GDPR Compliance Page

On May 25, 2018, the European Union (the “EU”) implemented new data privacy, and protection regulation called the General Data Protection Regulation (the “GDPR”). This regulation aims to standardize data protection laws across the EU and lay down standards to be observed worldwide while processing personal data originating in the EU; The GDPR also has a strong emphasis on affording individuals stronger, more consistent rights to access and control their personal information.

At Krishagni Solutions Pvt Ltd (“Krishagni”), we take compliance with data privacy and security regulations very seriously. For GDPR, we are working diligently to ensure that we are compliant with the rules laid out by the law. In the following sections, we have outlined our approach to complying with the GDPR.

Krishagni GDPR Compliance

Krishagni is engaged in developing proprietary solutions and has developed software products to manage biospecimen data and applications that enable its customers to conduct online surveys and seek information from participants through survey questionnaires. Krishagni also provides support services for its software product and solutions.

Our products, solutions, services, and website are used and explored by our clients (existing and prospective), we at Krishagni process a certain amount of personal information of our clients (current and future) in the capacity of a Data Controller (for any personal information submitted on the website) and in the capacity of a Data Processor (for any personal information provided by our clients when they use our services).

Risk Assessment

We have performed a company-wide information discovery exercise to identify and assess what personal information we hold, where it comes from, how and why it is processed, and to whom it is disclosed.

Data Subject Consent

As a Data Controller, Krishagni has updated its Privacy Policies as per the requirements of GDPR on its website www.openspecimen.org. It requires all the visitors and users of its website to provide consent for the use of personal information. Krishagni also allows such users to exercise their rights about their personal information, such as modification, rectification, and deletion of their data.

As a Data Controller, we execute contracts required under the GDPR with our data processor to ensure that the data processor processes personal information as per the GDPR. Additionally, we implement technical and organizational security measures to ensure compliance.

As a Data Processor, we comply with the required safeguards regarding the safety of personal information received from our clients.

Data Subject Rights & Transfer of Data Outside EU

Krishagni has an article 28 GDPR-compliant data processing addendum, including the EU Model Clauses, to ensure an appropriate legal basis for data transfers outside the EU.

Data Retention & Erasure

We have formulated an internal data protection compliance policy that includes the data retention schedule to ensure that we comply with the ‘data minimization’ and ‘storage limitation’ and other such principles under the GDPR and that personal information is stored, archived, and destroyed in accordance with the GDPR.

Record-Keeping as per the GDPR

According to Article 30 of the GDPR, each processor and controller’s representative needs to maintain a record of all activities regarding the processing of personal information in such an organization. Krishagni maintains such records as required under Article 30(1) and Article 30(2) of the GDPR.

Data Breach and Mitigation Process

The GDPR has stipulated measures and notifications that must be made upon discovering a data security breach. Krishagni has put in place internal measures to minimize the risk of any data security breach happening. However, in the unlikely event of any such breach occurring, Krishagni intends to honor its responsibilities as laid down under the GDPR, which includes notifying promptly, customers and the supervisory authorities.

Krishagni’s Promise on GDPR

At Krishagni, maintaining the security, integrity, safety, and confidentiality of personal data in our possession is of the highest priority. Krishagni has already taken adequate measures to ensure that we fulfill our promise of being fully compliant with GDPR. If you have any queries, please feel free to reach us at [email protected].

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.