Privacy Policy

Effective Date: 3rd June 2025
Last Updated: 3rd June 2025

1. Introduction

Welcome to Walue.biz, operated by ZIBMOC Business Solutions Pvt Ltd ("Walue," "we," "us," or "our"). We are committed to protecting your privacy and ensuring the security of your personal data in accordance with India's Digital Personal Data Protection Act (DPDPA) 2023 and other applicable laws.

This Privacy Policy explains how we collect, use, process, store, and protect your personal data when you use our AI-driven SaaS solutions, cloud infrastructure services, and related platforms.

Key Information

• Data Fiduciary: ZIBMOC Business Solutions Pvt Ltd

• Business Address: 4, 3rd cross, 1st main, Bommanahalli, Bangalore 560068

• Contact Email: info.zibmoc@walue.biz

• Data Protection Officer Email: info.zibmoc@walue.biz

2. Scope and Applicability

This Privacy Policy applies to:

• Our website (walue.biz and related domains)

• Our SaaS platforms and AI solutions

• Cloud infrastructure services

• Mobile applications

• Customer support interactions

• Marketing communications

Territorial Scope: This policy applies to processing of digital personal data within India and outside India when offering goods or services to individuals in India.

3. Definitions

As per the Digital Personal Data Protection Act 2023:

• Data Principal: You, the individual whose personal data we process

• Data Fiduciary: Walue, as the entity determining the purpose and means of processing

• Data Processor: Third parties who process data on our behalf

• Personal Data: Any data relating to you that can identify you directly or indirectly

• Processing: Any operation performed on personal data

4. Personal Data We Collect

4.1 Information You Provide Directly

• Identity Information: Name, email address, phone number, company name, job title

• Account Information: Username, password (encrypted), profile preferences

• Business Information: Company size, industry, use cases, requirements

• Communication Data: Messages, feedback, support requests

• Payment Information: Billing address, payment method details (processed securely by payment processors)

4.2 Information Collected Automatically

• Technical Data: IP address, browser type, device information, operating system

• Usage Data: Pages visited, features used, time spent, click patterns

• Performance Data: System performance metrics, error logs, service usage statistics

• Location Data: General location based on IP address (not precise location)

4.3 Information from Third Parties

• Integration Data: Data from third-party services you connect to our platform

• Public Sources: Publicly available business information for B2B services

• Partners: Information from authorized business partners or resellers

5. Legal Basis for Processing

We process your personal data based on:

5.1 Consent

• Marketing communications

• Optional features and analytics

• Newsletter subscriptions

• Beta program participation

5.2 Legitimate Use (as per DPDPA 2023)

• Service Provision: Processing necessary to provide our SaaS services

• Security: Protecting our systems and preventing fraud

• Legal Compliance: Meeting regulatory and legal obligations

• Business Operations: Internal analytics, service improvement

• Emergency Response: Responding to technical emergencies or security incidents

5.3 Voluntary Sharing

When you voluntarily provide information for specific purposes without indicating non-consent.

6. How We Use Your Personal Data

6.1 Primary Purposes

• Service Delivery: Providing AI solutions, cloud infrastructure, and SaaS platforms

• Account Management: Creating and managing your user accounts

• Customer Support: Responding to queries and providing technical assistance

• Platform Optimization: Improving our services based on usage patterns

• Security: Protecting against unauthorized access and cyber threats

6.2 Secondary Purposes (with Consent)

• Marketing Communications: Sending newsletters, product updates, promotional offers

• Product Development: Using aggregated data to develop new features

• Analytics: Understanding user behavior to improve user experience

• Research: Conducting market research and industry analysis

6.3 We Do NOT Use Your Data For

• Selling to third parties for commercial purposes

• Unauthorized marketing or spam

• Profiling for discriminatory purposes

• Any purpose not disclosed in this policy

7. Data Sharing and Disclosure

7.1 Service Providers and Processors

We may share data with trusted third-party processors:

• Cloud Hosting: AWS, Google Cloud Platform, Microsoft Azure

• Payment Processing: Secure payment gateways (data not stored by us)

• Customer Support: Ticketing and communication platforms

• Analytics: Privacy-compliant analytics services

• Security: Cybersecurity and monitoring services

All processors are bound by data processing agreements ensuring DPDPA compliance.

