Privacy Policy

Zinnov is committed to protecting your information. Please read this Privacy Policy (“Policy“) carefully as it sets out important information relating to how we will handle your personal information that you will share with us.

In this Policy, references to ‘we,’ ‘us,’ ‘our’ or ‘Zinnov’ are references to Zinnov Management Consulting Private Limited, India or Zinnov LLC, USA, and all our respective subsidiaries, affiliates and group entities; and “you” or “your” refers to the you, the data subject.

This Policy sets out how we collect your personal information from you and use them, and your choices and rights regarding our use of your personal information.

This Policy also describes our practices when using your information, at the time you:

1. express an interest in or have signed up for our conference or our product including our newsletter, app, extension, webinar (referred to as “Zinnov Event“);
2. attend a Zinnov Event; or
3. visit our websites (including our public and/events related websites) or our social media sites or handles (collectively “Sites“).

This Policy also applies to:

1. personal data we collect in the course of our business relationships with our clients, vendors, suppliers, service providers, and business partners;
2. recruitment and employment data, including job applicants, interns, and current and former employees of Zinnov;
3. marketing, analytics, and cookie-based data collected through our Sites and tools;

It also applies to information we collect from you via our surveys or diagnostic tools as explained more in detail below and by any other applicable manner such as under agreements. You may be directed to an additional confidentiality notice before participating in a survey or diagnostic or when you are sharing your information in any other manner. Please note that in cases where the terms of any such survey- or diagnostic-specific confidentiality notice conflict with any terms in this Policy, the terms of that notice will take precedence over the terms in this Policy.

This Policy will apply whether you have provided the information directly to us or we have obtained it from our employees, vendors, sub-contractors and any other third party.

Zinnov is committed to complying with all applicable data privacy laws, including but not limited to: (i) the European Union (“EU”) General Data Protection Regulation (EU 2016/679) (“EU GDPR”); (ii) the United Kingdom (“UK”) Data Protection Act 2018 and UK General Data Protection Regulation (“UK GDPR”); (iii) the Information Technology Act, 2000 (“IT Act”) and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011; (iv) the Digital Personal Data Protection Act, 2023 (India) (“DPDP Act”) as and when it is brought into force; and (v) applicable U.S. state privacy laws, including the California Consumer Privacy Act of 2018 (“CCPA”) as amended by the California Privacy Rights Act (“CPRA”), and other equivalent state laws (collectively, “Data Protection Laws”).

When does Zinnov collect information?

Zinnov collects certain information when, like you, a person:

1. registers for use of the Site or uses the Site;
2. registers for a Zinnov Event;
3. subscribes to receive e-mails from Zinnov;
4. registers for use of the Zinnov online communities or posts information on a shared area of the Site;
5. wishes to obtain more information about our products and services, participates in research interviews or surveys;
6. purchases certain products or services from us;
7. seeks employment opportunities with Zinnov;
8. provides services to or receives services from Zinnov as a vendor, supplier, consultant, or independent contractor; or
9. engages with us as a client, business contact, or representative of a corporate customer.

By using the Sites, participating in any Zinnov Event, providing personal data to Zinnov, or otherwise engaging with Zinnov in any capacity, you acknowledge and provide your implied consent to the collection, use, processing, transfer, and disclosure of your personal data in accordance with the terms of this Policy and Data Protection Laws.

What information does Zinnov collect?

1. contact information you may choose to provide while visiting or registering on our Site, including registrations to attend Zinnov Events. This information may include your: name, your company name, job title, telephone number, email address, postal address and the name and email of third parties you may provide to us;
2. employment, recruitment, and HR data, including curriculum vitae, resumé, work history, educational, experience details, emergency contacts, and any other employment-related information provided or collected during recruitment, onboarding, or employment;
3. contact information you may choose to provide for the purpose of participating in our research projects;
4. behavioural information about how you use the Site, marketing e-mails you open, e-mail links you click on and your IP address;
5. client and business relationship data, such as professional contact details, business communications, billing and payment information, and records of interactions with Zinnov;
6. vendor, service provider or supplier data, including contact details, banking and payment information, tax details, and business registration information;
7. Sensitive personal data, such as financial information, government-issued identification (where required for contractual or legal purposes), or other special categories of data, only when permitted by law and with your consent where applicable as per the Data Protection Laws.

How does Zinnov use your information?

1. To fulfill our contractual and legal obligations including supplying or providing products or services that you or your employer purchased, supplier onboarding, business relationship management, responding to inquiries, processing payments,, conducting background verification checks, maintaining employee records, payroll management, and communicating with you about your account, transactions, or employment with us;
2. to perform research and analytics, including client studies, market research, and surveys;
3. to improve our services, Sites, and performance, using analytics and feedback to enhance user experience and security;
4. to comply with legal, regulatory, or audit requirements in any jurisdiction where we operate;
5. to manage our relationship with employees, vendors, suppliers, and clients, including recruitment, payroll, performance management, invoicing, and due diligence;
6. to process and respond to job applications, manage recruitment and hiring, and maintain employment records;
7. to maintain a secure environment, monitor network activity, prevent fraud, and detect security incidents;
8. to conduct Zinnov Events and marketing activities, subject to consent and opt-out option; or
9. to share information with trusted service providers who assist us with technology, hosting, event organization, marketing, payroll, or other operational functions under strict confidentiality and data protection obligations.

