HomeAbout UsServicesPrivacy PolicyTerms of UseCompliance HubTCPA ComplianceUDAAP ComplianceData SecurityData Breach PolicyConsumer ComplaintsOpt-Out ProcessContact Us
HomeComplianceData Security

Data Security Policy

How we protect consumer and advertiser data

Last Updated: June 1, 2025

Taka Deals implements comprehensive technical, administrative, and physical safeguards to protect all personal and business data processed through our marketing operations.

1. Technical Safeguards

  • Encryption: All data encrypted in transit using TLS 1.3 and at rest using AES-256 encryption
  • Secure Servers: Data hosted on secure, ISO 27001-aligned cloud infrastructure
  • Access Controls: Role-based access control (RBAC) with multi-factor authentication for all internal systems
  • Firewall Protection: Enterprise-grade web application firewalls and intrusion detection systems
  • Regular Backups: Automated encrypted backups with point-in-time recovery capability
  • Vulnerability Scanning: Regular automated vulnerability scans and penetration testing

2. Administrative Safeguards

  • Designated Data Protection Officer (DPO) overseeing all data processing activities
  • Employee background checks and confidentiality agreements
  • Annual security awareness training for all staff with access to personal data
  • Need-to-know data access policies limiting exposure to sensitive information
  • Vendor risk assessments for all third-party data processors
  • Data Processing Agreements (DPAs) with all technology partners

3. Physical Safeguards

  • Secured office facilities with restricted access controls
  • Clear desk and clear screen policies for employees handling sensitive data
  • Secure disposal of physical documents containing personal information

4. Data Minimization

We practice data minimization — collecting only the data necessary for specific, disclosed purposes. Consumer data shared with advertisers is limited to what is required to fulfill the lead or sale, as agreed in advertiser contracts.

5. Consumer Data Handling

  • Transmitted securely only to the specific advertiser whose offer the consumer responded to
  • Never sold to unrelated third parties
  • Stored only for the duration necessary to fulfill campaign objectives
  • Subject to consumer rights requests (access, deletion, correction) at any time

6. Third-Party Security

All third-party platforms (Facebook, Google, TikTok, DSP networks) used in our advertising operations are evaluated for security compliance. We rely on industry-standard platforms with their own robust security frameworks and certifications.

7. Security Incident Response

See our Data Breach Response Policy for complete incident response procedures and notification timelines.

8. Contact Our Security Team

Security inquiries: security@takadeals.in
To report a vulnerability: security@takadeals.in — Subject: "Vulnerability Report"