Overview
Thank you for visiting www.neeyamo.com.
Neeyamo Enterprise Solution Private Limited, we are committed to protecting your Personal Information and ensuring transparency in how we collect, process, and use it.
This Privacy Policy (together hereinafter referred to as “Privacy Statement”) describes how Neeyamo collects and uses the Personal Information, and also explains your rights according to the EU General Data Protection Regulation (“GDPR”) and generally accepted privacy principles.
By using this website, you are accepting Neeyamo’s practices described in this Privacy Statement.
“Neeyamo, we, our or us” in this Privacy Statement shall mean and include Neeyamo Enterprise Solution Private Limited and all of its affiliates and subsidiaries. “You or your” shall mean and include visitors to this website for any purpose, any individual related to / associated with Neeyamo, such as employees, interns, contract workers, job applicants, clients, vendors, subcontractors, and any individuals who access our applications.
“Personal Information” shall mean and include all of the information that will be related to and/or help identify an individual, including but not limited to Name, Employee ID, Email, Phone number, National identifier, or any other information required to contact the data subjects and any relationship information that help us in providing services as agreed under a Contract, Gender, Race, Medical information, Financial information, Data subject’s disability status/Grade, any other as needed for providing services as agreed in the Contract.
If you have any questions regarding this policy, please contact our Data Protection Officer (DPO) at privacy@neeyamo.com.
1. Serious about Security
Commensurate with the responsibility of handling the Personal Information, we have a robust framework of policies and procedures to encompass information security, data protection, and privacy. We adhere to internationally accepted information security standards and have obtained certifications for, but not limited to, ISO 27001:2022, SSAE 18/ISAE3402 standards of internal control framework. We’re also compliant with the EU-US Data Privacy framework.
We implement strict access controls, encryption protocols, regular security audits, continuous employee training, and a structured incident response mechanism to safeguard Personal Information. Our security measures are regularly assessed and enhanced to address evolving threats and ensure compliance with applicable global data protection laws.
2. Purpose of Collection and Processing of Personal Information
We may collect and process your Personal Information such as Background Verification, Payroll, HR related Services and Technologies, where there is a legal basis and/or legitimate reason, with your required consents, both directly and indirectly;
- To provide services as agreed through commercial contracts
- To manage your account within our applications.
- To verify your identity and perform necessary authentication.
- To process transactions and provide requested services.
- To comply with applicable laws and regulations.
- To enable third parties to perform necessary services or functions on our behalf.
- To maintain your personal profile.
- To tailor our website and services according to your requirements.
Before submitting any information, you will be informed of the purpose of the collection and how it will be used. You’re free to choose whether or not you provide it.
Neeyamo does not engage in any unsolicited email/communications and ensures compliance with anti-spam regulations.
Cookies and Tracking Technologies
We use cookies and tracking technologies for transparency and compliance with data protection regulations such as the GDPR.
We do not collect any Personal Information indirectly through access logs. While your IP address may be captured temporarily as part of standard internet communication protocols, it is not stored or processed by us for tracking or identification purposes on our website or servers.
Currently, we do not set or store any first-party cookies. However, third-party services integrated into our website (such as embedded content or analytics provider) may set cookies as part of their standard functionality. However, in line with certain laws or GDPR requirements, a cookie consent pop-up is implemented on our website to provide transparency and allow users to manage their preferences.
We only collect information when you voluntarily submit it to us. When we do collect Personal Information, we will inform you of the purpose behind the request and how your information will be used. It is entirely your choice whether to provide this information. Neeyamo does not process any of your personal data automatically to assess personal characteristics. In establishing and conducting business relationships, we do not engage in any automated decision-making pursuant to Article 22 of the GDPR.
If Neeyamo intends to use your Personal Data for any purpose not covered by this Privacy Statement, we will issue a new notice explaining the intended use before the commencement of any new processing activity. If the new purpose is incompatible with the original purpose for which the personal data was collected, we will seek your explicit consent before proceeding.
3. Sharing of Personal information
We will share your Personal Information only how and when we are legally permitted and/or where there is a lawful basis to do so.
