This Privacy Policy (Policy) outlines the data processing practices of the Eternal General Service Foundation (Foundation, we, us, or our), acting in its capacity as a Data Fiduciary under the Digital Personal Data Protection Act, 2023 (DPDP Act).
As a subsidiary of Eternal Limited, the Foundation houses and operates various charitable, medical, and social initiatives, including but not limited to the charitable initiatives (such as Blinkit ambulance service and Feeding India). Our services may be accessed directly, via our offline operations, or facilitated through third-party platforms operated by Eternal Limited and its affiliates (such as Zomato, Blinkit, District or Bistro).
This Policy governs the collection, use, sharing, and retention of your Personal Data once it is in the possession and control of the Foundation. Where services are accessed via third-party platforms, please review their privacy policies to understand how data is initially collected and transmitted to us.
This section applies to individuals who request, use, or are the subject of our medical, emergency, and ambulance services (Service User or Data Principal).
In the course of providing emergency services, we process the following categories of Personal Data:
We disclose this data on a need-to-know basis to paramedic and transport personnel, receiving hospitals and medical centers, relevant technology platforms for live service updates, and law enforcement or regulatory authorities where legally mandated.
This section applies to donors, beneficiaries, event attendees, and volunteers participating in our philanthropic initiatives.
To facilitate services and fulfill operations, we may disclose Personal Data to affiliates and group entities, service providers and vendors, legal and regulatory authorities, professional advisors, and in connection with business transfers, each subject to applicable law and contractual safeguards.
This section applies to employees, independent contractors, consultants, and registered long-term volunteers (Personnel).
We process identity and contact data, professional data, financial data (for payroll and reimbursements), and dependent data for health insurance and benefits administration.
This data is processed for HR administration, recruitment, payroll, statutory labor law compliance, and access to Foundation IT systems and facilities.
The Foundation implements robust physical, electronic, and managerial safeguards to prevent unauthorized access, accidental loss, alteration, or destruction of Personal Data. Payment processing is facilitated through PCI-DSS compliant third-party gateways.
Personal Data is retained as long as necessary for stated purposes or legal requirements. CCTV footage is generally retained for a limited period (typically up to 90 days), unless flagged for investigation. Tax and financial records are retained as per statutory mandates (typically up to 8 years).
We may amend this Policy to reflect operational changes, new initiatives, or legal developments. Material changes will be communicated through website or affiliated platforms.
To exercise rights, report a breach, or raise concerns regarding this Policy, contact our designated DPO at dpo@zomato.com.