Introduction
ProjectCode is an AI-powered platform owned and operated by Lenditt Innovations & Technologies Pvt Ltd (“Company,” “we,” “us,” or “our”), a company duly incorporated and validly existing in India under the provisions of the Companies Act, 2013. The platform is designed to support and empower developers as well as non-technical users including entrepreneurs, collaborators, and visitors to create, share, and deploy web applications using natural-language inputs (“User,” “you,” or “your”). Our core mission is to streamline and modernize the software development lifecycle through advanced tools, seamless integrations, and shared workspaces, enabling you to build, distribute, and deploy applications (including backend, frontend, and database-management components) using intuitive solutions, integration features, and artificial-intelligence (AI) assisted development technologies, while maintaining a strong commitment to the security and confidentiality of your information. We seek to cultivate an active and collaborative developer ecosystem and ensure that our operations align with applicable data-protection and privacy regulations in India.
This Privacy Policy (Policy), accessible online at https://projectcode.dev/privacy-policy, sets out in detail how we collect, use, store, disclose, process, and safeguard your Personal Information when you access or use our website, platform, and related offerings. This Policy has been prepared in accordance with the provisions of the Information Technology Act, 2000, the Digital Personal Data Protection Act, 2023 as amended from time to time, together with rules, notifications, and directions issued thereunder (“DPDP Act”) as well as other relevant laws in India and intends to comply with the same. In the event of any inconsistency between this Policy and the DPDP Act or any rules, notifications, or directions issued thereunder, the provisions of the DPDP Act shall prevail to the extent of such inconsistency.
By accessing or using our website https://projectcode.dev/ proprietary software systems, products, or by engaging with us for any service engagement including application or website development through AI-based development for backend, frontend, database management (collectively, “Services”), you acknowledge and agree to be bound by this Policy and consent to our treatment of your personal data as described herein. If you do not agree with this Policy, you are advised to discontinue use of, or refrain from accessing, our Services.
Scope And Purpose
For the purposes of this Policy, the term “Personal Data” (also referred to interchangeably as “Personal Information”) refers to any data relating to an identifiable individual that is capable of identifying such person either directly or indirectly. This includes any information defined and protected under the DPDP Act, together with any applicable rules, notifications, guidelines, or frameworks issued under relevant Indian data-protection laws. Personal Data may relate to a specific natural person or be capable of identifying an individual when combined with other information available to the Company.
Personal Data may include, by way of illustration and without limitation, your full name, postal or residential address, email address, telephone number, gender, username or login credentials, authentication information, government-issued identifiers (solely where permitted or required by applicable law), unique device or browser identifiers, Internet Protocol (IP) address, geolocation data, system usage logs, online behaviour data, as well as any other information that can reasonably be associated with, linked to, or used to identify you.
In addition to Personal Data, we may process certain operational, diagnostic, analytical, statistical, or telemetry-based information generated automatically when you interact with or use the Services (“Functional Data”). Such Functional Data is processed for maintaining platform functionality, ensuring security, optimizing performance, supporting billing operations, improving the user experience, and enabling technical troubleshooting. Unless such Functional Data is directly associated with or reasonably capable of identifying a specific natural person under applicable law, it shall not be treated as Customer Personal Data.
We collect, use, store, disclose, and share Personal Data in connection with the access, use, and performance of our platform, products, tools, and Services. This Policy specifies the scope, manner, and purpose of the processing of your Personal Data while interacting with the Services, whether directly through the platform or indirectly through integrations, APIs, development engagements, or other operational processes.
This Policy governs our processing activities within the territory of India and applies to all Personal Data collected from or relating to Users in connection with the Services. It also reflects our compliance-oriented approach under applicable Indian laws, including the DPDP Act. The expressions “personal data,” “data fiduciary,” “data principal,” “processing,” and other similar terms shall be interpreted in accordance with their meanings under the DPDP Act and relevant legal provisions.
Definitions
Few definitions are provided below, however few definitions are included in the entire document as and when the word appears.
Personal Information
“Personal Information” refers to any data, whether recorded digitally, electronically, or in physical form, that pertains to an identified or identifiable natural person. This includes, but is not limited to, full name, phone number, postal/physical address, email address, government-issued identifiers, IP address, location data, online identifiers, identity-linked preferences, and any other information that, either on its own or when combined with other data, directly or indirectly identifies an individual.
Processing
“Processing” means any operation or set of operations performed on Personal Information, whether by automated, electronic, or manual means. Processing activities include, without limitation: collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, usage, transmission, sharing or disclosure, dissemination, access, erasure, deletion, or destruction of data. It also covers profiling or combination of data for analytical or operational purposes.
Third Parties
“Third Parties” refers to any external natural or legal persons other than the User and the Company. These may include service providers, contractors, suppliers, consultants, outsourced processing partners, technology providers, hosting partners, payment processors, marketing partners, analytics platforms, and governmental or regulatory authorities. Third Parties may be engaged to support or enable delivery, improvement, compliance, or protection of the Services.
Data Fiduciary
“Data Fiduciary” refers to any person or legal entity, including the Company, that either independently or together with other persons determines the purpose and the means of Processing Personal Information. The Data Fiduciary is responsible for making decisions about how and why data is processed and is obligated to comply with applicable privacy and data-protection requirements.
Customer Data
“Customer Data” refers to any data, content, inputs, code, configurations, files, text, media, applications, databases, and other materials that you (as our client or User) submit, upload, store, host, generate, or create using or through the Services. Customer Data may include personal data of your end-users, employees, customers, or other individuals. Customer Data is processed solely for the purpose of providing the Services, and you remain responsible for ensuring that such data is collected and shared in compliance with applicable law.
Service Data
“Service Data” refers to operational, diagnostic, telemetry, and performance-related information generated by or associated with the use of our Services. This includes usage activity logs, system-generated identifiers, device or browser metadata, connection information, analytics data, configuration metadata, aggregated statistics, and similar operational records. Service Data is distinct from Customer Data and is collected to ensure functionality, security, performance enhancement, analytics, and improvement of the Services.
Legal Basis for Processing
We collect, handle, store, use, disclose, and otherwise process Personal Data pursuant to one or more of the lawful grounds recognized under applicable Indian data-protection laws, including the DPDP Act, industry standards, and related rules, notifications, and guidance. Depending on the context of your interaction with our Services, such processing may be justified on the following legal bases:
Performance of a Contract
We may process your Personal Data when such processing is necessary to enter into, perform, or fulfill contractual obligations arising under agreements between you and the Company. This includes activities such as registration, establishing and maintaining your account, verifying identity, provisioning or enabling access to the Services, facilitating usage of the platform’s tools and integrations, and ensuring the ongoing technical delivery and operability of the Services.
