Karbi Anglong Autonomous Council
Skip to main content |

Privacy Policy

We are committed to protecting your personal data and ensuring transparency about how it is used.

1. Information We Collect

We collect information that you provide directly to us when using the KAAC Trade Licence Portal:

1.1 Personal Information

  • Identity Details: Full name, date of birth, gender
  • Contact Information: Email address, phone number, postal address
  • Business Information: Business name, type, address, registration details
  • Documentation:Passport Size Photo, Aadhaar card, PAN card and Voter ID

1.2 Application Data

  • Application forms and supporting documents
  • Payment information and transaction references
  • Communication history and support tickets
  • Application status and processing updates

1.3 Technical Information

  • IP address and device information
  • Browser type and version
  • Operating system details
  • Usage patterns and portal interactions

2. How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: Process applications, issue licences, and provide support
  • Verification: Validate identity, business details, and document authenticity
  • Communication: Send updates, notifications, and respond to queries
  • Compliance: Meet legal obligations and regulatory requirements
  • Improvement: Enhance portal functionality and user experience
  • Security: Prevent fraud, abuse, and unauthorized access

3. Information Sharing & Disclosure

Your information may be shared in the following circumstances:

3.1 Government Departments

  • Other KAAC departments for verification purposes
  • State and central government authorities as required by law
  • Regulatory bodies for compliance verification

3.2 Service Providers

  • Payment gateway providers for transaction processing
  • Technical support and hosting services
  • Document verification and authentication services

3.3 Legal Requirements

  • Court orders and legal proceedings
  • Government investigations and audits
  • Regulatory compliance requirements

4. Data Security & Protection

We implement comprehensive security measures to protect your information:

4.1 Technical Safeguards

  • SSL encryption for data transmission
  • Secure servers with restricted access
  • Regular security audits and updates
  • Firewall and intrusion detection systems

4.2 Administrative Safeguards

  • Access controls and user authentication
  • Employee training on data protection
  • Regular security assessments
  • Incident response procedures

5. Data Retention & Storage

We follow a strict data retention policy. Once created, records and user data are not deleted and remain stored securely in our systems. Deletion or removal only occurs in cases of suspected fraud, legal obligations, or security concerns.

Active Applications

Stored permanently as part of official business and regulatory records. Removal applies only in cases of fraud or legal violations.

User Accounts

Maintained indefinitely for verification and compliance. Accounts are restricted or removed only if fraudulent or unlawful activity is detected.

Payment Records

Retained permanently for audit, compliance, and financial reporting. Records are only deleted under statutory directives or proven fraudulent cases.

6. Your Rights & Choices

You have the following rights regarding your personal information:

  • Access: Request copies of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your data (subject to legal requirements)
  • Portability: Request data in a portable format
  • Objection: Object to certain processing activities
  • Withdrawal: Withdraw consent for processing

7. Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Required for portal functionality
  • Performance Cookies: Help improve portal performance
  • Security Cookies: Enhance security and prevent fraud
  • Analytics Cookies: Understand usage patterns

You can control cookie settings through your browser preferences.

8. Third-Party Services

Our portal may contain links to third-party services:

  • Payment gateways for secure transactions
  • Government portals for verification
  • Analytics services for performance monitoring

Note: We are not responsible for the privacy practices of third-party services.

9. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected such information, please contact us immediately.

10. International Data Transfers

Your information is primarily stored and processed within India. Any international transfers will comply with applicable data protection laws and include appropriate safeguards.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be effective immediately upon posting on the portal. We will notify you of significant changes via email or portal notifications.

12. Contact Information

For privacy-related questions or concerns, please contact us:

ℹ️ Additional Information

This Privacy Policy is designed to comply with applicable Indian data protection laws and regulations. For specific legal advice, please consult with a qualified legal professional.

Last Updated: August 2026

This Privacy Policy is effective as of the date stated above and supersedes all previous versions.