Privacy Policy

Wudmod (hereinafter referred to as “Platform,” “Application,” “Wudmod”) is a web-based and mobile-ready CRM and lead management platform owned and operated by DataBitz AI (hereinafter referred to as “DataBitz,” “we,” “us,” or “our”).

This Privacy Policy (hereinafter referred to as “Policy”) helps the users accessing the Platform (“User” / “You” / “Your”) understand: the type of information we collect; the purpose for which it is collected; how the information is used; the intended recipients of such information; and how the information is protected.

We take the protection and proper use of your information seriously and are committed to safeguarding such information in our possession. We advise you to read this Policy carefully prior to accessing the Platform, using the Services, or creating an account. If you do not agree to this Policy, please do not access our Platform or use our Services.

We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this Policy. Unless otherwise defined herein, the terms used in this Privacy Policy have the same meanings as in our Terms and Conditions.

When you access our Platform, create an account, or use the Services, we collect certain information from you. We collect different types of information for various purposes to provide and improve our Service to you.

Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. This may include, but is not limited to:

• ●Full name
• ●Email address
• ●Phone number
• ●Business name and address
• ●City, State, PIN/Postal code
• ●GSTIN (for billing purposes)
• ●Account login credentials
• ●Any other information you voluntarily provide during registration or use of Services

Usage Data

We may automatically collect information about how the Service is accessed and used (“Usage Data”). This may include your device’s Internet Protocol address (IP address), browser type and version, the pages you visit, the time and date of your visit, time spent on those pages, unique device identifiers, and other diagnostic data.

When you access the Service via a mobile device, this Usage Data may include the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, and other diagnostic data.

Business Data

As a CRM platform, Wudmod stores business-related data you choose to input, including: lead information, customer contact details, sales pipeline data, notes, documents, images, and other files you upload for business management purposes. This data remains your property.

Cookies & Tracking

We use cookies and similar tracking technologies (such as local storage and session tokens) to track activity on our Service and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

Types of cookies we use:

• ●Session Cookies: To operate our Service and maintain your login state.
• ●Preference Cookies: To remember your preferences and settings.
• ●Security Cookies: For authentication and security purposes.

DataBitz AI uses the collected data for the following purposes:

• ✓To provide, maintain, and operate the Service
• ✓To manage your account and subscription
• ✓To notify you about changes to our Service
• ✓To allow you to participate in interactive features of our Service
• ✓To provide customer support
• ✓To gather analysis or valuable information so that we can improve our Service
• ✓To monitor the usage of our Service and detect abuse
• ✓To detect, prevent, and address technical issues and security vulnerabilities
• ✓To process payments and generate GST-compliant invoices
• ✓To send you service-related communications, including billing reminders, login alerts, and subscription notifications
• ✓To comply with legal obligations under applicable Indian laws

We do not sell your personal data to third parties. We do not use your data for targeted advertising or marketing profiling.

Under the Digital Personal Data Protection Act, 2023 (DPDP Act) and applicable Indian laws, DataBitz AI processes your personal data on the following legal bases:

• ✓Consent: You have given explicit consent for processing your data for specific purposes
• ✓Contract Performance: Processing is necessary to perform our contract with you (providing the Services)
• ✓Legitimate Interest: Processing is in our legitimate business interests and does not override your rights
• ✓Legal Obligation: Processing is necessary to comply with applicable Indian laws and regulations
• ✓Payment Processing: To process subscription payments and generate tax-compliant invoices

If you are in the European Economic Area (EEA), GDPR legal bases including consent, contract performance, and legitimate interest also apply.

DataBitz AI will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (e.g., tax and accounting laws require us to retain invoice data for a minimum period), resolve disputes, and enforce our legal agreements and policies.

Usage Data is generally retained for a shorter period, except when this data is used to strengthen the security or improve the functionality of our Service, or we are legally obligated to retain this data for longer periods.

Upon account cancellation or termination, you may request data export within thirty (30) days. After this period, we reserve the right to delete your data, except for information we are legally required to retain.

Your information, including Personal Data, may be transferred to and maintained on servers located outside your state or country where the data protection laws may differ from those of your jurisdiction.

If you are located outside India and choose to provide information to us, please note that we may transfer the data, including Personal Data, to India and process it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

DataBitz AI will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy. No transfer of your Personal Data will take place to an organization or country unless there are adequate controls in place, including the security of your data and other personal information.

Business Transaction

If DataBitz AI is involved in a merger, acquisition, or asset sale, your Personal Data may be transferred. We will provide notice before your data is transferred and becomes subject to a different Privacy Policy.

Disclosure for Law Enforcement

Under certain circumstances, DataBitz AI may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g., a court order, government agency, or law enforcement request under the Information Technology Act, 2000 or the Code of Criminal Procedure, 1973).

Legal Requirements

DataBitz AI may disclose your Personal Data in the good-faith belief that such action is necessary to:

• ✓Comply with a legal obligation
• ✓Protect and defend the rights or property of DataBitz AI
• ✓Prevent or investigate possible wrongdoing in connection with the Service
• ✓Protect the personal safety of users of the Service or the public
• ✓Protect against legal liability

The security of your data is important to us. We implement industry-standard security measures to protect your Personal Data, including:

• 🔒Encryption of data in transit using TLS/SSL
• 🔒Secure authentication using Firebase Authentication with JWT tokens
• 🔒HTTP-only, secure cookies for session management
• 🔒Access controls and role-based permissions
• 🔒Regular security audits and monitoring
• 🔒PCI DSS-compliant payment processing via Razorpay (we never store card details)

While we strive to use commercially acceptable means to protect your Personal Data, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security but are committed to promptly addressing any security incidents as required under the Information Technology Act, 2000 and the DPDP Act, 2023.

