Your privacy and security are of the utmost importance to us. This policy explains how we collect and use information about you when you use our services, including our platform and website.
We are PDCA Labs Pvt. Ltd. We provide software solutions for the QA/QC workflow cycle of construction projects. The processing explained in this policy may be carried out by PDCA Labs Pvt. Ltd.
When collecting information about our customers, we comply with the Indian data protection laws. This means that we are responsible for deciding how we hold and use personal data about you.
We collect only the following information from you when you register for the digiPDCA service.
– Your Name
– Your eMail Address
– Your Mobile Number
– Your Company Name
– Your Designation and Role
Note we do not collect or store data about visitors of our website.
Also note that we do not collect ANY personal information by automated means. Any and all information about you is shared by you yourself at the time of registering with our platform.
We, however store the following data in the browser local storage
– The name of the construction project you are working on. We save this data so that you do not have to set your project as the active project every time you login.
– The number of ITP, Data Sheets, QCRs, NCRs and Punch Item records you want to see on one page. This is stored so that you do not have to set this every time you log in.
We collect some personal data about you.
Personal data. This is information that lets us know who you are and how the SaaS platform will communicate with you. This includes the information you provide us when registering to use our SaaS platform (i.e. your name, company name, email address, your mobile number and your designation and role).
Your login credentials are also personal data.
In addition, we store data that is required for our SaaS system to work, namely
– Any ITP, CheckSheet, RFI, Punch Item or NCR you are working on.
– A mail is sent to you and related stakeholders whenever you make a change to or assign to others, any ITP, CheckSheet, RFI, Punch Item or NCR you are working on.
Non Personal Data. We may use your non-personal data to enhance the services, for instance through web analytics or troubleshooting. We may also use aggregated or depersonalized information to promote our services, such as by citing usage statistics. The data you submit should not include any sensitive personal data, such as Government identifiers (i.e. social security, driving licence, or taxpayer identification numbers), complete credit card or complete personal bank card numbers, medical records or particulars connected with applications for care or treatment associated with private individuals.
We use the data to make our SaaS portal work
– An email is sent out to you and all related stakeholders when you update or re-assign Any ITP, CheckSheet, RFI, Punch Item or NCR that you are working on.
– Your data is only used for the running of the platform. We will never send out marketing emails.
As mentioned above we use the data to make our SaaS portal work
– An email is sent out to you and all related stakeholders when you update or re-assign Any ITP, Check Sheet, RFI, Punch Item or NCR that you are working on.
– Your data is only used for the running of the platform. We will never send out marketing emails.
We do not share your personal data with third parties. When we need to provide your personal data to third parties, we will only share it to the extent necessary to provide you with our services, and we ensure that we have in place data protection requirements with these third parties (including standard contractual clauses as well as the requisite technical and organisational measures).
We may also share your personal data as required or permitted by law and as to optimally provide our services through third party providers as described below.
Hosting Services: We host the website and operate the platform using AWS. Your data will be hosted from their data centers, based on where we have selected to deploy our services (no transfers between these separate data center locations occur).
Payment Providers: We currently only support payments via a bank transfer.
Website functionalities and optimization: We may use third-party services (such as WhatsApp®) to communicate with you or to enhance the function of the website and the services, and for product development and optimization.
IP addresses: We do not store your IP Address.
In no case do we sell, share or rent out your personal information to third parties, nor use them for any purpose other than those set forth in this policy.
In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities or regulatory bodies, including to meet law enforcement requirements, in the case of a court order, a summons to appear in court or any other similar requisition from a government or the judiciary, or to establish or defend a legal application.
Additionally, we will provide information to a third party in the event of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in connection with any bankruptcy or similar proceedings).
We keep your personal data for as long as is necessary to provide our services to you (unless otherwise required by law).
If you would like us to cease all of the described uses of your personal data, you may ask your Administrator to delete your account at any time from the “Stakeholders” section of our system. This will delete your personal data from our records, and we will make no further use of it. We may, however, retain copies of your personal data in backups for legal retention purposes and/or for our own legitimate business purposes.
Your data lives in a database on an AWS server. We do not transfer your data.
In accordance with Data Protection laws, you have the right to:
Request access to your personal data. This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
Request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no legitimate reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have exercised your right to object to processing.
Withdraw your consent and opt-out from the SaaS portal and hence opt-out of any communications. We will honour your opt-out immediately.
Object to processing of your personal data, for example, if we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this basis.
Request the restriction of processing of your personal data. This enables you to ask us to suspend the processing of personal data about you, for example if you want us to establish its accuracy or the reason for processing it.
If you want to exercise any of the above rights, please email our privacy team at support@pdcalabs.com. PDCA Labs is committed to cooperate and comply with the Indian data protection laws. If you are located in the EU, you also have the right to lodge a complaint to your DPA.
The security and integrity of your personal information is very important to us. We follow industry accepted standards to protect the personal information submitted to us, both during transmission and once it is received. We ensure the appropriate electronic, physical and managerial procedures are in place with a view to safeguarding and preserving all the data handled. Our infrastructure is located in top-tier data centers. Each of these locations adhere to strict physical and procedural controls which are frequently audited. Our applications are routinely scanned for vulnerabilities and an independent penetration test is conducted annually. Our employees undergo background checks (when allowed) and sign non-disclosure agreements at the time of hire.
The information provided in this policy may be modified to address new issues or changes. If we make significant changes, we may notify you by other means (for instance, by email or with a banner on the website) prior to the change becoming effective. Any changes we make will take effect 30 days after the update date noted above. If you object to the changes, you may choose to close out your account with us before the new effective date to delete your account and related information from our records.
