Data Privacy Policy

Data privacy and protection rights in India are regulated by the Information Technology Act, 2000 (IT Act, 2000) in conjunction with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (SIDI Rules) and the Digital Personal Data Protection Act, 2023.

This Data Privacy Policy explains how the Indian Machine Tool Manufacturers' Association (IMTMA), the apex body of the Indian machine tool industry, formed in 1946 in India, collects, uses, shares, and protects the information provided by Users (anyone from the public) in compliance with the Digital Personal Data Protection Act, 2023 (India) while using the website www.imtma.in and related IMTMA systems.

1

Information Collected by IMTMA

Personal Information: IMTMA does not automatically capture personal information from a third party, such as name, phone number, or e-mail address. When a user contacts IMTMA or registers for one of its events, IMTMA may collect personal information such as name, email address, phone number, and other such details.

IMTMA collects and processes personal data only when a user willingly provides consent to do so for a specified purpose. Information such as name, phone number, contact address, payment and transaction information (wherever applicable), and any other information voluntarily provided by the user, may be collected. If the user chooses to provide IMTMA with personal information — like names or addresses — when visiting the IMTMA website, IMTMA will use it to fulfil the user's request for which information has been provided. Information so collected is primarily used to facilitate interaction. IMTMA does not share any personal information volunteered on this site with any third party (public/private) for any kind of commercial purposes.

Non-personal Information: IMTMA collects technical information such as IP addresses, browser type, and other technical information for analytical purposes. IMTMA does not attempt to link this type of information with the identity of individuals visiting the IMTMA site, unless there is a need to safeguard itself from a cyber-attack or other attempts to damage the reputation and resources of the organisation.

2

How Is the Information Used by IMTMA?

IMTMA uses the information to respond to general enquiries, personal queries, or to give information on any of its services.
User information may be used to improve the website's user experience.
Used to send updates on IMTMA activities, newsletters, and other relevant communication for subscribers and/or for sharing information.

All use of personal data is limited strictly to the purposes for which consent was originally provided. IMTMA does not use personal data for profiling, automated decision-making, or commercial advertising.

3

Information Sharing

Any information provided to this website will be protected from loss, misuse, unauthorized access or disclosure, alteration, or destruction.
Under any circumstances, IMTMA will not share any personal information of users with third parties, except when mandated by law, or as a means to provide essential services through trusted partners.

IMTMA staff accessing the CRM system are bound by the Login Policy & Data Usage Notice and may not share, export, or disclose contact data to any unauthorised person or external party. All exports are logged and require explicit consent acknowledgment.

4

Data Security

IMTMA has in place industry-standard security measures to protect data from unauthorized access, alteration, or disclosure.
IMTMA will implement reasonable security safeguards to prevent personal data breaches and notify the Data Protection Board of India and affected users in case of an unlawful breach.

Within the IMTMA CRM system, the following additional technical and organisational measures are in place:

Measure	Details
Role-Based Access Control	Staff can only view and act on data relevant to their assigned department
Secure Authentication	Password hashing; mandatory login policy acceptance on every session
Audit Trail	All data access, edits, exports, and deletions are logged with timestamp and user identity
Encrypted Transmission	Data transmitted over HTTPS (SSL/TLS encryption)
Data Localisation	All data stored on servers within India
Export Controls	Exports require explicit consent acknowledgment; logged at HIGH risk level
HOD Approval Workflow	Sensitive data edits require Head of Department approval before being applied

Breach Notification: In the event of a data breach, IMTMA will notify affected data principals and the Data Protection Board of India within 72 hours, as required by the DPDP Act, 2023.

5

Users' Rights

Under the Digital Personal Data Protection Act, 2023, users (data principals) have the following rights with respect to their personal data held by IMTMA:

Right to Access: Request information about what personal data IMTMA holds about you.
Right to Correction: Request correction of inaccurate or incomplete personal data.
Right to Erasure: Request deletion of your personal data, subject to legal and contractual requirements.
Right to Withdraw Consent: Withdraw your consent to use the data you have provided at any time, after which IMTMA will stop processing data unless required by law.
Right to Grievance Redressal: Lodge a grievance with IMTMA's designated contact and escalate to the Data Protection Board of India if not resolved.
Right to Nominate: Nominate another individual to exercise these rights on your behalf.

To exercise any of these rights, write to imtma@imtma.in with the subject line "DPDP Data Request". IMTMA will respond within 30 days. You may also call +91 80 6624 6600.

IMTMA Data Protection Contact

Indian Machine Tool Manufacturers' Association (IMTMA)

Bangalore International Exhibition Centre (BIEC), 10th Mile, Tumkur Road, Madavara, Bengaluru – 562 123, Karnataka, India

imtma@imtma.in

+91 80 6624 6600

www.imtma.in

If you are not satisfied with IMTMA's response, you may lodge a complaint with the Data Protection Board of India once it is constituted under the DPDP Act, 2023.

6

Changes to the Policy

IMTMA shall have the right to update this policy periodically as required by the law. Please refer to this page for any updates. The latest version will always be available at this URL.

For any queries regarding this Policy, please contact imtma@imtma.in or call +91 80 6624 6600.

This Privacy Policy was last updated on 14 June 2026. Continued use of IMTMA's website or CRM system after any changes constitutes acceptance of the updated policy.

This page is published in accordance with Section 43A of the Information Technology Act, 2000 and the DPDP Act, 2023. Source: www.imtma.in/page/547/data-privacy-policy