Live Love Laugh...

Privacy Policy

Your privacy is important to us. This privacy statement explains the personal data TLLLF processes, how TLLLF processes it, and for what purposes.
know more
Last Updated: June 13, 2019

TLLLF Privacy Policy

TLLLF Privacy Statement

Your privacy is important to us

This website (“Website”) is owned and operated by The Live Love Laugh Foundation, a charitable trust registered under the Indian Registration Act, 1908 (“TLLLF”). Through the Website, TLLLF provides an interactive platform through which users are provided with an opportunity to seek information on mental health awareness, specifically depression, stress and anxiety, and post testimonials sharing their experiences with other users of the Website (“Services”).

The terms ‘TLLLF’, ‘us’ or ‘we’ refer to the owners of this Website. The terms ‘you’ or ‘user’, and all its grammatical variations, refer to the user or viewer of our Website.

This Privacy Policy (“Policy”) reflects TLLLF’s commitment towards protecting the privacy and personal information provided by users of the Website and sets out the nature and type of information we collect from users for the purpose of the Services, the usage and disclosure of such information, and the safety and security measures adopted by us to safeguard the information.

Please note that this Policy is only applicable to the users of the Website and the information and data gathered on the Website and not to any other information or website. You are hereby advised to read this Policy carefully and fully understand the nature and purpose of gathering and/or collecting sensitive, personal and other information and the usage, disclosure and sharing of such information.

Personal data we collect

(1) This Policy explains

  • The information we may collect about you online;
  • The use and role of cookies and similar technologies on our Website;
  • How we will protect and use information we collect about and from you;
  • The circumstances in which we might disclose your details to anyone else;
  • When we may use your details to contact you; and
  • How you can be sure the information we hold about you is accurate and current.

How we use personal data

(2) Information Gathered

  • In general, you can visit the Website without revealing your identity or any personal information about yourself. However, you may choose to register for one of TLLLF’s programmes, post a testimonial on the Website, subscribe to our newsletter and/or have test results mailed to you, which may require you to reveal your identity and/or other information about you.
  • In addition, we may collect demographic information such as information about your computer, hardware, software, platform, media, Internet Protocol (IP) address and connection, information about online activity such as feature usage and click paths, and other data that you may provide in surveys or through stories posted. We may combine demographic information with Personal Information to tailor our offerings or web pages to your preferences or interests.
  • We may additionally collect data to process donations, such as your payment instrument number (such as a credit card number) and the security code associated with your payment instrument.

Reasons we share personal data

Sensitive Personal Information

  • Sensitive Personal Information (“SPI”) means such personal information which consists of information relating to your password; physical, physiological and mental health condition; medical records and history; biometric information, sexual orientation and financial information (such as bank account details or credit card numbers). SPI collected by us shall not be disclosed to any third party without your express consent, save as otherwise set out in this Policy or the Terms of Use or as required by law
  • You acknowledge that in the course of your use of the Website we may receive SPI, when you choose to provide information (either through a testimonial or through emails sent to us) related to your physical, physiological condition or information pertaining to your medical records and history, and you hereby consent and agree to allow us to store and display the SPI collected in this manner on the Website and disclose it in accordance with the terms of this Policy
  • It is clarified that with respect to any SPI that you may share with us, you have the sole right to determine whether you want to share such information with us, and that you can continue to use the Website without the sharing of any SPI.

Cookies and similar technologies

(4) Personal Information

  • Personal Information means any information that may be used to identify you and that is not otherwise publicly available, including, but not limited to, your first and last name, age, gender, place of residence and an email address, phone number or other contact information, preferred language, photograph, as well as any information related to your profession or academic qualifications.
  • We may collect Personal Information from you when you post information on the Website or otherwise voluntarily provide such information. We may use your email address and any other contact information you provide, to contact you in relation to your use of the Services or with regard to any issues that may arise in the course of your use of the Services.
  • If you wish to subscribe to our newsletter(s) and other materials, we will use your name and email address to send the newsletter and materials to you. You may take any tests that are available on the Website without revealing your identity or any Personal Information about yourself and view your results, but if you require the results to be emailed to you, we will use your name and email address to send the results to your inbox. The results or information collected during any tests are not stored on our servers, and are handled by a third party site.