Compliance with Legal Obligations
We may process Personal Data when required to comply with applicable legal, regulatory, administrative, accounting, financial, taxation, or auditing obligations. This may include responding to requests from law-enforcement authorities, facilitating statutory reporting, corporate governance requirements, dispute-resolution procedures, compliance audits, fraud-prevention inquiries, or other processes required under Indian laws.
Legitimate purpose under Indian Law (Section 7, DPDP Act)
For Data Principals located in India, Personal Data is processed only on the basis of a valid consent obtained in accordance with the DPDP Act; or as expressly permitted under Section 7 of the DPDP Act, including but not limited to processing necessary for employment-related purposes, prevention and detection of fraud, compliance with law, network and information security, creditworthiness assessment (where applicable), and other purposes notified by the Government of India.
Any references in this Policy to business, operational, or security interests shall be interpreted strictly in accordance with Section 7 of the DPDP Act and shall not create an independent legal basis for processing Personal Data of individuals located in India.
Consent
We may process your Personal Data based on your explicit or affirmative consent, if and when such consent is required under applicable law. Consent may be used for activities such as sending direct marketing and promotional communications, conducting certain types of data analysis, enabling optional integrations or third-party service requests, you have the right to withdraw consent at any time, subject to legal or contractual limitations, without affecting the lawfulness of processing undertaken before such withdrawal. We undertake reasonable transparency measures in line with the DPDP Act and related regulatory guidance to inform you regarding the nature and purpose of such data processing.
Purposes of Processing
We process your Personal Data for multiple operational, functional, and support-related purposes that enable performance of the Services. These purposes include, without limitation:
- Account creation, authentication, and administration: To create user accounts, verify credentials, manage profile details, and maintain account security and continuity.
- Provisioning the Services: To deliver, operate, configure, and optimize the functionality of the Services, including platform tools, technical integrations, and hosted components.
- Customer support, inquiry handling, and troubleshooting: To respond to your support requests, assist with configuration or operational questions, and address concerns or technical issues.
- Service-related communications: To send operational or administrative messages, such as confirmations, updates about Services, notices regarding changes to terms, conditions, policies, or other similar communications.
- Transaction and order processing: To facilitate billing, order fulfillment, payment processing, returns, exchanges, and other commerce-related activities performed through the Services.
- User-to-user interactions: To enable communications, collaboration, sharing of information, or other interactive features were supported by the platform.
- Security, safety, and fraud prevention: To detect, respond to, and prevent malicious activity, fraud, cybersecurity threats, unauthorized access, or misuse of the Services.
- Vital interests: To save, protect, or defend the life, physical safety, or vital interests of an individual in emergency situations, including preventing imminent harm.
For Data Principals located in India, Personal Data is processed only on the basis of (i) valid consent obtained in accordance with the DPDP Act, or (ii) “legitimate uses” expressly permitted under Section 7 of the DPDP Act. Any references in this Policy to concepts such as “legitimate interests” shall be read restrictively and shall not apply to the processing of Personal Data of individuals located in India except to the extent permitted under applicable Indian law.
Processing of Personal Data
Applicable Law
The processing of your Personal Data is primarily governed by applicable Indian data-protection and privacy laws, including the DPDP Act, and any other rules, regulations, or directives issued under it, as amended from time to time.
Data Principal Rights
Subject to applicable law, Indian users (“Data Principals”) may have certain rights regarding their Personal Data, including:
- The right to access information about Personal Data processing;
- The right to request the correction, completion, updating, or deletion of Personal Data;
- The right to withdraw consent where processing is based on consent;
- The right to nominate another individual to exercise rights in the event of death or incapacity;
- The right to seek grievance redressal.
We may decline or limit the exercise of these rights, only where permitted under applicable law, where such action conflicts with legal obligations, public interest, security requirements, enforcement requests, or the rights of others.
No rights beyond those expressly provided under the DPDP Act are recognised under this Policy.
Data Storage and Retention
Your Personal Data may be stored and processed in India or in such other jurisdictions where we or our service providers operate. We retain Personal Data for as long as necessary to fulfill the purposes for which it was collected, to comply with legal obligations, for dispute resolution, or for enforcing our legal rights.
Grievance Redressal
If you have concerns regarding the processing of your Personal Data, you may raise a request or grievance with our designated Grievance Officer, whose contact details are provided in this Policy. We will endeavor to address such concerns within timelines prescribed under applicable law.
Your use of the Services constitutes acknowledgment that processing of Personal Data will be subject to this Policy and applicable Indian law.
What Information We Collect?
Information You Provide Directly
We collect Personal Data and related information that you voluntarily submit to us when you interact with or use our Services. This may occur when you register or create an account, express interest in our platform, participate in platform activities, subscribe to or purchase Services, request assistance, or otherwise communicate with us through any medium (including email, forms, customer support channels, or feedback mechanisms).
The Personal Data we collect depends on the nature of your interaction with us, the features or tools you choose to use, and the preferences or permissions you configure. Such data may include, without limitation:
- Contact and Identity Information: Your full name, business or personal email address, telephone or mobile number, postal or shipping address, job title, organization/company name, and other similar identifiers necessary for authentication, communication, and operation of your account.
- Account Registration and Login Credentials: Usernames, passwords, or other authentication credentials used to create and access your account. You are responsible for maintaining the confidentiality of such details.
- Payment and Billing Information: Credit card details, billing address, tax information, transaction records, and other payment-related details used to process transactions. Such information may be processed by authorized third-party payment processors and we do not retain full card credentials.
- Usage, Workspace, and Configuration Submissions: Content, files, code snippets, prompts, queries, data schemas, configurations, application assets, deployment logs, build files, workflow parameters, generated or uploaded outputs, and other material you submit, store, create, or generate while using the Services.
- Support and Communication Data: Information you provide in support requests, customer service interactions, bug reports, feedback forms, surveys, or general inquiries. This may include attachments, screenshots, logs, and contextual information to help troubleshoot or respond to your requests.
- Preferences and Consent Records: Information related to preferences, such as communication preferences, notification settings, and marketing consent selections.
