The website complies with these rules to ensure the protection of user data and avoid potential legal liability.
The key requirements for cookies policy:
Obtain user consent: The website obtains the user's consent before placing cookies on their device. This consent is obtained through a clear and unambiguous affirmative action, such as clicking on an "I Agree" button or similar.
Implement reasonable security practices: The website implements reasonable security practices and procedures to protect the personal data collected through cookies from unauthorized access or disclosure.
Maintain records: The website maintains records of user consent for at least 3 years from the date of collection.
Additional Points to consider:
Data Retention: The website retains the SPDI collected through cookies only for as long as it is necessary for the purposes for which it was collected. Once the purpose is fulfilled, the data must be deleted or anonym zed.
Third-Party Cookies: The website uses third-party cookies, such as those for advertising or analytics purposes must also provide clear and transparent information about these cookies and obtain user consent for their use.
Children's Data: The website collects data from children under the age of 18, they must obtain parental consent for the data collection and processing.
Enforcement: The website complies with the IT rules. The penalties can include fines and imprisonment.
Cross-Border Data Transfers: If the website transfers personal data collected through cookies to another country, it must ensures that the receiving country has adequate data protection laws or those adequate safeguards are in place to protect the data.
Data Subject Rights: Users have the right to access, rectify, or erase their personal data collected through cookies. The website provides an easy and accessible way for users to exercise these rights.
Awareness and Training: The website ensures that their employees are trained on the importance of data privacy and how to comply with the IT rules. This includes regular awareness campaigns and training sessions.
It's important to keep in mind that India's legal landscape regarding data privacy and cookies is constantly evolving, so it's important to stay up-to-date with any new laws or regulations that may be introduced in the future. Overall, ensuring compliance with data privacy laws and regulations is an ongoing process that requires constant attention and updating.