Hi there, we’re CodeOxy from India and welcome
policy sets out how we handle your personal information if you’re a CodeOxy
client or visitor.
When we say ‘we’, ‘us’ or ‘CodeOxy’ it’s because
that’s who we are and we own and run this site.
If we use the term ‘policy’ we’re talking about
seeking information or any kind of service from us.
Types of personal information we collect
We collect certain personal information about
visitors and clients of CodeOxy.
The most common types of information we collect
includes: Client names, email addresses, IP addresses, contact details,
survey responses, blog comments, photos, payment information such as payment provider
details, transactional details, tax information, support queries, site form entries
(if applicable), your actions on our site (including incomplete quotations, any
uploaded attachments) and web and email analytics data. We will also collect
personal information from job applications (such as, your CV, cover letter and
interview notes, if any).
How we collect personal information
We collect personal information directly when
you provide it to us via email or through the site contact form or through
other people when they provide any contact information associated with you.
We collect your personal information when you
provide it to us or buy our services on our site, subscribe to our newsletter,
submit feedback, enter a CodeOxy contest, fill out a survey, or send us any
As the operator of digital content services, we
have a legitimate interest in verifying the identity of our clients. We
believe that knowing who our clients are (KYC) will strengthen the integrity
of CodeOxy by reducing fraudulent payments, CodeOxy also has certain legal
obligations that require us to know who our clients are in certain
circumstances. In light of this, if your order amount exceeds INR. 50,000 and
above we may verify your identity, in particular, your full name, full address
and date of birth by asking you to show us a Photo ID document (PAN card or
Aadhaar, etc.) CodeOxy will carry out the verification using centralized
government database or something similar approved by the law for user
verification. You might also be asked to attend a video call and a selfie might
be captured which will then be compared against your Photo ID document using
facial recognition technology. We will use your Photo ID document solely to
carry out the verification and delete it after the completion of this process.
Personal information we collect about you from others
Although we generally collect personal
information directly from you, on occasion, we may also collect certain
categories of personal information about you from other sources. In particular:
financial and/or transaction details from
payment providers in order to process a transaction; and
third party service providers (such as Disqus) which
may provide information about you when you link, connect, or login to your
account with the third-party provider and they send us information such as your
registration and profile from that service. The information varies and is
controlled by that service provider or as authorized by you via your privacy
settings at that service provider;
How we use personal information
We will use your personal information:
To identify and understand your needs and
requirements and fulfill a contract, or take steps linked to a contract: in
particular, in facilitating and processing transactions that take place on this
Where this is necessary for purposes which are
in our, or third parties’, legitimate interests. These interests include:
providing you with services described on our
responding to support tickets, and facilitate
the resolution of any disputes;
updating you with operational news and
information about our site and services e.g. to notify you about changes to our
site, website disruptions or security updates;
managing our relationship with you, e.g. by
responding to your comments or queries submitted to us on the site or asking
for your feedback or whenever you want to participate in a survey;
managing our legal and operational affairs
(including, managing risks relating to content and fraud matters);
training CodeOxy staff about how to best serve
improving our products and services;
your identity by comparing a video screenshot against your Photo ID document
using facial recognition technology (as is necessary for the establishment,
exercise or defense of legal claims); and
processing your job application to CodeOxy.
Where you give us consent:
providing you with marketing information about
products and services which we feel may interest you; and
customizing our services and websites, such as
similar technologies - in order to provide a more personalized experience.
For purposes which are required by law.
For the purpose of responding to requests by
government, a court of law, or law enforcement authorities conducting an
When we disclose your personal information
We will disclose personal information to the
subcontractors and service providers who assist
us in connection with the ways we use personal information (as set out above),
in particular: website hosting providers which are located in India or
elsewhere; technical and customer support services; recruitment agencies located
in India; marketing and analytics services; security and fraud prevention
services; and payment processing services located in India. Noting that our
subcontractors and services providers may also transfer and access such
information from other countries in which they have operations.
our professional advisers (lawyers, accountants,
financial advisers etc.) located in India;
regulators and government authorities in
connection with our compliance procedures and obligations;
a purchaser or prospective purchaser of all or
part of our assets or our business, and their professional advisers, in
connection with the purchase;
a third party to respond to requests relating to
a criminal investigation or alleged or suspected illegal activity;
a third party, in order to enforce or defend our
rights, or to address financial or reputation risks;
a rights holder in relation to an allegation of intellectual
property infringement or any other infringement; and
other recipients where we are authorized or
required by law, or requests by government, a court of law, or law enforcement
authorities, to do so.
