Data Protection

Data Protection Commitment

At TMS, we are committed to protecting your personal data and ensuring your privacy. This Data Protection Policy outlines how we collect, process, and protect your personal information in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and India's Personal Data Protection Bill.

Data Collection and Processing

Personal Data We Collect

We collect and process the following types of personal data:

  • Contact information (name, email, phone number)
  • Company information
  • Fleet and vehicle data
  • Usage data and analytics
  • Payment information
  • Location data
  • Device information
  • Communication preferences

Legal Basis for Processing

We process your personal data on the following legal bases:

  • Performance of a contract with you
  • Compliance with legal obligations
  • Our legitimate interests
  • Your consent
  • Protection of vital interests
  • Public interest

Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication
  • Staff training on data protection
  • Regular backups and disaster recovery procedures
  • Physical security measures
  • Network security measures
  • Incident response procedures

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • Providing our services
  • Complying with legal obligations
  • Resolving disputes
  • Enforcing our agreements
  • Maintaining business records

We have specific retention periods for different types of data, which we review regularly to ensure compliance with legal requirements.

Your Rights

Under data protection laws, you have the following rights:

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority
  • Right to not be subject to automated decision-making

Data Transfers

We may transfer your personal data to countries outside your country of residence. When we do so, we ensure appropriate safeguards are in place, including:

  • Standard contractual clauses
  • Binding corporate rules
  • Approved certification mechanisms
  • Adequacy decisions by relevant authorities
  • Consent for specific transfers

Data Breach Response

In the event of a data breach, we will:

  • Notify affected individuals without undue delay
  • Notify relevant supervisory authorities
  • Document the breach and our response
  • Take steps to mitigate the breach
  • Review and update our security measures

Third-Party Processors

We use third-party service providers who process personal data on our behalf. These processors:

  • Are bound by data processing agreements
  • Implement appropriate security measures
  • Process data only as instructed
  • Are regularly audited

Children's Data

Our services are not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If you are a parent or guardian and believe your child has provided us with personal data, please contact us.

Contact Us

If you have any questions about our data protection practices or wish to exercise your rights, please contact our Data Protection Officer at:

Email: dpo@tms.com

Phone: +91 123 456 7890

Address: 123 Tech Park, Chennai, India

Updates to This Policy

We may update this Data Protection Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes through our website or by email.

Last Updated: July 17, 2025