Last Updated on July 21st, 2024

This privacy policy (the "PRIVACY POLICY") applies to to your use of the website of 1Shelf hosted at 1shelf.in, the Services (as defined under the 1Shelf "Terms of Use") and 1Shelf applications on mobile platforms (Android, Blackberry, Windows Phone, iOS etc.) (collectively ("1SHELF" or "WEBSITE"), but does not apply to any third party websites that may be linked to them, or any relationships you may have with the businesses listed on 1Shelf.

The terms "WE", "OUR" and "US" refer to 1Shelf and the terms "YOU", "YOUR" and "USER" refer to you, as a user of 1Shelf. The term "PERSONAL INFORMATION" means information that you provide to us which personally identifies you to be contacted or identified, such as your name, phone number, email address, and any other data that is tied to such information. Our practices and procedures in relation to the collection and use of Personal Information have been set-out below in order to ensure safe usage of the Website for you.

We have implemented reasonable security practices and procedures that are commensurate with the information assets being protected and with the nature of our business. While we try our best to provide security that is better than the industry standards, because of the inherent vulnerabilities of the internet, we cannot ensure or warrant complete security of all information that is being transmitted to us by you. By visiting this Website, you agree and acknowledge to be bound by this Privacy Policy and you hereby consent that we will collect, use, process and share your Personal Information in the manner set out herein below. If you do not agree with these terms, do not use the Website.

It is clarified that the terms and conditions that are provided separately, form an integral part of your use of this Website and should be read in conjunction with this Privacy Policy.

We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us.

Personal Information - The personal information that we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. The personal information we collect may include the following:

• Names
• Email addresses
• Phone numbers
• Addresses
• Usernames
• Passwords
• IP addresses
• Geographic locations
• Device identifiers
• Debit/Credit Card Information

Sensitive Information - When necessary, with your consent or as otherwise permitted by applicable law, we process the following categories of sensitive information:

• Health information
• Financial information
• Genetic information
• Biometric information
• Data about a person's sex life or sexual orientation
• Data about a person's religious beliefs or affiliations
• Data about a person' political opinions
• Credit worthiness information
• Student data
• Goverment identification information

Payment Information - We may collect data necessary to process your payment if you choose to make purchases, such as your payment instrument number, and the security code associated with your payment instrument. All payment data is handled and stored by Razorpay and Stripe. You may find their privacy notice link(s) here: Razorpay and Stripe.

Social Media Login Information - We may provide you with the option to register with us using your existing social media account details, like your Google, Apple, or other social media account. If you choose to register in this way, we will collect certain profile information about you from the social media provider. The profile information we receive may vary depending on the social media provider concerned, but will often include your name, email address, friends list, and profile picture, as well as other information you choose to make public on such a social media platform.

We will use the information we receive only for the purposes that are described in this privacy notice or that are otherwise made clear to you on the relevant Services. Please note that we do not control, and are not responsible for, other uses of your personal information by your third-party social media provider. We recommend that you review their privacy notice to understand how they collect, use, and share your personal information, and how you can set your privacy preferences on their sites and apps.

Application Information - If you use our application(s), we also may collect the following information if you choose to provide us with access or permission:

• Geolocation Information. We may request access or permission to track location-based information from your mobile device, either continuously or while you are using our mobile application(s), to provide certain location-based services. If you wish to change our access or permissions, you may do so in your device's settings.
• Mobile Device Access. We may request access or permission to certain features from your mobile device, including your mobile device's microphone, camera, contacts, sensors, social media accounts, storage, and other features. If you wish to change our access or permissions, you may do so in your device's settings.
• Mobile Device Data. We automatically collect device information (such as your mobile device ID, model, and manufacturer), operating system, version information and system configuration information, device and application identification numbers, browser type and version, hardware model Internet service provider and/or mobile carrier, and Internet Protocol (IP) address (or proxy server). If you are using our application(s), we may also collect information about the phone network associated with your mobile device, your mobile device’s operating system or platform, the type of mobile device you use, your mobile device’s unique device ID, and information about the features of our application(s) you accessed.
• Push Notifications. We may request to send you push notifications regarding your account or certain features of the application(s). If you wish to opt out from receiving these types of communications, you may turn them off in your device's settings.

This information is primarily needed to maintain the security and operation of our application(s), for troubleshooting, and for our internal analytics and reporting purposes.

All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.

Information automatically collected

We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Services, and other technical information. This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes.