How your personal information is secured
We store personal information on secure servers
that are managed by us and our service providers, and occasionally hard copy
files that are kept in a secure location in India. Personal information that we
store or transmit is protected by security and access controls, including
username and password, two-factor authentication, and data encryption where
How you can access your personal information
You have the right to make a request to access the
personal information we hold about you and to request corrections of any errors
in that data. To make an access or correction request, contact our privacy team
using the contact details provided at the end of this policy.
Marketing Choices regarding your personal information
Where we have your consent to do so (e.g. if you
have subscribed to one of our email lists or have indicated that you are
interested in receiving offers or information from us), we send you marketing
communications by email about products and services that we feel may be of
interest to you. You can ‘opt-out’ of such communications if you would prefer
not to receive them in the future by using the “unsubscribe” facility provided
in the communication itself.
You also have choices about cookies, as
described below. By modifying your browser preferences, you have the choice to
accept all cookies, to be notified when a cookie is set, or to reject all
cookies. If you choose to reject cookies some parts of our site may not work
Cookies and web analytics
web beacons and similar technologies, see http://www.allaboutcookies.org.
When you visit our site, there’s certain
information that’s recorded which is generally anonymous information and does
not reveal your identity. We’re talking about the following kinds of details:
your IP address or proxy server IP address’;
the domain name you requested;
the name of your internet service provider is
sometimes captured depending on the configuration of your ISP connection;
the date and time of your visit to the website;
the website which referred you to our site;
the operating system which your computer uses;
the technical capabilities of your web browser.
How long we keep your personal information
We retain your personal information to comply
with our legal obligations. If you no longer want us to use your personal
information, you can request that we erase your personal information. Please
note that if you request the erasure of your personal information we will
retain information from contracts and NDAs as necessary for our legitimate
business interests, to comply with the law, prevent fraud, collect fees,
resolve disputes, troubleshoot problems, assist with investigations or requests
by government, a court of law, or law enforcement authorities, enforce the
terms of service and take other actions permitted by law. The information we
When we need to update this policy
We will need to change this policy from time to
time in order to make sure it stays up to date with the latest legal
requirements and any changes to our privacy management practices.
When we do change the policy, we’ll make sure to
notify you about such changes, where required. A copy of the latest version of
this policy will always be available on this page.
If you’re a client or visitor in the European Economic Area these rights also apply to you:
For the purposes of applicable EU data
protection law (including the General Data Protection Regulation 2016/679 (the
“GDPR”), we are a ‘data controller’ of your personal information.
How you can access your personal information
You are also entitled to ask us to port your
personal information (i.e. to transfer in a structured, commonly used and
machine-readable format), to erase it, or restrict its processing. You also
have rights to object to some processing that is based on our legitimate
interests, such as profiling that we perform for the purposes of direct
marketing, and, where we have asked for your consent to process your data, to
withdraw this consent as more fully described below.
These rights are limited in some situations - for
example, we can demonstrate that we have a legal requirement to process your
personal information. In some instances, this means that we may retain some
data even if you withdraw your consent.
Where we require your personal information to
comply with legal or contractual obligations, then provision of such data is
mandatory: if such data is not provided, then we will not be able to manage our
contractual relationship with you, or to meet obligations placed on us. In all
other cases, provision of requested personal information is optional.
If you have unresolved concerns you also have
the right to complain to data protection authorities. The relevant data
protection authority will be the data protection authority of the country: (i)
of your habitual residence; (ii) of your place of work; or (iii) in which you
consider the alleged infringement has occurred.
Complaints and Grievance Redressal
Any complaints or concerns in relation to your Personal
Information or services of this website or any intellectual property of any
User shall be immediately informed to the Privacy Officer as mentioned below through
email signed electronically.
Contact Person: Mr. Rajesh Nivarthi