Privacy Policy

Last Updated - 15th November 2024

Star India Private Limited, having its registered office at Star House, Urmi Estate, 95 Ganpatrao Marg, Lower Parel, Mumbai - 400013, Maharashtra, India (“we”, “us”, “our”, “SIPL”) is committed to protecting the privacy and security of your personal data, your privacy is important to us. This Privacy Policy (“Policy”) applies to all individuals (“you”, “your”, “Customer”) to whom we will provide services.

This Policy explains how we collect, receive, store, disclose, share, and use your personal data as the Customer point of contact/s when you are onboarded as part of our business relationship on the Customer portal (“Portal”) and how you can exercise your privacy rights.

Before using our Portal, you are advised to carefully read this Policy. If you do not agree with the terms of this Policy, please do not access this, Portal. By visiting and/or using our Portal, you are consenting to process your personal data in the manner as set forth in this Policy.

1. DATA PRIVACY DISCLAIMER

This Policy applies to the processing of digital Personal Data within the territory of India, including data collected directly in digital form or initially in non-digital form and subsequently digitized. It also extends to processing activities conducted outside India if they are connected to the offering of goods or services to individuals within the territory of India.

2. WHAT PERSONAL DATA DO WE COLLECT ABOUT YOU?
2.1. When you interact with us, we collect different types of information from you based on the type of interaction.
  • a) “Personal Data” means any data about an individual who is identifiable by or in relation to such data.
  • b) “Processing”, “Processed”, “Process” in relation to Personal Data, means a wholly or partly automated operation or set of operations performed on digital Personal Data, and includes operations such as collection, recording, organization, structuring, storage, adaptation, retrieval, use, alignment, or combination, indexing, sharing, disclosure by transmission, dissemination or otherwise making available, restriction, erasure, or destruction.
2.2. We endeavor to collect only such Personal Data that is reasonably necessary to perform our services for you. When you interact with our Portal or otherwise with us, we may collect the following Personal Data from you directly:
  • a) General Personal Data: Full name, job title, address, work email and mobile phone number.
  • b) Financial Information: Bank details, GSTN.
  • c) Government Identifier: PAN Card, Any other identification proof
  • d) Identifiers: for analytics and tracking purposes
3. HOW DO WE COLLECT YOUR PERSONAL DATA?
3.1. Information you directly provide to us:

You may choose to provide us with the Personal Data:

  • If you choose to use our services
  • To access our Portal
3.2. Information you provide to us voluntarily:
  • If you send us correspondence, such as emails or letters, we may collect and store such data.
3.3. Information we collect automatically:
  • Data collected via the use of cookies. To know more, refer to the cookie policy for the details Cookie Policy
4. LAWFUL BASIS FOR PROCESSING YOUR PERSONAL DATA

We will collect Personal Data by lawful and fair means and, where appropriate, with the knowledge of the individual concerned. We only collect and process Personal Data about you where we have a lawful basis. Lawful basis on which we would process data from you includes:

  • Obtaining explicit consent from you
  • Processing for legitimate uses where processing is necessary in order to provide you with our products and/or services, such as:
    • (i) To ensure compliance with our legal obligations and to also comply with our obligations towards public authorities.
    • (ii) To enforce any legal right or claim.
    • (iii) For legal and compliance reasons, such as the prevention, detection, or investigation of a crime, loss prevention or prevention of fraud.
    • (iv) As otherwise described to you at the time of collection of your Personal Data.
5. HOW DO WE USE YOUR PERSONAL DATA ?

We use your Personal Data for the purposes we have described below in this privacy notice/Policy, or for purposes which are reasonably compatible to the ones described.

5.1. To manage our relationship with you.

We will use your Personal Data to:

  • Verify your identity
  • Communicate with you regarding the services opted by you
  • Identify you and authenticate your access rights access to our Portal
5.2. To manage and improve our processes and our business operations.

We use your Personal Data to:

  • Manage our network and information systems security
5.3. To achieve other purposes.

We use your Personal Data for legal and regulatory purposes, such as:

  • For our internal and external audit requirements and for information security purposes
6. HOW DO WE PROTECT YOUR PERSONAL DATA ?

We implement reasonable technical and organizational measures in relation to the data and Personal Data that is processed by us. We take reasonable measures to protect all Personal Data from unauthorized processing or accidental disclosure, alteration, misuse, destruction or loss or unauthorized access and modification that compromises the confidentiality, integrity, and availability of such data.

While we endeavor to always protect our Portal, operations and data against unauthorized access, use, modification, and disclosure, due to the inherent nature of the Internet, we cannot guarantee that any data, during transmission or while stored on our systems, will be safe and secure from intrusion by others.

7. YOUR RIGHTS IN CONNECTION WITH YOUR PERSONAL DATA

We respect your right to access and control your Personal Data, and we will respond to requests to exercise your rights under applicable laws and, where applicable, will correct, update, or erase your Personal Data.