Cookies and similar technologies

(5) Cookies and Other Tracking Technologies

  • Some of our web pages may also utilize “cookies” and other tracking technologies. A “cookie” is a small text file that may be used, for example, to collect information about your activity on our Website. Some cookies and other technologies may serve to recall Personal Information previously indicated by you. Most browsers allow you to control cookies, including whether or not to accept them and how to remove them. You may set most browsers to notify you if you receive a cookie, or you may choose to block cookies with your browser, but please note that if you choose to erase or block your cookies, you may need to re-enter your Personal Information to gain access to certain parts of our Website.
  • Tracking technologies may automatically record information such as Internet domain and host names; other information about your geographic location; IP addresses; browser software and operating system types; CPU type; your manner of connecting to the Internet (e.g., connection speed through narrowband or broadband access); click paths; and dates and times that our Website isaccessed.
  • Our use of cookies and other tracking technologies allows us to improve our Website and consequently your experience using the Website and the Services. We may also analyse information that does not include Personal Information for trends and statistics.
  • We only use first-party Google Analytics cookies to track anonymous usage statistics and do not collect any Personal Information that can be used to identify you. Google Analytics stores information about what pages you visit, how long you are on the Website, how you got here and what you click on. We do not allow Google Analytics to use or share our analytics data.
  • We use social media buttons to allow users to easily share pages and post them to social media networks. These use third party cookies over which we have no control.

Cookies and similar technologies

(6) Uses of Personal Information

  • We may use Personal Information and other information received and collected from you to provide the Services you have requested, to enable you to access and post comments on the Website, or any part thereof, and to contact you upon your request and when otherwise necessary. We may also use Personal Information for auditing, research and analysis, and to operate and improve our Services. In certain circumstances, we may share aggregated non-personal information with third parties. When we use third parties to assist us in processing your Personal Information, we require that they comply with our Policy and any other appropriate confidentiality and security measures. We may also share such information with third parties in limited circumstances, including when complying with legal process, preventing fraud or imminent harm, and ensuring the security of our network and Services.
  • Where we propose to use your Personal Information for any other uses we will ensure that we notify you first. You will also be given the opportunity to withhold or withdraw your consent for your use other than as listed above.

Cookies and similar technologies

(7) Confidentiality and Security

  • We will keep confidential and protect your Personal Information and SPI except where disclosure is required or permitted by law.
  • We follow generally accepted industry standards to protect the SPI and Personal Information submitted to us, both during transmission and, once we receive it, for storage and disposal. All information we gather is securely stored within databases controlled by us. The databases are stored on servers secured behind a firewall; access to the servers is password-protected and is strictly limited. No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore, while we strive to use commercially acceptable means to protect your Personal Information and SPI, we cannot guarantee its absolute security.
  • We limit access to SPI and Personal Information to employees who we believe reasonably need to come into contact with that information to provide products or Services to you or in order to do their jobs.
  • Third parties provide certain services available on our Website and on our behalf. We may provide information, including Personal Information and SPI, to third-party service providers to help us deliver our products, information, and Services efficiently and effectively. Service providers are also an important means by which we maintain our Website and mailing lists. We will take reasonable steps to ensure that these third-party service providers are obligated to protect Personal Information on our behalf through confidentiality agreements and otherwise. We do not intend to transfer SPI and Personal Information without your consent to third parties who are not bound to act on our behalf unless such transfer is legally required. Similarly, it is against our policy to sell SPI and Personal Information collected online without consent.
  • If you choose to provide us with your SPI and Personal Information, we may transfer that SPI and Personal Information from your country or jurisdiction to other countries or jurisdictions around the world. Your SPI and Personal Information may be collected and stored on servers located in the territory of India and such other countries as we may disclose from time to time.

Cookies and similar technologies

(8) Third Party Websites

  • If you click on a link to a third party site or otherwise leave the Website, you will go to a website that is outside the purview of our control. Because we cannot control the activities of third parties, we cannot accept responsibility for any use of your Personal Information by such third parties, and we cannot guarantee that they will adhere to the same privacy and security practices as we do. The use of Personal Information by such websites shall be governed by the privacy policies provided therein. Therefore, if you visit a third party website that is linked to our Website, you should consult that website's privacy policy before providing any Personal Information.

