Privacy Policy
Who we are
Rainmaker is an online learning and content company focused on Creating Ethical Workplaces. We create training content for corporates, utilizing a team of Instructional Designers, covering a variety of subjects spanning Law, Compliance and Human Resources. Our flagship product, WorkSAFE, helps organizations comply with the Prevention Of Sexual Harassment Law (PoSH) by training its entire workforce, management and members of the Internal Committee. We also provide training on Anti-Bribery and Anti-Corruption (ABAC), Code of Conduct (CoC), Diversity, Equity, Inclusion & Belonging (DEIB), Data Protection and Privacy (DPP), Prevention of Insider Trading (PIT), Corporate Governance, etc.
What personal data we collect and why we collect it
Rainmaker collects the personal data/information in the following manner:
- When a query is made on our website, i.e., name of the visitor making the query, email address, contact details, company name etc. that the visitor voluntarily provides.
- Where a company/organization (“Rainmaker Client”) provides training services for its employees utilizing Rainmaker’s proprietary Learning Management System (LMS), necessary corporate information such as names and email addresses of the employees, may be required to assign the designated e-learning modules. In a limited number of instances, a company that wishes to track the data being accessed by its employees, may also provide further personal information to Rainmaker such as the Employee ID, Department, Location, Designation etc. The data collected is then assigned to the e-modules and used for analytical purposes to track the status of the courses assigned. The company availing Rainmaker’s services sends the data mentioned above via email, which is then deleted upon completion of the term of the agreement. In case, a Rainmaker Client desires to renew, then they are required to submit fresh data to Rainmaker. Rainmaker does not retain any data, after the expiry of the agreement.
The data is further encrypted as per the AWS guidelines.
Know more for the AWS certificates/information:
Comments
When visitors leave comments on the Rainmaker website or on our social media platforms, the data shown in the form of comments, along with the IP address of the visitor and the browser user agent string is collected to help with spam detection.
Contact forms
The information provided while populating data in the Contact Forms as available on the Rainmaker website is stored.
Cookies
If a visitor leaves a comment on the Rainmaker website, they may opt-in to save their name, email address and website in cookies. These are for their convenience so that they do not have to fill in the details again in case of another comment. The information via cookies will be retained for a period of one year.
If a visitor lands onto the Rainmaker website, a temporary cookie will be enabled to determine if the user’s browser accepts cookies. This cookie contains no personal data and is discarded when the user closes their browser.
Embedded content from other websites
Articles on the Rainmaker site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behave in the exact same way as if the visitor has visited any other website.
The websites may collect data about the visitor, use cookies, embed additional third-party tracking, and monitor the visitor’s interaction with that embedded content, including tracing the visitor’s interaction with the embedded content if they have an account and are logged in to that website.
Analytics
We use Google Analytics to track our website activity such as session duration, pages per session, bounce rate etc. of individuals using the site, along with the information on the source of the traffic.
Who we share your data with
Rainmaker ensures that no personal data shall be disclosed to any third party except with the user’s consent or where the company reasonably considers it necessary to do so and as may be permitted by the applicable law.
How long we retain your data
In case a visitor leaves a comment on the Rainmaker website and/or it’s social media platforms, the comment and its metadata would be retained indefinitely. This is carried out to help Rainmaker recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on the Rainmaker website (if any), the personal information provided in the user profile, in form of email addresses is to be stored indefinitely unless the user unsubscribes from the mailing list.
In case of B2B end users (Rainmaker Client end users), the data is stored on the portal till the date of agreement.
What rights you have over your data
If a user has an account on the Rainmaker site and/or on its social media platforms, or has left any comments, they can request to receive the details of their personal data that may have been stored about them, including any data that they may have provided to Rainmaker. The user can also request that Rainmaker erase any personal data they hold about the user. However, this does not include any data Rainmaker is obliged to keep for administrative, legal, or security purposes.
A visitor/registered user can also exercise their right of their personal data in form of name and contact details to be forgotten by the Rainmaker database. The visitor/user can reach out to Rainmaker to ensure that their personal data is no longer stored with the company.
Where we send your data
The data collated when an user voluntarily registers on our website for our mailing content, downloadable collaterals, queries, etc. is kept in our database indefinitely unless the user unsubscribes from the mailing list.
The data that is collected is encrypted and currently stored on the AWS (Amazon Web Services) server. The data is used for MIS purposes and course assigning requirements by Rainmaker. The data can be sent to the party in agreement via email or through admin access, which can be given to the party’s SPOC to download the report directly.
How we protect your data
To protect the personal data that may have been provided to or acquired by Rainmaker, we ensure that the data is accessed only by those authorised by Rainmaker and those who “need to know” or require the access to the personal data to function in their role. Rainmaker ensures that in no event shall any personal data be disclosed to any third party except where in case of an agreement between the parties for outsourcing of subscription content for customization or with the user’s consent or where the company reasonably considers it necessary to do so and as permitted by applicable law.
What data breach procedures we have in place
To ensure protection of personal data against misuse, Rainmaker has reasonable security practices and procedures in place which are designed to protect such information from unauthorised access, damage, use, modification, disclosure or impairment, as may be specified in an agreement between the parties or as may be specified by law for the time being in force and in the absence of such agreement or any law, such reasonable security practices and procedures, as may be prescribed by the Central Government.
What third parties we receive data from
In relation to Third Party access to data, such access is only provided upon entering into an agreement with applicable data protection requirements and confidentiality.
While operating on data received by Rainmaker from third parties, the same is processed only as per the instructions provided to Rainmaker and that appropriate and technical organizational measures are taken to ensure that there is no unlawful or unauthorized processing or breach or loss or destruction to the personal data.
What automated decision making and/or profiling we do with user data
When personal data in the form of name and contact details are submitted by a visitor/user for purposes of inquiries or subscription on the Rainmaker website, the same would be used for automated decision-making and profiling to send mailers, campaigns, newsletters, and marketing material from Rainmaker.
Industry regulatory disclosure requirements
Rainmaker ensures that the disclosure of any sensitive personal data or information can be done only with prior permission from the user from whom such information, may have been obtained, unless such disclosure has been agreed to in the contract between the parties, or where the disclosure is necessary for compliance of a legal obligation.