Data Processing Policy

Last Modified
May 6, 2024


Please contact us at if you have any questions about our Data Processing Policy.


Avista Technology Solutions Pvt. Ltd. (We, us, our) is committed to protecting the privacy and data rights of individuals in accordance with the General Data Protection Regulation (GDPR).

Table of Contents:

Scope and Purpose


This Data Processing Policy applies to all data we receive from individuals in connection with our business operations and data processing activities. This includes any personal data collected through our website and other interactions with our service.


This Policy outlines:

  • The types of personal data we collect from our service users
  • The specific purposes for which we process your data
  • How we ensure compliance with the General Data Protection Regulation (GDPR) principles in regards to this data processing
  • The procedures we follow for collecting, using, disclosing, and protecting your personal data

Lawful Basis for Data Processing

We process personal data on the basis of lawful grounds as defined in Article 6 of the GDPR. Here are the specific reasons we might process your data:

Performance of a Contract: In some cases, we may need to process your data to fulfill our agreement with you. This could include things like remembering your preferences within the bot or completing tasks you initiate within the Temas app.

Compliance with Legal Obligations:There may be situations where we are required by law to process your data. This could involve responding to lawful requests from legal authorities or adhering to data retention regulations.

Data Minimization,Integrity and Retention

Information We Collect

We collect personal data when you use our service or interact with us in various ways. This includes:

  • Microsoft Teams user ID
  • User’s first and last name
  • User’s email address
  • User’s birthdate (Month and day only)
  • User’s joining date
  • Team name where our service is installed
  • Microsoft Teams team ID
  • Microsoft Teams tenant ID

If you contact our support team, we may collect additional information to assist you, such as:

  • Contact details
  • Summary of the technical issue you're experiencing
  • Any relevant documents or screenshots that help diagnose the problem

How We Use Your Information

We use the information we collect for the following purposes:

  • To provide and improve the service:We use your data to deliver, operate, and maintain our service.
  • To communicate with you: We may use your contact information to send you service-related updates, security notifications, and other important communications.
  • To troubleshoot and resolve technical problems: We analyze data to diagnose and resolve technical issues you might encounter while using our service.
  • To comply with legal obligations: We may be required to retain and disclose your data to comply with applicable laws, regulations, or legal processes.

Data Minimization,Integrity and Retention

Data Minimization

  • We follow the principle of data minimization by collecting only the personal data that is strictly necessary to fulfill the specific purposes for which it is used.
  • We regularly review the data we collect to ensure it remains relevant and limited to our stated needs.

Data Integrity

We take reasonable steps to ensure the accuracy, completeness, and timeliness of your personal data. This may involve providing you with the ability to update or correct user’s birthdates (Month and day only) and user’s joining dates.

Data Retention

  • User activity: We retain information for active users until 7 days after the service is uninstalled from the Teams channel to facilitate reactivation.
  • Legal obligations: We may be required to retain certain data for extended periods to comply with laws, regulations, or legal proceedings.
  • Dispute resolution: Data may be retained to resolve disputes and enforce our agreements.
  • Business operations and improvement: We may retain anonymized data for legitimate business purposes, such as analytics and service improvement.

Individual Rights

We respect your control over your personal data. You have certain rights regarding your information, as outlined below:

Access and Rectification:

  • You have the right to access your personal data that we hold. This allows you to verify its accuracy and completeness.
  • You can request corrections or deletions of any inaccurate or incomplete information.

Restriction and Objection:

In certain situations, you may have the right to restrict or object to the processing of your personal data. For example, you can object to using your data for direct marketing purposes.

Data Portability:

You have the right to receive a copy of your personal data in a structured, electronic format. This facilitates transferring your data to another service provider, if technically feasible.

Data Deletion:

You can request the complete deletion of your data by contacting us at We will erase your data within one week.

Exercising Your Rights:

To exercise any of these rights, please contact us at We will respond to your requests within a reasonable timeframe, typically within 7 business days.

Third Party Disclosure

We understand the importance of data privacy and are committed to being transparent about how we handle your information. This section outlines when and how we may share your data with third parties.

General Principle:

We do not sell, trade, or otherwise transfer your personally identifiable information to outside parties.

Third-Party Processors:

We use Microsoft Teams and Microsoft Azure cloud storage to help us operate and improve our service. These Microsoft products have access to your data in the course of providing their service and they:

  • Process your data only in accordance with our instructions and applicable laws
  • Implement appropriate technical and organizational safeguards to protect your data
  • Maintain the confidentiality of your data

Breach Notification

We are proud to report that we have never experienced a security breach involving our user’s data. We have a well-defined security incident response plan that aligns with industry best practices. In the event of a data breach that poses a risk to individuals' rights and freedoms, we will notify the relevant supervisory authority and affected users within 48 hours.

Changes to This Policy

We are committed to transparency and may update this policy from time to time to reflect:

  • Changes in our data practices: As our service evolve, we may need to update this policy to ensure it accurately reflects how we collect, use, and process your data.
  • Legal and regulatory requirements: We comply with all applicable laws and regulations regarding data privacy. This may necessitate updates to our policy.

How We Will Notify You:

  • We will post any changes to this policy on our website.
  • For significant changes that impact your privacy rights, we will also send you a notification by email.

Contact Us

If you have any questions or concerns about this Data Processing Policy or our privacy practices, please contact us at