Cookies and similar technologies

(9) Donations

  • If you wish to donate to TLLLF, you will be asked to supply certain information including your Permanent Account Number. However, this information is not stored on our servers, and will be stored with a third party website.
  • Anonymous donations will not be accepted. You agree that all information that you provide for the purpose of making a donation will be accurate, complete and current. Once you donate, you agree to fully complete and fulfill the obligations that arise out of your participation in donation / payments on the Website. You agree to pay all charges incurred by authorized users of your account and credit card or other payment mechanism at the prices in effect when such charges are incurred, to TLLLF, through its bankers / credit card companies. You will also be responsible for paying any applicable taxes, if any.
  • You understand that donations once made cannot be charged back, except in cases of fraudulent use, once investigation is carried out by necessary governmental / bank authorities and proof substantiated. In case any donation receipt is issued against the same, that shall stand cancelled, and any income tax benefit so derived shall be null and void. Please note that with regard to any donations made to TLLLF, the acceptance of the same is at the sole discretion of TLLLF. TLLLF reserves its sole rights to accept or reject any donation without assigning any reason thereof, with full money being refunded to the applicant.

Cookies and similar technologies

(10) Contacting You

We may contact you using the Personal Information you have given us:

  • In relation to the functioning of any service you have signed up for in order to ensure that we can deliver the Services to you;
  • Where you have opted to receive further correspondence;
  • To invite you to participate in surveys, opinion polls, etc., about our Services or otherwise (participation is always voluntary); and
  • To provide you information about our new products and Services, where you have specifically agreed to receive this.

Cookies and similar technologies

(11) Accuracy

To the extent that you do provide us with Personal Information and SPI, we wish to maintain accurate and current Personal Information and SPI. Should you need to update or correct that SPI and Personal Information, please contact us and we will make reasonable efforts to incorporate the changes in your SPI and Personal Information that we hold as soon as practicable. You can obtain the information we currently hold on you by emailing us at We will use our best efforts to send you the information within 30 days of receipt of your email.
Cookies and similar technologies

(12) Consent and Amendments

By using this Website, you consent to the terms of this Policy and to our use and management of Personal Information and SPI for the purposes and in the manner herein provided. Should this Policy change, we intend to take every reasonable step to ensure that these changes are brought to your attention by posting all changes prominently on our Website for a reasonable period of time. Your visit and any dispute over privacy are subject to this Policy.
Cookies and similar technologies

(13) Applicable Law

This Policy and information contained herein, shall be governed by the laws of the Republic of India and the courts of Bangalore, India shall retain exclusive jurisdiction to entertain any proceedings in relation to any disputes arising out of the same.

Rights of Data Subjects

What if you want us to stop using your personal information? This section explains about your right to object and other data privacy rights you have.

Right to object

  • You can object to us keeping or using your personal information. This is known as the ‘right to object’.
  • You can also ask us to delete, remove, or stop using your personal information if there is no need for us to keep it. This is known as the ‘right to erasure’ or the ‘right to be forgotten’.
  • There may be legal or other official reasons why we need to keep or use your data. But please tell us if you think that we should not be using it.
  • We may sometimes be able to restrict the use of your data. This means that it can only be used for certain things, such as legal claims or to exercise legal rights.

You can ask us to restrict the use of your personal information if:

  • It is not accurate
  • It has been used unlawfully but you don’t want us to delete it
  • It is not relevant anymore, but you want us to keep it for use in legal claims
  • You have already asked us to stop using your data, but you are waiting for us to tell you if we are allowed to keep on using it

If we do restrict your information in this way, we will not use or share it in other ways while it is restricted.

If you want to object to how we use your data or ask us to delete it or restrict how we use it or, please contact us at

Right to be forgotten

Right to be forgotten

Right to erasure

You have the right to have your personal data with TLLLF erased by writing to us at We will respond to you within 30 days of receiving the request.

TLLLF puts great emphasis on the right to have personal data erased if the request relates to data collected from children (if applicable). We give particular weight to any request for erasure if the processing of the data is based upon consent given by a child – especially any processing of their personal data on the TLLLF website. This is still the case when the data subject is no longer a child, because a child may not have been fully aware of the risks involved in the processing at the time of consent.

