Privacy Policy

PRIVACY POLICY

LAST UPDATED :- 25th February 2025

Thank you for visiting our website.

Disclaimer :- At Sproutech Solutions Private limited(Regd Name), we take your privacy and data security seriously. While we implement robust measures to protect your personal information, including encryption and regular security audits, it's essential to recognize that no system can guarantee absolute immunity from cyber threats or malicious activities. We continuously strive to mitigate these risks, and by using our services, you agree to accept any residual risk. Sproutech Solutions Private Limited disclaims all liability for any unauthorized access, disclosure, or alteration of your information that may occur despite our best efforts. 

We encourage you to take proactive steps to safeguard your data, such as using strong passwords and keeping your account credentials confidential.

Your continued use of our platform constitutes your understanding and acceptance of these risks. For detailed information about how we collect, use, and protect your data, please review our Privacy Policy.

We are committed to protecting your privacy and personal information.This policy outlines how data is collected, used, and safeguarded during your use of our website.

1. DEFINITION.

a) Personal Data refers to any information that relates to an identified or identifiable individual, either directly or indirectly, including but not limited to name, contact details, address, email, date of birth, demographic details, and government-issued identification numbers such as Aadhaar, PAN, passport, or driver’s license.

b) Sensitive Personal Data refers to personal data that requires a higher level of protection due to its sensitive nature and potential impact on an individual’s privacy, security, or rights if disclosed. This includes financial information such as bank account details, credit/debit card numbers, and payment transaction data; Know Your Customer (KYC) information including identity verification documents and proof of address; vehicle registration details and ownership records; biometric data such as fingerprints, facial recognition, and retina scans (if applicable); authentication credentials including passwords, security codes, and OTPs; and any other data classified as sensitive under applicable data protection laws.

c) Processing refers to any operation or set of operations performed on Personal Data or Sensitive Personal Data, whether manually or by automated means. This includes the collection, recording, storage, retention, modification, structuring, analysis, use, sharing, disclosure, transfer, and eventual deletion or erasure of personal data, either upon user request or in accordance with predefined retention policies. 

2. CONSENT. 

By using our services or by licking on ‘I Agree’ to accept the Terms and Conditions, you explicitly consent to the collection, processing, and storage of your personal data as described in this Privacy Policy. Your consent is obtained through various mechanisms, including account registration, where you agree to provide accurate and complete information; continued usage of our services, which constitutes implicit acceptance of our data handling practices; and opt-in mechanisms for specific data processing activities, such as marketing communications, where clear choices are provided. You have the right to withdraw your consent at any time by sending us an email through the ‘Contact Us’ tab on our website. However, please note that withdrawing consent may impact your ability to access certain features or functionalities of our services, subject to applicable legal and contractual obligations.

3. WHAT PERSONAL INFORMATION IS COLLECTED? 

We may collect the following types of information:     

*Personal/Company Information:

• Name, contact number, email address, and KYC details (e.g., driving license, government-issued identification numbers, proof of address, etc.).
• Vehicle-related information, including registration details, ownership details, fines, and other challan-related information.
• Payment details for transactions related to our services.
• Voice recordings of interactions with our team to address queries.
• Any additional information required to deliver our services.

We recognize the sensitivity and legal implications surrounding the sharing of personal and company information. To ensure its lawful and ethical management we adhere to stringent guidelines and comply with applicable laws including but not limited to the Information Technology Act, 2000, Digital Personal Data Protection Act (DPDPA) 2023, and the Information Technology (Reasonable security practices and procedures and sensitive personal data or information) Rules, 2011.

*Payment Information:When you subscribe to our services and make payments through the platform, we may share relevant payment details with third-party service providers, vendors, and payment gateways to facilitate the transaction. These entities are contractually obligated to handle your payment information in accordance with industry-standard security practices.

We use third-party payment processors that comply with stringent security standards, including encryption protocols, to ensure that your payment information is handled securely.

Additionally, in the event that you are no longer a customer or client, the retention of your payment data will be limited to a period of 2 years, after which it will be securely deleted or anonymized, except where a longer retention period is required by applicable laws or regulations. 

