Legal
Privacy Policy
Effective Date: March 2026 · Last Reviewed: March 2026
This policy states what personal data Dataguard India collects from visitors to consentos.in and users of the ConsentOS platform, why we collect it, how long we keep it, and what rights you hold over it under the Digital Personal Data Protection Act 2023.
Dataguard India Private Limited ("Dataguard India", "we", "our", "us")
Registered in India under the Companies Act 2013
Registered Address: [Insert Registered Office Address]
Effective Date: March 2026
1. Who This Policy Applies To
This policy applies to:
- Visitors to consentos.in
- Businesses and individuals who register for or use a ConsentOS account
- Contacts who submit inquiries through our website or by email
2. Data We Collect
Website visitors
When you visit consentos.in, we collect log data including your IP address, browser type, pages visited, and timestamps. This data is used to monitor site performance. It is not used to build individual profiles or for advertising purposes.
We use cookies on this website. See Section 8 for the full cookie list.
Account registration
When you create a ConsentOS account, we collect your name, business email address, company name, and job role. This information is necessary to create and maintain your account.
Platform usage
While you use the ConsentOS platform, we collect usage data including feature access logs, API call records, and error reports. This data is used to maintain platform reliability and diagnose technical issues.
Payments
Payment processing is handled by [Payment Processor Name]. Dataguard India does not store card numbers or full payment credentials. We retain a record of the transaction amount, date, and plan type for billing and tax purposes.
Inquiries and communications
If you contact us by email or through a website form, we retain the content of that communication along with your contact details, for as long as the inquiry remains open and for 12 months after it is resolved.
3. How We Use Your Data
We use the data described above for the following purposes:
- Creating and maintaining your ConsentOS account
- Delivering the platform and its features
- Sending transactional communications, including account confirmations, product updates, and billing notifications
- Complying with our obligations under the DPDP Act 2023 and other applicable Indian law
- Diagnosing and resolving technical issues
- Improving platform reliability and performance
We do not sell personal data. We do not use personal data for advertising targeting on third-party platforms.
4. Third-Party Processors
To operate ConsentOS, we share certain personal data with the following third-party processors. Each processor is engaged under a data processing agreement and is required to handle your data in accordance with applicable law.
| Processor | Country | Purpose | Data Transferred |
|---|---|---|---|
| HubSpot Inc. | United States | Contact management and CRM | Name, email address, company name, inquiry content |
| Resend Inc. | United States | Transactional email delivery | Name, email address |
| [Payment Processor] | [Country] | Payment processing | Transaction amount, billing name, billing email |
| Cloudflare Inc. | United States | Website hosting and infrastructure | Log data, platform data (encrypted in transit) |
Data transfers to processors outside India are made under appropriate contractual safeguards in accordance with the DPDP Act 2023.
5. Your Rights
Under the DPDP Act 2023, you have the following rights over your personal data:
Right to access. You may request a summary of the personal data we hold about you.
Right to correction. You may request that we correct inaccurate or incomplete data.
Right to erasure. You may request that we delete your personal data. We will do so within 30 days of receiving a verified request, except where retention is required by law.
Right to withdraw consent. Where processing is based on your consent, you may withdraw it at any time. Withdrawal takes effect from the date of your request and does not affect the legality of processing carried out before that date.
Right to nominate. You may nominate another individual to exercise these rights on your behalf.
Right to grievance redressal. If you are not satisfied with how we have handled your data or your rights request, you may raise a complaint with our Grievance Officer (Section 9) or with the Data Protection Board of India.
To exercise any of these rights, contact our Grievance Officer using the details in Section 9.
6. Data Retention
We keep personal data for as long as your account remains active.
When you close your account:
- Account data is deleted within 90 days
- Billing records are retained for 7 years for tax compliance
- Log and usage data is retained for 12 months, then deleted
If you contact us without creating an account, we retain your inquiry data for 12 months from the date of last contact.
7. Data Security
ConsentOS platform data is encrypted in transit using TLS 1.2 or higher. Data at rest is encrypted using AES-256. Access to personal data is restricted to personnel who require it for operational purposes, and all access is logged and reviewed.
We maintain incident response procedures for security events. In the event of a personal data breach that poses a risk to your rights, we will notify the Data Protection Board of India and affected individuals as required by law.
No transmission over the internet is entirely secure. We maintain these controls to reduce risk to a responsible minimum, and we will continue to review and improve them as the platform grows.
8. Cookies
consentos.in uses the following types of cookies:
Essential cookies. Required for the website to function. These include session authentication tokens and security tokens. They cannot be disabled without affecting site functionality.
Analytics cookies. We use Cloudflare Web Analytics to understand how visitors use the site. This data is aggregated and is not used to identify individual visitors. You can opt out of analytics cookies using the cookie preferences panel on this website.
We do not use advertising cookies or cross-site tracking cookies.
9. Grievance Officer
In accordance with the DPDP Act 2023, Dataguard India has appointed a Grievance Officer to receive and address inquiries and complaints related to personal data handling.
Name: [Grievance Officer Full Name]
Designation: Grievance Officer, Dataguard India Private Limited
Email: privacy@dataguardindia.com
Address: [Registered Office Address]
We will acknowledge your inquiry within 48 hours. We will provide a substantive response within 30 days of receiving your complaint.
If you are not satisfied with our response, you may escalate your complaint to the Data Protection Board of India.
10. Changes to This Policy
We may update this policy when our data practices change or when required by law. If we make material changes, we will notify active account holders by email at least 14 days before the changes take effect.
The current version of this policy is always available at consentos.in/privacy. The effective date at the top of this page reflects when the current version came into force.
11. Contact
For questions about this policy that are not a rights request:
Email: hello@dataguardindia.com
For rights requests and complaints, contact the Grievance Officer at privacy@dataguardindia.com.