Data Protection Policy

1. Purpose

This Data Protection Policy outlines how Neernaya collects, processes, stores, and protects user and device data. We are committed to ensuring that all data handled through our IoT monitoring platform is secure and processed responsibly.

2. Scope

This policy applies to all users, administrators, partners, and systems interacting with Neernaya services, including web applications, APIs, and IoT-connected monitoring devices.

3. Types of Data We Protect

• Personal user data (Name, Email, Organization)
• Device identification and configuration data
• Environmental and sensor monitoring data
• System logs and security audit records

4. Data Protection Principles

• Data is collected only for legitimate monitoring purposes
• Only necessary data is processed and stored
• Data is protected using encryption and access control
• Data is retained only as long as required

5. Security Measures

Neernaya implements multiple layers of security including secure authentication, encrypted data transmission (HTTPS/TLS), secure cloud storage, and role-based access control.

6. Data Access Control

Access to sensitive data is restricted to authorized personnel only. Access permissions are reviewed regularly to ensure compliance with security best practices.

7. Data Breach Response

In the event of a data breach, Neernaya will investigate, mitigate risks, and notify affected users and relevant authorities in accordance with applicable regulations.

8. User Responsibilities

• Maintain secure account credentials
• Report suspicious activity immediately
• Follow device security and installation guidelines

9. Policy Updates

This policy may be updated periodically to reflect changes in technology, regulations, or operational practices.

10. Contact

For data protection related concerns, users can contact the Neernaya support or security team.