Privacy Policy
SMEMinds LLP ("we") operates SMEMinds Amazon Playbook. This notice explains what personal data we collect, why, and your rights under the DPDP Act, 2023. We are the Data Fiduciary for your data.
1. Data we collect
At sign-up and use: your name, email, phone number, company name, business type, marketplace, revenue range, and (optionally) GST number. As you use the Service: your learning progress, and usage/analytics events (pages viewed, session identifiers, referral/UTM source).
2. Why we use it (purpose)
To create and secure your account; to deliver the learning content and track your progress; to process payments and issue receipts; to provide support; to send transactional messages (password reset, OTP, receipts); and to improve the Service. We do not sell your personal data.
3. Consent
We collect and process your data based on the consent you give at sign-up. You may withdraw consent at any time (see "Your rights"); withdrawal does not affect processing already done, and may mean we can no longer provide the Service.
4. Who processes your data (sub-processors)
We share the minimum data needed with these processors:
| Microsoft Azure (Central India) | Application hosting, database, media storage — data residency in India |
| Razorpay | Payment processing (card/UPI/netbanking); we never store your card details |
| Google (Sign-in) | Optional Google sign-in; verifies your email if you choose it |
| Sarvam AI | Text-to-speech narration for learning modules |
| MSG91 / Twilio | One-time-password (OTP) delivery over SMS, when used |
| SMTP email provider | Transactional email (password reset, OTP, receipts) |
Your data is hosted in India (Azure Central India).
5. Retention
We keep your account data while your account is active. If you delete your account, we erase your personal data within 30 days, except records we must keep for legal/tax reasons. Analytics events are retained for up to 24 months.
6. Your rights (DPDP Act)
You have the right to access, correct, and erase your personal data, to withdraw consent, and to grievance redressal. You can exercise access/erasure yourself from your account settings, or email us. We will respond within the timelines required by law.
7. Security
Passwords are stored hashed (PBKDF2). Traffic is encrypted over HTTPS. Access to personal data is restricted to authorised administrators.
8. Grievance Officer
The Grievance Officer, SMEMinds LLP — support@smeminds.com. We aim to acknowledge grievances within 48 hours and resolve them within the statutory period.
9. Changes
We will notify you of material changes to this policy in-app or by email.