Except where expressly stated and legally required, we do not intentionally solicit or process personal data, nor do we require users to submit such information beyond what is necessary for lawful business operations (e.g., payment processing performed through a third-party provider).
You may also provide information relating to third parties (including your own end-users, clients, employees, contractors, or other individuals) as part of Customer Data you upload or generate using our Services. You are solely responsible for ensuring that such data is collected, transferred, and processed lawfully, including obtaining any required permissions or notices.
The information collected may be shared with trusted third-party service providers strictly on a need-to-know basis for the purpose of operating, supporting, and improving the Services. Such third parties are required to maintain strict confidentiality and process the information only for the limited purposes for which it is shared and in accordance with applicable data protection laws.
Information Collected Automatically
When you access, use, or interact with our Services, we may automatically collect certain technical, operational, and usage-related information about your visit. This information is generally collected through technical means such as browser and device details, IP addresses, server logs, and local storage mechanisms, as well as through the inputs and prompts you provide while interacting with the platform. While such information typically does not directly identify you (e.g., does not include your name or direct contact information), some of it may be reasonably capable of identifying you when combined with other data and may therefore be treated as Personal Data under applicable law. The categories of information collected automatically may include, without limitation:
- Device and Browser Information: IP address, approximate geographic location (e.g., city or region), browser name and version, user-agent data, operating system type and version, device name, device identifiers, screen size and resolution, system language preferences, and similar metadata.
- Service Interaction and Usage Data: Pages or screens viewed, UI elements or features accessed, clickstream data, timestamps of access, session identifiers, search queries, files or objects interacted with, content viewed or triggered, frequency and duration of interactions, workflow patterns, and other user behavior data.
- Operational & Telemetry Data: Error and exception logs, crash reports or crash dumps, performance statistics, latency and load measurements, system events, application runtime logs, and diagnostic data collected to support troubleshooting, maintenance, or product improvement.
- Platform Resource Information: API usage information (such as endpoint frequency, query volume), compute or storage consumption, resource deployment events, backend/frontend component utilization, and automated environment status data.
This may include details relating to project builds, CI/CD activity, integrations, and service performance metrics.
Where such information is categorized as Service Data, it is distinguished from Customer Data and processed primarily to support billing, analytics, security, product development, operational continuity, and other legitimate interests of the Company. This automatically collected information is primarily used to:
- Maintain and improve the safe, stable, and efficient operation of our Services
- Support analytics, reporting, and statistical trending
- Detect, investigate, and prevent security threats, fraud, or misuse
- Measure performance and optimize features and resource allocation
- Aid in debugging and technical troubleshooting
- Improve user experience and platform functionality
Log and Usage Data
Log and usage data form a specific subset of Service Data comprising service-related, diagnostic, performance, and behavioral information that our servers record when you interact with our Services. Depending on your activities, such data may include:
- IP address and location characteristics
- Device and browser configuration
- Date/time stamps for access and interactions
- Pages, screens, or files viewed
- Buttons, features, or system workflows you engaged with
- Searches or navigation patterns
- Device event information (e.g., system activity, crash logs, hardware settings)
Such information is typically stored in log files and used internally to identify issues, monitor platform behavior, enhance product stability, and support user experience improvements.
Customer Data / Hosted Application Data
As part of providing the Services, any data, applications, files, configurations, scripts, schemas, models, or outputs that you upload, create, store, transmit, or process through the Platform constitute “Customer Data.” Where Customer Data includes Personal Data relating to identifiable individuals (including end-users of the Customer), you are the “Data Fiduciary” (or joint Data Fiduciary, where applicable) under the DPDP Act, and retain full responsibility for ensuring the lawful basis, accuracy, and security of such Personal Data.
We act as a Data Processor (or sub-processor) in respect of such Customer Data solely to the extent necessary to host, store, transmit, or process such data for provision of the Services. Customer Data may include, without limitation:
- Structured and unstructured datasets
- Application code, schemas, configuration scripts
- Application-generated outputs
- Test data and system-generated artifacts
We will not access, use, disclose, or process Customer Data except:
- to provide, maintain, secure, or improve the Services;
- to prevent or address technical or security issues;
- to comply with applicable law or binding governmental orders; or
- as expressly permitted under written agreement with you.
You remain solely responsible for providing all notices, obtaining consents, and ensuring all legal bases for processing Personal Data under the DPDP Act.
AI-Derived Data & Use of AI-Based Tools
We may process anonymised, de-identified, or aggregated Service-generated data using AI-based tools to support platform functionality, improve performance, and enhance security. Such processing does not involve identification of Data Principals. AI-based tools may be used for purposes including:
- Application or code generation
- Error identification and debugging
- Testing automation
- Database or query optimisation
- Analytics and performance logging
We do not process Personal Data for training AI models unless:
- Such Personal Data is anonymised or de-identified such that it can no longer be used to identify a Data Principal; and
- Such use is compliant with the DPDP Act and/or permitted by contract.
- We do not use Customer Data to train any third-party foundation or large-scale AI models unless expressly authorised by the Customer.
Social Media Login Data
We may provide you with the option to register for or access the Services using credentials from certain third-party account providers, currently limited to Google account sign-in, which enables users to authenticate directly using their Google credentials. For other email accounts or login methods, access to the Services may be enabled through a one-time password (OTP) based authentication process sent to the registered email address or contact information provided by you.
When you choose to register or log in using your Google account, the relevant provider may share certain basic profile-level information with us to facilitate authentication and account creation. This allows us to verify your identity, streamline the registration process, and simplify sign-in.
The specific categories of information received from Google may include, without limitation:
- Your name or display name
- Email address associated with your Google account
- User ID or account identifier
- Profile image or avatar
- Public profile information made available through your Google account settings
We will process only the information that is necessary to enable account creation, provide access to our Services, or for related purposes explicitly described in this Privacy Policy or communicated to you at the time of data collection.
We process only the information necessary to enable account creation, provide access to the Services, and manage authentication in accordance with this Privacy Policy. For login methods using OTP verification, we collect only the information necessary to verify your identity and enable secure access to your account.
Please note that we do not control how third-party providers such as Google collect, store, or use your personal information beyond what is shared with us for authentication purposes. Your interactions with such providers remain subject to their respective privacy policies and terms of service.
You are responsible for ensuring that all Personal Data provided to us whether directly or through a third-party login method is accurate, complete, and kept up to date.
