Privacy Notice

1. Definitions and Key Terms:

1. Child: means an individual who has not completed eighteen (18) years of age.
2. Cookies: A small file placed on your device by our website or the platform when you either visit or use certain features of our website or the platform. It allows a website to remember your actions or preferences for a certain period.
3. Data Principal: means the individual to whom the Personal Data relates and where such individual is a child, includes the parents or lawful guardian of such a child; a person with disability, includes the lawful guardian, acting on its behalf.
4. Data Fiduciary: means any person who alone or in conjunction with other person(s) determines the purpose and means of processing of Personal Data.
5. Data Processor: means any person who processes Personal Data on behalf of a Data Fiduciary.
6. Data Protection Officer: means an individual appointed as such by a Significant Data Fiduciary under the provisions of the DPDP Act for addressing any grievances related to the Privacy Notice or the processing of Personal Data.
7. Personal Data: means any data about an individual who is identifiable by or in relation to such data.
8. Processing: in relation to personal data, means a wholly or partly automated operation or set of operations performed on digital personal data, and includes operations such as collection, recording, organization, structuring, storage, adaptation, retrieval, use, alignment or combination, indexing, sharing, disclosure by transmission, dissemination or otherwise making available, restriction, erasure or destruction.

2. How We Collect the Data

1. Information that you provide to us: We receive and store any information you voluntarily provide through our website, including through the following sections:
   1. contact/business enquiries;
   2. partnership or vendor communications;
   3. career or professional engagements.
2. Automatic information we collect: We use cookies and similar technologies to collect technical and usage‑related information whenever you interact with our website, such as IP address, browser type, operating system, and pages visited.

For more information on how cookies are used, please refer to our Cookie Policy here: cookie-policy.

3. Purpose of Data Collection and Processing

4. Lawful Basis of Processing:

1. Consent: We process personal data based on your consent for purposes such as responding to requests, providing digital interactions, and using cookies and analytics. You may withdraw your consent at any time.
2. Legitimate Use: We process Personal Data for legitimate uses as permitted under Section 7 of the DPDP Act, 2023, including:
   1. Voluntary sharing of personal data by the Data Principal for specified purposes to the Data Fiduciary and in respect of which it has not indicated to the Data Fiduciary that it does not consent to the use of its personal data;
   2. Performance of obligations under applicable laws or regulations;
   3. Compliance with any judgment, decree, or order issued under any law;
   4. Processing required for employment‑related or professional engagement purposes;
   5. Processing necessary for responding to emergencies, security incidents, or lawful government directions.

Any changes to data processing purposes will be communicated to individuals in advance, where required.

5. Processing of Data of Children and Persons with Disabilities

We are committed to safeguarding the personal data of children and persons with disabilities.

Where personal data relating to children or persons with disabilities is collected through the platform, we obtain verifiable consent from parents or lawful guardians and limit processing to what is strictly necessary.

6. Sharing of Data

In certain cases, we may share Personal Data with third parties, including service providers or group entities, where such sharing is necessary to:

1. Comply with legal or regulatory obligations;
2. Protect our legal rights or the safety of individuals;
3. Support legitimate business operations.

We ensure that all third parties with whom Personal Data is shared adhere to appropriate confidentiality and data protection standards. We do not sell Personal Data.

7. Rights as Data Principal

Depending on applicable laws, you may be entitled to the following rights:

1. Right to Access Information – request access to your Personal Data.
2. Right to Correction and Erasure – request correction of inaccurate data or erasure where applicable.
3. Right of Grievance Redressal – raise concerns regarding Processing of Personal Data.
4. Right to Nominate – nominate an individual to exercise your rights in case of incapacity or death.

To exercise these rights, you may submit a request through the Data Principal Rights Form (link to be inserted) or email us at privacy.acx@adani.com.

If you are not satisfied with our response, you may lodge a complaint with the Data Protection Board of India, after exhausting our internal grievance redressal mechanism.

8. Duties of Data Principals

You are expected to provide accurate, verifiable, authentic, and up‑to‑date information and to exercise your rights responsibly, keeping in mind our legitimate uses and legal obligations.

9. Social Media

We manage official social media channels to share information and engage with stakeholders. We may monitor publicly available interactions to improve our communications.

Please do not share the following through public social media platforms:

1. Offensive, unlawful, or abusive content;
2. Confidential or personal data;
3. Financial information or identification numbers;
4. Sensitive personal data such as health, biometric, or criminal records.

AdaniConneX is not responsible for content shared on third‑party platforms unless officially published by authorized representatives.

10. Data Security

We implement appropriate technical and organisational measures to safeguard Personal Data against unauthorised access, misuse, loss, or alteration. Our service providers are required to maintain equivalent security standards.

If you believe your data has been compromised, please contact us at privacy.acx@adani.com.

11. Consent Withdrawal

You may withdraw your consent at any time by contacting us using the details provided below.

Withdrawal will not affect processing already carried out or processing required to comply with legal obligations.

Certain digital interactions may be impacted upon withdrawal of consent.

12. Data Retention

1. Personal Data is retained only for as long as necessary to fulfil its intended purpose or to comply with legal obligations.
2. Upon expiry of the retention period, Personal Data is securely deleted or archived in accordance with applicable laws and our internal data retention and disposal policies.

13. Breach Notification

In the event of a personal data breach, we will notify affected individuals and the Data Protection Board of India in accordance with the DPDP Act, 2023, including details of the nature and extent of the breach.

14. How to Contact Us

If you have any questions regarding this Privacy Notice or the protection of your Personal Data, please contact us at:

Email: privacy.acx@adani.com

15. Changes in the Privacy Notice

1. We may update this Privacy Notice from time to time to ensure continued compliance with applicable laws.
2. Any updates will be published on our website.
3. Your continued use of our website after such updates constitutes acceptance of the revised Privacy Notice.
4. This Privacy Notice may be made available in English and other languages listed in the Eighth Schedule to the Constitution of India. In case of inconsistency, the English version shall prevail.