Compliance Framework

This Website and VRK Infotech Pvt. Ltd. comply with the IT Act, 2000 and its amendments, including:

• Publication of mandatory legal policies (Privacy, Disclaimer, Grievance Officer)
• Appointment of Grievance Officer under Section 69A
• Maintenance of records as required under applicable IT Rules
• Compliance with IT (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021

Under the Digital Personal Data Protection Act, 2023:

• We collect only data necessary for stated purposes (data minimization)
• We obtain explicit consent before processing personal data
• Data Principals' rights are honored (access, correction, erasure, nomination)
• Data breaches are reported within statutory timelines
• A Consent Manager mechanism is in place

In compliance with CERT-In's April 2022 Directions:

• Cybersecurity incidents are reported within 6 hours of detection
• ICT system logs are maintained for 180 days within India
• NTP servers are synchronized as required
• Virtual asset service provider obligations (where applicable) are met

For users accessing from the European Economic Area (EEA), we maintain GDPR compliance:

• Lawful basis for processing is documented
• Data Subject Rights requests (DSAR) are fulfilled within 30 days
• Data Processing Agreements (DPAs) with third-party processors
• No personal data is transferred to non-adequate countries without safeguards

VRK Infotech Pvt. Ltd. is ISO 9001:2015 certified for its Quality Management System. This certification covers IT service delivery processes, ensuring consistent quality and customer satisfaction.

We comply with the Consumer Protection Act, 2019, including:

• Clear pricing and no hidden charges
• Grievance redressal mechanism
• E-commerce rules under the Act
• Prohibition of unfair trade practices

For compliance queries, data protection requests, or audit inquiries: legal@vimleshdwivedi.in