1. What is the Privacy Policy, and what does it cover?

We at D.A.V.E want you to understand what information we collect, and how we use and share it. This Privacy Policy describes how D.A.V.E Research & Consulting Pvt Ltd. (“we,” “us,” or “our”) collects, uses, and shares personal information when you use our website/application, hereinafter referred to as the “Service”. We offer you the option to join a panel, participate in surveys conducted by third parties (both as a panel member and a non-panel member) or by us, access panel-related websites and applications, and earn rewards and incentives. This privacy policy describes how we will use your information in the context of the D.A.V.E website and D.A.V.E’s advertising, marketing, and sales practices.

Your use of the Application/Services is completely voluntary, and therefore, our processing of your PII in connection with the Application/Services and this Privacy Policy is with your consent.

Surveys administered by third parties and the data collected in connection therewith are not subject to this Privacy Policy. Registration with, use of, and access to our Services are subject to Terms and Conditions.

2. What information does D.A.V.E collect about me?

When you register/use our website or contact us for support or other offerings, we collect information that identifies you i.e. personally identifiable information (“PII”) from research participants during and after registration with a panel, including, without limitation, during participation in a survey and in connection with the receipt and redemption of rewards and incentives and/or during the Application/Services registration and download process.

This includes:

• Identifiers and contact information, such as:
  1. Name;
  2. Email address;
  3. Telephone number.
     
     
• Analytics or other electronic network activity, such as:
  1. IP address;
  2. Browser;
  3. Mobile Device ID;
  4. Browser extensions connected to your accounts;
  5. Tariff data;
  6. Geo Location.

3. How does D.A.V.E use the information it collects about you, and what are the legal bases for these uses?

• D.A.V.E uses the information we collect about you for the following purposes:
  1. To fulfil a contract or take steps linked to a contract: this is relevant where you register to use our app or website. This includes:
  2. Providing you with the D.A.V.E Services for which you have registered; Administering the service;
  3. Verifying your identity;
  4. Sending you necessary communications (for example, providing a response to your inquiry); and
  5. Providing customer service or support.
     
     
• As required by D.A.V.E to conduct our business and pursue our legitimate interests, in particular:
  1. Analysing your use and measuring the effectiveness of our Services to better understand how they are being used so we can improve them and engage and retain users;
  2. Analysing your use and navigation of our Services to tailor, customise and improve the Services and marketing communications;
  3. Diagnosing problems in our website and application;
  4. Investigating and responding to any comments or complaints that you may send us;
  5. Sharing your information with third parties for marketing purposes;
  6. Placing cookies and using similar technologies in accordance with our Cookies Policy and the information provided to you when those technologies are used;
  7. Accessing information that you allow us to receive (e.g. location) in order to provide certain functionality.

4. Do D.A.V.E share information with third parties?

Information about our customers is an important part of our business. We share customers’ personal information only as described in this Privacy Notice. We employ other companies to perform functions on our behalf. Examples include response to an enquiry raised for services, sending postal mail and email, analysing data and providing marketing assistance. These third-party service providers have access to personal information needed to perform their functions, but may not use it for other purposes.

5. Is my personal information secure?

We work hard to protect your personal information. We employ administrative, technical and physical security controls where appropriate, such as encryption and appropriate contractual confidentiality to protect your information.

6. Where does D.A.V.E store my personal information?

We employ third party services for the purpose of storing the personal information that we may collect from our customers.

7. What rights have I got regarding my personal information and how can I exercise these rights?

When provided for by applicable law, you have the right to ask us for a copy of your personal information; to correct, delete or restrict processing of your personal information; and to obtain the personal information you provide to us for a contract or with your consent. You can exercise the following rights:

1. Right to opt out of “selling” or “sharing” certain Personal Information

You have a right to opt out from future “sales” or “sharing” of personal information. CCPA requires us to describe the categories of personal information we sell to or share with third parties and how to opt out of future sales or sharing. The CCPA defines personal information to include internet or other electronic network activity information which includes identifiers, such as IP addresses, cookies IDs, and mobile IDs. The law also defines a “sale” or “share” broadly to include simply making data available to third parties in some cases.

2. Right to Know or Request Categories of Personal Information

You have a right to request that we disclose to you the personal information we have collected about you. You also have a right to request additional information about our collection, use, disclosure, or sale of such personal information such as a list of the categories of personal information collected about you, and other related information such as the source of the information, categories of information shared or sold to third parties, and the purpose for such sharing. 

3. Right to Correct

You have a right to request correction of inaccurate personal information.

4. Right to Request Deletion

You also have a right to request that we delete personal information under certain circumstances, subject to certain exceptions.

5. Right to Designate an Authorised Agent.

You may designate an authorised agent to exercise some of your rights; however, in order to help protect the security of your personal information, the authorised agent must follow the same authentication procedures that are required if you exercise your rights without using an agent. We will verify requests made through authorised agents to help ensure the safety of your account and to comply with our policies and procedures.

6. Right against Discrimination.

You have the right not to be discriminated against for exercising your rights under the CCPA.

7. Right to Notice.

You have a right to receive notice of our practices at or before the collection of personal information.

You have the right to exercise the rights listed above in our Privacy Policy free of charge or penalty, but we may limit the number of requests you make or charge reasonable fees as legally permitted. To exercise any of these rights, you can get in touch with us – or our data protection officer – using the details set out below.

8. How long does D.A.V.E retain my information?

D.A.V.E will retain your personal data for as long as necessary to fulfil the service you have requested, comply with any laws or regulations, resolve disputes, and enforce our agreements. D.A.V.E may retain your data up till six months from the date of completion of services for a legitimate business interest where business benefit is not outweighed by your personal rights and freedoms.

9. Can children use our websites and apps?

D.A.V.E Services are not intended for minors under the age of 16. If you are under 16, you may use our Services only with the involvement of a parent or guardian. We do not knowingly collect personal information from children under the age of 13 without the consent of the child’s parent or guardian.

10. Privacy by Design

We are committed to incorporating Privacy by Design principles into all stages of our data processing activities. Prior to the collection or processing of personal data, appropriate privacy controls are assessed and implemented. These include:

• Data minimisation to ensure only necessary information is collected and retained;
• Data encryption to protect personal data in transit and at rest;
• Secure default settings within all systems and applications handling personal data; and
• Role-based access controls to limit data access strictly to authorised personnel.

These measures are integral to safeguarding individual privacy and ensuring compliance with data protection laws from the outset of any project or processing activity. 

11. Third-Party Disclosures and Vendor Assessments

Before engaging any third-party service providers or data processors, we conduct a thorough vendor assessment process to ensure the protection of personal data. This includes:

• Vendor risk assessments,
• Due diligence checks, and
• Cybersecurity audits.

These evaluations are conducted to verify that third parties adhere to acceptable standards for data privacy, security, and compliance. We enter into binding agreements with such vendors to ensure that personal data is processed strictly in accordance with applicable data protection laws and our own privacy and security policies. 

12. Updates to this Privacy Policy

We may update this Privacy Policy periodically. The date of the latest revision will be indicated at the top.

13. Contact Us

If you have questions or concerns about this Privacy Policy, please feel free to contact us at DPO@research-dave.com