Introduction
At DMARS.ai, your privacy is our priority. This policy explains how we collect, use, and protect your information.
Here at DMARS.ai, we are committed to protecting your privacy and handling your personal information with transparency and care. This Privacy Policy explains how we collect, use, share, and safeguard information when you interact with our website https://dmars.ai or engage with us through related online or offline channels (collectively referred to as the “Platform”). By using our Platform and services (“Services”), you agree to the terms outlined in this Privacy Policy. Please take a moment to read it carefully and understand how your data is managed.
🔑 Summary of Your Key Privacy Rights
| Right | Description | How to Exercise |
|---|---|---|
| Access | View what personal data we hold about you. | Email: privacy@dmars.ai |
| Rectification | Correct inaccurate or incomplete data. | Email: support@dmars.ai |
| Erasure | Request deletion of your personal data. | Email: data@dmars.ai |
| Data Portability | Receive a copy of your data in machine-readable format. | Email: export@dmars.ai |
| Withdraw Consent | Revoke previously given consent at any time. | Email: consent@dmars.ai |
Information We Collect
- Personal data you provide (name, email, etc.)
- Usage data from your interaction with our site
- Cookies and tracking technologies
How We Use Your Data
We use your information to provide services, improve user experience, and communicate offers and updates.
Data Security
We implement industry-standard measures to protect your data against unauthorized access.
Your Rights
You may request access, correction, or deletion of your personal information at any time by contacting us.
Privacy Policy
Effective Date: Jan 1, 2025
General Privacy Law Overview
Privacy laws around the world aim to protect individuals' personal data and uphold their rights to privacy and control over their information. From the European Union's General Data Protection Regulation (GDPR) to India's Digital Personal Data Protection Bill (DPDPB) and the United States' California Consumer Privacy Act (CCPA), these laws outline data processing principles, rights of data subjects, and responsibilities for data controllers and processors.
Fundamentally, privacy laws enforce the idea that data subjects must have transparency, access, and control over the personal information that organizations collect, store, share, and use. Organizations are required to collect only necessary data, implement robust security measures, and ensure compliance through proper documentation and consent management systems.
This page offers a comprehensive view of how DMARS.ai aligns with global data privacy standards to provide full transparency and protection for its users and stakeholders.
Detailed GDPR, CCPA, and DPDPB Compliance
GDPR (General Data Protection Regulation)
- DMARS.ai ensures lawful, fair, and transparent data processing as required under Articles 5–11 of GDPR.
- Users have the right to data portability, access, rectification, and erasure (Articles 12–23).
- We have appointed a Data Protection Officer (DPO) as mandated for organizations handling large-scale personal data.
- All data processors and third-party vendors are contractually bound to meet GDPR standards.
CCPA (California Consumer Privacy Act)
- Residents of California can request disclosure of the personal data collected, sold, or shared in the past 12 months.
- We provide opt-out capabilities to restrict the sale of personal data.
- Users may request the deletion of their data by contacting our support team.
- We do not discriminate against users who exercise their privacy rights.
DPDPB (Digital Personal Data Protection Bill - India)
- We follow data minimization principles and ensure that personal data is collected only for specified purposes.
- Consent is obtained in a clear and informed manner and may be withdrawn at any time.
- Our team adheres to local storage requirements and restricts cross-border data transfers unless compliant with Indian law.
- Children’s data is treated with extra caution and protected with heightened security controls.
User Rights in Detail
We recognize and uphold all applicable user rights under global privacy laws:
- Right to Access: Users can request access to their personal data and the purposes for which it is processed.
- Right to Rectification: Users may correct or update inaccurate personal data.
- Right to Erasure: Also known as the right to be forgotten, users can request deletion of their data.
- Right to Restrict Processing: Users may limit how their data is used under certain conditions.
- Right to Data Portability: Users can obtain and reuse their personal data across services.
- Right to Object: Users may object to processing, especially for direct marketing purposes.
- Rights Related to Automated Decision Making: Users can request human intervention in profiling processes.
Data Sharing & Transfers
We may share your data with trusted third-party processors for purposes such as analytics, payment processing, and customer support. All third parties are obligated to follow strict data processing agreements that meet GDPR and other jurisdictional standards.
International data transfers are done using standard contractual clauses, adequacy decisions, or binding corporate rules depending on the location of the third party. We never sell your personal data to any third party.
Security Practices
We use a layered security strategy that includes:
- SSL/TLS encryption
- Regular vulnerability assessments
- Data encryption at rest and in transit
- Multi-factor authentication (MFA)
- Least-privilege access control
- Annual security audits and compliance checks
Data Storage Duration
We retain personal data only as long as necessary to fulfill the purposes we collected it for, including for legal, regulatory, tax, accounting, or reporting requirements. Specific retention periods vary depending on the data type and applicable laws.
After expiry, data is securely deleted or anonymized unless further retention is legally required.
Children’s Privacy
Our services are not directed at children under the age of 13 (or equivalent minimum age depending on jurisdiction). We do not knowingly collect personal data from children. If we learn that we have collected data from a child without parental consent, we will delete it immediately.
Do Not Track Disclosures
We do not respond to Do Not Track (DNT) signals. However, users can adjust browser privacy settings and opt out of tracking through cookie preferences on our website.
Automated Decision-Making
We do not use personal data for automated decision-making without meaningful human involvement. Where profiling is conducted (e.g., for personalized recommendations), it is transparently disclosed, and user consent is obtained where required by law.
Jurisdiction-Specific Regulations
This policy aligns with and respects local data protection laws in the countries we operate, including:
- GDPR – European Union
- CCPA – California, USA
- PIPEDA – Canada
- DPDPB – India
- LGPD – Brazil
- PDPA – Singapore, Thailand
We regularly review and update our policies based on legal updates in these jurisdictions.
Dispute Resolution
In case of disputes, we encourage users to contact us directly to resolve concerns. If unresolved, users in the EU may contact their Data Protection Authority. U.S. users may reach out to the FTC. Indian users may lodge complaints with the Data Protection Board of India under the DPDPB.
Arbitration and mediation services are also available upon request depending on jurisdiction.
Changes and Version History
We may update this policy periodically. The current version is dated June 14, 2025. Previous versions can be obtained by contacting us at privacy@dmars.ai.
Contact & Legal Authority Info
- Mailing Address: DMARS.ai, 13303 Central Ave , Vancouver, BC, Canada
- India Data Authority: Data Protection Board of India
- European Supervisory Authority: European Data Protection Supervisor (EDPS)
- California Consumer Contact: Attorney General’s Office, California