Draft data privacy policy for implementation agencies
This document is a sample data privacy and protection policy for the implementation agencies[1] to pick up and replicate on their user-facing web pages. Entities using this document may make modifications as relevant to the context in which they are using this document.
This document is a draft for reference and does not have any legal effect in and of itself.
eGovernments Foundation does not guarantee that this document will correctly represent all relevant laws or legal obligations, as these can vary across jurisdiction and time.
eGovernments Foundation does not guarantee that the use of this draft, with or without modifications, will cover any or all legal obligations of a specific entity in a specific jurisdiction.
Any entity or individual that uses this draft, with or without modifications, does so at their own discretion, and at their own risk.
By using the draft policy provided, you acknowledge and agree that:
The draft policy is provided for informational purposes only and does not constitute legal advice.
The draft policy is a general template and may not be suitable for your specific needs or circumstances. It is your responsibility to review and modify the draft policy to meet your requirements.
We make no representations or warranties, express or implied, regarding the accuracy, completeness, or reliability of the draft policy. We do not guarantee that the draft policy is up-to-date or compliant with current laws or regulations.
You assume all risks and liabilities associated with the use of the draft policy. We shall not be held liable for any direct, indirect, incidental, consequential, or special damages or losses arising from the use or reliance on the draft policy.
We recommend consulting with a qualified legal professional to obtain advice tailored to your specific circumstances before implementing any policy based on the draft provided.
By using the draft policy, you agree to release and discharge us from any claims, demands, liabilities, actions, or causes of action arising out of or in connection with the use of the draft policy."
It is crucial to seek legal advice to ensure that this policy meets your specific requirements and is enforceable in your jurisdiction.
<IMPLEMENTING AGENCY NAME> as an IMPLEMENTING AGENCY (IA)[2] (“we” or “us” or “our”) for <PROGRAM NAME> respects the privacy of the users (“user” or “you” also referred to as ‘your’). Hence, we maintain the highest standards for secure activities, user information/data privacy and security.
<PROGRAM NAME> is implemented through a collaboration between the <ADMINISTRATIVE AUTHORITY NAME>, us and the eGovernments Foundation. It is powered by DIGIT, which is an open-source software platform developed by eGovernments Foundation.
This privacy policy describes and determines how we deal with your personal and usage information in accordance with the applicable laws of India.
<PROGRAM NAME> refers to the services being provided through <PROGRAM NAME> website, mobile App, <OTHER CHANNELS AS RELEVANT>.
Through <PROGRAM NAME>, you can access and avail services offered by <STATE OR ULB NAME> Government departments, Central Government department, Local bodies & their agencies and corporate/private bodies (utility services) (Service Providers).
You can use <PROGRAM NAME> website/application/services in different ways such as service discovery, availing services, registering grievances, and so on.
The purpose of this policy is to maintain the privacy of and protect the personal information of users, employees, contractors, vendors, interns, associates, and partners of <PROGRAM NAME>. The <PROGRAM NAME> ensures compliance with laws and regulations applicable (partner to insert a list of laws they have to comply with ) to <PROGRAM NAME>.
We adhere to the principles of accountability, transparency, purposeful and proportional collection, usage, storage and disclosure of personal data (“PD”)[3].
We do not collect any data/information directly from you. We only access, process and use datasets given to us by the Service providers.
We access data that is required for designing, testing, deployment and configuration. Such data may include PD such as your first name, last name, parent’s / guardian’s name, address, email address, telephone number, age, gender, and identification documents. We may access, process, or use your educational, demographic, location, device and other similar information.
The nature of the data would change as per the needs of the service providers/ULB/State or Central Government. The scope of the datasets/data points we access is thus defined by the Local Government / Program Owner / Administrative Authority who has contracted our services.
We also access, store, process, and share information pertaining to employees and contractors of our own organisation, as well as local government or other government agencies. Specific information can include name, age, gender, details of spouse or dependents, address, administrative details such as employee ID or other reference number, as well as information on bank accounts (used for processing salaries or pensions). As employers, local governments may be required to maintain certain information on their employees and pensioners for tax purposes, such as PAN numbers; this information may also be accessed and processed in case we are asked to perform or support the performance of any of those tasks and functions.
