ezyAuto Logo

Privacy Policy

Effective Date: December 14, 2024

This Privacy Policy describes how ezyAuto ("we", "our", or "us") collects, uses, processes, and protects your information when you use our software-as-a-service platform (the "Service"). This policy is designed to comply with the Information Technology Act, 2000, Digital Personal Data Protection Act, 2023, and Razorpay's privacy requirements for merchant partners.

By using our Service, you consent to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

1. Information We Collect

We collect and process various types of information to provide, maintain, and improve our Service in compliance with applicable data protection laws.

A. Personal Information You Provide

  • Account Registration Data: Name, email address, phone number, business/garage name, business address, and password when you create an account.
  • Business Operational Data: Customer information, vehicle details, service records, job cards, invoices, inventory data, employee information, and financial records that you input into our system.
  • Payment and Billing Information: Billing address, subscription plan details, and transaction history. Payment card details are securely processed by Razorpay and are not stored on our servers.
  • Communication Data: Information from your correspondence with us, including support tickets, feedback, and any attachments or documents you share.
  • Verification Documents: Business registration details, tax identification numbers, or other documents required for account verification and compliance purposes.

B. Information Collected Automatically

  • Technical Data: IP address, browser type and version, operating system, device information, screen resolution, and referral URLs.
  • Usage Analytics: Pages visited, features used, time spent on the platform, click patterns, and user interaction data to improve our Service.
  • Performance Data: Error logs, response times, and system performance metrics to maintain service quality.
  • Security Logs: Login attempts, access patterns, and security-related activities for fraud prevention and account protection.

C. Information from Third Parties

  • Payment Gateway Data: Transaction status, payment confirmations, and fraud prevention data from Razorpay.
  • Integration Partners: Data from third-party services you choose to integrate with our platform (with your explicit consent).

2. How We Use Your Information

We use your information for legitimate business purposes, including:

A. Service Provision and Management

  • Creating and managing your account and subscription
  • Processing payments through Razorpay and managing billing
  • Providing customer support and technical assistance
  • Delivering the core features of our auto workshop management platform
  • Maintaining data backups and system recovery

B. Service Improvement and Development

  • Analyzing usage patterns to enhance user experience
  • Developing new features and functionality
  • Conducting research and analytics to improve our Service
  • Personalizing content and recommendations

C. Communication and Marketing

  • Sending service-related notifications and updates
  • Providing information about new features or plan changes
  • Marketing communications (with your consent, where required)
  • Responding to your inquiries and support requests

D. Legal and Security Purposes

  • Complying with legal obligations and regulatory requirements
  • Preventing fraud and ensuring platform security
  • Protecting the rights and safety of our users and company
  • Enforcing our Terms of Service and other policies

3. Legal Basis for Processing (Indian Context)

Under Indian data protection laws, we process your personal data based on:

  • Consent: Where you have given clear consent for specific processing activities
  • Contract: To fulfill our contractual obligations under our Terms of Service
  • Legal Obligation: To comply with applicable laws, regulations, and court orders
  • Legitimate Interest: For business purposes that do not override your privacy rights

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your data only in the following circumstances:

A. Service Providers and Partners

  • Razorpay: For secure payment processing and transaction management
  • Cloud Infrastructure: AWS/Google Cloud for hosting and data storage (with appropriate data protection agreements)
  • Analytics Services: For service improvement and usage analysis (with anonymized data where possible)
  • Customer Support Tools: For providing effective customer service

B. Legal and Regulatory Requirements

  • Compliance with court orders, legal processes, or government requests
  • Cooperation with law enforcement agencies when legally required
  • Protection of our rights, property, or safety, and that of our users
  • Investigation and prevention of fraud or security issues

C. Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, subject to the same privacy protections and with advance notice to you.

5. Data Security and Protection

We implement comprehensive security measures to protect your information:

  • Encryption: Data in transit and at rest is encrypted using industry-standard protocols
  • Access Controls: Role-based access with regular audit trails and monitoring
  • Infrastructure Security: Secure cloud hosting with regular security assessments
  • Payment Security: PCI DSS compliant payment processing through Razorpay
  • Employee Training: Regular privacy and security training for all personnel
  • Incident Response: Established procedures for security breach detection and response

Note: While we implement strong security measures, no system is completely secure. We cannot guarantee absolute security of your data transmitted over the internet.

6. Data Retention Policy

We retain your personal information only as long as necessary for the purposes outlined in this policy:

  • Account Data: Retained while your account is active and for up to 3 years after account closure
  • Business Data: Retained according to your subscription terms and legal requirements (typically 7 years for financial records)
  • Communication Records: Retained for 2 years for customer service and dispute resolution
  • Technical Logs: Typically retained for 1 year for security and performance monitoring
  • Legal Compliance: Some data may be retained longer to comply with tax, accounting, or legal requirements

Upon account deletion, we will delete or anonymize your personal data within 90 days, except where longer retention is required by law.

7. Your Privacy Rights

Under applicable Indian data protection laws, you have the following rights:

A. Access and Portability

  • Right to know what personal data we hold about you
  • Right to receive a copy of your data in a portable format
  • Right to access your data processing activities and purposes

B. Correction and Updates

  • Right to correct inaccurate or incomplete personal information
  • Right to update your account and profile information

C. Deletion and Restriction

  • Right to request deletion of your personal data (subject to legal requirements)
  • Right to restrict processing in certain circumstances
  • Right to object to processing based on legitimate interests

D. Communication Preferences

  • Right to opt-out of marketing communications
  • Right to manage notification preferences

Exercising Your Rights: To exercise any of these rights, contact us at support@ezyauto.in with your request. We will respond within 30 days and may require identity verification.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Required for platform functionality and security
  • Performance Cookies: Help us understand how you use our Service
  • Functional Cookies: Remember your preferences and settings
  • Analytics Cookies: Provide insights for service improvement

You can manage cookie preferences through your browser settings, but disabling certain cookies may affect functionality.

9. International Data Transfers

Your data is primarily stored and processed in India. If we transfer data internationally, we ensure appropriate safeguards are in place, including:

  • Adequacy decisions by relevant authorities
  • Standard contractual clauses
  • Certification schemes and codes of conduct

10. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal data, please contact us, and we will take steps to remove such information.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will:

  • Post the updated policy on our website with a new effective date
  • Notify you via email for material changes
  • Provide in-app notifications for significant updates
  • Give you an opportunity to review changes before they take effect

Continued use of the Service after policy updates constitutes acceptance of the revised terms.

12. Compliance and Jurisdiction

This Privacy Policy is governed by Indian data protection laws, including:

  • Information Technology Act, 2000 and associated rules
  • Digital Personal Data Protection Act, 2023
  • Other applicable privacy and data protection regulations

Any disputes related to this Privacy Policy shall be subject to the jurisdiction of courts in Sangli, Maharashtra, India.

13. Contact Information and Data Protection Officer

For privacy-related inquiries, complaints, or to exercise your rights:

Primary Contact:

  • Email: support@ezyauto.in
  • Subject Line: "Privacy Policy Inquiry" or "Data Protection Request"
  • Contact Form: Contact Us

Business Address:

ezyAuto
8274, S2, Shivdatta Royal Building
Sangli, Maharashtra, 416416, India

Response Time: We will acknowledge your request within 72 hours and provide a complete response within 30 days.

Compliance Statement: This Privacy Policy complies with Indian data protection laws, Razorpay merchant requirements, and international privacy best practices.