Privacy Policy Note

When you use the HRIS1 attendance tracking mobile application (“Application”), you trust us with your information and we value your privacy. This privacy policy note is meant to help you understand what information we collect and how do we use this information.

What kinds of information do we collect?

Things you do and information you provide

The Application shall collect geo-location and access the camera for photos clicked on the Application only for the purposes of marking your attendance. Access to any other information and functions of the user’s phone are optional and are based on your selective use of Application’s features.

On accessing the Application, the Application collects the company’s name, unit, employee code, mobile number and email ID (optional), that you provide when you sign up for an employee account to use the Application.

Device information

We shall collect device model and operating system where you install or access our Application, depending on the permissions granted by the user. We may associate the information we collect from your different devices, which help us provide consistent and secure services across your devices.

How do we use this information?

Authentication

The sign-up information is necessary to authenticate you and to recognize you as an authorized user to our Application.

Attendance

The information we shall collect shall be used only to mark the user’s attendance or for such purposes as may be expressly mentioned under this privacy policy note.

Develop and Improve Services

The information we collect may be also used to improve the content of our services to customize experience to our users, improve services and develop new features of the Application.

Communicate with you

We shall use your contact information to communicate with you about our services on the Application, its usage and if required, let you know about any revised terms and policies. Further, the information collected in terms of this privacy policy note may be used for supporting the functioning of the Application and troubleshooting activities.

Promote Safety and Data Security

We shall continue to work hard to protect your account using teams of engineers, procedural controls, automated systems and advanced technologies. We have appropriate technical, administrative and physical safeguards in place to help protect against unauthorized access, use or disclosure of the information we collect, process or store. However, it is important to note that no data transmission over the internet or information storage technology can be guaranteed to be 100% secure, but we shall use and deploy the tools and technologies to the best of our abilities to prevent any breach, and always continue to monitor, evaluate and implement enhancements in security technology and practices.

How do we share this information?

Response to Legal Requests or Prevent Harm

We may access, preserve and share your information in response to demand from any court or regulatory body, after necessary approval from internal company management and the group counsel’s office in the manner provided in the paragraph below. This may include responding to requests from courts and regulatory bodies situated outside India, as may be applicable. We may also access, preserve, use and share information collected in terms of this privacy policy note only after following the due approval process provided below, when we have a good faith belief it is necessary to: detect, prevent and address fraud and other illegal activity, including as part of investigations; or to prevent death or imminent bodily harm.

For the purposes of sharing and accessing the information collected by the Application in accordance with this privacy policy note, the following process shall be followed:

  1. On receipt of the request from a court or regulatory body, the CxO shall be informed;
  2. CxO shall share all the information along with their recommendation with the the RCO and the general counsel office;
  3. The RCO and the general counsel’s office shall approve sharing of the information and no information shall be shared without the express consent of the RCO and the general counsel’s office.

New Ownership

If the ownership or control of all or part of us or a specific services changes as a result of a merger, acquisition or sale of assets, we may transfer information of the employee being transferred to the new owner.

Data Processing and Transfers

Upon use or interaction with any of the Application, you shall consent to the data processing, sharing, transferring and use of your information to the extent outlined in this privacy policy note. Regardless of the country where you reside, you authorize us to transfer, process, and store and use your information in the manner provided under this privacy policy note in the countries other than your own to provide you with the services of the Application. The data transfers shall be carried out through various compliance mechanisms, including data processing agreements which shall include confidentiality provisions between controller and trusted processors complying with the applicable data protection law. We assure you that we shall not sell your data to any third party and shall not transfer your data other than specified circumstances and parties described in this privacy policy note.

Other important information

Security is teamwork

You shall also be required to participate in your own data security and support, effective implementation of information security processes or practices. You may also learn through IT Accepted Use Policy for Do’s and Don’ts and ways to remain vigilant from information or cyber security threats. You are also encouraged to report any suspicious event, incident or weakness in controls at mcert@motherson.com.

Data Retention

Where retention of personal data is required by law, we shall comply with the required retention periods. In other circumstances, we retain personal data for as long as necessary for the business purposes specified in our respective company processes, already available to you through intranet or other similar means.

Questions and Suggestions

If you have questions, suggestions or feel that this application is not following its stated privacy policy, you may please contact us at privacy@mind-infotech.com or your company’s Data Protection Officer (DPO).