Platform Separation Notice: This document outlines the technical telemetry, data sovereignty, and operational parameters of the SAQIP™ Engine. It serves strictly as a technical system appendix to the overarching SWAPN Master Service Agreement (MSA). For corporate liability, general consulting, and business terms, please refer exclusively to the SWAPN Corporate Terms of Service. By accessing this terminal, the operator agrees to these specific automated data governance constraints.
This Data Governance & Privacy Protocol ("Protocol") constitutes the binding data management framework for the SAQIP™ Strategic Air Quality Informatics Platform, operated by SWAPN ("Operator"). This Protocol governs all interactions between SWAPN, institutional subscribers, government-affiliated bodies, and multinational sustainability officers who interface with the SAQIP Platform.
SAQIP operates across a distributed sensor architecture that ingests raw environmental telemetry from multiple physical monitoring nodes. This Protocol distinguishes, with legal and technical precision, between raw environmental signals — which constitute uncorrected atmospheric measurements — and SAQIP Environmental Intelligence — which is the Operator's proprietary, audit-verified, and system-validated informatics output. These two categories carry distinct data classifications, retention obligations, and rights of access.
SAQIP recognises and upholds the principle of Data Sovereignty as a foundational governance tenet for all institutional clients operating localised sensor deployments within the SAQIP network.
Where an institutional subscriber has deployed proprietary physical monitoring hardware that transmits telemetry to the SAQIP Platform, the raw signal data originating from that hardware remains the legal property of the subscribing institution ("Client Data"). SWAPN assumes no ownership over raw Client Data and processes it solely under the authorisation granted by the applicable Service Agreement.
For institutional clients operating under mandates requiring data residency within the Republic of India, SWAPN supports configurable localised storage options that maintain processed environmental intelligence within CERT-In-notified data centres located in India. Clients subject to EU data residency obligations under GDPR Chapter V may request equivalent configurations for approved transfer mechanisms.
When operating under formal data-sharing agreements with Government of India ministries, state pollution control boards, or agencies under the Ministry of Environment, Forest and Climate Change (MoEFCC), SAQIP applies an elevated Sovereign Data Protocol: client-originated data is isolated in dedicated logical partitions, processed within a dedicated, isolated processing environment, and no cross-contamination with commercial subscriber datasets occurs. Audit logs are available to authorised government representatives upon request.
The SAQIP™ core validation framework processes environmental telemetry to produce corrected, validated informatics. The following principles govern how the processing pipeline operates without compromising individual privacy, in full alignment with GDPR Articles 13–22 and CCPA Section 1798.100 et seq.
SAQIP's operational mandate is the monitoring of atmospheric conditions at geographic node coordinates. The Platform does not collect, process, infer, or store any Personally Identifiable Information (PII) as a primary function. Environmental telemetry — PM2.5 concentrations, PM10 readings, humidity coefficients, RMSE variance metrics — is inherently non-personal data. SAQIP's processing pipeline operates exclusively on spatiotemporal environmental signals.
The system generates human-readable Reasoning Tags for every correction applied to an environmental signal. These tags (e.g., [CORE_VALIDATED], [MATRIX_ACTIVE], [BASELINE_ANCHOR_APPLIED]) provide institutional users with full audit transparency regarding how intelligence was derived, without exposing the underlying proprietary internal configurations, logic models, or system architecture. Explainability is surfaced through the SAQIP Audit Terminal interface. The processing framework's internal parameters constitute a trade secret and are not surfaced through any public or institutional API.
Where supplementary data sources (including meteorological reference feeds or third-party calibration datasets) are ingested to support the system's correction pipeline, such data is processed in anonymised, aggregated form. No individual data subject can be identified from environmental monitoring data processed by SAQIP.
To the extent any personal data is incidentally processed (for example, within institutional user authentication records or communication logs), SWAPN upholds all applicable data subject rights, including the right of access, rectification, erasure, restriction of processing, and objection. Institutional subscribers may direct data subject requests to the Governance Console at the contact address specified in Section 7.
SAQIP operates a tiered, hardened storage cycle for all environmental records. Retention periods reflect the nature of the data, the applicable regulatory framework, and the operational requirements of the SAQIP audit audit capability.
| Data Class | Retention Period | Storage Tier | Deletion Protocol |
|---|---|---|---|
| RAW_SIGNAL_INGEST | 72 hours (rolling) | Hot Cache / Volatile | Automatic purge upon validation processing completion |
| SYSTEM_CORRECTED_INTELLIGENCE | 24 months | Hardened Cold Storage (AES-256) | Subscriber-initiated deletion or contract expiry + 30 days |
| AUDIT_AUDIT_LOGS | 60 months | Immutable Write-Once Archive | Regulatory hold; deletion requires dual-authorisation and legal review |
| HARDWARE_INTEGRITY_REPORTS | 36 months | Hardened Cold Storage (AES-256) | Automatic purge post-retention; subscriber export available on request |
| SUBSCRIBER_AUTH_RECORDS | 12 months post-subscription | Encrypted Relational Store | Automatic deletion; statutory exceptions apply |
| SESSION_STATE_TOKENS | Session duration only | In-Memory / Ephemeral | Automatic expiry on session termination |
Audit audit logs generated by the platform are maintained in a write-once, append-only archive. These records cannot be modified, overwritten, or deleted by any operational process. Deletion is permissible only upon completion of the applicable statutory retention period, with dual-authorisation from SWAPN's designated Data Protection Officer and legal counsel. This architecture ensures that SAQIP's audit chain of custody remains unimpeachable for regulatory, judicial, or institutional audit purposes.
SWAPN does not sell, rent, barter, or commercially transfer environmental intelligence or any associated subscriber data to third-party commercial entities. SAQIP Environmental Intelligence generated on behalf of a subscribing institution remains the confidential operational output of that institution and is not shared with other subscribers, commercial partners, or external parties without express written authorisation.
SWAPN may disclose data to third parties exclusively in the following circumstances: (a) where required by applicable law, court order, or regulatory direction from a competent authority; (b) to sub-processors operating under data processing agreements that impose equivalent or more stringent data protection obligations; or (c) in anonymised, aggregated form for published scientific or environmental research, where no individual client's data can be identified or extracted.
SAQIP's data security posture is designed to meet the requirements of institutional, government, and enterprise subscribers operating in regulated environments. Key technical and organisational measures include:
All governance, privacy, and data sovereignty inquiries should be directed to SWAPN's Governance Console. Institutional subscribers may initiate formal data requests, subject access requests, or governance reviews through the following channel: