DPDP Compliance Notice
FREMN, operated by FREMN TECHNOLOGIES LLP, follows responsible personal data handling practices aligned with India's Digital Personal Data Protection Act, 2023 (DPDP Act). This notice explains our role, obligations, and the rights available to individuals.
Role of FREMN Under the DPDP Act
The DPDP Act, 2023 establishes a clear framework for how personal data is handled. Under this framework, when clinics use FREMN:
- Clinics act as Data Fiduciaries — they determine the purpose and means of processing patient data
- FREMN TECHNOLOGIES LLP acts as a Data Processor — processing communication data only as directed by the clinic, solely to deliver AI receptionist services
Processing Principles
FREMN's data handling practices are aligned with the core principles of the DPDP Act, 2023, including:
- Purpose limitation — data is processed only for the specific purpose for which it was collected
- Data minimization — only the data necessary for service delivery is processed
- Secure processing — appropriate technical safeguards are applied at all times
- Consent-based usage — processing occurs only where a valid lawful basis exists
- Reasonable safeguards — organizational measures are in place to prevent unauthorized access or misuse
User Rights Under the DPDP Act
Individuals whose personal data is processed through FREMN have the following rights under the DPDP Act, 2023:
- Right of Access — request information about personal data held and how it is being used
- Right to Correction — request correction of any inaccurate or incomplete personal data
- Right to Withdrawal of Consent — withdraw previously granted consent for data processing
- Right to Erasure — request removal of personal data where applicable under the Act
All requests under the DPDP Act may be submitted to:
privacy@fremn.comSecurity Safeguards
To protect personal data and meet our obligations under the DPDP Act, FREMN applies the following technical and organizational safeguards:
- Secure authentication for all platform access points
- Controlled internal system access on a need-to-know basis
- Cloud infrastructure protections aligned with industry-standard practices
- Active monitoring for unauthorized access attempts or anomalous activity
Grievance Contact
For any DPDP-related concerns, complaints, or data rights requests, individuals may reach our designated grievance contact:
contact@fremn.comWe aim to acknowledge all DPDP-related requests within 72 hours and resolve them within the timeframes prescribed under the Act.