- With any of our Neeyamo entities,
- Third-party service providers, including cloud servers and infrastructure hosts, third-party vendors, subcontractors, and in-country partners across the globe, who support and assist us in delivering services,
- In the due course of any audit or for obtaining professional advice,
- When permitted or required by applicable laws and regulations,
- To protect against, detect, or prevent potential fraud, security threats, or unauthorized transactions,
- To investigate and respond to fraudulent activities or security breaches.
We do not share Personal information for marketing purposes, nor do we sell or trade your data.
Cross-Border Transfer of Personal Information
Neeyamo has a vast network of vendors and partners worldwide, which may require transferring of your Personal Information across the borders i.e., outside of European Union and to other countries which do not have an adequate level of data protection for any of the purposes of processing and sharing of Personal Information mentioned above.
- Implement EU Standard Contractual clauses (SCCs) or other legally recognized mechanisms for the data transfers.
- Have required contractual commitments from the third parties to adhere to appropriate data protection measures.
- Conduct risk assessments to ensure that transferred data remains secure and protected.
4. Retention of Personal information
Neeyamo carefully examines whether it is necessary to retain the personal data collected and ensures no longer than the reasonably necessary retention periods for providing our services or fulfilling our contractual obligations, or meeting the legitimate reasons for processing the Personal Information, and/or as per legal and regulatory requirements like GDPR.
We follow a strict data retention and destruction policy to ensure that your personal data is securely deleted when no longer required or retained only in an anonymized form when necessary, in accordance with industry standards and legal obligations.
5. Children’s data
Our site is not directed towards children. If you are below the age of 18 years, then we do not want you to provide any of your personal data on our website. We do not knowingly collect, process, or maintain personal data of anyone below 18 without the consent of the parent or guardian. If you are under 18, you may use/access this site with the involvement of a parent or guardian.
If you think that we have collected information from your children or children who are in your care, please contact privacy@neeyamo.com for action.
6. Individual’s rights under GDPR and generally accepted privacy principles
Individuals who are data subjects belonging to any region within the European Union have certain rights under the GDPR, and other individuals have similar rights under generally accepted privacy principles. They are described below.
- Right to be informed: You have the right to be informed about the collection and the use of your personal data.
- Right to access: You may request a copy of your personal data we may hold and details on how we collect and process your personal data.
- Right to rectify- You have the right to request any part/whole of your Personal Information to be rectified, amended, and updated where it is incomplete or inaccurate.
- Right to be forgotten (Right to Erasure): You have a right to seek your Personal Information to be erased when:
- It is no longer necessary for the purpose collected and processed your Personal Information,
- You expressly withdraw your consent,
- It has been unlawfully processed,
- You object to processing, or
- To comply with any legal obligation
- Right to data portability: You have the right to request to transfer your Personal Information to any other data controller in a structured, commonly used and machine-readable format as feasible.
- Right to restrict processing: You have a right to restrict us from continuing to process your Personal Information, such as a dispute in relation to the accuracy of your personal data or objecting to unlawful processing.
- Right to object to processing: You have a right to object us from processing of your Personal Information, where we process your Personal Information, not for any legitimate reasons/purposes or direct marketing. We will stop processing unless we have compelling, legitimate grounds that override your rights.
- Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw it at any time without affecting the lawfulness of prior processing.
- Right Not to Be Subject to Automated Decision-Making:You have the right not to be subject to decisions made solely by automated processing, including profiling, that produce legal or similarly significant effects.
For exercising any of your above-mentioned rights, raise your complaints or contact us at privacy@neeyamo.com with appropriate details supported by authenticated documents/information. All your complaints lodged at this email ID will be brought to the attention of our Chief Information Security Officer & Data Protection Officer. In the course of exercising any of your rights, apart from the aforementioned, you have the right to register your complaint with the data privacy supervisory authority in your Country/place of work.
We may change this Privacy Policy from time to time to reflect changes in the applicable laws, or changes in our business practices or procedures, and the privacy expectations. When we do so, we will update the website and may also communicate through appropriate channels. However, you are encouraged to read our Privacy Statement whenever you visit this website to be aware of any changes.
7. Key Contact Details of Neeyamo
If you have any query regarding our Privacy Statement, wish to register a complaint or exercise any of your rights as described above, please contact us at:
