Key Principles of Our Privacy Framework

• Consent-Based Processing: We obtain your clear, informed consent before processing personal data
• Purpose Limitation: We collect data only for specified, legitimate purposes
• Data Minimization: We collect only what is necessary for service delivery
• Transparency: We maintain clear, accessible privacy notices
• Security: We implement robust security measures to protect your data
• Accountability: We take responsibility for data protection compliance

1. Personal Information

When you register and use our services, we may collect:

• Full name
• Email address
• Phone number
• Service address and delivery locations
• Profile picture (optional)
• Payment information (processed securely through third-party payment gateways)

2. Location Information

We collect and process location data to:

• Show available services in your area
• Connect you with nearby service professionals
• Provide accurate service delivery times
• Enable real-time tracking of service professionals

Permissions Required:

• ACCESS_FINE_LOCATION - Precise location for service delivery
• ACCESS_COARSE_LOCATION - Approximate location for service availability

3. Device Information

We automatically collect certain information about your device, including:

• Device model and operating system
• Unique device identifiers
• Mobile network information (ACCESS_NETWORK_STATE)
• Internet connectivity status (INTERNET permission)
• App usage statistics and crash reports

4. Service and Usage Information

• Service booking history and preferences
• Reviews and ratings provided by you
• Communication with service professionals and customer support
• Payment transaction history
• Promotional preferences and notification settings

Service Delivery

• Process and fulfill your service bookings
• Connect you with verified service professionals
• Facilitate communication between you and service providers
• Provide real-time updates and service tracking
• Send booking confirmations and reminders

Payment Processing

• Process payments through secure third-party gateways (Razorpay, Paytm, etc.)
• Generate invoices and receipts
• Handle refunds and payment disputes
• Prevent fraudulent transactions

Communication

• Send service-related notifications (POST_NOTIFICATIONS permission)
• Provide customer support and respond to inquiries
• Send promotional offers and updates (with your consent)
• Conduct surveys to improve our services

App Improvement

• Analyze app usage patterns through Google Analytics and Firebase
• Identify and fix technical issues
• Develop new features and improve existing ones
• Personalize your app experience

Service Professionals

We share necessary information (name, phone number, service address, service details) with verified professionals to enable service delivery. Our professionals are contractually obligated to maintain confidentiality.

Third-Party Service Providers

We work with trusted third-party partners who assist us in operating our platform:

• Payment Gateways: Razorpay, Paytm, and other payment processors for secure transactions
• Google Maps: For location services and navigation
• Analytics Providers: Google Analytics, Firebase for app performance and usage analysis
• Social Media: Google, Facebook for authentication and social login features
• Cloud Services: For data storage and hosting
• Communication Services: SMS and email service providers for notifications

These third parties have access to your information only to perform specific tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Valid legal processes (court orders, subpoenas)
• Government and regulatory requests
• Protection of our rights and property
• Investigation of fraud or security issues
• Protection of user safety

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you via email and/or prominent notice on our app of any such change in ownership.

• Encryption: All data transmission is encrypted using SSL/TLS protocols
• Secure Storage: Personal data is stored on secure servers with restricted access
• Payment Security: We do not store complete payment card details; all payment information is handled by PCI-DSS compliant payment gateways
• Access Controls: Strict access controls and authentication mechanisms for our systems
• Regular Security Audits: Periodic security assessments and vulnerability testing
• Employee Training: Our staff is trained on data protection and privacy practices
• Logging and Monitoring: Continuous monitoring to detect and prevent unauthorized access

Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

• Report the breach to the Data Protection Board of India within 72 hours of becoming aware
• Notify you promptly about the breach, including:
  • Nature of the breach and data affected
  • Likely consequences of the breach
  • Measures taken to address the breach
  • Steps you can take to protect yourself
• Take immediate remedial action to secure your data
• Provide support and assistance to affected users

Access and Portability

• Request a copy of your personal data in a structured, commonly used format
• Download your service history and booking information
• Obtain a summary of personal data we have processed
• Request information about other Data Fiduciaries with whom your data has been shared

Correction and Update

• Update your profile information through the app settings
• Correct any inaccurate or incomplete personal information
• Complete your data if it is incomplete

Deletion and Erasure

• Request deletion of your account and associated data
• Request erasure of specific data that is no longer necessary
• Automated Deletion: We will automatically erase your data when the purpose for which it was collected is no longer served
• 48-Hour Notice: You will receive advance notice at least 48 hours before automated data erasure
• Proof of Deletion: Upon request, we will provide confirmation of data deletion
• Note: Some information may be retained for legal, regulatory, and business purposes as specified by law

Consent Management

• Withdraw Consent: Easily withdraw your consent at any time through app settings or one-click withdrawal links
• Granular Control: Manage consent separately for different purposes (marketing, analytics, location services)
• Consent History: View your consent history and current consent status

Nomination Rights

• Nominate another person to exercise your rights on your behalf in case of death or incapacity
• Update or revoke nomination at any time

