Privacy Policy

Your privacy matters to us. At Novida Analytics, we believe that trust is foundational — and part of that trust is being transparent about how we handle your data. 

This Privacy Policy explains what information we collect, why we collect it, and how we use it when you visit our website, get in touch with us, or work with our team. We don't track more than we need. We don't share your data unless we have to. And we never sell your information. 

Novida Analytics LLP is a Limited Liability Partnership incorporated in India, operating as a life sciences evidence and analytics company with a US market focus. This Policy is governed primarily by the Digital Personal Data Protection Act, 2023 (DPDPA) of India. Where applicable, it also addresses obligations under HIPAA (US) and other relevant privacy laws. 

If anything is unclear or you have questions, we’re here to help — reach out at info@novidaanalytics.com. 

1. Information we collect

We collect personal data only when you actively provide it or when it is automatically generated through your use of our website and services. 

INFORMATION YOU PROVIDE DIRECTLY 

  • Contact and enquiry forms: name, business email, company name, job title, and your message 

  • Academy enrolment: professional background, organization, billing information, and course preferences 

  • Newsletter and event subscriptions 

  • Job applications and partnership communications 

INFORMATION COLLECTED AUTOMATICALLY

  • Device and browser type, operating system 

  • Log data: IP address, pages visited, referral URL, timestamps 

  • Cookie and tracking data (see Section 03) 

  • Approximate geographic location from IP address 

  • INFORMATION FROM THIRD PARTIES 

  • Business intelligence providers supplementing contact records with professional or firmographic data 

  • LinkedIn and professional networks where you interact with our public profiles 

  • Industry referrals and publicly available professional directories 

Note: This Policy does not govern patient-level health data processed on behalf of biopharma clients under contracted analytical services. That processing is governed by applicable Data Processing Agreements (DPAs). Novida Analytics acts as a data processor in those contexts, not a data controller. 

2. How we use your information

We use the information you provide to: 

  • Respond to enquiries and deliver consulting, analytics, and Academy services 

  • Send communications you have requested, including confirmations, invoices, and updates 

  • Review job applications and manage hiring processes 

  • Improve our website and services through aggregate usage analysis 

  • Comply with legal obligations and detect fraud or security issues 

  • Conduct internal business operations, including financial administration and reporting 

We process personal data only for the purposes described above. We do not use your data for automated decision-making with legal or similarly significant effects without your explicit consent. 

3. Cookies

Our website uses cookies to understand how visitors use them and to improve your experience. Cookies are small text files stored on your device. 

  • Essential cookies — required for site functionality; cannot be disabled 

  • Analytics cookies — aggregate, anonymized usage data (e.g., Google Analytics) 

  • Functional cookies — enhanced functionality and preferences 

  • Marketing cookies — placed only with your consent where required by applicable law 

You can adjust your browser settings to decline cookies at any time. Where required by the DPDPA, GDPR, or the ePrivacy Directive, we obtain your consent before placing non-essential cookies. You may also withdraw cookie consent through our cookie preference settings. 

4. Data security & retention 

We take reasonable and appropriate steps to protect your information from unauthorized access, disclosure, or misuse. Security measures include TLS/HTTPS encryption in transit, encryption at rest where appropriate, access controls on a need-to-know basis, and regular review of security practices. 

No method of internet transmission or electronic storage is 100% secure. By using our website and services, you acknowledge this inherent risk. 

We retain personal data only as long as necessary to fulfil the purposes described in this Policy, comply with legal obligations, and maintain records for legitimate business purposes. When no longer needed, data is securely deleted or anonymized. 

5. Third-party services & sharing 

We do not sell personal information to third parties. 

Our website and services may connect to or link to third-party platforms (e.g., analytics tools, payment processors, social media). We are not responsible for the privacy practices of those platforms and encourage you to review their policies. 

We may share your information only in the following circumstances:

  • With service providers (hosting, email, CRM, analytics) bound by data processing agreements 

  • With professional advisors (attorneys, accountants) subject to confidentiality obligations 

  • In connection with a merger, acquisition, or asset sale — with notice as required by law 

  • When required by law, regulation, or court order 

  • With your explicit consent for any other purpose 

6. International data transfers

Novida Analytics LLP is incorporated and based in India. The processing of personal data is primarily governed by the Digital Personal Data Protection Act, 2023 (DPDPA) of India. 

Where we process personal data of individuals located in the European Economic Area (EEA), the United Kingdom, or the US, we implement appropriate safeguards for cross-border transfers, which may include the European Commission’s Standard Contractual Clauses (SCCs) or the UK International Data Transfer Addendum, as applicable. 

For questions about our data transfer mechanisms, contact us at info@novidaanalytics.com. 

7. Your rights 

You can contact us at any time to exercise the following rights. 

UNDER THE DPDPA 2023 (INDIA) 

  • Right to access — obtain a summary of your personal data and how it is being processed 

  • Right to correction and erasure — request correction of inaccurate data, or erasure where it is no longer necessary, or consent has been withdrawn 

  • Right to grievance redressal — have grievances addressed within the prescribed period; escalate to the Data Protection Board of India if not satisfied 

  • Right to nominate — nominate an individual to exercise your rights on your behalf in the event of death or incapacity 

UNDER GDPR / UK GDPR (EEA AND UK RESIDENTS) 

  • Access — request a copy of personal data we hold about you 

  • Rectification — request correction of inaccurate or incomplete data 

  • Erasure — request deletion in certain circumstances 

  • Restriction — request limits on how we use your data 

  • Portability — receive your data in a structured, machine-readable format 

  • Objection — object to processing based on legitimate interests or for direct marketing 

EEA and UK residents may also lodge complaints with their local supervisory authority. 

CALIFORNIA RESIDENTS (CCPA / CPRA) 

To the extent CCPA/CPRA applies, California residents may have additional rights including the right to know, delete, and correct personal information, and the right to opt out of sale or sharing. We do not sell or share personal information as defined under CCPA/CPRA. Contact us to determine applicability. 

8. Contact

For questions about this Policy, to exercise your privacy rights, or to submit a data subject request: 

Novida Analytics LLP 

Subject line: Privacy Enquiry / Data Subject Request 

info@novidaanalytics.com

We respond within 30–45 days as required by applicable law. This Policy may be updated periodically. Material changes will be reflected in an updated “Last Updated” date above. Continued use of the Services constitutes acceptance of the revised Policy.