Privacy Policy

A legal disclaimer

PRIVACY POLICY
Effective Date: May 30, 2026  
Last Updated: May 30, 2026  

​

This Privacy Policy describes how ["Aoods"] ("we") collects, uses, processes, stores, and protects digital personal data when you visit our website, download our industrial ISO toolkits, or engage our techno-legal consultancy services. 

​

We operate as a Data Fiduciary under the Indian Digital Personal Data Protection (DPDP) Act and as a Data Controller under the European Union General Data Protection Regulation (EU-GDPR).

​

1. DATA COLLECTION & MINIMIZATION SYSTEMS
In strict alignment with the principles of data minimization, we only collect the explicit personal identifiers necessary to service your industrial requests.

- Identity Data: Full Name, Job Title, Company Name
  * Lawful Basis: Affirmative Consent / Contractual
  * Purpose: Personalizing documentation, validating industrial requests.

- Contact Data: Corporate Email Address, Mobile/WhatsApp Number
  * Lawful Basis: Affirmative Consent / Legitimate Interest
  * Purpose: Delivering digital toolkits, secure communication, dispatching requested insights.

- Technical Data: IP Address, Browser Type, Geolocation
  * Lawful Basis: Consent (Cookie Infrastructure)
  * Purpose: Enhancing server safety, preventing bot scrapers, logging localized compliance.

​

2. SPECIFIC PROCESSING: INDUSTRIAL ISO TOOLKITS & DYNAMIC PROTECTION
When you request access to our industrial ISO toolkits, templates, or compliance guides:
* Purpose: This processing is strictly executed under our legitimate business interest to protect our proprietary intellectual property and prevent unauthorized web redistribution.
* Storage Limits: If you download our resources and do not explicitly check the optional box to receive marketing or consulting communications, your identity metadata is stored in an encrypted buffer and automatically anonymized or purged within 180 days of delivery.

​

3. USER RIGHTS ("DATA PRINCIPAL" & "DATA SUBJECT" RIGHTS)
Regardless of your global location, we extend comprehensive digital data rights to all our visitors. You may exercise these at any point by contacting our email:
* Right to Information and Access: You may request a plain-language summary of what personal data we hold and a list of internal processors who have accessed it.
* Right to Correction & Erasure ("Right to be Forgotten"): You have the right to correct inaccurate data or demand the complete, permanent erasure of your personal data across our entire hosting database and linked email automation systems.
* Right to Withdraw Consent: You can withdraw your consent for marketing communications or data tracking at any time without any disruption to your website browsing experience.

​

4. INTERNATIONAL DATA TRANSFERS & THIRD-PARTY SECURITY
* No Commercial Data Selling: We do not sell, rent, lease, or trade your personal business data with external marketing brokers.
* Infrastructure Partners: Your data is processed within enterprise-grade secure environments, including cloud hosting clusters provided by Wix. Wix operates strictly as our Data Processor.
* Cross-Border Safeguards: For international visitors, any data transferred outside the EU or India is protected using Standard Contractual Clauses (SCCs) and robust cryptographic protocols (AES-256 data encryption at rest and TLS 1.3 encryption in transit).

​

5. MANDATORY GRIEVANCE REDRESSAL OFFICER
In compliance with Section 10 of the Indian DPDP Act and Article 38 of the EU-GDPR, any data queries, consent withdrawals, or erasure requests must be sent to our designated authority:
* Attention: Data Protection Officer / Grievance Redressal Officer  
* Postal/Corporate Address: [Delhi]  
* Official Privacy Email: https://aoods.org 
* Statutory Response Timeline: We will verify your identity and completely resolve your data request within 15 business days (DPDP) / 30 days (GDPR). If unresolved, Indian residents hold the right to escalate complaints directly to the Data Protection Board of India (DPBI).