SpineMedia Solutions (“Company”, “we”, “our”, or “us”) is committed to protecting the privacy and security of personal data entrusted to us. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data when you interact with our websites, services, applications, and communication channels. We adhere to the applicable data protection and privacy laws, including but not limited to:

• – General Data Protection Regulation (GDPR) – European Union
• – California Consumer Privacy Act / California Privacy Rights Act (CCPA/CPRA) – California, USA
• – Personal Information Protection and Electronic Documents Act (PIPEDA) – Canada
• – Lei Geral de Proteção de Dados (LGPD) – Brazil
• – Digital Personal Data Protection Act (DPDP) – India
• – Personal Information Protection Law (PIPL) – China
• – Act on the Protection of Personal Information (APPI) – Japan

personal data when you interact with our websites, services, applications, and communication channels. We adhere to the applicable data protection and privacy laws, including but not limited to:

 

• 1. Scope

This Privacy Policy applies to all personal data collected and processed by SpineMedia Solutions across:

• – Our websites, mobile applications, digital platforms, and communication channels
• – Business operations, including customer service, marketing, analytics, and partnerships
• – Interactions with clients, vendors, contractors, and users globally

This policy applies regardless of the device or platform you use to access our services and covers data collected directly or indirectly through automated technologies.

•  
• 2. Information We Collect

We may collect the following categories of personal data:

• – Full name, email address, phone number, postal address
• – Company name, job title, professional background
• – Communications (e.g., emails, support tickets, survey responses)
• – IP address, browser type, operating system
• – Location data (if enabled)

• – Usage data (pages visited, clicks, session duration)

3.  
4. 3. How We Use Personal Data

Your personal data may be used for the following purposes:

• – Service Delivery: To provide and manage access to our websites, platforms, and services
• – Personalization: To tailor content, recommendations, and user experiences
• – Marketing & Communications: To send promotional materials, newsletters, or product updates (subject to your preferences or consent)
• – Compliance & Enforcement: To comply with legal obligations, enforce our Terms of Service, and protect against fraud or misuse
• – Contractual Necessity: To carry out obligations arising from contracts between you and us

We only process personal data for lawful purposes and in accordance with applicable data protection laws.

4.  
5. 4. Legal Bases for Processing

Under laws such as the GDPR and similar frameworks, our legal bases for processing your data include:

• – Consent – Where you have given clear permission
• – Contractual Necessity – To perform a contract or take steps before entering one
• – Legal Obligation – To comply with a legal or regulatory requirement
• – Legitimate Interests – For purposes that are necessary for our business (e.g., improving services), unless overridden by your rights

You may withdraw consent at any time where it was the basis for processing.

5.  
6. 5. Your Privacy Rights

Your rights may vary depending on your jurisdiction. Below is a summary of rights you may have: GDPR (EU Residents)

• – Right to access, correct, erase, or restrict processing of your data
• – Right to data portability
• – Right to object to processing
• – Right to withdraw consent at any time
• – Right to lodge a complaint with a supervisory authority

 

          CCPA/CPRA (California Residents)

• – Right to know what data is collected, used, shared, or sold
• – Right to delete personal data
• – Right to opt-out of sale or sharing of personal data
• – Right to correct inaccurate personal data
• – Right to limit use of sensitive personal data
• – Right to non-discrimination for exercising your rights

 

        PIPEDA (Canada Residents)

• – Right to access and request corrections to your personal information
• – Right to withdraw consent
• – Right to file a complaint with the Privacy Commissioner of Canada

 

       LGPD (Brazil Residents)

• – Right to confirm data processing and access your data
• – Right to correct, anonymize, or delete your data
• – Right to data portability
• – Right to object to processing and withdraw consent
•  

        DPDP (India Residents)

• – Right to access, correct, delete personal data
• – Right to appoint a nominee to act on your behalf
• – Right to grievance redressal
• – Right to withdraw consent

 

      PIPL (China Residents)

• – Right to access, correct, delete, or copy your data
• – Right to limit processing
• – Right to withdraw consent
• – Right to data portability where feasible

 

        APPI (Japan Residents)

• – Right to be informed of data usage purposes
• – Right to request disclosure, correction, or deletion
• – Right to stop provision of data to third parties
• – Right to lodge complaints with the PPC

To exercise your rights, please contact us using the information in Section 12.

6.  
7. 6. Data Sharing and International Transfers

We may share your personal data with:

• – Affiliates and Subsidiaries: For internal business purposes and service optimization
• – Service Providers and Contractors: For hosting, analytics, customer support, payment processing, marketing, and IT services
• – Legal and Regulatory Authorities: Where required by law or in response to lawful requests
• – Business Partners or Acquirers: In the event of a merger, acquisition, or sale of assets, your data may be transferred in accordance with this policy

When personal data is transferred across borders, we ensure compliance with applicable laws through:

• – Standard Contractual Clauses (SCCs)
• – Binding Corporate Rules (BCRs)
• – Data Processing Agreements (DPAs)
• – Other legally recognized mechanisms

7.  
8. 7. Data Security

We implement industry-standard technical and organizational safeguards to protect your personal data, including:

• – Data encryption in transit and at rest
• – Role-based access controls
• – Secure data storage and monitoring
• – Regular security audits and vulnerability assessments
• – Employee training on data protection

While we take reasonable measures to protect your data, no system can be 100% secure. You are responsible for maintaining the confidentiality of your account credentials.

8.  
9. 8. Data Retention

We retain personal data only for as long as:

• – Necessary to fulfill the purposes for which it was collected
• – Required under legal, regulatory, contractual, tax, or audit obligations
• – Needed to resolve disputes or enforce our rights

After the applicable retention period, we securely delete or anonymize your data.

9.  
10. 9. Children’s Privacy

Our services are not directed to individuals under the age of 13 (or equivalent minimum age under applicable laws). We do not knowingly collect personal data from children without verifiable parental consent. If you believe we have collected such data, please contact us to request deletion.

10.  
11. 10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

• – Changes in applicable laws or regulations
• – Modifications to our business practices or technology
• – User feedback and industry best practices

When changes are material, we will notify you by updating the “Last Updated” date or through other prominent notices. Continued use of our services after changes indicates your acceptance.

11.  
12. 11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: privacy@spinemediasolutions.com
Mailing Address:
SpineMedia Solutions
Office 618/619, Clover Hills Plaza
NIBM Undri Road, Kondhwa Khurd
Pune, Maharashtra, India – 4110483