Privacy Policy

1. How We Collect Personal Data

We collect personal data through various interactions, including but not limited to:

• Account Registration: When you create an account, connect integrations (Google, Facebook, Instagram, etc.).
• Payment Providers: Information from third parties regarding transactions (e.g., payment confirmations).
• Direct Communications: When you email, message, or chat with us.
• Website Forms: Submissions through contact, subscription, event registration forms.
• Site Usage: Information collected via cookies, pixels, log files, and other tracking technologies.
• Third-party Platforms: Data visible through social groups or communities (e.g., Facebook groups).

2. What Types of Personal Data We Process

We collect and process:

• Account Details: Name, email, user ID, linked social profiles, status, subscription products, location.
• Financial Information: UPI VPA, card details (last four digits), payment records, billing address.
• Business & Contact Information: Full name, title, company name, email, phone number, and communication history.
• Support & Communication Records: Messages, chat history, support tickets, event participation data.
• Usage and Technical Data: IP address, device type, browser configuration, interaction logs, cookies.
• Marketing Engagement Data: Newsletter open rates, click-throughs (through transparent images/gifs).
• Customer Content: Subscriber and end-user data uploaded to our systems under customer's responsibility.

3. For Which Purposes We Use Personal Data

We process personal data to:

• Deliver and maintain the Service (account management, billing, technical notices, support).
• Process Customer Content strictly on the instructions of the customer.
• Communicate with you (send marketing communications, promotions, event information where permitted by law).
• Host and organize events, surveys, feedback requests.
• Comply with legal obligations, including tax, regulatory, and data protection requirements.
• Negotiate and perform business agreements with customers and partners.
• Ensure safety, security, fraud prevention, and enforce our legal rights.

4. How We Share Personal Data

We do not sell personal data.

We share data only as needed:

• Service Providers: Payment gateways, CRM systems, cloud platforms, email service providers.
• Professional Advisors: Lawyers, accountants, financial consultants for legal and compliance purposes.
• Third-Party Apps/Integrations: Authorized integrations connected by customers (e.g., Google, Facebook, Razorpay).
• Corporate Transactions: In case of mergers, acquisitions, asset transfers — governed under this policy.
• Law Enforcement & Authorities: To comply with laws or valid legal requests.
• Corporate Affiliates: Where necessary for internal administration and operational purposes.

5. Your Data Protection Rights & Choices

You have rights to:

• Access, correct, or delete your personal information.
• Object to or restrict processing of your information.
• Withdraw your consent (where consent is the legal basis).
• Data portability, where applicable.
• To exercise these rights, email info@lehtechnologies.com.
• If you are an end-user of a customer using Leh Technologies' platform, please contact that customer directly for requests.

6. For How Long We Retain Personal Data

We retain personal data as long as necessary to:

• Provide the Service;
• Fulfill legal and regulatory obligations;
• Resolve disputes;
• Enforce agreements.
• Retention periods may vary depending on the nature of data and applicable laws.

7. International Data Transfers

We may store and process data outside your country (e.g., India, USA, EU jurisdictions).

We implement safeguards such as Standard Contractual Clauses (SCCs) or rely on adequacy decisions where applicable to ensure protection.

By using our Service, you consent to this transfer, storage, and processing.

8. Children's Information

Our services are not intended for individuals under 18 years.

We do not knowingly collect data from children.

If we find we have collected information without verified parental consent, we will delete it immediately.

9. Security Measures

We maintain strong administrative, technical, and organizational security measures, including:

• Data encryption in transit and at rest;
• Regular vulnerability scans and security audits;
• Strict access controls;
• Multi-factor authentication (MFA) for internal systems.
• Despite these efforts, no system can guarantee 100% security. We encourage you to also protect your login information.

10. Legal Basis for Processing Your Personal Data (EEA, UK, Switzerland)

Under GDPR and similar laws, we process personal data based on:

• Contract performance (providing the Service);
• Consent (marketing communications, non-essential cookies);
• Compliance with legal obligations;
• Legitimate interests (security, fraud prevention, business development).

11. For California Residents (CCPA Compliance)

Leh Technologies complies with the California Consumer Privacy Act (CCPA).

You have the right to:

• Request access to your personal information;
• Request deletion of your personal information;
• Request information on how your data is collected, used, and shared;
• Opt-out of the sale of personal information (Leh Technologies does not sell personal data).
• To exercise your rights, please email info@lehtechnologies.com.

12. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes to our practices, legal requirements, or technology updates.

We will notify users where required by law.

Please review this page regularly for updates.