The information we collect includes:

• Log and Usage Data. Log and usage data is service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use our Services and which we record in log files. Depending on how you interact with us, this log data may include your IP address, device information, browser type, and settings and information about your activity in the Services (such as the date/time stamps associated with your usage, pages and files viewed, searches, and other actions you take such as which features you use), device event information (such as system activity, error reports (sometimes called "crash dumps"), and hardware settings).
• Device Data. We collect as information about your computer, phone, tablet, or other device you use to access the Services. Depending on the device used, this device data may include information such as your IP address (or proxy server), device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system, and system configuration information.
• Location Data. We collect location data such as information about your device's location, which can be either precise or imprecise. How much information we collect depends on the type and settings of the device you use to access the Services. For example, we may use GPS and other technologies to collect geolocation data that tells us your current location (based on your IP address). You can opt out of allowing us to collect this information either by refusing access to the information or by disabling your Location setting on your device. However, if you choose to opt out, you may not be able to use certain aspects of the Services.

We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

• To facilitate account creation and authentication and otherwise manage user accounts. We may process your information so you can create and log in to your account, as well as keep your account in working order.
• To deliver and facilitate delivery of services to the user. We may process your information to provide you with the requested service.
• To respond to user inquiries/offer support to users. We may process your information to respond to your inquiries and solve any potential issues you might have with the requested service.
• To send administrative information to you. We may process your information to send you details about our products and services, changes to our terms and policies, and other similar information.
• To fulfill and manage your orders. We may process your information to fulfill and manage your orders, payments, returns, and exchanges made through the Services.
• To enable user-to-user communications. We may process your information if you choose to use any of our offerings that allow for communication with another user.
• To request feedback. We may process your information when necessary to request feedback and to contact you about your use of our Services.
• To send you marketing and promotional communications. We may process the personal information you send to us for our marketing purposes, if this is in accordance with your marketing preferences. You can opt out of our marketing emails at any time.
• To deliver targeted advertising to you. We may process your information to develop and display personalized content and advertising tailored to your interests, location, and more.
• To post testimonials. We post testimonials on our Services that may contain personal information.
• To protect our Services. We may process your information as part of our efforts to keep our Services safe and secure, including fraud monitoring and prevention.
• To evaluate and improve our Services, products, marketing, and your experience. We may process your information when we believe it is necessary to identify usage trends, determine the effectiveness of our promotional campaigns, and to evaluate and improve our Services, products, marketing, and your experience.
• To identify usage trends. We may process information about how you use our Services to better understand how they are being used so we can improve them.
• To determine the effectiveness of our marketing and promotional campaigns. We may process your information to better understand how to provide marketing and promotional campaigns that are most relevant to you.
• To comply with our legal obligations. We may process your information to comply with our legal obligations, respond to legal requests, and exercise, establish, or defend our legal rights.

We use your personal data based on the performance of the contract to provide services and communicate with the Users.

We may share personal data with our affiliates to the extent necessary to develop and/or support 1Shelf. We share your personal data with our contractors to the extent necessary to provide services, technical and customer support. In addition, we can share your data on the following grounds: consent, compliance with the law (or legal obligation), and legitimate interest. Also, we have implemented organizational and technical measures to ensure the security of personal data during data transfer to third-party.

We will ask for your consent unless data transfer is part of the contract performance. Here is the list of the third parties we may engage in the processing of personal data:

• Google Cloud (Google LLC, USA). Here we store our databases, storage, logs, and backups. For more details, please refer to their Privacy Policy.
• Stripe (Stripe Inc, USA). We transfer your data for payment processing on our behalf. For more details, please refer to their Privacy Policy.
• Razorpay (Razorpay Software Private Limited, India). We use your data for payment processing on our behalf. For more details, please refer to their Privacy Policy.
• Google (Google LLC, USA). We use your data for the synchronization of accounts. For more details, please refer to their Privacy Policy.
• Apple Inc (Apple Inc, USA). We receive the technical data about the iOS systems and general statistics. For more details, please refer to their Privacy Policy.
• OpenAI (OpenAI, LLC, USA). We use OpenAI API to provide you with the 1Shelf AI features in specific cases described in this Policy. For more details, please refer to their OpenAI Data Processing Addendum.

We may share your personal data with other contractors, such as auditors, lawyers, accountants, software engineers, and other specialists and experts that we may engage on a contractual basis.

We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements). No purpose in this notice will require us keeping your personal information for longer than the period of time in which users have an account with us.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

We make reasonable efforts to provide a level of security appropriate to the risk associated with the processing of your Personal Data. We maintain organizational, technical, and administrative measures designed to protect the Personal Data covered by this Policy from unauthorized access, destruction, loss, alteration, or misuse. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure.

We reserve the right to update or change our Privacy Policy at any time, and you should review this page periodically for the changes. We will notify you of material changes to the Privacy Policy by posting the new Privacy Policy on this page.

If you have any questions about this Privacy Policy, please contact us at privacy@1shelf.in.