Purpose of Collection and Use
We collect and process Personal Data only for lawful and limited purposes connected with the provision of our products and Services. The purposes for which Personal Data may be used include, without limitation:
- Provision, Operation & Enhancement of Services: To provide, administer, manage, operate, configure, customize, support, maintain, and improve the Services (including backend, frontend, database-management, integrations, and deployment environments).
- Application & Platform Development: For the design, architecture, development, testing, deployment, hosting, quality assurance, maintenance, optimisation, and debugging of applications, websites, and related services built or used through our platform.
- Database & Infrastructure Management: To enable database creation, configuration, hosting, storage, querying, performance tuning, back-up, data modelling, extraction, transformation, loading, data analytics, and related administrative or operational tasks.
- AI-Enabled Services & Platform Functions: For AI-based or automated functionality such as code generation, optimisation, documentation assistance, error detection, testing automation, performance benchmarking, analytics, predictive analysis, and other features designed to support platform or application development. Where AI processing involves Personal Data, it shall be performed only where permitted by applicable law or valid contract. Personal Data will not be used for model training unless anonymised or otherwise legally permitted.
- Customer Relationship Management (CRM): To communicate, respond to support requests, resolve disputes, provide product updates and notifications, billing and invoicing, and maintain account and service records.
- Internal Administrative Purposes: For internal documentation, audits, backup and recovery functions, data governance, research, business analytics, forecasting, quality monitoring, and service-usage analysis.
- Regulatory, Legal & Compliance Purposes: To comply with applicable laws, regulatory requirements, law-enforcement requests, court orders, taxation and accounting obligations, and to establish, exercise, or defend legal claims.
- Security, Risk Prevention & Fraud Detection: To detect, prevent, and investigate fraud, cyber incidents, abuse, unauthorised access, violations of our terms, and other harmful or illegal activities; and to secure networks, systems, data, and user accounts.
- Use Limitation & Consent: We shall not process Personal Data for purposes unrelated to our business functions without obtaining consent, except where otherwise permitted under applicable law (e.g., compliance, legal claims, security incidents, fraud prevention).
We may use Personal Data for internal research, statistical analysis, service enhancement, and technology development and demonstration. Such use shall be in compliance with applicable laws and, where feasible, employ de-identification or anonymisation. These activities are not considered “selling” or “sharing” Personal Data. We do not sell or share Personal Data to third parties for monetary consideration or commercial benefit.
Use of Information
We use the Personal Data and other information we collect solely for lawful and limited purposes directly related to the provision and improvement of our Services. Subject to applicable law, we may use such information for the following purposes:
- Provision, Operation, and Enhancement of Services: To provide, operate, administer, maintain, manage, troubleshoot, and enhance our Services, including backend services, frontend interfaces, application deployments, hosting environments, integrations, and database-management workflows.
- Personalisation and Feature Enablement: To personalise and optimise the user experience, including recommending features, configurations, integrations, templates, and workflows; enabling user interface customisation; and tailoring platform behaviour based on usage preferences and operational contexts.
- Analytics, Platform Monitoring, and Performance Management: To analyse usage patterns; monitor platform performance and resource consumption; debug, diagnose, and resolve errors; detect anomalies; prevent and remediate outages; and ensure stability, reliability, and operational effectiveness of the Services.
- Security, Fraud-Prevention, and Abuse Monitoring: To detect, prevent, investigate, and mitigate fraud, unauthorised access, abuse of Services, security incidents, cyber-threats, policy violations, and other harmful or illegal activity; and to maintain the confidentiality, integrity, and availability of systems and data.
- Communications and Customer Support: To communicate with you regarding your account or use of the Services, including transactional notices, account-related alerts, billing notifications, password-reset messages, system or policy updates, and service-impacting communications; and to respond to support tickets, inquiries, requests, feedback, or disputes. Such communications may be conducted through available communication channels, including email or community platforms such as Discord, depending on the mode of interaction chosen by you.
Marketing or promotional messages will be sent only where consent has been obtained, and you may opt out at any time. - Legal, Regulatory, and Compliance Purposes: To comply with applicable legal, regulatory, and contractual obligations, including tax and accounting requirements, audits, law-enforcement requests, dispute resolution, record-keeping, and compliance with export-control, sanctions, and other statutory obligations.
- Aggregated / Anonymised Insights, Research, and Product Development: To generate statistical or aggregated insights, conduct analytics and research, model usage trends, plan capacity, evaluate platform performance, and improve or develop new features, products, and technologies.
- Personal Data will not be used for model training unless anonymised or otherwise permissible under applicable law and/or pursuant to valid contractual permission.
- Billing and Account Management: To manage billing, metering, credit balances, points, and invoicing; calculate consumption of Services; conduct usage audits; detect irregular activity; and perform other financial or account-administrative functions.
Role of the Company under the DPDP Act
- In relation to Personal Data collected directly from Users for account creation, access management, billing, communications, security, and platform operations or any other similar services, the Company acts as a Data Fiduciary under the DPDP Act.
- In relation to Personal Data contained in Customer Data uploaded, stored, or processed by Users through the Services, the Company acts as a Data Processor and processes such data solely on documented instructions of the relevant User, except where processing is required by applicable law.
Retention of Your Information
We retain personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy, including but not limited to: service delivery, account administration, billing, analytics, security, fraud prevention, and legal or regulatory compliance. Once the applicable purpose has been fulfilled, we will either securely delete or anonymise the data, unless a longer retention period is required or permitted under applicable law.
Operational / Service Data, such as logs and telemetry, may be retained for up to 90 for security, diagnostic, and billing purposes, after which it will be securely deleted or anonymised unless retention is legally mandated. Data stored in encrypted backups or archives will be isolated from active processing and deleted in accordance with our backup retention schedule.
Unless otherwise required by law, we do not retain your Personal Data for longer than the duration of your active account with us or the duration necessary to fulfill the purpose for which it was collected. Once there is no ongoing lawful purpose or business need to retain your Personal Data, we will:
- Delete or irreversibly anonymise such Personal Data; or
- Where deletion or anonymisation is not technically feasible (e.g., stored in backup archives), we will securely store and isolate such Personal Data from further processing until deletion is feasible.
If you request deletion of your Personal Data, we will take reasonable steps to delete or anonymise it within a reasonable time period, unless retention is required to comply with applicable law or protect our legal interests.
