ClickPost Compliance 

On 25th May 2018, the European Union ( referred to as “EU”) ratified the General Data Protection Regulation to protect personal data against unlawful activity and online information usage. Following Brexit, the United Kingdom (the “UK”), created a security law known as the UK General Data Protection Regulation. 

Both EU and UK regulations together shall be collectively referred to as the “GDPR” for the purpose of the document. This regulation safeguards data by conforming with specific policies while collecting, sharing, and processing your information within the EU and the UK. The GDPR strongly underlines the importance of consistent rights and control over consumer information.

At Felurian Technology Private Limited (“we”, “us”, “our”, “Felurian”), we take responsibility for safeguarding your data privacy with strict security regulations. We adhere to the EU and UK laws to respect your privacy and practice complete data confidentiality. In the following sections, we have outlined our approach to complying with the GDPR.

GDPR Compliance 

Felurian Technology Private Ltd. owns the website www.clickpost.ai, the web-based application named Clickpost and ClickPost Returns Plus alongside all its operations. 

The website and mobile application (hereinafter jointly addressed as the "Platform") provide operational assistance to Felurian Tech Pvt. Ltd. clients. 

The Platform acts as a system that facilitates numerous logistics functions, including but not limited to tracking orders, sending customer notifications, automating order fulfillment, and returns & exchange management.

Through the Platform, Felurian Tech Pvt. Ltd. acts in the capacity of both Data Controller and Data Processor. This means we respectively process consumer information collected from users submitted on the website and information provided by customers for our services.

Risk Assessment

Felurian performs systemic risk evaluation by mapping, identifying, and assessing personal information it holds, various sources the information comes from, how and why it is processed, and whom it addresses. In addition, it encompasses compliance monitoring by reviewing various findings from the assessment process for stringent analysis.

Consent and Rights

As a Data Controller, Felurian Technology Private Ltd. has updated its Privacy and Cookie Policies alongside its Disclaimer for the usage of Cookies and any internal data as per the requirements of GDPR on its website www.clickpost.ai. 

We pursue the protocols only with the consent of all visitors and website users for the use of personal information under all circumstances. The Platform also allows users to exercise their rights concerning their personal information. They are permitted to modify, rectify, and delete personal information, under rightful obligations and GDPR rules. 

These rights apply to cookies and/or similar in-house and third-party tracking tools to track user traffic patterns. Tracking tools are used as beacons, tags, and scripts to collect and track information to improve and analyze our ‘Website’ and ‘Services’. It is at your discretion to disable cookies through your browser settings. For more information, please refer to our cookie policy https://www.clickpost.ai/cookie-policy

Data Processing Agreements and Transfer of Data outside the EU And UK

A Data Processing Agreement (referred to as “DPA”) is a formal understanding between two parties (a controller and a processor), outlining the legalities and liabilities involved in the processing of personal data. As a sensitive GDPR procedure, it requires validation from controllers and processors. Thereafter, they review contracts such as statements and notices belonging to GDPR and verify accurate data relating to personal information as per the regulation. 

The Platform also mandates all technical and organizational security measures to ensure compliance. It safeguards the transfer of personal data and information received from our clients outside the EU and the UK.

At Felurian, we have in place a GDPR-compliant data processing addendum (as per Article 28 of the GDPR) including the EU Standard Contractual Clauses (“SCCs”) and the UK International Data Transfer Addendum (“ITDA”) to ascertain an appropriate legal basis for data transfers outside the EU and UK respectively. 

Data Retention and Erasure

We have formulated an organizational data protection compliance policy. It includes a data retention schedule that is compliant with GDPR policies. The schedule comprises ‘data minimization’ and ‘storage limitation’ and information on how personal information is stored, archived, and destroyed under the GDPR laws.

Record Keeping as per GDPR

The maintenance of records related to the processing of personal data should be maintained within the organization by representatives of every controller and processor according to the undertaking of Article 30 of the GDPR. We maintain such records as indicated under Article 30(1) and Article 30(2) of the GDPR.

Data Breach and Mitigation

According to GDPR regulations, the Platform concurs to taking action after the data breach by sending notifications. We have established collective internal measures to counter damage, data loss and fraud. We take full responsibility by agreeing to GDPR laws in the unlikely event of any such breach or unfortunate event. Felurian will inform or notify the concerned party (or parties) and report supervisory activities in such scenarios.

Our GDPR assurance

At Felurian Technology Pvt. Ltd., we strictly maintain the security, integrity, safety, and confidentiality of the consumer data that we receive. We prioritize this task with utter transparency as responsible representatives. Felurian's adequate measures indicate the purpose of uncompromising compliance with the GDPR and careful data handling. For any queries, please feel free to reach us at security@clickpost.in.