Privacy Policy

Last updated: placeholder · DPDP Act 2023 aligned

1. What we collect

Company identity (GSTIN, legal name, registered address sourced from the GST network), user details you provide (name, corporate email, phone, designation, team), catalog and auction data, and platform activity recorded in our audit trail.

2. Why we process it

To verify business identity, match buyers and sellers, run auctions, record deals, and keep a tamper-evident history. We process data on the basis of your consent and to perform the service you signed up for.

3. Your rights (DPDP)

You may request a copy of your data (export) and request deletion of your account. Deletion soft-disables your account and queues a purge of personal data, subject to a legal hold where an open dispute requires retention. Audit history is preserved in de-identified form where required.

4. No children's data

This is a business-to-business platform. We do not knowingly process data of minors.

5. Sharing & identity masking

During blind bidding, seller identities and competitor prices are masked. A seller's identity is revealed to the buyer only after that seller Accepts a requirement (or after the auction closes). We do not sell your personal data.

6. Retention & breach

Auction and deal records are retained for audit. We maintain a breach log and are prepared to notify affected parties within 72 hours of a confirmed breach.

[Placeholder] Data Protection Officer contact, grievance redressal, and retention schedules to be finalised with counsel.