Privacy Policy

1. Scope of this policy

This Privacy Policy explains how [REPLACE: registered company name] ("BizlumoAI", "we", "us") handles personal data in connection with our HRMS Service. It applies to:

• Customer data: Information about you (the business signing up) — admin contact details, billing info
• Employee data: Information about your employees that you upload — names, contact, attendance, payroll, face embeddings
• Visitor data: Information about people who visit our marketing website — IP address, browser, page views

This policy is governed by the Digital Personal Data Protection Act 2023 (DPDP) and the Information Technology Act 2000 (IT Act). For EU-based visitors, it also addresses GDPR-equivalent rights where applicable.

2. What personal data we collect

2.1 From you (the customer)

• Name, email, phone, company name (at signup)
• Billing address, GSTIN (if provided), payment method (via Razorpay — we don't see your card)
• How you use the Service (pages visited, features used, error logs)

2.2 About your employees (uploaded by you)

• Identity: name, employee ID, date of birth, gender, joining date
• Contact: email, phone, address, emergency contact
• Government IDs: PAN, Aadhaar (last 4 digits only), UAN, ESIC number
• Banking: account number, IFSC (for salary disbursement)
• Employment: salary, designation, department, reporting manager
• Attendance: check-in/out times, leave history, location (if GPS attendance enabled)
• Biometric: face embeddings (numerical hashes, not images — see section 6)

2.3 From visitors to our marketing site

• IP address, browser type, device type, referring URL
• Pages viewed and time spent (via Plausible Analytics — no cookies, no cross-site tracking)

3. How we use this data

We process personal data only for these purposes:

• To provide the Service: process attendance, calculate payroll, generate reports
• To bill you: charge subscriptions, issue GST invoices, handle failed payments
• To support you: respond to your support tickets, troubleshoot issues
• To improve the Service: aggregate usage analytics (no personal data leaves your account boundary)
• To comply with law: respond to legal requests, file required tax returns

We never:

• Sell personal data to third parties
• Use employee data for our own marketing
• Train AI models on customer data without explicit opt-in (currently no such opt-in exists; feature would be added in future and would be off by default)
• Share data with one customer about another customer

4. Who we share data with

We share personal data only with the following categories of third parties, and only as needed to provide the Service:

• Razorpay: for payment processing. They handle your card data — we never see it. Razorpay's privacy policy.
• Amazon Web Services (AWS Mumbai region): hosting infrastructure. AWS doesn't access customer data; it stores encrypted bytes.
• Email delivery (Amazon SES / SendGrid): for transactional emails (verification, payslip notifications, billing receipts).
• Plausible Analytics: privacy-respecting website analytics. No personal data, no cookies, no cross-site tracking.
• Government/legal authorities: only when legally required (court order, tax authority request, etc.).

We have data processing agreements with all third parties to ensure they handle data according to DPDP Act requirements.

5. Where we store data

All customer and employee data is stored on AWS servers located in Mumbai, India (ap-south-1 region). Data does not leave Indian jurisdiction except in transit when:

• You access the Service from outside India (e.g. when traveling)
• We send transactional emails via international email providers
• We process payments via Razorpay (which may use international card networks)

6. Face data — how we handle it

Face data is sensitive personal information. We treat it accordingly.

6.1 What we store

We never store raw face images on our servers. The kiosk app (running on your tablet) captures the face image, computes a 128-dimensional numerical embedding (a face "fingerprint"), and transmits only that embedding to our servers. The original image is discarded immediately.

6.2 Why this matters

The embedding is a one-way hash. It cannot be reversed back into a face image. If our database were ever breached, attackers couldn't reconstruct your employees' faces from the data they'd obtain.

6.3 Consent

Under DPDP Act 2023, biometric data requires explicit consent. As the employer, you are responsible for obtaining your employees' explicit consent before enrolling them in the kiosk system. We provide a sample consent form template in the admin dashboard; you should have your CA or legal counsel customise it.

6.4 Deletion

When an employee leaves your company (and you mark them as inactive), their face embedding is deleted from our servers within 30 days. You can also delete embeddings on demand from the dashboard.

7. Data retention

• Active accounts: data retained as long as your subscription is active
• Cancelled accounts: 90 days, then permanently deleted
• Payroll/tax records: 8 years (Income Tax Act requirement)
• Face embeddings of inactive employees: 30 days, then deleted
• Backups: rolling 30-day window; older backups overwritten
• Server logs: 90 days, then deleted

8. Your rights

Under DPDP Act 2023, you (and your employees) have the right to:

8.1 Right to access

Request a copy of personal data we hold. Customers can self-export via dashboard. Employees should request through their employer (you); if they contact us directly, we'll redirect them.

8.2 Right to correction

Request correction of inaccurate data. Customers can edit directly in the dashboard.

8.3 Right to erasure

Request deletion of personal data, subject to legal retention requirements (e.g. tax records). Cancel your account to trigger 90-day deletion timeline.

8.4 Right to grievance redressal

File a complaint with our Data Protection Officer at dpo@bizlumoai.com. We respond within 30 days. If unresolved, you can escalate to the Data Protection Board of India.

8.5 Right to nominate

You can nominate another individual to exercise these rights on your behalf in case of incapacity or death. Contact our DPO to register a nominee.

9. Cookies and tracking

Our marketing website (this site) uses no third-party cookies and no cross-site tracking. We use Plausible Analytics, which tracks anonymous page views without cookies or personal identifiers.

Our admin dashboard (after you log in) uses functional cookies for session management — these are required for the app to work. We don't use marketing or advertising cookies anywhere.

10. Children's data

The Service is not intended for use by individuals under 18. We don't knowingly collect data from children. If you become aware that a child has provided us personal data, contact dpo@bizlumoai.com and we'll delete it.

11. Changes to this policy

We may update this policy from time to time. Material changes will be announced via email at least 30 days in advance. The "Last updated" date at the top of this page reflects the most recent change.

12. Contact

Questions about privacy or data handling? Contact our Data Protection Officer:

Data Protection Officer
Email: dpo@bizlumoai.com
Postal: [REPLACE: registered address]
Response time: within 14 business days

Disclaimer: This Privacy Policy template is provided for convenience and is not a substitute for legal advice. India's DPDP Act 2023 has specific requirements that may apply differently to your business. Have a qualified Indian legal practitioner review and customise this policy before publishing.