Grievance Redressal

• File complaints regarding data processing practices
• Request investigation of privacy concerns
• Response Time: We will respond to your grievances within 7 business days
• Appeal to the Data Protection Board of India if unsatisfied with our response

Opt-Out Options

• Marketing Communications: Unsubscribe from promotional emails and notifications
• Location Services: Disable location permissions in your device settings (may limit app functionality)
• Push Notifications: Manage notification preferences in app settings
• Analytics: Opt-out of analytics tracking through app settings
• Automated Decisions: Opt-out of automated decision-making processes

Data Retention

We retain your personal information only for as long as necessary to:

• Provide our services to you
• Comply with legal obligations (typically 3-5 years for financial records)
• Resolve disputes and enforce our agreements
• Fulfill the purpose for which it was collected

Active Accounts: Data retained while account is active

Inactive Accounts: Data may be deleted after 3 years of inactivity with prior notice

Data Protection Officer

For exercising any of the above rights or for any privacy-related concerns, please contact our Data Protection Officer:

Data Protection Officer
Velox Solution Pvt Ltd
Email: veloxsolutionpvtltd@gmail.com
Phone: +91 97148 83884

Our DPO will respond to your requests within 7 business days and will assist you in exercising your rights.

Our Consent Framework

Under India's Digital Personal Data Protection Act (DPDPA) 2023, we process your personal data on the following legal bases:

• Your Consent: We obtain your clear, informed, and specific consent before collecting and processing your personal data
• Service Delivery: Processing necessary to provide the services you have requested
• Legal Obligations: Compliance with applicable laws and regulations
• Legitimate Uses: For purposes specified under the DPDPA Act

Your Consent Rights

• Granular Consent: You provide separate consent for different purposes (service delivery, marketing, analytics)
• Free Consent: Your consent is freely given without coercion
• Informed Consent: We provide clear information about what data we collect and why
• Easy Withdrawal: You can withdraw your consent at any time through:
  • App Settings → Privacy → Manage Consent
  • One-click withdrawal option in all consent-related communications
  • Contacting our Data Protection Officer

Important: Withdrawing consent may affect your ability to use certain features or services. We will inform you of any such impact before you withdraw consent.

Velox Solution takes the privacy of children very seriously and complies with DPDPA requirements for processing children's data.

Parental Consent Requirements

• Age Verification: Users under 18 years must provide verifiable parental consent
• Consent Process: Parents/legal guardians must:
  • Register using their own verified mobile number and email
  • Provide identity verification documents
  • Explicitly consent to their child's use of our services
  • Have the ability to review and manage their child's account
• Prohibited Activities: We do NOT engage in:
  • Tracking or behavioral monitoring of children
  • Targeted advertising to children
  • Processing data that may cause detrimental effects to children

We use cookies and similar tracking technologies to enhance your experience:

• Essential Cookies: Required for basic app functionality
• Analytics Cookies: Help us understand how you use our app
• Preference Cookies: Remember your settings and preferences

You can control cookie settings through your device settings, but this may affect app functionality.

Our app may contain links to third-party websites or services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes through:

• In-app notifications
• Email notifications to your registered email address
• Prominent notice on our website and app

Continued use of our services after such modifications constitutes your acceptance of the updated Privacy Policy.

We may use automated systems and algorithms to improve your experience. Here's how:

What We Automate

• Service Professional Matching: Algorithm-based matching of service professionals to your location and service requirements
• Pricing Calculations: Automated calculation of service charges based on distance, service type, and time
• Recommendations: Personalized service recommendations based on your booking history and preferences
• Quality Scoring: Automated scoring of service professionals based on ratings and performance

Your Rights Regarding Automated Decisions

• Right to know when a decision is made solely by automated means
• Right to opt-out of automated decision-making where it significantly affects you
• Right to request human review of automated decisions
• Right to understand the logic behind automated decisions

Human Oversight: All significant decisions affecting your account or services are subject to human review upon request.

Data Storage Location

Your personal data is primarily stored and processed in India on secure servers located within Indian territory to comply with data localization requirements.

Cross-Border Data Transfers

In certain circumstances, your data may be transferred outside India for:

• Cloud infrastructure services (with appropriate safeguards)
• Payment processing through international payment gateways
• Analytics and performance monitoring services

Safeguards for International Transfers

• All transfers comply with DPDPA requirements
• Standard contractual clauses with third-party processors
• Adequate security measures and encryption
• Compliance with Government of India notifications on restricted countries

Compliance Note: We will immediately cease any data transfer to countries restricted by the Government of India and notify affected users.

Velox Solution may be classified as a Significant Data Fiduciary (SDF) by the Central Government based on the volume and sensitivity of data we process. If designated as an SDF, we will:

• Conduct annual Data Protection Impact Assessments (DPIA)
• Appoint an independent Data Protection Officer
• Implement enhanced security measures and audits
• Conduct periodic risk assessments
• Maintain comprehensive data processing records
• Notify users of our SDF status and additional protections in place