NOVELVISTA PRIVACY POLICY
Introduction
Your trust in sharing personal data with us is deeply appreciated.
Safeguarding the security of your data is of utmost importance. This document outlines the ways in which we collect, utilize, and ensure the protection of your personal data. It also delineates your rights concerning your personal data and provides guidance on how you can exercise those rights.
Who we are?
We are NovelVista Learning Solutions, an Accredited Training Organization (ATO) specializing in providing professional training certifications. Our focus is on assisting individuals across diverse industries in developing essential skills and expertise. We are dedicated to helping professionals gain recognition and foster growth within the corporate realm, with a particular emphasis on the dynamic IT industry.
Our registered office address is:
NovelVista Learning Solutions Pvt. Ltd.Office 1, Revati Arcade 2, Opp Kapil Malhar, Behind Frozen Bottle,
Baner Road, Pune 411045, Maharashtra, India
If you have questions about how we process personal data, or would like to exercise your data subject rights, please email us at hello@novelvista.com.
Personal Data Collection:
We gather personal data from you for various purposes, including:
- Providing requested information or relevant content based on your demonstrated interests.
- Initiating and completing commercial transactions for product and/or service purchases.
- Fulfilling contracts entered into with you or the entity you represent.
- Providing access to trial software and delivering requested free materials.
- Ensuring the security and proper operation of our websites and business infrastructure.
- Managing communication between you and us.
The detailed table in section 5 below outlines the specific data collected for each purpose, the lawful basis for processing, and the retention period for each data type.
Technical Information:
Additionally, to enhance website usability, we collect:
- Technical information, including your device's IP address.
- Login information, browser details, time zone settings, and plugin types.
- Operating system and platform details.
- Information about your site visit, including the URL clickstream.
We may also use technologies to collect the above information from your interactions with our emails, tailoring our marketing efforts and identifying inactive subscribers.
Our Cookie Policy, accessible from each website's homepage, provides detailed information on how we use cookies.
Lawful Basis for Processing Personal Data:
The table below outlines the personal data collected and the lawful basis for processing. Our business infrastructure processes all personal data on common, group-wide platforms, ensuring secure access only to necessary personnel. Some data elements serve multiple purposes, and any third-party sharing is indicated.
When processing based on legitimate interest, we apply tests to ensure appropriateness, including the purpose test, necessity test, and balancing test to safeguard individual interests, rights, or freedoms.
Security Measures:
Our Information Security Management System (ISMS) is certified to ISO/IEC 27001:2013, ensuring robust security controls. Payment card processing complies with the Payment Card Industry Data Security Standard (PCI DSS). While we have implemented appropriate security measures for personal data protection, it's crucial to recognize information security risks beyond our information infrastructure's boundary. We disclaim liability for breaches occurring beyond our control.
Your Rights as a Data Subject:
As an individual whose personal information we hold, you have specific rights. To exercise these rights, contact us at hello@novelvista.com or refer to the 'Contact us' section below. Two valid forms of identification will be required for verification purposes. Your rights include:
- The right to be informed: Clear information about our data processing activities is provided through this privacy notice.
- The right of access: Request a free copy of your personal data, along with details on processing purposes, categories, recipients, retention periods, and data sources.
- The right to rectification: Correct or complete inaccurate/incomplete personal information.
- The right to erasure: Request deletion of personal data where no legal basis or legitimate reason for processing exists.
- The right to restrict processing: Halt processing of personal data under specific conditions.
- The right to data portability: Request transfer of personal data to another controller or processor in a machine-readable format.
- The right to object: Object to data processing based on legitimate interest, direct marketing, scientific research, or automated decision-making.
Contact Us:
For comments, questions, or suggestions regarding this privacy notice or your personal data, email hello@novelvista.com. Alternatively, reach us at our global HQ:
NovelVista Learning Solutions Pvt. Ltd.Office 1, Revati Arcade 2, Opp Kapil Malhar, Behind Frozen Bottle,
Baner Road, Pune 411045, Maharashtra, India
Operating hours: 10:00 am – 6:30 pm IST, Monday to Friday
Complaints:
For confidential discussion of complaints, use the contact details provided above. All complaints will be handled confidentially.
Purpose of Collection | Information Category | Data Collected | Specific Use | Lawful Basis for Processing | Data Shared With | Retention Period |
---|---|---|---|---|---|---|
1.To provide you with information | Subject matter information | Name, company name, geographic location, email address, business sector. | To provide appropriate online or email information about products and services that you have requested. | Contractual fulfilment | Internally only | Maximum eight years from the date the information is collected. Six months if a marketing email is left unopened. |
To provide further, related, online or email information and ongoing news updates in relation to the identified area of interest. | Legitimate interest | Internally only | ||||
Telephone number | Follow-up to ensure requested information meets needs and identify further requirements. | Legitimate interest | Internally only | |||
Personal contact information as provided through website forms or at trade shows, or via any other means. | General mailing list subscription. | Consent | Internally only | |||
2.Transactional information | Transaction details | Name, physical address, email address, telephone number, bank account details (for credit accounts), other medium of content delivery. | To process purchase transactions for products and services with customers, and to ensure any transaction issues can be dealt with. | Contractual fulfilment | Internally only | Maximum eight years from the date of the performance of the contract. |
For accounting and taxation purposes. | Statutory obligation | Internally and professional advisers. | Six months from the date the data subject has input personal information but has not proceeded with a transaction. | |||
Documentation should any contractual legal claim arise. | Legitimate interest | Internally and professional advisers. | Eight years for VAT records from the performance of the contract. | |||
Payment card data. | PAN(primary account number),cardholder name,service code,expiration data. | To fulfil purchase requests using payment cards. | Contractual performance | Payment card companies, in line with the PCI DSS | Only retained while authorisation is pending. | |
3.Fulfilment information | Fulfilment data | Name,dietary requirements. | Appropriate catering arrangements for training courses. | Contractual performance | Internally and training venues | Maximum six years from the date of the performance of the contract. |
Name,, contact and identification details. | Access to training courses,attendance registers. | Contractual performance | Internally and training venues | |||
Name,, contact and identification details. | Exam attendance, exam results and certification. | Contractual performance | Internally and external examiners, proctors and certification bodies. | |||
Name,, contact details. | Licensing details necessary for allocating and maintaining a licence purchased for use of software and related products, self-paced learning and elearning. | Contractual performance | Internally and any third parties whose products or services you may have purchased from us. | |||
Name, address(es), email address, contact details. | Actual delivery of products or services, in physical or digital form, that you may have purchased from us. | Contractual performance | Internally and any third-party logistics or supplier companies with which we contract to fulfil these requirements. | |||
4.Security | Security information | Technical information, as described above, plus any other information that may be required for this purpose. | To protect our websites and infrastructure from cyber attack or other threats, and to report and deal with any illegal acts. | Legitimate interest | Internally and forensic and other organisations with which we might contract for this purpose. | Relevant statutes of limitation. |
5.Communications | Contact information | Names, contact details, identification details. | To communicate with you about any issue that you raise with us or that follows from an interaction between us. | Legitimate interest | Internally and, as necessary, with professional advisers. | Relevant statutes of limitation. |
6.Product development | Survey data | Names, contact details, identification details. | To develop existing and new products that meet the expectations and requirements of our customers. | Consent | Internally and, where additional consent is given, for marketing purposes. | If anonymised for statistical research, this data may be kept indefinitely. Where not anonymised, it shall be retained for a maximum of one year. |