1. Information We Collect
We collect information you provide directly to us, including:
- Name, email address, and contact information
- Company name and business website URL
- Payment information (processed by Cashfree, not stored by us)
- Business credentials for platforms your agent manages
We also automatically collect certain technical information when you use our Service, including IP addresses, browser type, and pages visited. We use Google Analytics to understand website usage patterns.
By submitting your information through our forms, you consent to the collection and processing of your personal data as described in this policy, in accordance with the Digital Personal Data Protection Act, 2023 (DPDP Act). For users in the European Economic Area (EEA), processing is also governed by the General Data Protection Regulation (GDPR).
2. How We Use Information
We use your information to:
- Configure and operate your dedicated AI CBO agent
- Process payments and send billing communications
- Send service notifications and updates
- Provide customer support
- Improve our Service through aggregated analytics
We will only send marketing communications if you have provided explicit consent. You may withdraw consent at any time by emailing [email protected].
3. Lawful Basis for Processing (GDPR)
For users in the EEA, we process personal data under the following lawful bases:
- Contract performance — processing necessary to deliver the AgentGrow Service you subscribed to (agent configuration, content generation, CRM management)
- Consent — for marketing communications, cookies, and analytics. You may withdraw consent at any time.
- Legitimate interests — for security monitoring, fraud prevention, and service improvement, where these interests do not override your rights
- Legal obligation — where required by applicable law (tax records, regulatory compliance)
5. Cross-Border Data Transfer
Some of our service providers (Anthropic, AWS, Cloudflare) may process data outside India. By using our Service, you consent to the transfer of your data to jurisdictions that may have different data protection standards, as permitted under the DPDP Act, 2023. For EEA users, transfers to countries outside the EEA are made pursuant to the service providers' standard contractual clauses (SCCs) or other appropriate safeguards under GDPR Article 46. We ensure that all service providers maintain adequate security measures.
6. Data Security
We implement security measures including isolated Kubernetes namespaces per client, encrypted secrets management, network policy enforcement, and TLS encryption for all data in transit. Credentials are stored as Kubernetes Secrets and never logged.
7. Data Retention
We retain your data for as long as your subscription is active. Upon cancellation, your agent data is deleted within 30 days. You may request a CSV export of your CRM/lead data before deletion. Lead capture data from website forms is retained for 2 years unless you request earlier deletion.
8. Your Rights
Under the DPDP Act, 2023 and applicable laws, you have the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Request deletion (erasure) of your data
- Withdraw consent for data processing
- Data portability (export your lead CRM data as CSV)
- Nominate another person to exercise your rights on your behalf
To exercise these rights, contact us at [email protected]. We will respond within 7 business days.
10. Grievance Officer
In accordance with the Information Technology Act, 2000 and DPDP Act, 2023, for any privacy concerns or complaints, contact:
- Name: Rajesh Gheware
- Designation: Managing Partner
- Email: [email protected]
- Phone: +91-974-080-7444
gheWARE uniGPS Solutions LLP, 2146 Sunscape, Sobha Hillview, Kanakapura Road, Bengaluru, Karnataka, INDIA 560109.
Grievances will be acknowledged within 24 hours and resolved within 15 days of receipt.