Accredited ISO Audits 5,000+ Audits Completed 12+ Years Regulatory Experience IRCA Certified Lead Auditors Corporate Governance Specialists Pan-India Audit Offices Accredited ISO Audits 5,000+ Audits Completed 12+ Years Regulatory Experience

Privacy Policy

How we collect, process, and safeguard your data under the DPDP Act 2023.

MSR Assessment Private Limited ("we", "us", or "our") is committed to protecting the privacy and security of your personal data. This Privacy Policy outlines how we collect, process, store, and protect your personal details in compliance with the Digital Personal Data Protection (DPDP) Act, 2023 (India), and other applicable information security regulations.

1. Data Fiduciary Details

For the purposes of the DPDP Act 2023, MSR Assessment Private Limited operates as a Data Fiduciary. Our headquarters and contact details are as follows:

  • Entity Name: MSR Assessment Private Limited
  • Registered Address: 2ND FLOOR, 23 A, ROYD STREET, P.S, Park St, Kolkata, West Bengal 700016
  • Corporate Identity Number (CIN): U74999DL2013PTC259XXX

2. Categories of Personal Data We Process

We only collect and process personal data that is necessary for the execution of our professional services or to respond to your specific inquiries. This includes:

  • Identity Information: Full name, signature, and corporate affiliation details.
  • Contact Information: Professional email addresses, phone numbers, and physical billing/delivery addresses.
  • Technical & Analytical Data: IP address, device specifications, operating system, and page navigation history collected via website cookies.
  • Compliance & Audit Documents: Financial statements, employee registers, quality checklists, and draft agreements uploaded to our portals or shared via mail for third-party auditing, ISO certification, and secretarial filings.

3. Lawful Basis for Processing

Under Section 4 and Section 5 of the DPDP Act 2023, we process personal data only under the following lawful conditions:

  • Consent: When you voluntarily fill out our "Talk To An Expert" form, request service quotation callbacks, sign up for training, or communicate via WhatsApp. Consent is specific, informed, unconditional, and withdrawable.
  • Legitimate Uses: Where processing is necessary for compliance with legal obligations under Indian corporate, financial, or tax laws (such as GST filings, MCA secretarial submissions, and statutory audits).

4. Data Retention and Safeguards

We implement appropriate technical and organizational security measures to protect personal data against unauthorized access, loss, alteration, or disclosure. These include secure database hosting, encrypted document transmission, and strict access controls. Personal data is retained only as long as necessary to complete the corresponding compliance filings or audits, or to satisfy legal and taxation reporting requirements under Indian law.

5. Rights of the Data Principal

As a Data Principal under the DPDP Act 2023, you hold the following statutory rights:

  • Right to Confirmation and Access: Confirm if we are processing your personal data and obtain a summary of the data and processing operations.
  • Right to Correction and Erasure: Request correction of inaccurate details, completion of incomplete profiles, or erasure of data that is no longer required for its original purpose.
  • Right to Withdraw Consent: Withdraw your consent at any time. Upon withdrawal, we will cease processing the corresponding data unless required by other statutory laws.
  • Right to Grievance Redressal: Register complaints regarding any data handling practices with our Data Protection Officer.

6. Third-Party Disclosures

We do not sell, trade, or rent your personal data to marketing third parties. We share data only with:

  • Authorized regulatory portals (such as MCA, GST Network, or IPR trademark registry) to execute filings as contracted.
  • Accredited registrar bodies to finalize your ISO registrations.
  • Government and judicial authorities when mandated by legal decrees or statutory compliance orders.

7. Data Protection Officer (Grievance Redressal)

If you have questions, wish to exercise any of your Data Principal rights, or want to raise a grievance, please contact our designated Grievance / Data Protection Officer:

Data Protection Officer: Mr. M. S. Roy
Email Helpline: admin@msrassessment.com
Telephone helpline: +91 83370 04170
Postal Address: 2ND FLOOR, 23 A, ROYD STREET, P.S, Park St, Kolkata, West Bengal 700016

8. Policy Updates

We may update this Privacy Policy periodically to reflect changes in our operational procedures or updates to the DPDP Act rules. The latest version will always be published on this URL with an updated revision date.

Sent successfully!