The Purpose of the policy is to set out the principles for retaining and destroying specified categories of data. In course of Providing Services, Augnito India pvt. Ltd. may receive, store, and manage sensitive data on the systems. Due to Contractual, legal and regulatory obligations, Augnito maintains a strict confidentiality of data all the times. This policy communicates expectations with respect to the transmittal, storage, processing, retention and disposal of data provided to Augnito in the course of business.
The scope of this data retention and destruction policy is over all information technology systems, software, databases, applications and network resources needed by the Company to conduct its business. The policy is applicable to all Company employees, contractors and other authorized third-party organizations.
Data retention and destruction policy compliance is managed by the Information Technology (IT) department, with support from the leadership and subject matter experts. The Information Technology (IT) department is responsible for managing all data retention and destruction activities for the Company. Other departments, such as Finance and Accounting, Operations and Human Resources, are also responsible for providing the IT department with their requirements for data retention and destruction. The IT department is responsible for developing, executing and periodically testing data retention and destruction procedures. The IT department also acknowledges it will comply with appropriate industry standards for data retention and destruction in its activities.
Policy
The use of data shall always be treated with utmost care as safeguarding the data is critical. The data will be:
Used lawfully, fairly and in a transparent way.
Collected only for valid purposes and not used in any way that is incompatible with those purposes.
Accurate and kept up to date.
Retained only for as long as necessary to fulfill contractual obligations associated with it, in consonance with applicable law
All PHI (Personal Health Information) to be anonymized in compliance with provisions of Hipaa and other applicable Data Privacy regulations
Kept securely and protected against unauthorized or unlawful processing and against loss or destruction using appropriate technical and organizational measures.
Not disclosed to any third party without any prior written consent.
While processing the data, following requirements are adhered to in order to maintain data confidentiality:
The anonymity of the data is maintained while processing it.
The data is only used for the purpose it has been acquired.
Augnito ensures that it uses data only for the purpose of providing services & for training its AI. The data fed to AI is also kept anonymous.
To ensure the confidentiality of data processed by Augnito, access to the data will only be restricted and as per the following guidelines:
Access to data will only be granted to the Augnito employees who have legitimate purpose for such data.
Only a minimum access will be granted as to accomplish the assigned task.
The data acquired shall not be retained beyond completion of its purpose. Therefore, All copies of data will be securely deleted after the purpose is achieved. Please note that no user data is retained or stored beyond 90 (ninety ) days.
There are two types of Data which Augnito Processes:
PHI – Personal Health Information
PII – Personal Identity Information
This data is strictly kept anonymous while processing.
Note: The user id and details required for initial sign up for our services are not anonymized as these need to be identifiable to provide services. The use of this data is limited to the purpose of providing services and sending updates & promotional emails. However, the user can request for deletion/rectification of the their personal data by mailing on legal@augnito.ai or can contact the Data Protection Officer Aakanksha Yadav at aakanksha.yadav@augnito.ai. For any further information they need in this regard.