Sharing with Sponsors

Zinnov may share your information with our sponsors at Zinnov Events as outlined below:

1. Pre-Event Lists. Sponsors of an event are provided a ‘Pre-Event List’ for event staffing purposes. The list may contain the Company name, title, industry and country of individuals that have registered for the event.
2. Post-Event Lists. When registering for an event, you may choose to have your contact details (name, title, company, and/or country) added to a “Post-Event List” that is transferred to sponsors of the event for marketing purposes.
3. Event Sponsor Booth Lists. Event attendees are provided with badges having bar code or quick response (QR) code that may be scanned at sponsored activities or sponsor booths. Attendee contact information is transferred to any sponsor that scans the badge.
4. Sponsored Event Lists and RFID badge scanning. When attending an event session sponsored by a third party, your badge may be scanned. Attendee contact information is transferred to the sponsor that scans the badge. Radio frequency identification (RFID) technology may be used to scan a badge when attending certain sponsored sessions at Zinnov Events. The signage outside such sponsored sessions will alert an attendee if the RFID functionality of a badge is being used at that session. If so, by walking into these sessions, you agree to have your badge automatically scanned and your contact information shared with the session sponsor.

Zinnov does not sell personal information as defined under Data Protection Laws. Zinnov uses cookies, web beacons, and similar tracking technologies to improve functionality, understand the Site usage, and deliver personalized content. You can manage your cookie preferences through your browser settings or opt out of analytics tracking where applicable.

Transfer of Data

We make reasonable efforts to restrict access to information to only those employees, contractors, and agents who need such access in order to operate, develop, improve, or deliver our programs, products, and services.

We operate globally and we may transfer your personal information to our affiliate companies or third parties in locations across the world for the purposes described in this Policy. Where required, Zinnov ensures such transfers are made under appropriate safeguards such as Data Protection Agreements (DPAs) the EU Standard Contractual Clauses (SCCs), UK International Data Transfer Addendum, or other lawful mechanisms approved under Data Protection Laws.

Your rights

1. Right of confirmation
   In accordance with Data Protection Laws, you have the right to obtain confirmation as to whether or not your personal data is being processed.
2. Right of access
   In accordance with Data Protection Laws, you have the right to obtain information about your personal data stored at any time including details of any other entity with whom your personal data has been shared and any cross border transfer of data and the safeguards measures being followed.
3. Right to rectification
   In accordance with Data Protection Laws, you have the right to seek rectification of inaccurate personal data. You also have the right to have any of your incomplete personal data completed, including by means of providing a supplementary statement as and when required.
4. Right to erasure
   In accordance with Data Protection Laws, you have the right to erasure of personal data.
5. Right to data portability
   You have the right to receive the personal data provided by you in a structured, commonly used and machine-readable format. You have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, as long as the processing is based on consent pursuant to the relevant conditions prescribed under Data Protection Laws.
6. Right to object You may object to processing of personal data. If your objection is made in accordance with the requirements prescribed under the Data Protection Laws, Zinnov shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims. If Zinnov processes personal data for direct marketing purposes, you have the right to object at any time to processing of your personal data for such marketing. This applies to your profiling to the extent that it is related to such direct marketing. If you object to Zinnov to the processing for direct marketing purposes, Zinnov will no longer process your personal data for these purposes. In addition, you have the right to object to processing of your personal data by Zinnov for scientific or historical research purposes, or for statistical purposes, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
7. Right to opt out of data processing
   In accordance with Data Protection Laws, you have the right to withdraw your consent to processing of your personal data at any time.
8. Right to nominate
   In accordance with Data Protection Laws you have the right to nominate a representative, who will exercise the aforementioned rights and make requests on your behalf.

To submit any request to exercise any right above you may contact us via email to the below email address. However, please note that in case you exercise any of the above rights, Zinnov may not be able to supply you the products or provide you the services or access to its Sites or employment with Zinnov.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes described in this Policy, comply with legal obligations, resolve disputes, and enforce our agreements. or as per Data Protection Laws. Retention periods may vary depending on the category of data and the purpose for which it was collected.

Data Security

In compliance with Data Protection Laws, we have implemented administrative, technical, operational and physical security measures to help prevent unauthorized access of Personal Data. Please note that you are responsible for maintaining the security of your credentials used to access any Zinnov Site, service or account, and you must immediately report suspected unauthorized activity to us on info@zinnov.com.

We shall not be held responsible for any loss, damage or misuse of your personal information, if such loss, damage or misuse is attributable to a ‘Force Majeure Event’. A Force Majeure Event shall include, but not be limited to, acts of God, natural disasters, war, terrorism, armed conflict, epidemics, pandemics, labour disputes, embargoes, acts of government or regulatory authorities, power failures, network or telecommunication failures, cyberattacks, or any other event beyond Zinnov’s reasonable control. In the event of a Force Majeure Event, Zinnov will take all reasonable and lawful measures to mitigate its impact and restore normal operations as soon as practicable, including implementing alternate security or operational arrangements where feasible.

Grievance Redressal

For any questions, grievances, requests you may have with respect to processing of your data, you may contact our grievance officer at info@zinnov.com.

Zinnov will respond to your grievance, query or request within seven (7) days to forty-five (45) days, depending upon the gravity of the circumstances.

Liability

To the extent permitted by Data Protection Laws, Zinnov’s liability for any claims arising out of or in connection with this Policy or the processing of your personal data shall be limited to direct and actual damages proven to have been solely caused by Zinnov.

Zinnov shall not be liable for any indirect, consequential, incidental, punitive, or exemplary damages, including but not limited to loss of profits, data, goodwill, or business opportunities, even if advised of the possibility of such damages.

Conflicts

In the event of any conflict between the terms of this Policy and the requirements of any Data Protection Laws the provisions of the Data Protection Laws shall prevail to the extent of such conflict.

Updates to this Policy

Zinnov may, in its sole discretion and without prior notice to you, update this Policy from time to time. Updated versions will be posted on our website.