1) Summary of Key Points

• We collect personal data you provide, data generated by your use of the Services, and limited data from trusted third parties.
• We comply with India’s Digital Personal Data Protection Act, 2023 (DPDP Act) and applicable IT Rules.
• We use data to deliver, secure, improve, and support the Services. We do not sell personal data.
• We do not store or retain any payment card/banking details. Payments are processed by multiple trusted payment partners.
• You can access, correct, delete, or withdraw consent regarding your data, subject to law.

2) What Information We Collect

Personal Data You Provide

When you register, request information, subscribe to updates, contact support, or otherwise interact with us, you may provide:

• Name, email address, phone number
• Billing/shipping address, organization details
• Account credentials and preferences

Sensitive Personal Data

We do not intentionally collect or process sensitive personal data (e.g., biometric, health, religious beliefs). If ever required by law or contract, we will obtain explicit consent.

Information from Other Sources

We may receive limited information (e.g., contact details or public profile links) from public databases, marketing partners, affiliates, social media platforms, or analytics providers to keep our records accurate and relevant.

3) Payment Data (Multiple Partners)

In short: Payments are securely processed by our authorized payment partners. We do not collect, store, or retain any payment card numbers, CVV, UPI PIN, or bank account credentials on our systems.

When you pay for services, transactions are handled by providers such as  Razorpay (availability may vary). We receive only limited non-sensitive payment metadata (e.g., payment ID, order ID, transaction status) to confirm and reconcile transactions.

Our payment partners process financial data in line with PCI DSS and applicable RBI guidelines. For details, please review their privacy policies:

• Razorpay Privacy Policy

If you have questions about a specific transaction, we may guide you to the relevant provider for further details.

4) How We Process Your Information

We process personal data to:

• Provide, operate, and support the Services
• Create/manage accounts and authenticate users
• Process orders, invoices, and customer requests
• Detect and prevent fraud or misuse
• Communicate updates, marketing (where permitted), and service notices
• Analyze usage to improve features and performance
• Comply with legal/regulatory obligations

Lawful bases: consent, performance of a contract, legal obligation, and legitimate interests, as applicable.

5) When and With Whom We Share Information

• Service Providers/Processors (e.g., hosting, analytics, payment partners, email delivery) under confidentiality and data protection terms.
• Business Partners/Affiliates to enable features or joint offerings.
• Legal/Regulatory disclosures when required by law or to protect rights and security.
• Business Transfers in connection with a merger, acquisition, or reorganization.

6) Third-Party Websites

Our Services may link to third-party websites or apps. We are not responsible for their content or privacy practices. Review their policies before providing data.

7) Data Retention

We retain personal data only as long as necessary for the purposes described here, to comply with laws (e.g., tax/accounting), resolve disputes, and enforce agreements. When no longer needed, data is deleted or anonymized.

8) How We Keep Your Information Safe

We use appropriate technical and organizational safeguards (e.g., HTTPS/TLS, access controls, role-based permissions, audits, and workforce confidentiality). No system is 100% secure; transmission is at your own risk.

9) Information About Minors

We do not knowingly collect or market to children under 18. If we learn of such collection, we will delete the data and disable related accounts.

10) Your Privacy Rights (India)

Subject to the DPDP Act, 2023 and applicable law, you may have rights to:

• Access your personal data
• Correction/Updating of inaccurate data
• Erasure, subject to legal exceptions
• Withdraw consent (where processing is consent-based)
• Object/restrict certain processing
• Data portability (where technically feasible)
• Nominate another individual to exercise rights in case of incapacity or death

To exercise rights, see Section 15.

11) Cookies & Tracking

We may use cookies and similar technologies to operate, analyze, and improve the Services. You can manage cookies in your browser settings; disabling some cookies may affect functionality.

12) Do-Not-Track

There is no universally accepted DNT standard. We do not currently respond to DNT signals. If standards emerge, we may update this Policy.

13) Changes to This Policy

We may update this Policy to reflect legal, technical, or business changes. The “Last Updated” date indicates the latest revision. Material changes may be notified by prominent posting or direct communication.

14) Contact Us

15) Review, Update, or Delete Your Data (DSR)

To submit a Data Subject Request, email [email protected] with:

• Subject: Data Subject Request
• Your full name and contact email
• Type of request (access, correction, deletion, consent withdrawal, etc.)
• Any relevant identifiers (e.g., account email) and proof of identity

We will address requests in line with applicable Indian law and timelines.