Privacy Policy

When you interact with iAutomate — whether through our website, contact forms, demos, or services — we may collect the following categories of information:

We do not collect sensitive personal data such as financial account numbers, government IDs, health information, or biometric data unless explicitly required and consented to for a specific service.

Your information is used solely to provide and improve our services. Specifically, we use it to:

• Respond to demo requests, enquiries, and support tickets
• Deliver, configure, and maintain automation solutions you have engaged us for
• Send service updates, invoices, and account notifications
• Send relevant marketing communications — you may opt out at any time
• Analyse website usage to improve our platform and content
• Comply with applicable legal obligations in India and other jurisdictions we operate in
• Prevent fraud, abuse, and unauthorised access to our systems

iAutomate builds automation solutions using the WhatsApp Business API (provided by Meta Platforms, Inc.) and other third-party platforms. When we set up or manage these integrations on your behalf:

• We access only the data required to configure and operate the agreed automation workflows
• End-user data (your customers' names, phone numbers, and message content) is processed according to the privacy policy of the respective platform (e.g., Meta's Privacy Policy for WhatsApp)
• iAutomate acts as a data processor on your behalf — you remain the data controller for your customers' data
• We enter into Data Processing Agreements (DPAs) with clients where required by law

Other third-party platforms we may integrate with include: Microsoft 365, ServiceNow, Zoho CRM, Salesforce, Google Workspace, and payment gateways. Each operates under its own privacy policy.

We take data security seriously and implement multiple layers of protection:

• Encryption in transit: All data transmitted between your browser and our servers is encrypted using TLS 1.2 or higher
• Encryption at rest: Stored data is encrypted using AES-256
• Access controls: Role-based access — only authorised team members can access client data on a need-to-know basis
• Infrastructure: Our systems are hosted on ISO 27001 certified cloud infrastructure
• Audits: Regular internal security reviews and vulnerability assessments

Data is primarily stored on servers located in India. Where data is transferred internationally (e.g., for cloud services), we ensure appropriate safeguards are in place.

Our website uses cookies and similar tracking technologies. Here's what we use and why:

You can control cookie preferences through your browser settings. Disabling non-essential cookies will not affect your ability to use the site's core features.

We do not sell, rent, or trade your personal data. We may share it only in these limited circumstances:

• Service providers: Trusted sub-processors (cloud hosts, email services, analytics tools) who are contractually bound to protect your data
• Legal obligations: When required by law, court order, or government authority in India or applicable jurisdictions
• Business transfers: In the event of a merger or acquisition, with prior notice to affected users
• With your consent: For any other purpose, only after we've informed you and received explicit consent

Under applicable data protection laws (including India's Digital Personal Data Protection Act, 2023), you have the following rights:

• Access: Request a copy of the personal data we hold about you
• Correction: Ask us to correct inaccurate or incomplete data
• Erasure: Request deletion of your personal data ("right to be forgotten")
• Portability: Receive your data in a structured, machine-readable format
• Objection: Object to processing for direct marketing purposes at any time
• Withdraw consent: Where processing is based on consent, withdraw it without affecting prior lawful processing
• Nominate: Nominate another person to exercise rights on your behalf in case of death or incapacity

To exercise any of these rights, email us at hello@iautomate.in. We will respond within 30 days. We may need to verify your identity before fulfilling the request.

We retain personal data only as long as necessary for the purpose it was collected, or as required by law:

• Active client data: Retained for the duration of the contract plus 3 years after termination
• Prospect / enquiry data: Retained for 2 years from last interaction
• Financial records: Retained for 7 years as required by Indian tax law
• Website analytics data: Aggregated and anonymised after 26 months

Once the retention period expires, data is securely deleted or anonymised so it can no longer be linked to an individual.

iAutomate's services are designed for businesses and are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a minor has provided us with personal information, please contact us immediately at hello@iautomate.in and we will delete it promptly.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or applicable law. When we make material changes, we will:

• Update the "Last updated" date at the top of this page
• Send an email notification to active clients and registered users
• Display a notice on our website for at least 30 days

Continued use of iAutomate's services after changes take effect constitutes your acceptance of the revised policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please reach out:

• Email: hello@iautomate.in
• Phone: +91 9888-790-890
• Website: iautomate.in
• WhatsApp: Message us at +91 9888-790-890

We aim to resolve all privacy-related concerns promptly and fairly. If you are not satisfied with our response, you may escalate the matter to the relevant data protection authority.