7.2 Legal Requirements

We may disclose data when required by:

• Court orders or legal processes

• Regulatory authorities (SEBI, RBI, etc.)

• Law enforcement agencies

• Government authorities for national security

7.3 Business Transfers

In case of merger, acquisition, or sale, your data may be transferred with appropriate safeguards.

7.4 We Do NOT Share Data With

• Unauthorized third parties

• Marketing companies (without consent)

• Social media platforms (except with explicit consent)

• Data brokers or aggregators

8. Your Rights as Data Principal

Under DPDPA 2023, you have the following rights:

8.1 Right to Information

• Summary of personal data we process

• Purposes of processing

• Categories of data collected

• Identity of data processors

• Retention periods

8.2 Right to Correction and Updating

• Correct inaccurate personal data

• Update incomplete information

• Modify account preferences

8.3 Right to Deletion (Right to be Forgotten)

• Delete personal data when no longer needed

• Remove data when consent is withdrawn

• Erase data upon account closure

Exceptions: We may retain data for legal compliance, dispute resolution, or legitimate business purposes.

8.4 Right to Data Portability

• Receive your data in structured, machine-readable format

• Transfer data to another service provider

8.5 Right to Nominate

• Nominate another person to exercise your rights in case of death or incapacity

8.6 How to Exercise Your Rights

Timeline: We will respond within 30 days of receiving a valid request.

Contact Methods:

• Email: info.zibmoc@walue.biz

• Online Form: [Link to Data Subject Request Form]

• Postal Address: [Insert Complete Registered Address]

Required Information:

• Full name and contact details

• Account information (if applicable)

• Specific request type

• Identity verification documents

9. Consent Management

9.1 Consent Standards

Our consent is:

• Free: Given without coercion

• Specific: Clear about purpose

• Informed: Full disclosure provided

• Unconditional: No bundled consent

• Unambiguous: Clear affirmative action required

9.2 Consent Withdrawal

You can withdraw consent at any time:

• Account Settings: Manage preferences in your account

• Email Links: Use unsubscribe links in communications

• Contact Us: Email info.zibmoc@walue.biz

• Granular Control: Withdraw consent for specific purposes

Effect: Withdrawal doesn't affect lawfulness of processing before withdrawal.

10. Children's Data Protection

10.1 Age Restrictions

• Our services are intended for users 18+ years

• We do not knowingly collect data from children under 18

• If we discover child data, we will delete it immediately

10.2 Verifiable Parental Consent

If children's data is processed (with parental consent):

• Verifiable parental consent required

• Parents can exercise rights on child's behalf

• Enhanced security measures applied

11. Data Security and Protection

11.1 Technical Safeguards

• Encryption: Data encrypted in transit and at rest

• Access Controls: Role-based access with multi-factor authentication

• Network Security: Firewalls, intrusion detection systems

• Regular Audits: Security assessments and penetration testing

• Secure Development: Privacy by design principles

11.2 Organizational Measures

• Staff Training: Regular privacy and security training

• Access Policies: Strict need-to-know access controls

• Incident Response: Comprehensive breach response procedures

• Vendor Management: Due diligence on all data processors

11.3 Data Retention

• Active Accounts: Data retained while account is active

• Inactive Accounts: Data deleted after 3 years of inactivity

• Legal Requirements: Some data retained longer for compliance

• Backup Systems: Secure deletion from all systems including backups

12. Cross-Border Data Transfers

12.1 International Transfers

We may transfer data outside India to:

• Adequate Countries: As notified by Indian government

• Safeguarded Transfers: With appropriate contractual safeguards

• Necessary Transfers: For service provision with your consent

12.2 Safeguards

• Standard Contractual Clauses (SCCs)

