Legal

Privacy Policy

How we protect your data under the Digital Personal Data Protection Act, 2023.

Last updated: 15 May 2026

1. Introduction

Polisync ("we", "our", "us") is committed to protecting your personal data in compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act). This Privacy Policy explains what data we collect, why we collect it, how we use it, and your rights as a Data Principal.

2. Data We Collect

We collect the following categories of personal data:

  • Account data: Name, email address, phone number, and password (hashed)
  • Customer data: Name, phone, email, date of birth, gender, address, PAN number
  • Policy data: Insurance policy details, premium amounts, nominee information
  • Usage data: Login timestamps, feature usage patterns, and device information

3. Purpose of Data Collection

Your personal data is processed for the following purposes:

  • Managing insurance policies, renewals, and customer records
  • Sending policy renewal reminders via SMS and email
  • Generating business reports and analytics for your agency
  • Providing customer support and platform improvements
  • Complying with legal and regulatory obligations

4. Consent

Under the DPDP Act, we collect your consent before processing personal data. You provide consent during account registration and when adding customer records. Consent is recorded with a timestamp and can be withdrawn at any time through your account settings.

When you add customer data on behalf of your clients, you are responsible for obtaining their informed consent before entering their personal information into Polisync.

5. Data Storage and Security

Your data is stored on secure servers within India. We implement industry-standard security measures including encryption at rest and in transit, access controls, and regular security audits to protect your personal data from unauthorized access, alteration, or disclosure.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, or as required by applicable laws. When data is no longer needed, it is securely deleted or anonymized.

7. Your Rights as a Data Principal

Under the DPDP Act, 2023, you have the right to:

  • Access: Request a summary of your personal data and processing activities
  • Correction: Request correction of inaccurate or incomplete personal data
  • Erasure: Request deletion of your personal data (subject to legal obligations)
  • Withdraw consent: Withdraw previously given consent at any time
  • Grievance redressal: File a complaint with our Data Protection Officer
  • Nominate: Nominate another person to exercise your rights in case of death or incapacity

8. Data Sharing

We do not sell your personal data. We may share data with third-party service providers (hosting, SMS, email) strictly for the purposes described in this policy. All third parties are contractually bound to protect your data in compliance with the DPDP Act.

9. Grievance Officer

If you have any concerns about how your data is being processed, you may contact our Grievance Officer at privacy@polisync.in. We will respond to your request within 30 days.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with a revised "Last updated" date. We will notify you of significant changes via email or in-app notification.