Book Now

This Privacy Notice (“Privacy Notice”) describes how EPDPL COLIVING OPERATIONS PRIVATE LIMITED, and its affiliates (collectively “EPDPL COLIVING OPERATIONS PRIVATE LIMITED”, “us” or “we”) process the personal information collected. We are the Data Fiduciary of your personal information for the purposes of applicable data protection laws & have duly designated Data Protection Officer & Data Consent Manager.

Personal Data
Personal Data means data related to a living individual who can be identified from those data and other information in the possession of, or likely to come into the possession of, a Data Controller or Data Processor.

Personal Identifiable Data is any information that can be used to distinguish or trace an individual ‘s identity, any other information that is linked or linkable to an individual.

The Personal Data collected includes:

  1. National Identification Numbers (PAN, Aadhar, Passport etc.)
  2. Personal Health Records
  3. Salary
  4. Password
  5. Race or ethnic origin.
  6. Religious beliefs or other beliefs of a similar nature.
  7. Political opinions.
  8. Physical or mental health or condition including genetic data.
  9. Sexual history or orientation.
  10. Trade union membership.
  11. Biometric information and templates
  12. Commission or alleged commission of any offense and any related court proceedings.
  13. any detail relating to the above clauses as provided to Embassy Group for providing service;
  14. Provided that, any information that is freely available or accessible in public domain or furnished under the Right to Information Act, 2005 or any other law for the time being in force shall not be regarded as sensitive personal or information for the purpose of these rules.

Personal Data collection will be carried out only with the receipt of your consent through the Terms & Conditions.

Data transfer and third-party Involvement

Subject to your consent through the Terms & Conditions, your personal data may be transferred to a third-party for further processing or storage. The personal data may be shared with the involved third parties after ensuring their cybersecurity policy & maturity.

Consent

Consent means “any freely given specific, informed, unconditional and unambiguous indication of his/her wishes by which the Data Principal signifies agreement to Personal Data relating to him/her being processed”.

The consent of the Data Principal is a must before collecting, processing, or storing the personal data in line with the provisions of the DPDP Act.

Retention

The data collected for the mentioned purposes would not be stored past the end date notified to the Data Principal at the time of consent unless consent is extended on account of mandate by the local laws or by appropriate government nominated authorities. Once the use/tenure of the personal data has ended, the data would be deleted from the records and from the records of any third-party if involved. Reminder about the deletion must be sent to the involved parties before the end date.

Data Principle | Your Rights

EPDPL COLIVING OPERATIONS PRIVATE LIMITED acknowledges the rights of each individual to be aware of and to be in control of their personal data. The assertion of these rights is to be processed directly by the responsible department. Department responsibility is determined by ownership of the application, which processes the Data Principal`s requested data. The DPO will ensure that all the departments are enforcing/following the Data Principal rights. Every Data Principal has the following rights:

  1. The Data Principal may request information on which personal data relating to him/her has been stored, how the data was collected, and for what purpose.
  2. If Personal Data are transmitted to Data Fiduciary’s, the Data Principal must also be informed of the recipient’s identity, or of the category of recipients.
  3. If Personal Data are incorrect or incomplete, the Data Principal may request for them to be corrected.
  4. The Data Principal may request his/her data to be deleted (if technically possible and/or with reasonable effort, otherwise ensure blocking from any user) if the processing of such data has no legal basis, or if the legal basis has ceased to apply. The same applies if the purpose behind the data processing has lapsed or ceased to be applicable for other reasons. Existing archival requirements must be observed.
  5. The Data Principal may object to his/her personal data being used for the purposes of market research, or opinion research. Access to the data for these purposes must then be blocked.
  6. The Data Principal generally has a right to object to his/her data being processed, and this must be taken into account if the protection of his/her interests takes precedence over the interest of the data controller owing to a particular personal situation. This does not apply if a legal provision requires the data to be processed.
  7. The Data Principal’s should have a platform/ point of contact to address their grievances.
  8. In case of any inability to carry out the rights of the Data Principal, the Data Principal can nominate an individual of their choosing to carry out their rights.

Data Protection Officer (DPO)

  1. Any questions, Discrepancies, and grievances of the Relevant Individuals with respect to processing of Personal Data may be made to the Data Protection Officer (Grievance Officer), herein the Data Protection Officer of Embassy Group at DPO@Oliveliving.com
  2. The DPO shall redress the grievances of the Data Principals expeditiously and in any event within the period prescribed under law. In case of any queries regarding the content, interpretation, implications of this Policy/ Binding Corporate Rules, the Relevant Individuals may contact the DPO.
  3. Notwithstanding the above, Embassy Group reserves the right to decline to process any such request which may jeopardize the security and confidentiality of the Personal Data of others, as well as requests which are impractical or not made in good faith, or the circumstances as provided for under the law permitting Embassy Group to refuse such request(s).

Consent Manager

EPDPL COLIVING OPERATIONS PRIVATE LIMITED has appointed a Consent Manager that will enable the Data Principal to manage, understand, review, accept/reject and withdraw their consent. The Consent Manager shall be the point of contact with regards to any consent related grievances for the Data Principal and the Data Fiduciary.

Contact Us

If you have any question or complaints about how your personal information is processed or wish to exercise your rights, please contact: at Consent@Oliveliving.com whose name and contact details are available on: https://oliveliving.com/contact