• Adequacy decisions by Indian authorities

• Binding Corporate Rules (when available)

• Your explicit consent for specific transfers

13. Cookies and Tracking Technologies

13.1 Types of Cookies

• Essential Cookies: Required for website functionality

• Analytics Cookies: Understanding website usage (with consent)

• Marketing Cookies: Personalized marketing (with consent)

• Preference Cookies: Remembering your settings

13.2 Cookie Management

• Browser Settings: Control cookies through browser preferences

• Cookie Banner: Manage preferences via our cookie consent tool

• Opt-out Links: Available for marketing cookies

• Regular Review: Cookie preferences can be changed anytime

13.3 Third-Party Tracking

• We use privacy-compliant analytics tools

• No unauthorized third-party tracking

• Clear disclosure of all tracking technologies

14. Marketing Communications

14.1 Consent-Based Marketing

• Explicit consent required for marketing emails

• Clear identification of marketing content

• Easy unsubscribe options in every communication

• Preference management available

14.2 Legitimate Business Communications

Without additional consent, we may send:

• Service-related notifications

• Account security alerts

• Legal or regulatory updates

• Transaction confirmations

15. Data Breach Notification

15.1 Our Obligations

In case of a personal data breach:

• Immediate Response: Contain and assess the breach

• Authority Notification: Notify Data Protection Board within 72 hours

• Individual Notification: Inform affected data principals if high risk

• Remedial Measures: Implement immediate protective measures

15.2 Your Rights

If you're affected by a breach:

• Notification: We'll inform you without undue delay

• Support: Provide assistance and guidance

• Remedies: Offer appropriate remedial measures

• Compensation: As per applicable law

16. Grievance Redressal

16.1 Complaint Process

1. Internal Resolution: Contact us at info.zibmoc@walue.biz

2. Timeline: Response within 30 days

3. Escalation: If unsatisfied, approach Data Protection Board of India

4. Documentation: We maintain records of all complaints

16.2 Appeal Process

• Right to appeal our decisions

• External review options available

• Independent dispute resolution mechanisms

17. Updates to This Policy

17.1 Policy Changes

• We may update this policy to reflect legal changes or business needs

• Material changes will be notified via email or website notice

• Continued use constitutes acceptance of updated policy

• Version history available upon request

17.2 Notification Methods

• Email Notification: To registered users

• Website Banner: Prominent notice on website

• Account Dashboard: In-app notifications

• Direct Communication: For significant changes

18. Contact Information

18.1 General Privacy Inquiries

Email: info.zibmoc@walue.biz

18.2 Data Protection Officer

Email: info.zibmoc@walue.biz

18.3 Registered Office

ZIBMOC Business Solutions Pvt Ltd
[Insert Complete Registered Address]
CIN: [Insert Company Identification Number]

19. Legal and Regulatory Information

19.1 Applicable Laws

This policy complies with:

• Digital Personal Data Protection Act (DPDPA) 2023

• Information Technology Act, 2000

• SEBI regulations (for investment services)

• Other applicable Indian laws

19.2 Regulatory Bodies

• Data Protection Board of India: Primary regulatory authority

• SEBI: For investment and brokerage services

• RBI: For payment-related services

• Cyber Crime Authorities: For security incidents

19.3 Governing Law

• This policy is governed by Indian law

• Jurisdiction: Courts of Mumbai, Maharashtra

• Dispute resolution as per Indian legal framework

20. Acknowledgment and Consent

By using our services, you acknowledge that:

• You have read and understood this Privacy Policy

• You consent to the processing of your personal data as described

• You understand your rights and how to exercise them

• You can withdraw consent at any time

For questions about this Privacy Policy, please contact us at info.zibmoc@walue.biz

This Privacy Policy is effective as of [Insert Date] and was last updated on 3rd June 2025. Version: 2.0 (DPDPA 2023 Compliant)