We derive, store, process, and share transactional data, which describes the progress of any ongoing task (e.g. any service requested by a resident) through the systems of the local government or other government agency. This can include information about the specific role to whom a given task is assigned (or with whom it is pending), the amount of time elapsed on processing / completing a given request (or task / sub-part thereof), and whether this task has been completed within the benchmark or designated amount of time. It can also include details about the channel through which a particular request was received, such as the ULB counter, service centre, website, helpline, mobile app, chatbot, etc.
We derive, store, process, and share aggregated data. These aggregates are derived from the transactional data. This includes data such as aggregate or cumulative revenue collection, aggregate or cumulative number of service requests, percentage of requests resolved within the benchmark time period, etc. The above data may be further analysed and presented in terms of the type of collection, request, or complaint, the channel through which it was received, etc.
We may collect, store, process, and share telemetry data, which studies how much time is spent on a given screen or field in a workflow/user interface (UI). Such data is normally processed and shared in aggregate, and will not be used to identify specific individuals. In the event that specific individuals are sought to be identified, such as for user research, their consent will be sought for the further processing or sharing of their data.
We are either handed over such data by the Service providers or are given authorized permissions to access, process or use such data. We may also collect data from Union, State, and Local governments, including their agents/employees as well as receive data that is available openly for public use.
We do not collect any PD directly from you. We are given authorized access logins by the Program Owners or the Service providers.
We stop accessing, processing, using and storing any PD from the time our role or functions cease i.e. either end of the agreed period or till the final handover.
We do not directly store any data in our systems. We are given access to the databases and systems of the program owner. Such access is required for our functional purposes. Once our purpose is served - i.e. the platform has been implemented, and/or the scope of work specified in our contract with the program owner / administrative agency has been completed or terminated, our access to such storage will be terminated as well.
With respect to data to which we have access, we maintain the following safeguards:
Maintain access audit logs of roles accessing the systems
Data from the platform implementation/program is not stored in our own systems. We have access to this data only through devices or systems approved by the program owner / administrative agency.
Data from the platform implementation/program to which we have access is not shared with any third parties, or in any channel, medium, or forum not specified within our contract with the program owner / administrative agency.
We use this data to enable the program owner with the requirements for which they have contracted our services, such as setting up hardware, customising, extending, configuring and installing the software, assisting in implementation, training etc. Specifically:
We access data (either anonymised/metadata) for:
Studying the feasibility of the requirements asked for by the Service providers
Creating an implementation plan ( the plan would have no PD, but to design the implementation plan, a study of PD would be undertaken)
Measuring performance and adoption metrics
Training and awareness-building activities
We may access and process data for conducting research or analysing user preferences and demographics if asked to by the service providers ( statistical data and not any individual data)
We access PD for:
Testing to be deployed or integrated hardware and software at identified urban local bodies or jurisdictions - as instructed to us by the service providers.
Master data cleaning and validation before deployment and integration
For resolving any disputes, troubleshooting any problems, and solving for critical bugs that may arise with respect to the use of the platform.
Share data in order to comply with the law or any legal process, including when required in judicial, arbitral, or administrative proceedings.
We will not process, disclose, or share your data except as described in this policy, or as otherwise authorized by the program owner / administrative agency.
By default, we do not display, share or store any PD. Only persons with the appropriate authorisation can access PD. We log each such request, thus creating a non-repudiable and auditable trail of each such access to PD[4]. We do not share any PD except as specified in our contract with the program owner / administrative agency.
Yes, this policy is subject to change at any time and without notice, provided that such changes are consistent with our contract with the program owner / administrative agency. This page will be updated with any such modified policy, and such changes will not be deemed to take effect until and unless they are shown on this page. You are reading the current version of the policy.
In case of any grievances, you may send your complaints for redressal over the Grievance Portal available at <LINK TO GRIEVANCE PORTAL / MECHANISM>.
An agency that deploys and configures a platform for the program owner (see below) is an implementing agency (IA). An IA may: set up the hardware necessary for the program; customise, extend, configure, and install/set up the software (platform) as per the needs of the program owner; train staff or contractors of the program owner on how to use the platform; perform other such functions to ensure program readiness as may be agreed upon between the implementing agency and the program owner and/or administrative authority responsible for such platform implementation. ↑
An IA is an agency that deploys and configures a platform for the program owner ↑
Once the PDP Bill is introduced, a formal/detailed Privacy Policy can be drafted and linked here. ↑
As above, this can be detailed in the Full Privacy Policy. ↑