GDPR Policy

Last Updated: June 6, 2025

At Tech Ziddi (https://techziddi.org/), we are deeply committed to protecting the privacy and personal data of all our users. While Tech Ziddi is based in Bangladesh and serves users primarily within Bangladesh, we understand the importance of global data protection standards. For this reason, we adhere to the principles and requirements of the General Data Protection Regulation (GDPR), a robust data privacy law from the European Union, in how we manage and process personal data.

This GDPR Policy outlines our commitment to these principles, explains your rights under GDPR, and details how we ensure the protection of your personal information, regardless of your geographic location.

1. What is GDPR?

The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a comprehensive data protection and privacy regulation in European Union (EU) and European Economic Area (EEA) law. It came into effect on May 25, 2018. GDPR aims to give individuals control over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

2. Who Does GDPR Apply To?

GDPR applies to any organization that processes personal data of individuals residing in the European Union, regardless of whether the organization itself is located within the EU. Even if Tech Ziddi is operated from Bangladesh, if any of our users are EU residents and we process their personal data (e.g., through website visits, newsletter subscriptions), then GDPR principles apply to that processing. Our adherence to GDPR principles demonstrates our commitment to a high standard of data protection for all our users.

3. Our GDPR Principles

Tech Ziddi commits to processing personal data in accordance with the following core principles of GDPR:

• Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and in a transparent manner. This means we clearly inform you about what data we collect, why we collect it, and how we use it.
• Purpose Limitation: We collect personal data for specified, explicit, and legitimate purposes and do not process it further in a manner that is incompatible with those purposes. Our purposes are clearly outlined in our Privacy Policy (e.g., providing job news, scheme updates, improving website experience).
• Data Minimization: We collect only personal data that is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed. We avoid collecting excessive data.
• Accuracy: We take reasonable steps to ensure that personal data is accurate and, where necessary, kept up to date. We also take every reasonable step to ensure that personal data that is inaccurate, having regard to the purposes for which they are processed, is erased or rectified without delay.
• Storage Limitation: We keep personal data in a form that permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed. Once the purpose is fulfilled or no longer necessary, data is securely deleted or anonymized.
• Integrity and Confidentiality (Security): We process personal data in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures.
• Accountability: Tech Ziddi is responsible for and is able to demonstrate compliance with the aforementioned principles. We maintain records of our data processing activities and ensure our practices meet GDPR requirements.

4. Legal Basis for Processing Your Data

Under GDPR, we must have a lawful basis to process your personal data. Tech Ziddi primarily relies on the following legal bases:

• Consent: We process certain personal data (e.g., your email address for newsletter subscriptions) based on your explicit consent. You have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
• Legitimate Interests: We may process your data where it is necessary for our legitimate interests (or those of a third party), provided these interests do not override your fundamental rights and freedoms. This includes improving our website, ensuring security, detecting fraud, and analyzing website usage to enhance user experience.
• Contractual Necessity: If you create an account on Tech Ziddi, we process certain personal data (e.g., registration details) as necessary for the performance of a contract to provide you with our services (e.g., personalized job alerts).
• Legal Obligation: In certain cases, we may process your data to comply with a legal or regulatory obligation.

5. Your Data Protection Rights Under GDPR

Under the GDPR, you have significant rights regarding your personal data. Tech Ziddi is committed to facilitating the exercise of these rights:

• The Right to Be Informed: You have the right to know what personal data we are collecting, why we are collecting it, and how we are processing it. This GDPR Policy and our Privacy Policy aim to provide this information clearly.
• The Right of Access: You have the right to request a copy of the personal data we hold about you. This is often called a “Subject Access Request.” We will provide this information free of charge within one month, though a reasonable fee may be charged for repetitive, unfounded, or excessive requests.
• The Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or incomplete. If your data is inaccurate or incomplete, we will correct it without undue delay.
• The Right to Erasure (“Right to Be Forgotten”): You have the right to request the deletion of your personal data under certain conditions, such as when the data is no longer necessary for the purpose for which it was collected, or if you withdraw your consent.
• The Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data under certain conditions, such as when you contest the accuracy of the data or when the processing is unlawful.
• The Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, in a structured, commonly used, machine-readable format, under certain conditions.
• The Right to Object: You have the right to object to our processing of your personal data under certain conditions, particularly when the processing is based on legitimate interests or for direct marketing purposes.
• Rights in Relation to Automated Decision-Making and Profiling: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. Tech Ziddi does not currently engage in automated decision-making that would produce such effects.

6. How to Exercise Your GDPR Rights

To exercise any of your GDPR rights, please contact our Data Protection Point of Contact using the details provided in the “Contact Us” section below.

When making a request, please:

• Clearly state which right you wish to exercise.
• Provide enough information to allow us to verify your identity. This is a security measure to ensure personal data is not disclosed to unauthorized individuals.
• Specify the personal data to which your request relates.

We will respond to your request within one month of receipt. If the request is complex or numerous, we may extend this period by two further months, and we will inform you of the extension and the reasons for it.

7. Data Security

We implement robust technical and organizational security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure storage, and regular security assessments. While we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

9. International Data Transfers

As Tech Ziddi operates from Bangladesh, your personal data may be processed in Bangladesh. If we transfer personal data to countries outside the European Economic Area (EEA) that do not provide an equivalent level of data protection as the EU, we will ensure appropriate safeguards are in place. This may include relying on EU Standard Contractual Clauses or other legally recognized mechanisms designed to ensure your data receives adequate protection.

10. Right to Lodge a Complaint

If you are an EU resident and believe that our processing of your personal data infringes GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement.

11. Changes to This GDPR Policy

Tech Ziddi reserves the right to update this GDPR Policy at any time. When we do, we will revise the “Last Updated” date at the top of this page. We encourage Users to frequently check this page for any changes to stay informed about how we are ensuring compliance with GDPR principles. Your continued use of the Site after any such modifications indicates your acceptance of the updated GDPR Policy.

12. Contact Us

If you have any questions about this GDPR Policy, your data protection rights, or our data processing practices, please contact our Data Protection Point of Contact:

Tech Ziddi
https://techziddi.org/
Email: info@techziddi.org