🔒 Security & Compliance

Data Protection
Standards

Our commitment to securing your personal information at every step

Last Updated: March 2024  |  Compliant with DPDP Act 2023 & IT Act 2008

01 — Our Pillars

Our Data Protection Pillars

VeerHousing.in is built on four core data protection principles that guide every decision we make regarding your personal information:

🔒

Confidentiality

Your data is accessible only to authorised personnel and never disclosed to unauthorized parties.

Integrity

We maintain accuracy of your data and protect it from unauthorized modification or corruption.

🛡️

Security

Industry-standard technical and organizational measures protect your data from breaches and attacks.

⚖️

Accountability

We take full responsibility for how your data is handled and are transparent about our practices.

02 — Legal Framework

Applicable Laws & Compliance

Our data protection practices comply with the following Indian laws and regulations:

Digital Personal Data Protection Act, 2023 (DPDP Act)

India's landmark data protection legislation governing the processing of digital personal data of Indian citizens. We comply with lawful basis requirements, consent mechanisms, and data principal rights under this Act.

Information Technology Act, 2000 & IT (Amendment) Act, 2008

Governs electronic records, digital signatures, cybercrimes, and data protection in India. Section 43A requires bodies handling sensitive personal data to maintain reasonable security practices.

IT (Reasonable Security Practices) Rules, 2011

Defines "sensitive personal data or information" and mandates specific security practices for organizations that collect, process, or store such data. We comply with all specified requirements.

03 — Technical Security

Technical Security Measures

We implement the following technical safeguards to protect your personal data:

  • HTTPS / SSL Encryption: All communication between your browser and our website is encrypted using TLS 1.2+ protocols. Look for the 🔒 padlock in your browser address bar.
  • Firebase Security Rules: Our database (Google Firebase Firestore) uses strict security rules that prevent unauthorized read/write access. Data access is restricted by authentication status and user role.
  • Admin Authentication: Our admin panel is protected by Firebase Authentication with secure email/password login. No public access to lead data or property management tools is permitted.
  • Hostinger Web Hosting: Our website is hosted on Hostinger's secure servers with DDoS protection, automated backups, and 99.9% uptime SLA.
  • No Sensitive Data Storage: We do not store financial details, Aadhaar numbers, PAN numbers, or bank account information on our systems.
  • Session Security: Admin sessions expire after inactivity. All sessions are validated server-side.

🔐 We follow the principle of data minimisation — we only collect information that is strictly necessary for providing our services to you.

04 — Organizational Measures

Organizational Controls

Beyond technical measures, we maintain strong organizational processes:

  • Least Privilege Access: Only team members who need access to personal data for their role are granted access. All access is role-based and logged.
  • Staff Awareness: All team members handling personal data are trained on data protection obligations and best practices.
  • Vendor Due Diligence: Third-party service providers (hosting, CRM, analytics) are evaluated for their data protection standards before engagement.
  • Data Processing Agreements: Where applicable, we enter into data processing agreements with third-party vendors who process personal data on our behalf.
  • Incident Response: We have a documented procedure for responding to data security incidents, including breach notification to affected individuals and relevant authorities as required by law.
05 — Breach Response

Data Breach Response Plan

In the unlikely event of a personal data breach, VeerHousing.in will follow this response process:

  • Detection & Containment (0–24 hours): Immediately identify and contain the breach to prevent further data exposure.
  • Assessment (24–48 hours): Determine the nature, scope, and impact of the breach — which data was affected, how many individuals, and what risk it poses.
  • Notification (within 72 hours): Notify the Data Protection Board of India (if required under DPDP Act) and affected individuals without undue delay.
  • Remediation: Address the root cause, patch any vulnerabilities, and strengthen security measures to prevent recurrence.
  • Documentation: Maintain a complete record of the incident, response actions, and lessons learned.

To report a suspected data security issue, contact us immediately at: sales@veerhousing.in

06 — Third Parties

Third-Party Services We Use

We use the following trusted third-party services in our operations. Each has their own robust data protection policies:

  • Google Firebase (Alphabet Inc.): Database, authentication, and file storage. Protected under Google's Privacy Policy and ISO 27001 certified infrastructure.
  • Hostinger International: Web hosting. Compliant with GDPR and maintains enterprise-grade server security.
  • Google Analytics: Website analytics (anonymised data only). No personally identifiable information is shared with Google Analytics.
  • Google Fonts & Unsplash: Typography and stock imagery. No personal data transmitted.
  • WhatsApp Business (Meta Platforms): Customer communication channel. Conversations are end-to-end encrypted.

📌 We do not use Facebook Pixel, advertising trackers, or any technology that tracks your behaviour across other websites.

07 — Contact

Data Protection Queries

For any data protection concerns, to report a suspected breach, or to exercise your data rights, please reach out to us:

Data Protection Contact

We take all data protection queries seriously and respond within 2 business days.

Email
sales@veerhousing.in
Phone
+91 88675 95550
Email Our Data Protection Team →

© 2024 VeerHousing.in — Real Estate. All rights reserved.  |  Home  |  Privacy Policy