Legal
Privacy Policy
Last updated: 20 May 2026 · Effective: 20 May 2026
This policy explains what personal data ASEGYA collects across our website, mobile apps and platform, why we collect it, who we share it with, how long we keep it, and the choices and rights you have.
On this page
01Who we are
ASEGYA (“ASEGYA”, “we”, “us”, “our”) is an India-based technology company building an AI, automation and vision-systems ecosystem. For privacy questions and requests, the data controller can be reached at privacy@asegya.com.
Our registered legal entity name, registration number and registered office address are listed on our Contact section and will be added here once incorporation details are finalised.
02Scope of this policy
This policy covers three surfaces:
- The website — asegya.com and its pages.
- ASEGYA apps — our mobile and web applications, including any app you sign in to with an ASEGYA account or a third-party login.
- The ASEGYA platform — software we operate for organisations (for example, a city or enterprise client). Where we host that software on behalf of a client, that client is the data controller and we act as a data processor under their instructions; this policy then describes our processor practices.
03Data we collect
3.1 When you visit the website
- Server & security logs — our hosting provider records standard request metadata (IP address, user-agent, timestamp, requested URL) to deliver pages and defend against abuse.
- Privacy-first analytics — we use a cookieless analytics beacon that records aggregate page views without building a profile of you and without cross-site tracking.
- Contact form — the form on our site opens your own email client with a pre-filled message. We receive only what you choose to send us by email; the form itself stores nothing.
3.2 When you use an ASEGYA account or app
- Account data — name, email address, and (if you choose) phone number.
- Authentication — a securely hashed password, or, if you sign in through a third-party provider (such as Facebook, Google or DigiLocker), the basic profile fields that provider returns. We never receive or store your third-party password.
- Usage & device data — app version, device type and operating system, language, and in-app actions, used to operate and improve the service.
- Push tokens — if you enable notifications, a push token that lets us deliver alerts via Apple (APNs) or Google (FCM).
- Content you submit — for example a complaint, an incident report, an attachment, or a support message.
3.3 What we deliberately do not collect
- We do not use advertising cookies or sell data to advertisers.
- For government-identity features, sensitive identifiers (such as an Aadhaar number) are never stored in clear text — only a one-way cryptographic hash is retained, so the original number cannot be recovered from our systems.
04How we use data
- To provide, secure and maintain the website, apps and platform.
- To respond to enquiries, support requests and complaints.
- To send service messages and, where you opted in, alerts you requested.
- To detect, prevent and investigate fraud, abuse and security incidents.
- To meet legal, accounting and regulatory obligations.
- To understand aggregate usage and improve our products.
We do not use your personal data for automated decisions that produce legal or similarly significant effects without a human in the loop.
05Legal basis
We process personal data in line with India’s Digital Personal Data Protection Act, 2023 (DPDPA) and, where applicable, comparable laws such as the EU GDPR. Depending on the situation, our basis is:
| Basis | Example |
|---|---|
| Consent | Opting in to emergency alerts or marketing. |
| Contract | Running an account or app you signed up for. |
| Legal obligation | Retaining records the law requires us to keep. |
| Legitimate interest | Securing our systems and preventing abuse. |
07Data retention
We keep personal data only as long as needed for the purpose it was collected, then delete or anonymise it. Account data is kept while your account is active. Security and audit logs are kept for a limited period for safety and compliance. Some records are retained longer where the law requires it (for example, tax or financial records). See Data Deletion for how to request earlier removal.
08Security
We protect data with encryption in transit (HTTPS/TLS), encryption of sensitive fields at rest, strong password hashing, role-based access control, tenant isolation, and append-only audit logging. No system is perfectly secure, but we work continuously to reduce risk and we run periodic internal security reviews. If a breach affects you, we will notify you and the relevant authority as the law requires.
09Your rights
Subject to applicable law, you can:
- Access — ask what personal data we hold about you.
- Correct — ask us to fix inaccurate or incomplete data.
- Delete — ask us to erase your data (see below).
- Withdraw consent — opt out of anything you opted into, at any time.
- Grievance — raise a complaint with our grievance contact, and escalate to the Data Protection Board of India if unresolved.
To exercise any right, email privacy@asegya.com. We respond within the timeframe the law sets, normally within 30 days.
10Data deletion
You can request deletion of your account and personal data at any time. Full step-by-step instructions — including how to delete data tied to a Facebook or other third-party login — are on our dedicated page: asegya.com/data-deletion.html.
11Children
Our services are not directed at children under 18. Where the law requires verifiable parental consent for a minor, we will obtain it before processing that data. If you believe a child has given us personal data without consent, contact us and we will remove it.
12International transfers
ASEGYA operates from India and may use service providers in other countries. Where data crosses borders, we use providers and safeguards consistent with applicable data-protection law.
13Changes to this policy
We may update this policy as our products and the law evolve. We will change the “Last updated” date above and, for significant changes, give notice through the website or app. Continued use after an update means you accept the revised policy.
14Contact us
Privacy & data-protection matters:
privacy@asegya.com
General enquiries:
hello@asegya.com