Data SecurityPolicy

The udyamregistrations.com ("udyamregistrations.com", "We", "Us" or "Our") data security policy covers our Services and Websites located at https://udyamregistrations.com (hereinafter collectively referred to as "Service(s)").

We value the unwavering trust that our users place in us as custodians of their data. We understand our responsibility and take appropriate care to protect and secure your details seriously as described in our security practices below.

udyamregistrations.com is compliant with the Payment Data Security Standards via the third-party payment providers we use and can therefore accept or process credit card information securely in accordance with these standards.

Access to our technology resources is only permitted through secure connectivity (e.g. HTTPS) and requires authentication. Our password policy requires complexity, expiration, lock out and disallows reuse.

We grant access on a need-to-know basis following least privilege rules, review permissions quarterly, and revoke access immediately after employee termination.

We review and update our security policies at least annually. Our employees are obligated to acknowledge policies on an annual basis and are provided training for assuring data security and job-specific security and skill development for key job functions.

Our information systems and technical infrastructure are equipped within a world-class Data Centre located in India. Physical security controls at our data centres include camera surveillance, visitor logs, security personnel, and more.

We conduct background research at the time of hire of executives and employees (to the extent permitted or facilitated by applicable laws and countries). In addition, we communicate our data security policies to all employees (who must acknowledge this) and require new employees to sign non-disclosure agreements and provide ongoing privacy and security training to secure data.

We have a vulnerability assessment program which includes periodic scans, identification, and remediation of security vulnerabilities on servers, network equipment, and applications. All networks, including test and production environments, are regularly scanned using trusted third-party vendors.

We also conduct regular internal and external penetration tests and remediate according to severity for any results found.

We encrypt data in transit using Industry Standard SSL, ensuring all information transmitted between your browser and our servers remains protected from interception.

We maintain electronic records for identification, classification, retention and disposal of assets. The owner of such a record is the Information Security Officer, who is responsible for ensuring accurate, timely and periodic revision of the asset management records.

Company-issued devices are equipped with hard disk encryption and up-to-date antivirus software. Only company-issued devices are permitted to access corporate and production networks.

Our development team employs secure coding techniques and best practices while development. Our Developers are formally trained in secure web application development practices upon hire and at least once every six months.

We maintain all security incident response policies and procedures covering the initial response, investigation, public communication and remediation. These policies are reviewed at regular intervals of time and tested bi-annually.

Despite all the best efforts, no method of transmission over the Internet, or method of electronic storage, is perfectly secure. Therefore, we cannot guarantee absolute security to data stored.

However, if we learn of a security breach, we will notify affected users so that they can take appropriate protective steps to protect data. We are committed to keeping our customers fully informed of any matters relevant to the security of their account and to providing customers all information necessary for them to meet their own regulatory reporting obligations.

We back up our databases on a regular basis and verify them regularly. Backups are encrypted and stored securely within the production environment to preserve their confidentiality and integrity, and are tested regularly to ensure availability.

Keeping your data secure also requires that users maintain the security of their account by using sufficiently complicated safety measures like passwords and storing them safely. You should also ensure that you have sufficient security measures installed on your own systems.

Our systems log information to a centrally managed log repository for troubleshooting, security reviews, and analysis by authorized personnel. We will provide users with reasonable assistance in the event of a security incident impacting their account.

In case of any queries, you may contact our Information Security Officer. We are committed to responding to your concerns promptly and transparently.