If you request deletion of any information relating to your use of the Services, we will take reasonable steps to delete such information promptly, unless retention is required to comply with applicable law, enforce our agreements, or protect our legal rights and interests.
Nothing in this Policy restricts the Company’s right to collect, use, retain, analyse, aggregate, derive insights from, or otherwise process non-personal data, anonymised data, aggregated data, metadata, telemetry, usage statistics, performance metrics, or derivative data generated in the course of providing the Services, including for analytics, research, product improvement, security, and AI-enabled functionalities, provided that such data does not identify any Data Principal.
We periodically review our data-retention practices to ensure continued compliance with applicable laws, including the DPDP Act.
How Do We Keep Your Information Safe?
We implement appropriate, reasonable, and industry-standard technical, administrative, and organisational safeguards to protect the Personal Data we process against unauthorised access, disclosure, alteration, misuse, loss, or destruction. These safeguards include, where applicable, access-control measures, encryption in transit and at rest, secure development practices, periodic security assessments, logging and monitoring, vulnerability scanning, and employee confidentiality obligations.
We maintain internal policies, technical controls, and procedural frameworks that are reasonably designed to ensure the confidentiality, integrity, and availability of data processed through our platform. We also review and update our security measures periodically in light of evolving industry practices, regulatory guidance, and emerging threats. Where third-party service providers are engaged, we require them to follow industry standard security and restrict their access to Personal Data solely to the extent necessary for performing contracted functions.
However, no method of electronic transmission, data storage, or security system is completely infallible. While we take reasonable steps to secure the Personal Data entrusted to us, we cannot guarantee that cyber-attackers, unauthorised third parties, or other malicious actors will never circumvent our security measures or misuse your information. Therefore, any transmission of Personal Data to or from the Services is undertaken at your own risk.
We encourage you to take proactive measures to protect your Personal Data, including using strong passwords, enabling MFA/2FA where applicable, restricting access to your devices and accounts, and accessing our Services only through secure networks or environments. If you believe the security of your Personal Data has been compromised, please notify us immediately using the contact details provided in this Policy.
In the event of a personal data breach involving Personal Data governed by the DPDP Act, the Company shall notify the Data Protection Board of India and affected Data Principals, where such notification is required under applicable law, in the manner and within the timelines prescribed by law.
Security and Storage
We implement reasonable and appropriate technical and organisational measures to protect your Personal Data from unauthorised access, loss, misuse, disclosure, alteration, or destruction. These measures include, where applicable:
- Encryption of data in transit using TLS protocols and encryption of data at rest
- Role-based access control mechanisms to restrict system access
- Multi-factor authentication (MFA), including OTP-based verification
- Secure backend, frontend, and database architecture with industry-standard security practices
- Audit logging and access monitoring to track system activities
- Regular security awareness training for employees and periodic internal security audits
- Vulnerability assessments, security testing, and defined incident-response procedures
- AI-Related security safeguards, including encryption and hashing of tokens, credentials, and passwords prior to storage in databases
Where Personal Data is processed using AI-based tools, models, or development workflows, we implement additional safeguards to mitigate privacy and security risks, including:
- Implementation of safeguards to prevent manipulation of AI systems or Large Language Models (LLMs) for unauthorised data access
- Use of anonymised or pseudonymised data wherever feasible
- Strict access controls, monitoring, and logging for AI-related data processing activities
- Model output review and validation mechanisms to prevent unintended disclosure of sensitive information
- Implementation of reasonable safeguards to prevent unauthorised third-party extraction, inference, or reconstruction of input data from AI model outputs
- Where third-party AI service providers are engaged, they are required to comply with their applicable data protection and privacy policies and contractual security obligation.
Despite these safeguards, no method of electronic transmission, storage, or AI-based processing is completely secure, and we cannot guarantee absolute security or uninterrupted availability. You remain responsible for safeguarding your credentials, granting appropriate access permissions, and ensuring secure practices within applications you build or deploy using our Services.
Data Retention
We retain Personal Data only for as long as necessary to fulfil the purposes stated in this Policy or to comply with applicable legal obligations. Retention schedules are periodically reviewed. Customer Data is processed in accordance with your instructions. Upon termination of your account, we will delete or anonymise such data in line with our data-deletion processes, subject to backup and archival policies.
Account Information
You may review, update, or delete certain information associated with your account at any time by logging into your account settings. Upon request to terminate your account, we will deactivate or delete your account and remove associated information from active databases. Some data may be retained to prevent fraud, assist with investigations, troubleshoot issues, enforce legal terms, maintain required business records, comply with applicable law.
We disclaim liability for security incidents that occur due to circumstances beyond our reasonable control.
Special Considerations for Backend / Frontend / Database Services
Customer Responsibility for Personal Data
You (the customer) remain primarily responsible for ensuring that any personal data you upload, store, process, generate, or manage through the Services is collected lawfully, processed for legitimate purposes, and disclosed only as permitted under applicable Indian law.
You are responsible for ensuring that end-user consents, notices, privacy rights, and compliance obligations are duly implemented.
Role as Data Processor / Sub-Processor
For Customer Data containing personal data of identifiable end-users, we act as a data processor (or sub-processor).
We process such personal data only on your documented instructions, except as otherwise required under applicable law, in which case we will notify you (where legally permissible).
Third-Party Integrations & AI Tools
If you integrate third-party AI providers, databases, analytics modules, ML/LLM models, or workflow tools, you are responsible for evaluating, selecting, configuring, and managing such integrations, including ensuring that such third parties provide reasonable privacy and security protections.
You are responsible for the lawful transfer of Customer Data to any such third-party services and for ensuring that such use is consistent with applicable data-protection laws, including the DPDP Act.
Where you utilise AI-based tools through our platform, you acknowledge that output quality, accuracy, and appropriateness may vary.
You must ensure that Customer Data provided to AI tools is permitted for such use and does not violate confidentiality, intellectual-property, or privacy obligations.
Security & Configuration Responsibilities
You are responsible for configuring and applying appropriate security controls within your applications, including:
- Database configurations
- Encryption and key-management settings
- Identity and access management
- Role-based access controls
- Token and API-key protection
You must ensure appropriate governance over the data you host, including:
- Data classification and minimisation
- Data localisation where required
- Cross-border transfer safeguards
- Retention and deletion of Customer Data
- Implementation of user-authentication standards
Data Localisation & Cross-Border Transfers
You are responsible for determining whether personal data you process through our Services is subject to localisation or cross-border restrictions.
