Legal Compliance Across Jurisdictions

ConnectAgent complies with the Information Technology Act, 2000, and its amendments, including the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.

We implement reasonable security practices and procedures to protect sensitive personal data, including encryption, access controls, and secure data storage. Our data processing activities align with the IT Act's requirements for electronic records and digital signatures.

We maintain audit logs and records as required under the IT Act and cooperate with lawful requests from Indian authorities when necessary.

ConnectAgent adheres to the Digital Personal Data Protection Act, 2023, which governs the processing of personal data in India.

We process personal data only for lawful purposes, with explicit consent where required, and implement appropriate security safeguards. We respect data principal rights including access, correction, erasure, and grievance redressal.

Our data processing is limited to what is necessary for providing our services, and we do not process personal data beyond the purposes for which it was collected, except with consent or as required by law.

For SMS and voice communications in India, ConnectAgent complies with TRAI regulations including the Telecom Commercial Communications Customer Preference Regulations (TCCCPR).

We ensure that all commercial SMS communications sent through our platform comply with TRAI's DND (Do Not Disturb) registry requirements. Customers using ConnectAgent for Indian communications must obtain proper consent and register with appropriate headers and templates as required by TRAI.

We support TRAI-compliant messaging infrastructure and help customers navigate registration requirements for commercial messaging in India.

ConnectAgent's services and business practices comply with the Consumer Protection Act, 2019, ensuring fair trade practices and consumer rights protection.

We provide clear terms of service, transparent pricing, and accessible customer support. Our refund and cancellation policies are clearly communicated and comply with applicable consumer protection standards.

ConnectAgent complies with the Telephone Consumer Protection Act (TCPA) and its implementing regulations. The TCPA requires prior express written consent for automated calls, prerecorded messages, and SMS text messages to mobile numbers.

We provide tools and features to help customers obtain and manage consent, maintain opt-out mechanisms, and comply with TCPA requirements. Customers are responsible for ensuring they have proper consent before sending communications through our platform.

We support TCPA-compliant messaging practices including opt-out handling, consent management, and record-keeping requirements.

ConnectAgent's email services comply with the Controlling the Assault of Non-Solicited Pornography And Marketing (CAN-SPAM) Act of 2003.

We provide features to help customers comply with CAN-SPAM requirements, including accurate header information, non-deceptive subject lines, opt-out mechanisms, and honoring opt-out requests within 10 business days.

Our platform includes tools for managing unsubscribe requests and maintaining suppression lists to prevent sending to opted-out recipients.

ConnectAgent complies with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), which provide California residents with specific rights regarding their personal information.

California residents have the right to know what personal information we collect, the right to delete personal information, the right to opt-out of the sale of personal information, and the right to non-discrimination for exercising these rights.

We provide mechanisms for California residents to exercise these rights and maintain processes to respond to consumer requests within the required timeframes.

ConnectAgent monitors and complies with state-specific regulations including Vermont's Act 171 (data broker regulations), Nevada's privacy law, and other emerging state privacy laws.

We adapt our practices to meet evolving state-level requirements and provide customers with tools to comply with jurisdiction-specific obligations.

ConnectAgent complies with the General Data Protection Regulation (GDPR) (EU 2016/679) and the UK GDPR, which govern data protection and privacy in the European Union and United Kingdom.

We process personal data lawfully, fairly, and transparently. We implement appropriate technical and organizational measures to ensure data security, including encryption, access controls, and regular security assessments.

Data subjects have rights including access, rectification, erasure, restriction of processing, data portability, and objection to processing. We provide mechanisms for exercising these rights and respond to requests within one month.

We maintain records of processing activities, conduct Data Protection Impact Assessments (DPIAs) where required, and have appointed a Data Protection Officer (DPO) to oversee compliance.

ConnectAgent complies with the UK Privacy and Electronic Communications Regulations (PECR) and the EU ePrivacy Directive, which regulate electronic marketing communications.

We support consent-based marketing practices and provide tools for managing opt-in and opt-out preferences. Our platform helps customers comply with PECR requirements for SMS, email, and automated calling.

We respect cookie consent requirements and provide features to help customers manage cookie preferences in compliance with PECR.

ConnectAgent complies with the UK Data Protection Act 2018, which supplements and tailors the UK GDPR for UK-specific requirements.

We process personal data in accordance with the Act's provisions, including special category data processing restrictions and law enforcement data processing requirements where applicable.

ConnectAgent implements appropriate safeguards for cross-border data transfers, including Standard Contractual Clauses (SCCs) approved by the European Commission, Binding Corporate Rules (BCRs) where applicable, and other recognized transfer mechanisms.

We ensure that data transfers comply with applicable laws in both the source and destination jurisdictions, including GDPR requirements for transfers outside the EEA.

ConnectAgent complies with international telecommunications regulations and industry standards, including ITU (International Telecommunication Union) guidelines and carrier-specific requirements.

We work with certified telecommunications partners and ensure that our messaging infrastructure meets international standards for delivery, security, and compliance.

ConnectAgent adheres to internationally recognized security and privacy standards including ISO 27001 (Information Security Management), SOC 2 Type II (Security, Availability, Processing Integrity, Confidentiality, and Privacy), and other relevant certifications.

We maintain regular security audits, penetration testing, and compliance assessments to ensure ongoing adherence to international best practices.

ConnectAgent implements global best practices for preventing spam, phishing, and fraudulent communications. We maintain relationships with industry organizations including the Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) and follow their guidelines.

We provide customers with tools to maintain sender reputation, monitor deliverability, and prevent abuse of our platform. Our abuse prevention measures include automated monitoring, manual review processes, and rapid response to reported violations.