4.3. Right to Erasure: Data subjects have the right to request deletion of their personal data under certain circumstances.

4.4. Right to Restrict Processing: Data subjects have the right to request restriction of processing of their personal data.

4.5. Right to Data Portability: Data subjects have the right to receive their personal data in a structured, commonly used, and machine-readable format.

4.6. Right to Object: Data subjects have the right to object to processing of their personal data.

4.7. Right to Withdraw Consent: Where processing is based on consent, data subjects have the right to withdraw consent at any time.

5. Legal Basis for Processing

We process personal data based on one or more of the following legal bases:

  • Consent from the data subject
  • Performance of a contract
  • Legal obligations
  • Legitimate interests
  • Protection of vital interests
  • Public interest or official authority

6. Data Collection and Use

We collect personal data for the following purposes:

  • Providing and improving our services
  • Communicating with clients and prospects
  • Marketing and advertising (with consent)
  • Legal compliance and security
  • Business operations and administration

7. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training.

8. International Data Transfers

We may transfer personal data to countries outside the European Economic Area (EEA) or to international organizations only if one or more of the following conditions are met:

  • The European Commission has decided that the third country, a territory, or one or more specified sectors within that third country, or the international organization in question ensures an adequate level of protection.
  • The transfer is subject to appropriate safeguards, such as standard data protection clauses adopted by the European Commission.
  • The transfer is made with the explicit consent of the data subject.
  • The transfer is necessary for the performance of a contract between the data subject and us or for the implementation of pre-contractual measures taken at the data subject's request.
  • The transfer is necessary for the conclusion or performance of a contract concluded in the interest of the data subject between us and another natural or legal person.
  • The transfer is necessary for important reasons of public interest.
  • The transfer is necessary for the establishment, exercise, or defense of legal claims.

9. Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing compliance with this GDPR Policy. The contact details of our DPO are as follows:

Full Name of Legal Entity: Meridian Nexon

Email Address: dpo@meridiannexon.com

10. Updates to Policy

We may update this GDPR Policy from time to time by posting a new version on this page. You should check this page occasionally to ensure you are familiar with any changes.

11. Contact Us

If you have any questions about this GDPR Policy or our data processing practices, please contact us at info@meridiannexon.com.

Remember to customize this policy to reflect the specific practices and procedures of your business and seek legal advice if necessary to ensure compliance with GDPR and other applicable data protection laws.

Free Consultation

Tell us your goals.

We'll map out a custom growth strategy for you.