We will support reasonable technical measures for lawful transfer, but compliance remains your responsibility unless expressly stated otherwise.
Backup, Deletion & Logs
Customer Data may be stored in backup systems and logs for a limited period as per our retention schedule.
Upon termination of your account, Customer Data will be deleted or anonymised according to our standard data-deletion processes, except where retention is required for legal or security reasons.
Nature of Information Received Through Database Management
In the course of your use of our database-management, hosting, and application-development Services (“ DB Services”), you may upload, transmit, store, or otherwise make available information that you control. Such information may include structured or unstructured datasets, database tables, schemas, logs, files, metadata, configuration details, analytics outputs, or other content relating to your customers, employees, end-users, suppliers, or any other individuals whose information you lawfully hold.
This information may be (i) stored on our thirdparty hosting infrastructure when you provision database instances or deploy applications, or (ii) shared with us as part of technical support, troubleshooting, migration, onboarding, or related service engagements.
Where you determine the purpose and means of processing such information, you act as the Data Fiduciary, and we process such information as your Data Processor. Where you handle such information on behalf of a third party, you acknowledge that such information has been lawfully collected and made available to us for purposes associated with your use of the Services.
For purposes of this Policy, “Operational Data” means any information, including Personal Data, that you or your organization submit to, store on, or process through our database-management systems, hosting infrastructure, APIs, development environments, or related Services. Operational Data also includes information voluntarily shared during technical-support requests, such as diagnostic files, database exports, log captures, sample datasets, or similar material provided to facilitate issue resolution.
Operational Data excludes telemetry, diagnostic, machine-generated metadata, usage analytics, performance metrics, or similar information used to maintain, secure, enhance, or develop the Services.
You retain ownership and control of Operational Data at all times.
How We Use Operational Data
We process Operational Data solely in accordance with your instructions, lawful purposes permitted under applicable Indian law, including the DPDP Act, and the contractual terms governing our Services. We may process Operational Data for the following purposes:
- provisioning, operating, and maintaining database and application-hosting functionality;
- performing actions you initiate through the Services, including executing queries, storing, retrieving, or modifying database content;
- providing troubleshooting and diagnostic support;
- enabling configuration assistance, import/export support, and migrations;
- securing the infrastructure and preventing fraud or misuse; and
- ensuring compliance with legal or regulatory obligations.
For example, when you import Operational Data into your managed database instance, we store and process that data to support your operations; if you contact us for technical assistance relating to data-integrity or query-execution issues, we may use relevant portions of Operational Data to identify and resolve the issue. We do not use Operational Data for advertising, profiling unrelated to the provision of Services, or other independent commercial purposes.
Push Notifications
If you enable notifications within our desktop, we may deliver such notifications through third-party service providers. Notifications may be managed through your device or application settings at any time.
Who We Share Operational Data With
- Affiliates and Sub-Processors: To provide database-management, hosting, and support services, we may engage group entities and authorised third-party sub-processors. Such entities may access Operational Data strictly for the purposes described in this Policy and are bound by confidentiality and data-protection obligations consistent with Indian law.
- Personnel and Authorised Contractors: We may provide limited access to Operational Data to trained personnel and authorised contractors solely to perform tasks such as diagnosing technical issues, carrying out maintenance, or fulfilling your instructions. Access is controlled, logged, restricted to specific individuals, and governed by confidentiality obligations.
- Collaborators and Other Users: Where you set permissions enabling shared database environments, collaboration, or workspace-level access, Operational Data may be accessible to authorised collaborators based on the rights and roles you configure. You are responsible for assigning and managing such access permissions.
- Third-Party Integrations Selected by You: If you enable integrations with third-party products or services, you may authorise such third parties to access Operational Data or Service Data or related Personal Data. Their processing will be governed by their respective privacy practices, and we encourage you to review such policies before enabling integrations.
We may otherwise share Operational Data only in accordance with applicable law or as described in this Policy.
Retention of Operational Data
We retain Operational Data for as long as you maintain an active account or as necessary to provide the Services, unless a longer retention period is required to comply with applicable Indian law. Upon account closure or deletion request, Operational Data will be removed from active systems in accordance with our scheduled deletion processes. Backup copies may persist for a limited time in accordance with our backup-retention schedule and will then be securely deleted.
Data Principal Requests
Where we process Operational Data on your behalf, we act as a Data Processor and are not authorised to fulfil Data Principal rights requests (such as access, correction, erasure, or grievance). Such requests must be made directly to you, as the Data Fiduciary.
Upon receiving a lawful request from you for support in fulfilling a Data Principal request, we will provide reasonable assistance in accordance with our contractual commitments and technical feasibility.
Public Applications and Replication
Where you choose to make an application, template, workflow, or similar asset created using the Services publicly available on the platform, other users may be permitted to clone or replicate such application. In such cases, only the structural or functional components of the application (such as configurations, workflows, or schemas) may be replicated as a template or replica. No Personal Data, account information, credentials, or private data associated with the original creator will be shared or made accessible to other users through such cloning or replication. Ownership of any such replica shall vest with the user who creates the clone, while you shall continue to retain ownership of your original application.
Children’s Data
Our Services are not intended for use by individuals under eighteen (18) years of age. We do not knowingly collect, process, or store personal data belonging to minors. If you are a parent or legal guardian and believe that your child has provided Personal Data to us without your consent, please contact us at support@projectcode.dev. Upon becoming aware that we have inadvertently collected Personal Data belonging to a minor without verifiable parental consent, we will take appropriate steps to delete or anonymise such data in a timely manner.
Where processing of a minor’s Personal Data is legally permitted (e.g., via appropriate parental/guardian consent), we will handle such data strictly in compliance with applicable Indian law, including the DPDP Act.
Your Rights, Controls and Choices
You have certain rights over your Personal Data under the DPDP Act and other applicable Indian laws. These rights are designed to give you greater transparency and control over how your data is collected and processed by us. Subject to applicable law, you have the following rights in relation to your Personal Data:
- Right to Access and Information: You have the right to obtain a summary of your Personal Data being processed by us, the categories of such data, and the purposes for which it is being used.
- Right to Correction and Erasure: You have the right to request correction, completion, updating, or deletion of your Personal Data where it is inaccurate, incomplete, outdated, or no longer necessary for the purposes for which it was processed.
- Right to Nominate: You may nominate another individual who can exercise your data rights in the event of your death or incapacity, in accordance with Section 14 of the DPDP Act.
