This privacy policy describes the management of personal information that Manappuram Insurance Brokers Limited (Here after refers as MAIBRO) or its representative collects from or about the employee/customer/vendor and describes how it is used. The company collects and uses personal data in a reasonable and lawful manner. The Company may amend these rules from time to time.
2.1MAIBRO does collect your personal information for a variety of regulatory and business purposes. These include, but are not limited to: -
3.1Personal Information - The term 'Personal Information' applies to any information that is used to identify/contact an employee/customer/vendor for business purposes. This includes an individual's name, fathers name, mothers name, spouse name, current and previous address, date of birth, contact details, details, occupation, professional memberships etc not limited to any information as required by the Company. In the normal course of business activities, the company will collect personal information but under certain exceptional circumstances Company may collect Sensitive Personnel Information (SPI) also. MAIBRO and its authorized third parties may collect, store, process following types of Sensitive Personal Information such as password, financial information (details of Bank account, credit card, debit card, or other payment instrument details), biometric information, physiological information for providing our products, services and for use of our website. We may also hold information related to your utilization of our services which may include your call details, your browsing history on our website, location details and additional information provided by you while using our services.
3.2Information Technology (Reasonable security practices and procedures and sensitive personal data or information) Rules, 2011 defines Sensitive Personal Information. Sensitive Personal data or information of a person means such personal information which consist of any information relating to:
4.1Collection of Personal Information.
4.1.1MAIBRO may collects various types of personal information about an employee/client/vendor under various circumstances. They are collected from.
4.1.2In addition personal information also includes name, address, date of birth, phone number, mailing address, credit card information, and any other relevant information necessary to company’s business purposes. The company may also collect personal information of employees/clients from third parties, if required for business.
4.1.3MAIBRO may at its discretion employ, contract or include third parties external to itself for strategic, tactical and operational purposes. Such agencies though external to MAIBRO, will always be entities which are covered by contractual agreements. These agreements in turn include MAIBRO`s guidelines to the management, treatment and secrecy of personal information. We may transfer your personal information or other information collected, stored, processed by us to any other entity or organization located in India only in case it is necessary for providing services to you or if you have consented (at the time of collection of information) to the same. This may also include sharing of aggregated information with them in order for them to understand our environment and consequently, provide you with better services. While sharing your personal information with third parties, adequate measures shall be taken to ensure that reasonable security practices are followed at the third party. We may obtain your consent for sharing your personal information in several ways, such as in writing, online, through "click-through" agreements; orally, including through interactive voice response; or when your consent is part of the terms and conditions pursuant to which we provide you service. We however assure you that MAIBRO does not disclose your personal information to unaffiliated third parties (parties outside MAIBRO corporate network and its Strategic and Business Partners) which could lead to invasion of your privacy.
4.1.4MAIBRO may also share your personal information with Government agencies or other authorized law enforcement agencies (LEAs) mandated under law to obtain such information for the purpose of verification of identity or for prevention, detection, investigation including but not limited to cyber incidents, prosecution, and punishment of offences.
4.2Use of Personal Information.
4.2.1The personal information collected is used in a manner that is compatible with the purpose for which it is collected. Such uses may include:
4.3Disclosure of Personal Information.
4.3.1Personal Information may be shared or disclosed by the company either internally or externally with third parties/Clients for the purpose for which it was collected. An individual can withdraw consent at any time, subject to legal and contractual restrictions. MAIBRO will inform the implications of such withdrawal.
4.3.2Further, personal information may be disclosed under the following circumstances:
4.4Security of Personal Information.
4.4.1The company is responsible to secure the personal information it holds regardless of the form in which the information is stored. The company has taken appropriate measures to prevent any loss, misuse, unauthorized access, disclosure, or modification of Personal Information. Our security practices and procedures limit access to personal information on need-only basis. Further, our employees are bound by Confidentiality Policies which obligate them to protect the confidentiality of personal information. We take adequate steps to ensure that our third parties adopt reasonable level of security practices and procedures to ensure security of personal information. We may retain your personal information for as long as required to provide you with services or if otherwise required under any law. When we dispose of your personal information, we use reasonable procedures to erase it or render it unreadable (for example, shredding documents and wiping electronic media).
