GDPR & Data Rights

Your rights over your personal data and how to exercise them.

Last updated: March 2026

Overview

Adsonrent respects your rights over your personal data. This page explains your data rights under the EU General Data Protection Regulation (GDPR), the UK GDPR, and the Indian Digital Personal Data Protection Act, 2023 (DPDP Act), and how you can exercise those rights.

We are committed to transparency and ensuring you have meaningful control over your personal information. If you are a resident of the European Economic Area (EEA), the United Kingdom, or India, these rights apply to you.

Your Data Rights

Right of Access

You have the right to obtain a copy of the personal data we hold about you, along with information about how and why we process it.

Right to Correction

You have the right to request correction of inaccurate or incomplete personal data. You can update most of your information directly from your account settings.

Right to Erasure

Also known as the "right to be forgotten". You can request deletion of your personal data, subject to our legal obligations to retain certain information.

Right to Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format, and to transmit it to another service provider.

Right to Object

You have the right to object to processing of your personal data for direct marketing purposes or where processing is based on legitimate interests.

Right to Restriction

You have the right to request that we restrict the processing of your data under certain circumstances, such as while a correction request is being assessed.

Right to Withdraw Consent

Where processing is based on your consent (e.g., marketing emails), you have the right to withdraw that consent at any time without affecting prior processing.

Automated Decision-Making

You have the right not to be subject to decisions made solely by automated processing that significantly affects you, and to request human review.

How to Exercise Your Rights

You can exercise your data rights by following these steps:

Submitting a Data Request

To submit a data access, deletion, portability, or correction request:

1 Email us at privacy@adsonrent.com with the subject line "Data Rights Request".

2 Include your full name, email address associated with your account, and a clear description of your request.

3 We may need to verify your identity before processing the request to protect your data from unauthorised access.

4 We will acknowledge your request within 72 hours and respond fully within 30 days (extendable by a further 60 days for complex requests).

For quick self-service actions, you can also:

Update your profile information from Account Settings
Unsubscribe from marketing emails using the link at the bottom of any email
Delete your account from Account Settings > Danger Zone

Data Retention Periods

We retain your personal data only for as long as necessary to fulfil the purposes described in our Privacy Policy. The table below summarises our standard retention periods:

Data Category	Retention Period	Reason
Account & profile data	Duration of account + 2 years	Service provision, fraud prevention
Business listing data	Duration of listing + 1 year	Platform integrity, dispute resolution
Payment & billing records	7 years	Indian financial regulations, GST compliance
Support communications	3 years	Customer service quality, dispute resolution
Usage & analytics data	Up to 2 years (anonymised)	Platform improvement
Consent records	5 years from last consent action	Legal compliance, audit trail
Security & access logs	90 days	Security monitoring, incident response

After the applicable retention period, data is securely deleted or permanently anonymised.

Legal Basis for Processing

We process your personal data on the following legal bases:

Contract Performance: Processing necessary to provide the services you have requested (e.g., managing your account and listings).
Legitimate Interests: Processing for fraud prevention, platform security, and improving our services.
Legal Obligation: Processing required to comply with Indian law, including tax regulations and law enforcement requests.
Consent: Processing for marketing communications and non-essential cookies, which you can withdraw at any time.

International Data Transfers

Your data is primarily processed and stored on servers located in India. Where we use third-party services that process data outside India (such as Google Analytics), we ensure appropriate safeguards are in place, including standard contractual clauses and data processing agreements, in compliance with applicable data protection law.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) responsible for overseeing compliance with data protection law. If you have questions or concerns about our data practices:

Email: dpo@adsonrent.com
Post: Data Protection Officer, Adsonrent, WeWork Prestige Atlanta, Koramangala, Bengaluru, Karnataka 560034, India

Filing a Complaint

If you are unhappy with how we have handled your data or a data rights request, you have the right to lodge a complaint:

India: Contact the Data Protection Board of India (once operational under the DPDP Act, 2023) or our Grievance Officer at grievance@adsonrent.com.
EEA / EU: Contact the supervisory authority in your country of residence.
UK: Contact the Information Commissioner's Office (ICO) at ico.org.uk.

We always encourage you to contact us first so we can try to resolve your concern directly.

Contact Us

For any questions about your data rights or this page, please contact:

Email: privacy@adsonrent.com
Contact Form: adsonrent.com/contact