The right to erasure may not apply if processing is necessary for one of the following reasons:

  • To exercise the right of freedom of expression and information
  • To comply with a legal obligation
  • For the performance of a task carried out in the public interest or in the exercise of official authority
  • For archiving purposes in the public interest, scientific research historical research or statistical purposes where erasure is likely to render impossible or seriously impair the achievement of that processing; or for the establishment, exercise or defence of legal claims.

The two circumstances where the right to erasure will not apply to special category data are:

  • If the processing is necessary for public health purposes in the public interest (eg protecting against serious cross-border threats to health, or ensuring high standards of quality and safety of health care and of medicinal products or medical devices); or
  • If the processing is necessary for the purposes of preventative or occupational medicine (eg where the processing is necessary for the working capacity of an employee; for medical diagnosis; for the provision of health or social care; or for the management of health or social care systems or services). This only applies where the data is being processed by or under the responsibility of a professional subject to a legal obligation of professional secrecy (eg a health professional).

Forget Me

Data Protection Officer

Data Protection Officer

Contact TLLLF’s Data Protection Officer

TLLLF’s Data Protection Officer (DPO) is responsible for overseeing data protection strategy and implementation to ensure compliance with GDPR requirements.

You can get in touch with TLLLF’s Data Protection Officer by writing to

The DPO at TLLLF is responsible for educating the company and its employees on important compliance requirements, training staff involved in data processing, and conducting regular security audits. DPOs also serve as the point of contact between the company and any Supervisory Authorities (SAs) that oversee activities related to data.

The DPO’s responsibilities include, but are not limited to, the following:

  • Educating the company and employees on important compliance requirements
  • Training staff involved in data processing
  • Conducting audits to ensure compliance and address potential issues proactively
  • Serving as the point of contact between the company and GDPR Supervisory Authorities
  • Monitoring performance and providing advice on the impact of data protection efforts
  • Maintaining comprehensive records of all data processing activities conducted by the company, including the purpose of all processing activities, which must be made public on request
  • Interfacing with data subjects to inform them about how their data is being used, their rights to have their personal data erased, and what measures the company has put in place to protect their personal information

Right to be informed

Individuals have the right to be i`nformed about the collection and use of their personal data. Under the GDPR, TLLLF must give data subjects specific privacy information about:

  • business
  • the data processing activities TLLLF carry out
  • the length of time TLLLF will keep the data
  • the rights available to the data subjects in respect of processing
  • the right to lodge a complaint

Depending on the type of processing TLLLF may need to provide other categories of information as well. For example, data is obtained from a third party, TLLLF will need to tell individuals what categories of their personal data has been obtained and from what source.

Click here for the full list of privacy information you should give individuals. Under the GDPR, below privacy information must be provided to data subjects:

  • at the time you collect their data
  • in a concise, transparent, intelligible and easily accessible way
  • in clear and plain language
  • free of charge

Right of Access

Under the GDPR, data subjects have the right of access to personal data. If asked, TLLLF must give data subjects:

  • confirmation of whether TLLLF is processing their data
  • other supplementary information (including mandatory privacy information)
  • a copy of the personal data being processed

TLLLF must comply with a subject access request within one month of receipt, unless in specific circumstances. Read more about dealing with subject access requests

Right of rectification

This right under the GDPR remains largely unchanged. Data subjects can ask data controllers to erase or rectify inaccurate or incomplete data. The law gives one month to comply with such requests. Find out more about the right to rectification

Right to Restrict Processing

Individuals can ask TLLLF to restrict processing their personal data if, for example:

  • they believe their data is not accurate
  • the processing is unlawful, but the individual doesn't want the data erased
  • organization no longer need the data but the individual needs it to exercise a legal claim
  • organization is taking steps to verify overriding grounds in the context of an erasure request

If someone asks TLLLF to restrict processing, TLLLF will be allowed to store the data, but won't be able to carry out any processing. Find out more about the right to restrict processing.

Right to not be evaluated based on automated processing

Under the GDPR, individuals have the right not to be subject to a decision that is based solely on automated processing and which significantly affects them (e.g. profiling for jobs, insurance premiums etc).

TLLLF considers asking data subjects to consent to process their data automatically for evaluation purposes. Read more about rights related to profiling and automated decision-making.

All TLLLF personnel who handle user data must take this test post GDPR Training :