- Right to Withdraw Consent: You have the right to withdraw your consent to the processing of your Personal Data at any time. Upon such withdrawal, we will cease processing such data unless required by law or for compliance, fraud prevention, or legal claims.
- Right to Grievance Redressal: You have the right to register a grievance regarding our data-handling practices or actions related to your Personal Data. We will acknowledge and respond to your grievance within the timeframes prescribed by Indian law.
- Right to Be Informed: You are entitled to be informed of the purposes for which your Personal Data is processed, the categories of data collected, the rights available to you, and how you may exercise those rights.
- How to Exercise Your Rights: You may exercise these rights by contacting our Grievance Officer or using the contact details provided below:
- We may request proof of identity to verify your request. Once verified, we will act on your request within the period required by law, unless an extension is justified under lawful grounds.
Please note that these rights are subject to statutory exceptions and limitations under applicable Indian laws, including for purposes such as compliance with legal obligations, law enforcement, prevention of fraud, or the protection of national security and public interest.
The exercise of these rights does not affect our right to retain certain data where retention is necessary for compliance, dispute resolution, or other legitimate purposes permitted under law.
How to Exercise Your Rights
You may submit a request by contacting us at: support@projectcode.dev. Please provide sufficient information to verify your identity. We will acknowledge and respond to your request within a reasonable timeframe and in accordance with applicable Indian law. We may ask for additional information to verify your identity before fulfilling certain requests. Certain requests may be denied where permitted under law (e.g., ongoing legal claims, investigation, compliance requirements, security incidents, pending contractual obligations). If you disagree with our handling of your Personal Data, you may approach the competent Indian authority under the DPDP Act or other applicable jurisdictional authority.
Use of AI-Enabled Tools
We may use AI-enabled systems (internal or third-party models) to detect automated abuse (e.g., bots, DDoS patterns); improve platform telemetry and reliability; analyse anonymised or aggregated usage data; enhance product performance or generate insights. Where AI systems are employed, we avoid using identifiable personal data for training without legal basis, apply data minimisation and anonymisation where technically feasible, implement contractual and security safeguards for AI vendors. You remain responsible for ensuring lawful processing of end-user data uploaded to your applications.
Disclaimer Regarding AI-Generated Code and Services
Our Services may include tools, code suggestions, automations, or other functionality powered by artificial intelligence (“AI Products”). These AI Products are designed to assist development and operational workflows (including code generation, drafting logic, and automation), but are not a substitute for professional software engineering, architectural review, or security assessment. You remain solely responsible for:
- Reviewing, testing, and validating any AI-generated code, configuration, logic, or deployment-related output;
- Ensuring such output does not introduce security vulnerabilities, legal non-compliance, or operational failures; and
- Maintaining all required administrative, technical, and organizational safeguards appropriate to your use case.
We make no representations or warranties (express or implied) regarding the correctness, completeness, security, suitability, or performance of any AI-generated output. AI-generated output may be inaccurate, incomplete, biased, or unsafe if used without review.
To the maximum extent permitted by law, we disclaim liability for any damages arising from or in connection with reliance on AI-generated output.
Third-Party AI Service Providers & Data Processing
We provide certain AI Products through third-party service providers (“AI Service Providers”), which may include OpenAI, Anthropic, Google Cloud AI, and others. As described in this Privacy Policy, your inputs, outputs, prompts, generated content, and personal information may be shared with and processed by these AI Service Providers to operate and improve the AI Products. These AI Service Providers may process data in multiple jurisdictions. Their processing is subject to their respective privacy notices, security controls, and terms.
You must not use the AI Products in any manner that:
- Violates this Policy or applicable law,
- Violates the terms or policies of any AI Service Provider,
- Attempts to re-identify individuals from anonymized data,
- Involves unlawful, harmful, or high-risk activities without appropriate human oversight, or
- Attempts to bypass safeguards, security controls, or usage-limits imposed on the AI Products.
Intended Purpose of AI Products: Our AI Products are designed for-
- AI-supported code suggestions and generation
- Developer workflow automation
- Pattern recognition and optimization
- Data-assisted configuration or integration recommendations
- Other reasonable use cases within application development, deployment, and operations
They are not intended for critical-infrastructure control systems, medical diagnosis, legal advice, financial advisory, or other regulated or high-risk decision-making without appropriate human expert validation.
Intellectual Property Ownership, AI-Generated Output
Ownership of Output
Subject to your compliance with this Policy and our Terms, you will generally own the rights in the AI-generated code, content, or other output (“AI Output”) produced specifically from your inputs, except to the extent such output:
- Includes or is derived from our proprietary materials, templates, or libraries;
- Contains third-party proprietary content; or
- Is otherwise restricted under applicable law.
Non-Exclusive Rights
Because AI systems may generate similar or identical output for multiple users, you acknowledge that your rights in AI Output are non-exclusive, and other users may receive the same or similar AI Output.
Your Responsibilities
You are solely responsible for reviewing AI Output to ensure that it:
- Meets your functional, legal, and compliance requirements;
- Does not infringe intellectual property rights of others;
- Does not contain confidential, or personal data you are not authorized to process.
We make no warranty that AI Output will be: unique, protectable, non-infringing, or fit for any particular purpose.
License to Us
You grant us and our AI Service Providers a limited license to process your inputs and outputs to deliver, maintain, secure, troubleshoot, and improve the AI Products in accordance with this Policy.
How Can You Review, Update, or Delete the Data We Collect from You?
Under applicable Indian law, including the DPDP Act, you may exercise certain rights regarding your personal data processed by us. These include the right to:
- Request access to personal information we hold about you and details of how we process it;
- Request correction of inaccurate or incomplete personal information;
- Request deletion of your personal information, subject to legal or contractual limitations;
- Withdraw consent where processing is based on your consent.
To submit a request to review, update, or delete your personal information, please contact us at:
Email: support@projectcode.dev
We may request additional information to verify your identity before processing your request. We aim to respond within applicable statutory timelines under Indian law. Certain data may be retained as permitted or required by law (e.g., accounting, fraud-prevention, regulatory compliance).
Deleting your information may affect your ability to access or use parts of the Services. If you are an end-user of a customer application built using our platform, we may direct your request to the relevant customer (data controller).
If you are unsatisfied with our response, you may escalate the matter to our designated Grievance Officer or the competent Data Protection Board of India.
