Privacy Policy

Last Updated: February 6, 2026

This Privacy Policy is compliant with the Digital Personal Data Protection Act, 2023 (DPDP Act) and the DPDP Rules, 2025.

1. Data Fiduciary Information

Organization: Meridian Bridge Strategy

Website: dpdpaudit.co.in

Data Protection Officer: Sushant Pasumarty

DPO Email: dpo@meridianbridgestrategy.com

2. Personal Data We Collect

Data ElementPurposeLegal Basis
Email Address (optional)Sending PDF report, contact for consultationConsent
Audit ResponsesGenerating liability score and compliance mapConsent
IP AddressAnalytics, abuse preventionLegitimate Interest

3. Data Processors (Third-Party Partners)

Vercel Inc.

Purpose: Website hosting and content delivery

Data Shared: IP address (for request routing), access logs

DPA Status: ✅ Standard Data Processing Agreement in place

Resend Inc.

Purpose: Transactional email delivery (PDF reports)

Data Shared: Email address (when provided)

DPA Status: ✅ Standard Data Processing Agreement in place

Refix AI

Purpose: Customer support chat widget

Data Shared: Chat messages, session data

DPA Status: ✅ Standard Data Processing Agreement in place

4. Your Rights Under DPDP Act

As a Data Principal, you have the right to:

  • Access — Request a summary of your personal data
  • Correction — Request correction of inaccurate data
  • Erasure — Request deletion of your personal data
  • Grievance Redressal — File complaints with our DPO
  • Nominate — Nominate someone to exercise rights on your behalf

To exercise any of these rights, contact: dpo@meridianbridgestrategy.com

5. Data Retention

We retain personal data only as long as necessary:

  • Audit responses: 90 days (then anonymized for analytics)
  • Email addresses: Until you request deletion
  • Server logs: 30 days

6. Contact Us

Data Protection Officer: Sushant Pasumarty

Email: dpo@meridianbridgestrategy.com

Response Time: Within 7 days as per DPDP Act requirements

← Back to DPDP Audit