7.1. You have the following rights:
  • Right to access Personal Data : At any point, you can contact us for a summary of your Personal Data we hold about you, the processing activities undertaken with respect to such Personal Data, the identities of all those persons with whom your Personal Data has been shared by us along with the description of the Personal Data so shared, and any other data related to your Personal Data and its processing.
  • Right to request correction: If your Personal Data is incomplete, inaccurate, misleading, or out of date, you can inform us about the same and your Personal Data will be corrected, completed, or updated.
  • Right to request erasure: If you believe that we should discontinue the use of your Personal Data, you have the option to request the deletion of your Personal Data, unless retention is necessary for compliance with any law for the time being in force.
  • Right of grievance redressal: In case of any grievance, you can also raise a request to alter your consent choices at dpo@jiostar.com.
  • Right to nominate: In the event of death or incapacity to exercise these rights, you can nominate any other individual to exercise such rights.
  • Right to withdraw your consent: You can withdraw your consent easily by emailing us on dpo@jiostar.com. The withdrawal of consent previously granted for the processing of Personal Data does not affect the lawfulness of the processing until the withdrawal. However, opting out will result in cessation of the respective services.

For exercising any of your rights, you can contact us using dpo@jiostar.com. We will need you to furnish proof of your identity before you can exercise these rights. We may not be able to process any requests made in the event you fail to establish your identity, or if we are unable to authenticate your identity

8. SHARING/DISCLOSURE OF PERSONAL DATA

As far as this is necessary for the purposes set out above, we will share your Personal Data with the following recipients who either have a need to know and who will process it for us based on our instructions and for no other purpose:

8.1. General Disclosure:

We may disclose your Personal Data to:

  • To our parent company, subsidiaries and affiliates
  • To our vendors
  • In the event of a merger, sale, restructure, acquisition, joint venture, assignment, transfer, or other disposition of all or any portion of our business, assets, or stock (including in connection with any bankruptcy or similar proceedings).
8.2. External service providers:

Occasionally, to provide our products and/or services, it is necessary to collaborate with external service providers. We may use these service providers to assist us with some features or functions. These external service providers shall process your Personal Data on our behalf subject to appropriate safeguards only insofar as it is necessary for them to provide their products and/or services to us. Our prior authorization is required before they are permitted to transfer responsibility for processing Personal Data to a third party.

8.3. Business Transfers:

We provide Personal Data to our affiliates and other trusted businesses or persons to process it for us, based on our instructions and in compliance with our Privacy Policy and any other appropriate confidentiality and security measures.

In the event if we merge with or acquired by another company or in case of re-organization or re-structuring of business, we and our affiliates may share your Personal Data, wholly or in part, with another business entity.

8.4. Courts and public authorities:

We will share Personal Data when required for the following purposes:

  • To comply with legal obligations and respond to requests from government agencies, including law enforcement agencies and other public authorities
  • To prevent or detect or investigate offences or cyber incidents or for the prosecution or punishment of offences
  • To raise or defend against legal claims
  • To protect our users, systems, and products and/or services

We only share your Personal Data with recipients that have an adequate level of data protection by implementing appropriate technical and organizational security measures, or we take measures to ensure that all recipients provide an adequate level of data protection as prescribed by applicable law. We do not sell your Personal Data to anyone.

9. PERSONAL DATA TRANSFER, STORAGE AND PROCESSING GLOBALLY

We may transfer your Personal Data to our affiliates or third parties in territories outside India for the purposes described in this Policy in accordance with applicable data protection laws, provided that no such restriction is notified by the Government/ appropriate authority.

10. HOW LONG DO WE KEEP YOUR PERSONAL DATA ?

We will retain your Personal Data which we have collected for as long as we reasonably consider it necessary for achieving the abovementioned purposes and as is permissible under applicable law. This is determined on a case-to-case basis.

We will delete your Personal Data whenever you request us to do so. However, we may archive and/or retain your Personal Data for as long as there are statutory retention obligations or potential legal claims are not, yet time barred.

11. CONTACT INFORMATION

If you have questions or comments regarding this Policy or want to exercise any of your rights or express your grievances regarding the processing of your Personal Data, please contact us using the contact details given below:

Data Protection Officer
dpo@jiostar.com

Star India Private Limited
Star House, Urmi Estate,
95 Ganpatrao Marg, Lower Parel,
Mumbai-400013, Maharashtra, India

If you are not satisfied with the resolution provided you may log your complaint with the Data Protection Board of India following the procedure prescribed by them.

12. CHANGES TO THIS PRIVACY POLICY

We reserve the right to change this Policy at our sole discretion at any time. Any material changes to this Policy will be posted on this page. We encourage you to review this Policy regularly for such changes. The updated Privacy Policy will take effect as soon as it has been updated.