Privacy Policy

Last Updated: January 2025

Introduction

This Privacy Policy describes how RSD Bharti Industries Pvt. Ltd. ("we", "our", or "us") collects, uses, and protects your information when you use our services through:

  • Admin Web Portal - Administrative dashboard
  • Dealer Web Portal - Dealer management interface
  • Mobile Application - Customer ordering app

By using our platform, you agree to the collection and use of information in accordance with this policy.

Information We Collect

1. Personal Information

Customers (Mobile App)

  • Name, email address, phone number
  • Delivery addresses
  • Payment information (UPI details)
  • Order history and preferences

Dealers (Dealer Portal)

  • Business name and registration details
  • Contact information (name, email, phone)
  • Business address
  • Bank/UPI payment details
  • Warehouse locations with GPS coordinates

Admins (Admin Portal)

  • Name, email address, phone number
  • Login credentials (encrypted)

2. Location Data

  • Warehouse GPS Coordinates: Collected from dealers to enable nearest warehouse matching
  • Delivery Addresses: Collected from customers for order fulfillment
  • Device Location (Mobile App): May be requested to suggest nearby warehouses (optional)

3. Technical Data

  • IP addresses
  • Device information (type, OS version)
  • Browser type and version
  • Usage data and analytics
  • Session information

4. Communication Data

  • Email correspondence
  • OTP verification codes
  • Order notifications
  • Support messages

How We Use Your Information

Service Delivery

  • Process and fulfill orders
  • Match orders to nearest warehouses
  • Facilitate payments via UPI
  • Send order confirmations and updates

Account Management

  • Create and manage user accounts
  • Authenticate users (login/logout)
  • Password reset via OTP email
  • Verify business information (dealers)

Communication

  • Send transactional emails (OTPs, order updates)
  • Respond to customer support inquiries
  • Notify dealers of new orders
  • Send important service announcements

Platform Optimization

  • Improve warehouse matching algorithms
  • Analyze inventory trends
  • Enhance user experience
  • Monitor platform performance

Security & Compliance

  • Prevent fraud and unauthorized access
  • Enforce terms of service
  • Comply with legal obligations

Data Sharing & Disclosure

We Share Information With:

Service Providers

  • Email Service (SMTP): For sending OTPs and notifications
  • Payment Processors: For UPI payment processing
  • Cloud Hosting: MongoDB Atlas for database storage

Between Platform Users

  • Dealers receive: Customer name, phone, delivery address, order details
  • Customers receive: Dealer business name, warehouse location (general area)
  • Admins access: All platform data for management purposes

We Do NOT:

  • Sell your personal information to third parties
  • Share data for marketing purposes without consent
  • Disclose information except as described in this policy

Legal Requirements

We may disclose information if required by law, court order, or government request.

Data Storage & Security

Security Measures

  • Passwords encrypted using bcrypt hashing
  • Secure HTTPS connections
  • MongoDB authentication and access controls
  • Regular security updates
  • Session management and token-based authentication

Data Retention

  • Active Accounts: Data retained while account is active
  • Inactive Accounts: May be deleted after 2 years of inactivity
  • Order History: Retained for 5 years for business records
  • Deleted Accounts: Personal data removed within 30 days (except legal requirements)

Data Location

  • Data stored on MongoDB Atlas cloud servers
  • Complies with applicable data protection regulations

Your Rights & Choices

Access & Control

  • View Your Data: Request a copy of your personal information
  • Update Information: Modify your profile and business details
  • Delete Account: Request account deletion (subject to legal obligations)
  • Opt-Out: Unsubscribe from non-essential emails

Location Permissions (Mobile App)

  • Location access is optional
  • Can be disabled in device settings
  • Does not affect core ordering functionality

Email Communications

  • Transactional emails (OTPs, orders) cannot be disabled
  • Marketing emails can be unsubscribed (if applicable)

Cookies & Tracking

We Use:

  • Session Cookies: For authentication and user sessions
  • Functional Cookies: To remember preferences
  • Analytics: To understand platform usage (anonymized)

You Can:

  • Disable cookies in browser settings (may affect functionality)
  • Clear cookies at any time

Third-Party Services

Email Service (SMTP)

  • Used for OTP delivery and notifications
  • Subject to provider's privacy policy

Payment Processors

  • UPI payments processed through third-party gateways
  • We do not store complete payment credentials

Map Services

  • GPS coordinates collected for warehouse locations
  • May use mapping APIs for location selection

Children's Privacy

Our platform is not intended for users under 18 years of age. We do not knowingly collect information from children.

Changes to Privacy Policy

We may update this policy periodically. Changes will be posted with a new "Last Updated" date. Continued use after changes constitutes acceptance.

Data Breach Notification

In the event of a data breach affecting your personal information, we will notify affected users within 72 hours via email.

Contact Us

For privacy concerns, data requests, or questions:

Email: info@rsdbharti.com

Phone: +91 98765 43210

Address: Industrial Area, New Delhi, India

Specific Portal Information

Admin Web Portal

  • Full access to platform data for management
  • Responsible for dealer verification and product assignment
  • Must maintain confidentiality of all user data

Dealer Web Portal

  • Access to own warehouse and inventory data
  • View customer orders assigned to their warehouses
  • Responsible for protecting customer delivery information

Mobile Application

  • Minimal data collection for ordering
  • Optional location permissions
  • Secure local storage of session data
  • Can clear app data anytime in device settings

Legal Basis for Processing (GDPR)

If you are in the EU/EEA, we process your data based on:

  • Contract Performance: To fulfill orders and provide services
  • Legitimate Interest: Platform improvement and fraud prevention
  • Consent: Marketing communications (if applicable)
  • Legal Obligation: Compliance with laws and regulations

Your GDPR Rights (EU/EEA Users)

  • Right to access your data
  • Right to rectification
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent

To exercise these rights, contact us using the information above.

Acknowledgment: By using our platform, you acknowledge that you have read and understood this Privacy Policy.