Bridge Group Solutions (BGS) enforces strict controls on the handling of all personal and sensitive information. This Privacy & Data Protection Policy outlines our commitment to safeguarding information and defines the responsibilities of all individuals interacting with our systems and services.
This Privacy & Data Protection Policy reflects Bridge Group Solutions' (BGS) unwavering commitment to safeguarding the personal and sensitive information entrusted to us. The policy applies to all individuals whose data is collected, processed, or stored by BGS. This includes employees, clients, contractors, service providers, and users of our websites and digital services. It defines the principles, responsibilities, and measures we adhere to in order to ensure the privacy, security, and ethical handling of personal data throughout its lifecycle.
BGS adheres to a data minimization approach, collecting only the data that is essential for legitimate business function, legal compliance, or service delivery. We ensure that all data collection practices are transparent, lawful, and fair. Our goal is to respect the privacy rights of individuals by informing them about the purpose and use of their data and ensuring their consent wherever applicable.
We implement robust technical and organizational security measures to protect personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and employee training on data protection best practices. Our security framework is designed to be proportionate to the sensitivity of the data we handle.
BGS conducts all data-related activities in accordance with applicable Indian laws, including the Information Technology Act, 2000 and the Digital Personal Data Protection (DPDP) Act, 2023. We also comply with any other regional or sector-specific regulatory obligations that apply to our operations. Compliance is central to our data handling framework, ensuring lawful processing and upholding individual rights.
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or to meet legal, regulatory, or business requirements. Once the retention period expires, we ensure that data is securely deleted or anonymized according to our data disposal procedures, preventing unauthorized access or recovery.
When business needs require us to share personal data with third parties, we do so only with trusted partners who demonstrate compliance with data protection standards. All third-party relationships involving data sharing are governed by formal agreements that specify data protection requirements, limitations on use, and confidentiality obligations.
We respect and uphold the rights of individuals regarding their personal data, including the right to access, correct, delete, or restrict processing of their information. BGS has established clear procedures for individuals to exercise these rights, and we respond to such requests in a timely and transparent manner, in accordance with applicable laws.
In the event of a data breach, BGS follows a comprehensive incident response plan that includes prompt investigation, containment, and notification procedures. We notify affected individuals and relevant authorities as required by law, and take corrective actions to prevent similar incidents in the future.
All BGS employees are responsible for protecting personal data they handle in the course of their duties. We provide regular training and awareness programs to ensure that staff understand their data protection obligations and the procedures they must follow. Violations of this policy may result in disciplinary action.
We integrate privacy considerations into our project development processes through Privacy by Design principles. This means that data protection requirements are identified and addressed at the earliest stages of product or service development, ensuring that privacy safeguards are built into our solutions from the ground up.
Individuals whose data is collected by BGS have the right to access their personal information, request corrections or updates to inaccurate data, and request deletion where legally permissible. To exercise these rights, individuals may contact our HR department. BGS ensures that all data access and modification requests are handled promptly, transparently, and in compliance with the law.
BGS retains personal data only for as long as necessary to fulfil its intended business or legal purpose. Once the data is no longer required, it is securely deleted or destroyed using industry-standard disposal practices. This ensures that no residual data remains accessible or recoverable, thereby protecting individuals’ privacy even after the data has served its purpose.
In the event of a significant data breach involving personal information, BGS will notify the affected individuals in a timely and transparent manner. The notification will include the nature of the breach, potential consequences, and the actions being taken to address and mitigate the risks. We believe in open communication and prompt resolution to maintain trust and confidence.
To ensure the effectiveness of this policy, BGS conducts regular audits and compliance checks of its data protection practices. These reviews help us identify areas of improvement, maintain alignment with legal standards, and adapt to changes in regulatory frameworks. Any updates to this policy are communicated clearly to all relevant parties.
BGS uses cookies and similar technologies on its digital platforms to enhance user experience, enable core site functionality, and gather analytical insights. These technologies are not used for profiling or behavioural tracking. Users have full control over cookie preferences through their browser settings and may choose to disable non-essential cookies at any time.
For any questions, concerns, or requests regarding your personal data or this policy, please reach out to our dedicated team at:
Email: hrteam@bridgegroupsolutions.com