Data Processing Principles
- Lawfulness, fairness, and transparency in all data handling
- Purpose limitation: data is used only for analytics and access control
- Data minimization: only essential metadata is stored
- Integrity and confidentiality: encrypted tokens, no secrets in browser
Data Subject Rights
- Access: Users can request a copy of their personal data
- Rectification: Incorrect data can be corrected upon request
- Erasure: Accounts can be deactivated and personal data deleted where applicable
- Restriction: Processing can be limited upon legitimate request
Security Controls
- No client-side metric calculations; all metrics are pre-aggregated and versioned
- Tokens and secrets are stored server-side; never exposed to the browser
- Raw data is append-only; no destructive mutations
- Role-based access (admin/client) to enforce least privilege
Data Transfers
Data is stored and processed in AWS (ap-south-1). No data is transferred to browsers beyond what is needed for authentication and display of pre-aggregated, versioned metrics.