*Cookies & Web Tracking Technologies:We may store session information, cookies, pixels, web beacons and other technologies to recognize your needs and to enhance your experience on our website including improving security, preventing fraudulent activity, and reporting. 

You have the option to manage your cookies preferences through your browser settings or by opting out of certain third-party tracking mechanisms. Third parties may include marketing agencies, social media networks, analytic services, search engines, etc.

However, please note that disabling cookies may limit your ability to access certain features of our website or services. 

*Know Your Customer (KYC):Sproutech Solutions Private Limited collects personal information from users as part of the Know Your Customer (KYC) process, which is necessary for compliance with regulatory requirements and to ensure the security and integrity of our services.

This information may include, but is not limited to, name, address, date of birth, government-issued identification numbers, and proof of address. We may also collect additional information as required by applicable laws and regulations.

The collected information is used solely for the purpose of fulfilling our legal obligations and ensuring the security and integrity of our platform. We do not disclose this information to third parties except as required by law or with the user's explicit consent.

By using our services, users consent to the collection, storage, and processing of their personal information for KYC purposes as outlined in this privacy policy.

4. WHAT IS THE PURPOSE FOR COLLECTION OF YOUR INFORMATION?

The Information we collect may be used for following purposes:

*Feedbacks & Surveys:To Improve our service & user experience, we may collect customer feedback and such data may be used by Sproutech Solutions Private limited for research, analysis and product development purposes.

We may also aggregate and anonymize this information for statistical purposes or to share insights with our partners or third-party service providers.  

*Improving Platform Functionality:To identify areas of improvement and enhance functionality and usability, we continuously analyze usage patterns, user feedback, and industry trends, helping us develop new features and services to better serve your legal needs.

*Security & Fraud Prevention:To Detect & Investigate (fraudulent or unauthorized activities) we may use your information to ensure compliance with our policies and prevent violations.

This includes monitoring for suspicious activities, detecting and preventing fraud, and addressing security vulnerabilities to safeguard your data and maintain platform integrity.   

*Complying with Legal Obligation:We may use your information to comply with legal & regulatory requirements including but not limited to Data Protection Laws, Data Transfer Laws & Data Retention.

Provided that under data retention we only retain your information for as long as necessary and have clear policies for secure deletion or anonymization.

*Customer Support: We communicate about your account and legal matters by sending notification, update, and transactional emails related to your platform usage.

Our aim is to deliver a seamless and satisfactory customer support experience while maintaining privacy and data protection standards. 

*Legal Analysis & Advice:Your information is utilized by legal professionals to analyze legal documents and offer tailored legal services and recommendations to address your specific needs. 

With a Steadfast Commitment to excellence, integrity, and your legal well-being, we stand ready to serve as your trusted legal partner on the journey ahead. 

5. TO WHOM WE MAY SHARE YOUR INFORMATION?

We may share your information with the following entities to facilitate our services:

1. Lawyers and Professionals: Empanelled legal professionals who assist in providing legal and challan resolution services.
2. Agents/vendors: Authorized agents who act on our behalf for service fulfillment and client assistance.
3. Any other third-party: Service providers, including hosting providers, payment processors, and other entities essential for operational support.

The importance of protecting the privacy of our customers/users is of utmost importance to us. That is why we share information in the following circumstances:

*Legal Compliance & Protection: In order to respond to legal requests, investigations, and to prevent fraud or abuse, we may share your information with government bodies and law enforcement agencies when required to protect the rights, safety, and property of ours and others.

By prioritizing legal compliance and protection, we aim to foster trust and confidence in our legal services while ensuring the highest standards of integrity and professionalism.

*Legal professionals & Service Providers:

1. Client information, including vehicle-related details, will be shared with empanelled lawyers to facilitate legal services, including challan resolution.
2. Third-party, vendors and agents assisting in legal service fulfillment may have access to the necessary information to perform the service as committed to the end-user.

*Business Transactions:During business transactions such as mergers, acquisitions, or asset sales, we prioritize transparent communication to keep you informed about any changes that may affect our services or your data.

We conduct these transactions in compliance with applicable legal and regulatory requirements, ensuring that your data rights are protected and respected at all times. 

