Description of the image

PRIVACY POLICY

Last updated: 25 September 2025
Applies to:Autoscal website, web app, and mobile app (collectively, “Services”)

Autoscal (“we”, “us”, “our”) is operated by Spark Eighteen Technologies Pvt. Ltd. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you use our Services, including when you make payments via our payment partners Razorpay and Stripe.

By using the Services, you agree to this Privacy Policy.

  1. Who we are

    Controller/Operator: Spark Eighteen Technologies Pvt. Ltd.

    Registered Address: B5/4589 Vasant Kunj, New Delhi - 110070, India.

    Contact (Privacy): support@autoscal.com

    Grievance Officer (India): Amit Goel

    Email: support@autoscal.com | Phone: +91 9958881026

    Postal Address: B5/4589 Vasant Kunj, New Delhi - 110070, India.

    (Provided to comply with the IT Rules, 2021 and the Digital Personal Data Protection Act, 2023.)

  2. Information we collect
    1. You provide to us
      • Account & Profile: name, business name, email, phone, job title, password, profile photo.
      • Organization Data: team member rosters, roles, schedules, leave data, policy settings.
      • Project/Work Data: tasks, comments, attachments, activity logs.
      • Support & Sales: messages, call notes, feedback, survey responses.
      • Billing/Tax: billing name, email, phone, GSTIN, address, and payment preferences.
      • Sensitive payment credentials (card PAN, CVV, UPI PIN) are collected and processed by Razorpay and/or Stripe on their PCI-DSS compliant systems. We do not store these on our servers.
    2. Collected automatically
      • Usage & Device: IP address, device/browser type, OS, app version, pages/events, timestamps, referral URLs.
      • Cookies/SDKs: for authentication, session management, preferences, analytics, and fraud prevention (see §8).
    3. From third parties
      • Integrations you connect: Google/Microsoft (calendar, directory), Slack/Teams, HR/payroll tools, etc.
      • Payment Partners (Razorpay/Stripe): limited status/metadata (transaction ID, status, method, masked card type, failure reason) for order fulfillment, reconciliation, and support.
  3. How we use information
    • Provide & operate the Services, accounts, and paywalled features.
    • Process payments & invoices (through Razorpay and Stripe); manage subscriptions, refunds, and chargebacks.
    • Security & fraud prevention, troubleshooting, incident detection.
    • Improve product, analytics, A/B testing, usage insights.
    • Communications (transactional emails/SMS, service notices, product updates).
    • Compliance & legal, including tax/GST, audits, dispute resolution, and enforcing terms.

    Legal bases (where applicable): performance of contract, legitimate interests (security, improvement), consent (non-essential cookies/optional features), and compliance with law.

  4. Sharing & disclosures

    We do not sell personal information. We may share with:

    • Service providers / processors: hosting, analytics, email/SMS, customer support, cloud storage, and payment processing (Razorpay, Stripe).
    • Payment partners (Razorpay/Stripe): to process transactions securely; each may act as an independent controller for certain anti-fraud, KYC, and compliance activities.
    • Affiliates & professional advisors under appropriate safeguards.
    • Legal/compliance: when required by law or to protect rights, safety, or service integrity.
    • Business transfers: merger, acquisition, or asset sale, with continued protection of personal information
  5. Payments via Razorpay and Stripe
    • Payments are processed by Razorpay Software Private Limited and Stripe, Inc. (and/ or their local affiliates).
    • Sensitive payment data (card numbers, CVV, UPI PIN) is handled by Razorpay/Stripe on PCI-DSS compliant infrastructure.
    • We receive limited payment metadata (e.g., transaction ID, method, masked card info) to complete your order, provide support, and maintain records.
    • Refunds/chargebacks are managed in coordination with Razorpay or Stripe, as applicable.
    • For certain methods (e.g., UPI, cards, wallets), our providers may conduct KYC, fraud monitoring, and compliance checks per applicable law.
  6. Data retention

    We retain personal information as long as needed to provide the Services and for legitimate purposes including legal, tax, and accounting requirements. When no longer necessary, data is securely deleted or anonymized.

  7. Your rights & choices

    Subject to applicable law (including the Digital Personal Data Protection Act, 2023 and, where relevant, GDPR/UK GDPR), you may:

    • Access, correct, update, or delete certain information via account settings or by contacting us.
    • Object to or restrict certain processing.
    • Withdraw consent where processing relies on consent.
    • Data portability (where applicable).

    We may request identity verification and retain certain data as required by law or for legitimate interests (e.g., fraud prevention, record-keeping).

  8. Cookies & tracking

    We use:

    • Essential cookies for login and security.
    • Functional cookies for preferences.
    • Analytics/fraud-prevention cookies and SDKs.

    Where required, we seek consent for non-essential cookies. You can manage cookies in your browser; disabling some may affect functionality.

  9. Security

    We implement administrative, technical, and organizational safeguards, including encryption in transit, access controls, audit logging, secure development practices, and regular reviews. No method is 100% secure; please use strong, unique passwords and enable available security features.

  10. International transfers

    We may process and store information on servers located in or outside India. Our payment partners (Razorpay/Stripe) and other processors may transfer data internationally subject to appropriate safeguards (e.g., contractual clauses/adequacy, PCI-DSS controls). Where required, we implement additional safeguards for cross-border transfers.

  11. Children’s privacy

    The Services are intended for businesses and users 18+. We do not knowingly collect data from children. If you believe a minor has provided data, contact us for removal.

  12. Third-party links & integrations

    Our Services may include links to third-party sites or integrations you choose to enable. Their privacy practices are governed by their own policies. Please review those policies before connecting.

  13. Changes to this Policy

    We may update this Policy from time to time. Material changes will be notified via email or in-app notice. Continued use of the Services after changes take effect constitutes acceptance.

  14. Contact & grievances

    For questions, requests, or complaints, contact:

    Email: support@autoscal.com

    Postal Address: B5/4589 Vasant Kunj, New Delhi - 110070, India.

    Grievance Officer (India): Amit Goel

    Email: support@autoscal.com | Phone: +91 9958881026

    Postal Address: B5/4589 Vasant Kunj, New Delhi - 110070, India.

  15. Regulatory notes (India & global)

    We process data in accordance with applicable laws, including the Digital Personal Data Protection Act, 2023 (India), the Information Technology Act, 2000 and rules thereunder, and—where relevant to your location—foreign data protection laws (e.g., GDPR/UK GDPR). If GDPR applies, Spark Eighteen Technologies Pvt. Ltd. is the controller. You may contact us at support@autoscal.com for EU/UK-specific requests. If required, we will appoint an EU/UK representative.

    Optional add-ons (place on separate pages/sections)

    • Data Processing Addendum (DPA): Available on request for controller-processor terms.
    • Sub-processor list (illustrative): Cloud hosting, email/SMS provider, analytics provider, customer support tool, Razorpay (payments), Stripe (payments).
    • Breach notification: We will notify affected users and relevant authorities as required by law.