privacy policy

Our privacy vision is rooted in delivering a secure and seamless user experience. We are committed to ensuring that your personal data is handled responsibly, transparently, and with your trust at the core. By embedding privacy-by-design into our technology and operations, we aim to enhance your interaction with our platform—offering personalized, efficient, and trustworthy services while keeping your data protected. We believe that a strong privacy foundation not only ensures compliance but also builds lasting relationships with our users.

This policy applies to:

1. Visitors to our website or any digital platform we operate.
2. Individuals or representatives of organizations who register on our platform or engage with our services.
3. Anyone whose personal data, including names, phone numbers, and videos, is shared or published for promotional or service discovery purposes;
4. Users of our software or online platform where login and activity are monitored for audit and security purposes.

We collect the following categories of data:

1. Name: Used to identify and personalize your experience.
2. Email Address: Used for communications, service updates, and marketing (with consent).
3. Organization Name: Used to associate the account with your business or employer.

This data is typically collected during registration, on-boarding, support interactions, or content submissions.

We may collect:

1. Video clips: photographs, or audio recordings where you or your organization is featured.
2. Testimonials or feedback provided voluntarily.
3. Media assets submitted by you or recorded during events, webinars, or platform use.

These are used with your explicit consent for:

1. Promoting our products and services.
2. Highlighting client success stories or partnerships.
3. Featuring on websites, brochures, newsletters, and social media.

Automatically collected when you visit our website or platform:

1. IP Address
2. Operating System and Browser Information
3. Device Type, Screen Resolution, Language Preferences
4. Date and Time of Access

We collect this information through cookies, server logs, and analytics tools to:

1. Improve platform performance.
2. Detect unauthorized access.
3. Analyze user behavior and optimize UI/UX.

We collect and store:

1. Login credentials (encrypted)
2. Timestamps of logins and logouts
3. Access history, feature usage, and activity trails

This information is crucial for:

1. Audit logging to maintain accountability.
2. Security analysis to detect misuse or threats.
3. Regulatory compliance for sensitive environments.

We use the data for the following purposes:

1. Service Delivery: To create and manage your account, provide access to services, and ensure platform functionality.
2. Communication: To send account notifications, respond to inquiries, or share updates related to the services you’ve opted into.
3. Marketing and Promotion: To feature your videos, testimonials, or case studies with prior consent for awareness, social proof, and brand building.
4. Security and Fraud Prevention: To detect, prevent, and mitigate security incidents, unauthorized access, or data misuse.
5. Analytics and Optimization: To understand how users interact with our platform and improve the quality of our offerings.
6. Legal and Regulatory Compliance: To comply with Indian laws and respond to lawful requests from regulatory or government bodies.

We process your data based on:

1. Consent: Required for media usage and direct marketing communications. You may revoke consent at any time without affecting the lawfulness of prior processing.
2. Performance of Contract: To deliver the services you requested or signed up for.
3. Legal Obligation: Where processing is necessary to comply with legal requirements, court orders, or regulatory directions.
4. Legitimate Interest: Where we use data for analytics, internal audits, fraud prevention, or platform optimization without impacting your rights or freedoms.

This Privacy Policy is governed by and complies with the various Indian laws including

1. Digital Personal Data Protection (DPDP) Act, 2023
2. Information Technology Act, 2000, particularly:
   • Section 43A (Compensation for failure to protect data)
   • Section 72A (Disclosure of information without consent)
3. Sectoral guidelines issued by:
   • RBI for financial data,
   • SEBI for investor information,
   • TRAI for telecom data (if applicable)

We also follow evolving guidance and codes of practice issued by the Data Protection Board of India.

Your personal data is treated as confidential. We may share it in the following circumstances:

• With Trusted Third-Party Vendors: We may share your personal data with trusted third-party service providers strictly for operational purposes such as hosting our platform and databases, storing and streaming submitted videos, and sending transactional or promotional emails, website analytical platforms, website user behavior platform and others on our behalf. These service providers are contractually bound to process your data only as instructed by us, maintain strict confidentiality, and implement appropriate security measures to safeguard your information.
• With Regulatory or Legal Authorities: Where required under law, legal process, or to protect our legal rights.
• With Your Consent: If you approve public use of your testimonials or videos for promotional activities.
• In Corporate Transactions: In the event of a merger, acquisition, or asset transfer, where data will be handled under this or a successor privacy policy.

All data is stored securely on servers located in India or in jurisdictions compliant with Indian data localization and transfer rules. We employ:

• Role-based access controls
• Encrypted storage and secure key management
• Secure backups and disaster recovery plans

• Personal Data (active users): Retained for the duration of the account or service usage.
• Media Content: Retained as long as promotional use is relevant, or until consent is withdrawn.
• Login and Audit Logs: Retained for a minimum of 180 days or longer where required by regulatory authorities.

If you deactivate your account, we retain your data for a period of 30 days. This allows for reactivation or addressing any pending matters. After this period, all personal data, including audit logs, are securely deleted or anonymized, unless we are required by law to retain it longer.

Under the DPDP Act and other applicable Indian laws, you have the right to:

• Access: View what personal data we hold about you.
• Correction: Request updates or corrections to inaccurate or outdated data.
• Erasure: Request deletion of data that is no longer necessary or processed unlawfully.
• Withdraw Consent: Opt-out of any consent-based processing at any time.
• Portability (once operationalized under law): Request transfer of your data in a machine-readable format.
• Grievance Redressal: Submit a complaint if your data is mishandled or rights are violated.

To exercise these rights, contact our Data Protection Officer (DPO) at: trust@clipstrust.com

We will acknowledge your request within the timelines prescribed under Indian law and respond within a reasonable period.

We implement reasonable and appropriate technical and organizational safeguards, including:

• SSL/TLS encryption for data in transit
• Secure password storage using industry-standard hashing
• Regular system patches and vulnerability testing
• Employee access controls and training
• Incident response and breach notification protocols

Despite these efforts, no digital system is entirely immune to threats. We encourage users to maintain secure credentials and notify us of suspicious activity.

We use cookies and tracking technologies to enhance user experience. These may include:

• Essential Cookies: For site functionality and login sessions.
• Analytics Cookies: To measure performance and usage patterns.
• Preference Cookies: To remember your settings or preferences.

You can configure your browser to refuse or delete cookies, though some site features may be limited.

Our services are intended for individuals aged 18 years and above. We do not knowingly collect personal data from minors. If we become aware of such data, we will promptly delete it unless we obtain verified parental consent.

We may update this policy to reflect changes in legal requirements, technologies, or our practices. Updates will be posted on this page, and if material changes are made, we will notify you via email or platform alert.

For queries, concerns, or to exercise your rights, contact:

ClipTrust Solutions Private Limited
Registered Address: C-21, Fifth Floor, Sector-2, Noida-201301
Email: trust@clipstrust.com
Website: https://clipstrust.com/