GDPR Compliance

2.1 Core Rights

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Rights related to automated decision making

2.2 Additional Rights

• Right to withdraw consent
• Right to lodge a complaint
• Right to be informed
• Right to prevent direct marketing

3.1 Core Principles

• Lawfulness, fairness, and transparency
• Purpose limitation
• Data minimization
• Accuracy
• Storage limitation
• Integrity and confidentiality
• Accountability

3.2 Legal Bases for Processing

• Consent
• Contract performance
• Legal obligation
• Vital interests
• Public interest
• Legitimate interests

4.1 Technical Measures

• Encryption of personal data
• Regular security testing
• Access controls
• Backup procedures
• Incident response plans

4.2 Organizational Measures

• Staff training
• Data protection policies
• Regular audits
• Documentation of processing

5.1 Transfer Mechanisms

• Standard contractual clauses
• Adequacy decisions
• Binding corporate rules
• Explicit consent

5.2 Safeguards

We implement appropriate safeguards for international transfers of personal data.

6.1 Detection and Response

• 24/7 monitoring systems
• Incident response team
• Breach notification procedures
• Documentation requirements

6.2 Notification Timeline

We will notify relevant authorities within 72 hours and affected individuals without undue delay.

7.1 DPO Role

Our Data Protection Officer oversees GDPR compliance and can be contacted for any related inquiries.

7.2 Contact Information

• Email: dpo@panchastra.com
• Address: Bangalore, India
• Phone: +91 (XXX) XXX-XXXX

8.1 Updates

This policy is reviewed and updated regularly to ensure continued compliance with GDPR requirements.

8.2 Complaints

You have the right to lodge a complaint with your local supervisory authority.