Privacy Policy

This Privacy Policy describes how Nityam Software Solutions Pte. Ltd. (“Nityam“, “we“,”our“, or “us“), headquartered in Singapore with branches in India (nityam.in) and Europe (nityameurope.com), collects, uses, discloses, and safeguards personal data. We comply with the Singapore Personal Data Protection Act 2012 (PDPA) as our primary governing law, while also adhering to internationally recognized data protection laws, including the EU/EEA  GDPR, UK GDPR, California CCPA/CPRA, Brazil LGPD, Canada PIPEDA, Australia Privacy Act (APPs), South Africa POPIA, Japan APPI, and India Digital Personal Data Protection Act (DPDP Act 2023).

1.Definitions
  • Personal Data: Any data that identifies or can reasonably identify an individual.
  • Processing: Any action performed on personal data, such as collection, storage,

transfer, or deletion.

  • Data Subject: Any individual whose personal data is processed by us.
2.Information We Collect

We collect the following categories of personal data:

  • Identifiers: Name, email address, phone number, postal address, government-issued

IDs where legally required.

  • Account Data: Login credentials, authentication tokens.
  • Financial Data: Payment card details (handled securely via PCI-DSS compliant

providers).

  • Technical Data: IP addresses, browser type, device identifiers, geolocation.
  • Usage Data: Website activity, cookies, analytics, and preferences.
  • Employment/Business Data: For job applicants, employees, and business partners.
3.Purpose of Processing

We process personal data for the following purposes:

  • To provide, operate, and enhance our services.● To process transactions and manage customer accounts.
  • To ensure legal, tax, and regulatory compliance.
  • To personalize user experiences and improve usability.
  • To send service communications, security alerts, and marketing (with consent where

required).

  • To manage recruitment, HR operations, and vendor relationships.
4.Lawful Basis for Processing

Depending on jurisdiction, we rely on:

  • Consent (e.g., marketing communications).
  • Contractual Necessity (e.g., fulfilling services).
  • Legal Obligation (e.g., tax, compliance, and record-keeping).
  • Legitimate Interests (e.g., fraud prevention, analytics, service improvements).
5.Data Sharing and International Transfers
  • We may share personal data with affiliates, service providers, regulators, and legal

authorities when necessary.

  • International transfers are safeguarded through:

EU Standard Contractual Clauses (SCCs)

UK International Data Transfer Agreement (IDTA)

Binding Corporate Rules (BCRs) where applicable

  • Transfers outside Singapore, India, and the EU are conducted with adequate

protections.

6.Data Subject Rights

Depending on jurisdiction, individuals have the right to:

  • Access – Request a copy of their data.
  • Correction – Rectify inaccurate or incomplete data.
  • Deletion – Request erasure of their personal data.
  • Restriction – Limit how their data is used.
  • Portability – Request data transfer in a structured format.
  • Objection – Opt out of processing based on legitimate interests or marketing.● Withdraw Consent – Revoke consent at any time.

Requests can be submitted via info@nitya.sg

7.Cookies and Tracking
  • We use cookies, trackers, and analytics tools to enhance user experience.
  • Users can manage preferences through browser settings or our cookie consent banner.
8. Data Retention
  • Data is retained only as long as necessary for legal, business, and compliance

purposes.

  • Retention periods vary (e.g., 6 years under UK law, 7 years under Singapore law).
9.Security Measures

We implement:

  • Encryption (TLS/SSL, AES-256)
  • Multi-factor authentication & access controls
  • Regular security audits and penetration testing
  • Employee awareness training
10. Data Breach Notification
  • We comply with PDPA, GDPR, CCPA, and other laws in breach notifications.
  • Affected individuals and regulators will be notified where legally required.
11.Children’s Privacy

● Our services are not intended for children under 16 years old (or the age defined by

local law).

  • We do not knowingly collect personal data from children without parental consent.
12. Regional Supplements
  • Singapore PDPA: Governs data processing for Nityam.sg.
  • GDPR / UK GDPR: Applies to EU/EEA and UK users.
  • India DPDP Act 2023: Applies to Nityam.in users.
  • California CCPA/CPRA: Applies to California residents.
  • Brazil LGPD, Canada PIPEDA, Australia APPs, South Africa POPIA, Japan APPI:

Respected for local compliance.

13.Updates to This Policy

We may revise this policy periodically. Updates will be published with the revised “Last

Updated” date.

14.Contact Us

For inquiries, concerns, or rights requests, please contact:

Data Protection Officer (DPO)

Email: info@nityam.sg

Address:21 Bukit Pasoh Rd, Singapore 089835