Privacy Policy

1. Introduction

APPHOX Technologies (“Company”, “we”, “our”, “us”) is committed to protecting your privacy and ensuring compliance with applicable global laws including:

• Digital Personal Data Protection Act (DPDP Act) – India
• General Data Protection Regulation (GDPR) – European Union
• IT Act 2000 & SPDI Rules – India
• Global privacy & cybersecurity regulations (as applicable)

By using our websites, SaaS products, cloud platforms, or ERP solutions, you agree to the practices described in this policy.

2. Information We Collect

We may collect the following categories of information:

• Personal Information: Name, email, phone, address, designation.
• Business Information: Company name, domain, industry, GST, CIN.
• HRMS Data: Employee records, attendance, payroll details (as applicable).
• Technical Data: IP address, browser type, device identifiers.
• Usage Data: Interactions, navigation patterns, feature usage.
• Financial Data: Billing details, invoices, transactions (secured).
• AI Data: Inputs provided to AI tools, chatbots, or automation workflows.

3. How We Use Your Data

• To provide ERP, HRMS, SaaS, AI & cloud services
• To improve performance, reliability, and user experience
• To process billing, payments & subscriptions
• To train/improve AI models (only anonymized data)
• To ensure security, fraud prevention & compliance
• To deliver customer support and service updates

4. Legal Basis for Processing (GDPR)

We rely on the following grounds under GDPR:

• Performance of a contract
• Legitimate business interest
• Compliance with legal obligations
• User consent

5. DPDP Act 2023 Compliance (India)

• We collect only necessary data
• We provide clear notice, purpose, and consent
• We allow data access, correction, and deletion
• We maintain secure storage & processing systems
• We notify users of any significant data breaches

6. Cookies & Tracking

We use cookies, analytics tools, and tracking technologies to enhance performance, monitor usage, deliver personalization, and ensure security.

For full details, please review our Cookies Policy.

7. Data Sharing & Disclosure

We do not sell personal data. We may share data with:

• Cloud hosting platforms (AWS, Azure, GCP)
• Payment gateways & billing systems
• Security & fraud-prevention providers
• Customer support & CRM systems
• Government authorities (only when legally required)

8. Data Security Measures

We implement enterprise-grade security:

• Encryption (data at rest & in transit)
• Role-based access control (RBAC)
• Multi-layer firewall & VAPT checks
• SIEM & security monitoring
• Regular backups, audits & security reviews

9. Your Rights

You may request:

• Access to your data
• Correction of inaccurate data
• Deletion of your data (subject to business/legal needs)
• Export of your data
• Withdrawal of consent

10. Data Retention

We retain data only for as long as necessary for business, contractual, or legal requirements.

11. International Data Transfers

Data may be processed in India, Qatar, UAE, UK, US or other regions depending on cloud providers or service partners. All transfers are secured using compliant safeguards.

12. Policy Updates

This Privacy Policy may be updated periodically. Continued use of our services signifies acceptance of the updated version.