Privacy Policy
We believe in transparency about how we collect, use, and share information about you.
Last Updated: Jan 15, 2025
This Privacy Policy explains how CyberReach ("we", "our", or "us") collects, uses, discloses, and safeguards your information when you use our website and services. This policy is compliant with the Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.
1. Information We Collect
We collect information in several ways when you use our services:
Personal Information: This includes contact information such as name, email address, phone number, occupation, and any other information you provide when signing up or using our services.
Sensitive Personal Data or Information (SPDI): As defined under Indian law, this may include passwords and financial information if provided by you.
Business card information: When you scan business cards, we extract and store the information contained on those cards, including names, company details, contact information, and any other data present on the cards.
WhatsApp and email integration data: When you connect your WhatsApp or email accounts to our service, we collect authentication tokens and account identifiers to facilitate message sending through your accounts.
Usage information: We collect information about how you interact with our services, including IP addresses, device information, browser type, pages visited, and other usage statistics.
2. How We Use Your Information
We use your information for the following purposes:
- To provide, maintain, and improve our services
- To process and complete transactions
- To send administrative information, such as updates, security alerts, and support messages
- To facilitate automated follow-ups through your connected accounts
- To respond to your comments, questions, and requests
- To monitor and analyze trends, usage, and activities in connection with our services
- To personalize and improve your experience with our services
- To detect, prevent, and address technical issues
We process your information only with your consent or as needed to provide you with our services. We store your information only for as long as necessary to fulfill the purposes for which it was collected, as required by law, or as necessary for legitimate business purposes.
3. How We Share Your Information
We may share your information in the following circumstances:
With your consent: We will share your information with third parties when you have directed us to do so.
Service providers: We may share your information with third-party vendors, consultants, and other service providers who need access to such information to carry out work on our behalf. We ensure these third parties provide comparable levels of protection as we do.
Business transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.
Legal requirements: We may disclose your information if required to do so by law or in response to valid requests by public authorities.
Note: We do not sell, rent, or trade your personal information to third parties for their marketing purposes without your explicit consent.
4. Data Security
We implement appropriate technical and organizational measures to protect the security of your personal information, in compliance with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. However, please note that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.
Our Security Practices:
- Encryption of sensitive data both in transit and at rest
- Regular security assessments and penetration testing
- Multi-factor authentication for internal systems
- Strict access controls and role-based permissions
- Regular security training for all employees
- Documented information security policies and procedures
5. Your Rights and Choices
Under Indian law, you have certain rights regarding your personal information:
Right to review: You have the right to review the information you have provided and ensure it is accurate and updated.
Right to correction: You may request that we correct inaccurate or incomplete information about you.
Right to opt-out: You have the right to opt-out of providing any information that is classified as 'sensitive personal data or information' under Indian law.
Grievance redressal: You have the right to address any grievances regarding the processing of your information.
To exercise these rights, please contact our Grievance Officer at info@cyberreach.in.
6. International Transfers
Your information may be transferred to, and processed in, countries other than India. These countries may have data protection laws that are different from Indian laws. We have taken appropriate safeguards to require that your personal information will remain protected in accordance with this Privacy Policy and applicable Indian laws. By providing your information, you consent to such transfer and processing.
7. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Last Updated" date and the updated version will be effective as soon as it is accessible. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information.
If we make material changes to this Privacy Policy, we will notify you either through the email address specified in your account or by placing a prominent notice on our website.
8. Grievance Officer
In accordance with the Information Technology Act, 2000 and the rules made thereunder, the contact details of the Grievance Officer are provided below:
The Grievance Officer shall address your concerns or grievances regarding the processing of information within 30 days from the date of receipt of the grievance.