4.5Reasonable Security Practices and Procedures.
4.5.1As part of implementing Reasonable Security Practices and Procedures, the company is in the process of acquiring ISO certification as per standards applicable.
4.5.2We have put in place appropriate technical, organizational and security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions, and they are subject to a duty of confidentiality.
4.5.3We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.
4.6Right of Access to Personal Information.
4.6.1The company allows employees/clients to access personal information only on their requests. If any personal information needs to be updated or verified, it shall be informed to the HR Manager/CS.
4.6.2In cases where an employee/client is restricted access to personal information; the company will explain the reasons for the lack of access, except where prohibited by law. Additionally, personal information may be destroyed or erased, in accordance with the company's record retention policies.
4.7Retention
4.7.1Personal data is kept in active files or systems only as long as needed to meet the purposes for which it was collected or as required by contractual agreement, by law or regulation, or, where applicable for the appropriate statute of limitations period. Records will be periodically reviewed and archived or properly disposed of according to the company’s record retention policy. Personal data may be archived to meet legal requirements, for research purposes or to facilitate long-term storage.
4.8Disclaimer
4.8.1Every effort has been made to ensure that the information stated by the individual is correct and up to date, however, Company does not provide any warranty as to the completeness or accuracy of the information and, subject to applicable laws, does not accept any liability for damages of any kind resulting from any unauthorized access or for any advertisement published regarding employee/customers Personnel information.
4.9Terms of Use
4.9.1Understand that in case of your non-compliance (intentional or otherwise) with the Privacy Policy, Terms of Use and other Legal Policies for access or usage of the Site / Mobile Application, Maibro reserves the right to terminate your access to the Site / Mobile Application and/or your account (“collectively referred to as Access”) or remove such non-compliant information (if any) provided by you, or both.
5.1Maibro reserves the right to change this policy from time to time, at its sole discretion. We may update this privacy policy to reflect changes to our information practices. We encourage you to periodically review.
5.2Complaint Resolution
5.2.1Maibro endeavour to provide information under its control or possession, or assistance to any Government agency which is lawfully authorised to investigate or protect cybersecurity activities, for the purposes of verification of identity, or for the prevention, detection, investigation, or prosecution, of offences under any law for the time being in force, or for cyber security incidents as soon as possible, but not later than seventy two hours of the receipt of an order or as per the timelines specified in any government or regulatory order. Accordingly, our Grievance officer and our legal team is authorized to receive and acknowledge any order, notice or direction issued by the Appropriate Government, any competent authority, or a court of competent jurisdiction.
5.3Complaint Resolution
5.3.1Any employee/customer who has a concern about the collection, use or disclosure of the individual’s personal data can directly file a complaint before the HR Manager /Head of Customer service cell. The company will investigate and ensure appropriate resolution. The company will make reasonable efforts to maintain confidentiality regarding the employee/customer’s concern.
Customers shall bring the issue to the attention of the Grievance Officer whose details are as mentioned below.
Grievance Officer Name | Sreedevi T D |
Contact Number | 1800-123-624276 |
customerconnect@maibro.in | |
Working Days / Hours | Monday to Friday / 8:30 am to 5:30 pm |
5.4Data Protection Officer
5.4.1The owner for the Data Privacy Policy shall be the Nodal/Data Protection Officer. The Nodal/Data Protection Officer shall be responsible for maintenance and accuracy of this policy. Any queries regarding the implementation of this policy shall be directed to the Nodal/Data Protection Officer (email at ciso@maibro.in). If any query received from CRM desk, the same shall route to CISO & the responsibility of resolution belongs to CISO/IT red team.
5.4.2This policy shall be reviewed for updates by Nodal/Data Protection Officer on an annual basis. Additionally, the data privacy policy shall be updated in-line with any major changes within the organization’s operating environment, on recommendations provided by internal/ external auditors and/or on any changes brought in by regulatory/statutory amendments.
Modified on : 20.05.2024