...

Security Policy

At RightPath Lifestyle Pvt Ltd (“RightPath”), we understand the importance of protecting your information. Our commitment to confidentiality and responsible data handling is at the core of our business. As a trusted consulting and coaching company, we prioritize the privacy and security of any information shared with us, whether it’s personal details, business information, or sensitive communications.

Though we do not operate a specialized security infrastructure, we implement straightforward practices to ensure that your data is safeguarded against misuse, unauthorized access, and unnecessary retention. This Security Policy outlines the principles that guide our data protection efforts and the specific practices we follow to protect the information entrusted to us.

...

1. Confidentiality and Limited Access

...

A. Confidentiality is Our Priority

In our work with clients, maintaining confidentiality is not only a legal requirement but an ethical commitment. We handle all client information as strictly confidential, whether it pertains to personal details, business insights, or coaching and training materials. Each team member at RightPath is trained and regularly reminded of the importance of confidentiality, and we have procedures in place to ensure that this commitment is upheld consistently.

...

B. Access Control

Access to client information is restricted to only those team members who need it to perform their roles. For instance, a consultant working directly with you on a project may need access to certain information, but other team members will not have access unless necessary. This “need-to-know” basis minimizes exposure and limits any potential risk to your data.

...

C. Team Training and Awareness

At RightPath, we believe that data security starts with our people. Each team member undergoes periodic training on data confidentiality, security best practices, and our commitment to ethical data handling. This includes guidelines on secure communication, data retention, and procedures for ensuring that client information remains protected at all times.

...

2. Responsible Data Storage and Retention

...

A. Secure Storage Locations

We are mindful of how and where we store client information. Digital information shared with us, whether through forms, emails, or other secure methods, is stored in password-protected digital environments. We use reputable and secure storage solutions to manage any necessary information and ensure that these platforms provide reliable safeguards against unauthorized access.

...

B. Retention for Service-Driven Purposes Only

We retain your information only as long as necessary for service delivery or to meet legal obligations. This ensures that we are not holding onto your data longer than required. For instance, contact information and service preferences might be retained for ongoing service delivery and follow-up, but we do not store sensitive information beyond its intended use.

...

C. Secure Deletion and Anonymization

When information is no longer needed, we delete or anonymize it following secure data destruction practices. We aim to balance the retention of essential information for service continuity with the need to protect your data privacy.

...

3. Communication Practices for Safe and Secure Interactions

...

A. Secure Communication Channels

RightPath prioritizes secure communication to keep your information safe. We use widely accepted and secure communication platforms like Gmail for email exchanges and messaging. These platforms are reputable for their security features, and we take additional steps to ensure your information is handled responsibly, including using strong passwords and secure access methods.

...

B. Video Conferencing Security

For virtual coaching and training sessions, we rely on established, trusted video conferencing platforms such as Google Meet, Zoom and Microsoft Teams. These platforms provide built-in security features, including encryption and secure meeting settings, which we use to ensure that your sessions are private and secure.

...

C. Minimizing Email Risk

Email is a common way we communicate with clients, but it also poses potential risks. We advise against sharing highly sensitive information over email and recommend using alternative secure channels for particularly confidential information, if necessary.

...

4. Ethical and Transparent Data Use

...

A. Data Collection for Defined Purposes

Our data collection is purposeful and limited to information necessary for delivering high-quality coaching and consulting services. Whether you’re interested in personal coaching, business transformation guidance, or training services, we gather only the details relevant to provide these services effectively.

...

B. Your Consent is Key

We operate on the principle of informed consent. Before we collect, use, or share any of your information, we ensure that you understand the purpose and that you consent to it. In cases where sharing your information may benefit the services we provide, we will seek your explicit permission, and you have the option to decline at any time.

...

C. No Unwarranted Disclosure

We do not sell, trade, or disclose your information to third parties for marketing or advertising purposes. Information shared with us remains with us, and only under specific, agreed-upon circumstances or when required by law do we disclose any details. If such a need arises, we will notify you whenever legally permissible.

...

5. Limited Data Sharing with Third Parties

...

A. Responsible Third-Party Involvement

RightPath may use certain third-party service providers for support functions, such as website hosting, email communication, and billing. When we engage with these providers, we ensure they adhere to confidentiality and data protection practices similar to our own, respecting your privacy and safeguarding your information.

...

B. No Unnecessary Sharing

Even when working with trusted third-party providers, we only share the minimum amount of information required for specific purposes. For example, if using a third-party email platform to send newsletters or service updates, we will only share your contact information. We do not share sensitive client data with any third-party service providers.

...

C. Commitment to Privacy in Partnerships

When exploring partnership opportunities, we are mindful of our data handling responsibilities. Any partnerships involving shared access to information are carefully evaluated, and clients are informed when necessary.

...

6. Adherence to Global and Indian Data Protection Standards

...

A. Compliance with Indian Data Protection Laws

RightPath is a company registered in India, and we adhere to the Information Technology Act, 2000, and its amendments regarding data protection and privacy. This ensures that our practices align with national standards and legal requirements to protect your information.

...

B. Alignment with Global Best Practices

Our commitment to privacy extends to global standards, particularly when working with clients based in different regions. We strive to respect data protection principles akin to those outlined by global standards, such as the GDPR, when applicable. This includes principles like data minimization, purpose limitation, and respect for individual rights over personal data.

...

C. Ethical Standards for Data Handling

Our business ethos is rooted in trust, transparency, and ethical conduct. As a company, we believe that data protection goes beyond legal requirements and reflects our commitment to providing a safe, respectful, and trustworthy service experience.

...

7. Our Approach to Data Security

...

A. Secure Data Encryption

Although we are a training and coaching company with limited security infrastructure, we take reasonable precautions, including secure encryption for sensitive information exchanged with clients. For example, we rely on platforms with encryption protocols to safeguard data during transmission.

...

B. Access Control Measures

We restrict access to client data to only authorized personnel, and we ensure that those with access are well-informed about the responsibility they carry to maintain confidentiality and data protection.

...

C. Regular Review and Improvement

RightPath periodically reviews our data handling practices and security measures to ensure they align with best practices and client expectations. Our goal is to remain adaptable and responsive to changing privacy needs and risks.

...

8. Contacting RightPath for Data Inquiries

...

A. Client Rights and Data Access Requests

We respect your rights over your data, and you may reach out to us at any time to request access to, correction of, or deletion of your information. We aim to respond to these requests promptly and transparently.

...

B. Privacy Questions and Support

For any questions about our data practices or security measures, you are welcome to contact us directly. We value your privacy and are here to support any inquiries or clarifications.

...

Contact Information

At RightPath, we are dedicated to fostering a secure, trustworthy, and transparent environment for our clients. We are committed to safeguarding your information and upholding our promise to provide ethical and confidential service at all times.