Under the Digital Personal Data Protection Act, 2023 (DPDP Act) and applicable laws, you have the following rights as a Data Principal:

• ✓Right to Access: You have the right to request access to the personal data we hold about you.
• ✓Right to Correction: You have the right to request correction of inaccurate or incomplete personal data.
• ✓Right to Erasure: You have the right to request deletion of your personal data, subject to legal retention requirements.
• ✓Right to Withdraw Consent: You have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
• ✓Right to Grievance Redressal: You have the right to file a complaint with our Grievance Officer or the Data Protection Board of India.
• ✓Right to Nominate: You have the right to nominate another individual to exercise your rights in case of your death or incapacity, as per the DPDP Act.

To exercise any of these rights, please contact us at databitz.ai@gmail.com. We may ask you to verify your identity before processing your request. We will respond to all legitimate requests within thirty (30) days.

If you are a resident of the European Economic Area (EEA), you additionally have the right to data portability, the right to restrict processing, and the right to object to processing under the GDPR.

We may employ third-party companies and individuals to facilitate our Service (“Service Providers”), provide the Service on our behalf, perform Service-related services, or assist us in analyzing how our Service is used. These third parties have access to your Personal Data only to perform tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Authentication & Infrastructure

Firebase (Google):We use Firebase Authentication for secure user sign-in and Firebase Realtime Database for data storage. Google’s privacy policy applies to their processing of data.

Payments

Razorpay: We use Razorpay for payment processing. We do not store or collect your payment card details. Payment information is provided directly to Razorpay, whose use of your personal information is governed by their privacy policy. Razorpay is PCI DSS compliant and regulated by the Reserve Bank of India (RBI).

Hosting & Analytics

We may use third-party hosting providers and analytics services to monitor and analyze the use of our Service, ensure uptime, and improve performance.

Wudmod and DataBitz AI operate in full compliance with applicable Indian cyber and data protection laws, including:

• ✓Information Technology Act, 2000 — Sections 43A (compensation for failure to protect data), 72A (punishment for disclosure of information in breach of lawful contract)
• ✓IT (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 — We implement reasonable security practices for protection of sensitive personal data
• ✓Digital Personal Data Protection Act, 2023 (DPDP Act) — We comply with Data Principal rights, consent requirements, data fiduciary obligations, and breach notification requirements
• ✓IT (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 — We maintain a Grievance Officer and grievance redressal mechanism
• ✓Consumer Protection Act, 2019 & E-Commerce Rules, 2020 — Transparent pricing, refund policy, and service descriptions

In compliance with Google Play Developer Program Policies and Meta Platform Terms:

• ✓We clearly disclose all data collection, sharing, and processing practices in this Privacy Policy
• ✓We collect only data that is necessary for the functionality of the app and the Services provided
• ✓We provide a clear mechanism for users to request deletion of their data
• ✓We do not sell personal data to third parties
• ✓We do not use personal data for purposes unrelated to the core functionality of the app without explicit consent
• ✓We implement appropriate security measures to protect all user data
• ✓We promptly notify users of any data breaches in accordance with applicable laws
• ✓We comply with Google Play's Families Policy — our Service is not directed at children under 18
• ✓We handle all user data in accordance with Google Play's User Data policy and Meta's Data Use policies
• ✓Users can manage their data preferences and withdraw consent at any time through their account settings or by contacting us

No refunds or credits for partial months, quarters, or years of service will be issued to a customer upon cancellation. The amount once paid is non-refundable. For full details, please refer to our Terms and Conditions.

Our Service may contain links to other sites that are not operated by us. If you click a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

Our Service is designed for business professionals and does not address anyone under the age of 18 (“Children”). We do not knowingly collect personally identifiable information from anyone under the age of 18.

If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers immediately.

If you believe that we have collected personal information from someone under the age of 18, please contact us at databitz.ai@gmail.com.

In the event of a data breach that compromises or is likely to compromise personal data, DataBitz AI will:

• ✓Notify the Data Protection Board of India as required under the DPDP Act, 2023
• ✓Inform affected Data Principals (users) without unreasonable delay
• ✓Take immediate remedial action to contain and mitigate the breach
• ✓Document the breach, its effects, and the remedial actions taken
• ✓Cooperate with regulatory authorities during any investigation

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date at the top of this Policy.

For material changes, we will notify you via email and/or a prominent notice on our Service prior to the change becoming effective. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

In accordance with the Information Technology Act, 2000, the IT (Intermediary Guidelines) Rules, 2021, and the DPDP Act, 2023, the Grievance Officer for the purpose of this Policy is:

If you are not satisfied with the resolution, you may approach the Data Protection Board of India established under the DPDP Act, 2023, or the appropriate consumer forum under the Consumer Protection Act, 2019.

If you have any questions about this Privacy Policy, please don’t hesitate to contact us. We’re here to help and ensure your data is protected.