Privacy Policy
Privacy Policy
Last updated: May 12, 2026
1. Data Controller & Contact
- Controller (India) – 9ance India Private Limited, 475, F-28, Jasmine Apartment, Govindpura, Bhopal 462023 | +91 96539 85549
- Controller (USA) – 9ance Technologies LLC, 30 N Gould St Ste R, Sheridan, WY 82801 | +1 945-888-0075
- Data Protection Officer – [email protected] | India: +91 96539 85549 · USA: +1 945-888-0075
2. What Data We Collect
| Category | Examples |
|---|---|
| Identity data | Name, company, job title, email, phone |
| Financial data | Payment method, billing address (via Razorpay/Stripe) |
| Technical data | IP, browser, OS, device, referral source, pages visited |
| Project data | Code, designs, requirements, customer data (processed on your behalf) |
| AI/ML data | Bank statements, loan applications, HR records – only as instructed |
3. Legal Bases for Processing (GDPR)
- Contract necessity – To deliver custom development services
- Legitimate interest – For security, analytics, and improving our services
- Consent – For marketing emails, cookies, and AI model training (opt-in)
- Legal obligation – Tax, fraud prevention, regulatory compliance
4. How We Use Your Data
- Provide, maintain, and improve our Services
- Respond to inquiries and support requests
- Send technical updates, legal notices, and invoices
- AI model training (only with explicit consent and anonymisation)
- Compliance with laws (India, USA, EU)
5. Data Retention
- Project data – 3 years after completion, then deleted
- Financial records – 7 years (tax law)
- Marketing data – Until you unsubscribe
- Logs & analytics – 12 months
6. Your Data Rights (GDPR & CCPA)
| Right | How to exercise |
|---|---|
| Access (Art. 15) | Request a copy – [email protected] |
| Rectification (Art. 16) | Correct inaccurate data |
| Erasure (Art. 17) | Delete your data (subject to legal obligations) |
| Restriction (Art. 18) | Temporarily stop processing |
| Portability (Art. 20) | Receive data in machine-readable format |
| Objection (Art. 21) | Opt out of marketing or profiling |
| Do Not Sell (CCPA) | We do not sell your personal data |
Response time: Within 30 days (GDPR) or 45 days (CCPA). Free of charge.
7. Data Transfers
We transfer data between India and USA only for service delivery with adequate safeguards (Standard Contractual Clauses available on request). We never transfer EU personal data without SCCs or consent.
8. Security Measures
- Encryption (AES-256) for data at rest and in transit
- Access control with 2FA and role-based permissions
- Regular penetration testing
- ISO 27001 aligned (certification in progress Q3 2026)
9. Third-Party Processors
| Provider | Purpose | Location |
|---|---|---|
| AWS | Hosting & storage | USA, India |
| Razorpay | Payment processing | India |
| Stripe | Payment processing | USA |
| Google Analytics | Analytics (anonymised) | USA |
| 9ance NeeN AI CRM | CRM (in-house, self-hosted) | USA, India (our AWS) |
| 9ance Bug Tracker | Error & bug tracking (in-house, self-hosted) | USA, India (our AWS) |
10. Children's Data
We do not knowingly collect data from children under 16. If you believe we have, contact [email protected].
11. Updates
We will notify you by email if this policy changes materially.
Contact for legal matters
🇮🇳 India — 9ance India Private Limited
📞 +91 96539 85549
📍 475, F-28, Jasmine Apartment, Govindpura, Bhopal 462023
🇺🇸 USA — 9ance Technologies LLC
📞 +1 945-888-0075
📍 30 N Gould St Ste R, Sheridan, WY 82801