Throughout these processes, we remain committed to safeguarding your data and ensuring that your legal matters continue to receive the attention and support they require.

*Third Party Platform & Tools:To Facilitate our services we may utilize third party tools such as hosting providers document management systems, communication platforms, which complement our services and help us maintain high standards of performance and efficiency.  

6. USER RIGHTS.

Under the Digital Personal Data Protection Act (DPDPA), 2023, you have the following rights regarding your personal data:

1. Right to Access: You have the right to request access to the personal data we hold about you.
2. Right to Inform: If you become aware of any unauthorized access, breach, or potential misuse of your personal data provided to Lawyered, you have the right to inform us in writing immediately.
3. Right to Correction: You can request the correction of inaccurate or incomplete personal data.
4. Right to Deletion (Right to Be Forgotten): You may request the deletion of your personal data, subject to legal and contractual obligations.
5. Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format, where technically feasible.
6. Right to Restrict Processing: You can request the restriction of processing your personal data under specific circumstances, such as pending verification of a correction request.
7. Right to Object: You have the right to object to the processing of your personal data for purposes such as direct marketing or automated decision-making.

To exercise any of these rights, please contact our Grievance Officer details of which are mentioned in the contact us tab. We will acknowledge requests within 48 hours and aim to resolve them within 30 days, as per applicable legal requirements.

7. DATA BREACH NOTIFICATION MECHANISM 

At Sproutech Solutions Private Limited (Lawyered), we prioritize data security and have a structured mechanism to address data breaches.

Identification & Containment: Upon detecting a breach, we will assess its impact, isolate affected systems, and deploy security measures to prevent further unauthorized access. 

Investigation & Risk Assessment: Our Data Security Team will analyze the cause, scope, and nature of the breach and document findings for compliance.

Notification: If required, affected individuals and regulatory authorities will be notified within legally mandated timelines, detailing the breach and recommended protective actions.

Remediation & Prevention: We will patch vulnerabilities, enhance security protocols, and implement stronger access controls to prevent future incidents.

User Support: Affected users can reach out to the grievance officer for assistance, with an acknowledgment within 48 hours and resolution within 30 days.

Compliance & Monitoring: This process adheres to the Digital Personal Data Protection Act (DPDPA), 2023, ensuring regulatory compliance and continuous security improvements.

8.  DATA RETENTION AND DELETION. 

We retain the data shared with us for a period of two (2) years to comply with our legal obligations and ensure seamless service delivery. After this period, data will be securely deleted or anonymized unless a longer retention period is required by law.

Users may request the deletion of their data by submitting a formal request through our designated contact channels. Upon receiving the request, we will verify the user's identity to prevent unauthorized deletions. Once verified, we will proceed with the deletion process and issue a deletion certification confirming that the data has been permanently removed from our systems. 

Please note that certain legal or regulatory obligations may require us to retain specific data even after a deletion request is processed.

9. SECURITY MEASURES.

Sproutech Solutions Private Limited employs a combination of administrative, technical, and physical safeguards to protect your personal data, including:

1. Encryption: All sensitive data is encrypted both in transit and at rest using industry-standard encryption protocols.

2. Access Controls: Access to personal data is restricted to authorized personnel only, based on their roles and responsibilities.

3. Regular Security Audits: We conduct regular security assessments and audits to identify and address potential vulnerabilities.

4. Firewall and Intrusion Detection Systems:Our infrastructure is protected by advanced firewall and intrusion detection systems to prevent unauthorized access.

5. Secure Development Practices: We follow secure coding standards and regularly update our software to mitigate security risks.

6. Employee Training: Our staff undergoes regular training on data protection and information security best practices.

10. CHANGES TO THIS PRIVACY POLICY. 

We may update this Privacy Policy from time to time. Any changes we make will be posted on this page. We encourage you to review this Privacy Policy periodically for any updates.

Your continued use of our services following the implementation of changes to our Privacy Policy constitutes acceptance of the updated terms, reaffirming your commitment to our data handling practices.

The Personal Information subject to this Privacy Policy will be collected and retained by the Company.  

Grievance Officer :

Name:- Ms Chandni Barak

Designation:- Senior Manager-Legal Operations

E-mail:- chandani.barak@lawyered.in