Payment & Billing
We use third-party payment processors to process payment card details and transactions. We do not store full payment card details on our systems. Card processing is subject to the processor’s security and privacy policies (including PCI-DSS compliance, where applicable).
We may receive limited transaction information, such as payment confirmation, masked card details, reference identifiers, or billing metadata, for billing, reconciliation, fraud-prevention, and tax purposes.
We may also aggregate anonymised usage metrics (e.g., spend amounts, invoice status) from the payment processor for internal accounting and reporting.
Usage-Based Billing: You authorise us to collect usage metrics associated with your use of the Services including API calls, compute hours, storage, bandwidth, and log volumes. These metrics may be shared with payment processors and financial institutions for invoicing, revenue recognition, and compliance reporting.
Payment Data Collected: If you make a purchase, we may collect limited payment-related data, such as, payment instrument type (e.g., card, UPI, wallet), masked card number, expiry month/year, transaction amount, currency, date, status, billing name and address, GST or tax identification details. We do not store full card numbers or CVV/CVC. Full payment data is handled solely by the payment processor. GST and billing details may be used to generate tax-compliant invoices.
International Payments & Cross-Border Data Transfers: Where you make payments from outside India or where our payment processor operates globally, your payment information (including payment metadata, billing address, transaction identifiers, and currency details) may be transferred, processed, or stored outside India, including in jurisdictions that may have different data-protection laws.
As on the date of this Policy, the Government of India has not notified any restricted countries or territories for the purposes of cross-border transfer of Personal Data, and India currently follows a negative list approach, under which transfers are permitted unless expressly prohibited by law.
In the event that the Government of India notifies any restricted jurisdictions or imposes additional conditions on cross-border transfers, the Company shall comply with such requirements and update this Policy accordingly. Data Principals shall be informed of material changes to cross-border transfer practices through updates to this Policy or such other lawful means as the Company may adopt. Consent of the Data Principal shall not override any statutory restriction or prohibition on cross-border transfer imposed under applicable Indian law.
We ensure that such transfers comply with applicable Indian laws, including the DPDP Act, which permits transfer of digital personal data outside India subject to government-notified restrictions. Where required, we implement appropriate contractual or organisational safeguards to ensure an industry standard level of protection for such data. Your payments may also be subject to:
- Cross-border financial regulatory requirements
- Fraud monitoring
- Sanctions, anti-money-laundering, and export-control checks
By initiating an international transaction, you acknowledge and consent to the cross-border processing of relevant payment-related data.
Chargebacks & Refunds: Any refunds, cancellations, chargebacks, or payment disputes relating to the Services shall be governed by the Company’s Refund Policy.
Do-Not-Track (DNT) Signals
Some web browsers and mobile applications provide a “Do-Not-Track” (DNT) setting that allows users to indicate a preference not to have their online activities monitored across websites over time.
At this time, India does not have a legally recognized or standardized framework for responding to DNT signals. Consequently, our Services do not currently respond to DNT signals or similar browser-based preference mechanisms. If a legal, regulatory, or technical standard governing online tracking is adopted in India in the future and requires us to take action, we will comply with such requirements and update this Privacy Notice accordingly.
Entire Agreement
This Policy, together with our Terms of Service constitutes the entire and exclusive agreement between you and the Company regarding privacy, data-protection, and data-processing matters relating to the Services in India and, where applicable, in other jurisdictions.
In the event of any conflict or inconsistency between documents relating to privacy or data-processing obligations, the following order of precedence shall apply:
- This Privacy Policy
- Terms of Service
For avoidance of doubt, the DPA governs the processing of personal data where we act as a processor or sub-processor on your behalf. This Policy governs how we collect, use, disclose, secure, and retain personal data processed in connection with the Services.
AI-related processing (including use of third-party AI service providers) shall be interpreted in accordance with the DPA and this Policy.
Any additional or conflicting terms proposed by you, such as purchase orders, email terms, or other documents are rejected unless expressly agreed in writing and signed by an authorized representative of the Company. No oral statements or marketing materials shall modify any agreement relating to the privacy or processing of personal data.
Governing Law & Venue
This Policy shall be governed by and interpreted in accordance with the laws of India.
Any dispute arising out of or in connection with this Policy, including disputes relating to Personal Data processed through traditional or AI-enabled workflows, shall be subject to the exclusive jurisdiction of the courts of Ahmedabad, Gujarat, India.
Changes to This Policy
We may revise, update, or amend this Privacy Policy from time to time to reflect changes in our Services, the introduction of new features or technologies (including artificial intelligence-based functionality), internal governance adjustments, industry best practices, or changes to applicable laws and regulatory guidance in India or other relevant jurisdictions.
Whenever updates are made, we will post the revised Policy on our website and update the “Last Updated” date at the top of the document. Please review this Privacy Policy periodically to remain informed about how we collect, use, disclose, and protect your Personal Data.
Where a revision materially affects your rights, materially alters the manner in which we process your Personal Data, or significantly expands our data-processing activities, we will provide advance notice, where required under applicable law, by e-mail notifications, in-product banners or pop-ups, any other legally permissible method.
Contact Details & Grievance Officer
If you have questions or concerns about this Policy, including how we use AI technologies to process Personal Data, or if you wish to exercise any of your rights, you may contact us at:
Email: grievance@projectcode.dev
Address: 5th Floor, House 14, Times Corporate Park, Opp. Copper Stone Flats, Thaltej, Ahmedabad, Gujarat, India, 380059
We aim to respond to verified requests within a timeline as required under applicable laws.
If you believe that your data, whether processed through traditional or AI-enabled workflows has been improperly handled or requires correction/deletion, please reach out to us. We will investigate and take appropriate steps as required under applicable law.
Conclusion & Acceptance of Terms
We are committed to safeguarding your personal data and ensuring that it is processed responsibly, transparently, and in accordance with applicable laws in India and other relevant jurisdictions. As our Services may include global infrastructure, cross-border operations, and AI-enabled features, you acknowledge that your continued use of the Services constitutes acceptance of the practices described in this Privacy Policy.
If you do not agree with any provision of this Privacy Policy, you should discontinue use of the Services. We encourage you to review this Policy periodically to stay informed of updates, particularly relating to advancements in our AI-based capabilities, changes in regulatory requirements, and modifications to our data-handling practices.
If you have questions, require clarification, or wish to exercise your rights, please contact us using the information provided above. We remain committed to addressing your concerns and supporting your privacy needs.