Centre for Health, Applied Knowledge and Research Autonomy (CHAKRA)

1. Introduction

CHAKRA is committed to protecting the privacy and personal data of all individuals who interact with our organization, including employees, students, trainees, research partners, website visitors, and other stakeholders. This Data Protection & Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information in compliance with applicable data protection laws, including the Information Technology Act, 2000 and the Digital Personal Data Protection Act, 2023.

2. Scope

This policy applies to all personal data collected through:

• Official website and web applications
• Online registration and application forms
• Email communications and newsletters
• Physical documents and forms
• Mobile applications
• Third-party platforms and integrations

3. Data Collection

We may collect the following types of personal information:

• Identity Data: Name, date of birth, gender, photograph
• Contact Data: Email address, phone number, postal address
• Academic Data: Educational qualifications, certificates, transcripts
• Professional Data: Employment history, resume, professional affiliations
• Technical Data: IP address, browser type, operating system
• Usage Data: How you use our website and services

4. Purpose of Data Processing

We process personal data for the following purposes:

• Providing educational and training programs
• Processing applications and registrations
• Managing employee and faculty records
• Conducting research and collaborations
• Improving our services and website
• Sending communications and newsletters
• Complying with legal obligations

5. Data Sharing and Disclosure

We may share personal data with:

• Partner institutions and universities
• Government regulatory bodies as required by law
• Service providers and contractors
• Research collaborators (with consent)

We do not sell or trade personal data to third parties for marketing purposes.

6. Data Security

CHAKRA implements appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of sensitive data
• Secure access controls and authentication
• Regular security assessments and audits
• Employee training on data protection
• Incident response procedures

7. Data Retention

We retain personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law. Specific retention periods vary based on the type of data and legal requirements.

8. Individual Rights

Individuals have the following rights regarding their personal data:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your personal data
• Right to Restriction: Request restriction of processing
• Right to Data Portability: Request transfer of data to another entity
• Right to Withdraw Consent: Withdraw consent at any time

9. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance user experience, analyze website traffic, and personalize content. You can control cookies through your browser settings.

10. Data Protection Officer

For any questions, concerns, or requests regarding this policy or our data protection practices, please contact our Data Protection Officer:

11. Policy Updates

We may update this policy from time to time to reflect changes in our practices or applicable laws. We encourage you to review this policy periodically.