Get FREE Quote

Privacy

PRIVACY POLICY

Home
Contact Us

Privacy Policy
Cosmius Technologies

Last Updated: 1 OCTOBER 2025

1. Introduction

Welcome to Cosmius Technologies (“Cosmius”, “we”, “us”, “our”). We are committed to protecting and respecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, share, disclose and protect the personal data of individuals (“you”, “your”) in the course of our operations, including our AI/ML, web, desktop software and services.

By using our website, products, platforms, or services, or interacting with us, you agree to the collection and processing of your personal data as described in this policy.

2. Definitions

  • Personal Data / Personal Information: Any information relating to an identified or identifiable natural person.

  • Sensitive Personal Data or Information (SPDI): As per Indian law, includes data like passwords; financial information; physical, physiological, mental health condition; medical records; biometric data; sexual orientation; etc.

  • Data Principal: The individual whose personal data is collected.

  • Data Fiduciary: Cosmius, or any person/institution which determines the purpose and means of processing personal data.

  • Data Processor: Any person/institution processing personal data on behalf of Cosmius.

  • Consent: A free, informed, specific, unambiguous affirmative action by you to permit processing of your personal data.

3. Applicability / Scope

This policy applies to all personal data collected, processed, stored, transferred or otherwise handled by Cosmius in India or abroad, whether through our website, desktop or web applications, AI/ML systems, employees, clients, vendors, partners.

4. Information We Collect

We may collect the following categories of data:

  • Identity & Contact Data: Name, email address, phone number, postal address, job title, company name.

  • Technical Data: IP address, device identifiers, browser type, operating system, usage logs, analytics data.

  • Account Data: Username, password, user profile info.

  • Financial Data: Payment details, billing address, transaction history.

  • Sensitive Data (if applicable): Depending on service – e.g. biometric data, health or medical data, etc.

  • AI/ML Data: Data you provide to our AI/ML systems, training data, feedback, etc.

We collect this data:

  • When you register or use our services.

  • When you contact us (support, inquiries).

  • Automatically via logs, cookies, usage tracking.

  • From third party sources (vendors, partners) with appropriate consent.

5. Purposes of Processing & Legal Basis

We process your personal data for purposes including but not limited to:

  • To provide, maintain, operate, improve and develop our services and products.

  • Authentication and account management.

  • Billing, payments, invoicing.

  • Detecting, preventing fraud, abuse or illegal uses of our services.

  • Customer support and communication.

  • Compliance with legal obligations and enforcement.

  • Research & development, including AI/ML model training (with anonymization / pseudonymization as required).

  • Marketing and promotional communications (with your consent where required).

Legal bases under Indian law may include your consent; performance of contract; compliance with legal obligation; legitimate interests, as applicable and permissible under Indian statutes (e.g. DPDP Act).

6. Consent

  • We will seek your explicit, informed and unambiguous consent before collecting or processing personal data, especially for sensitive data or for purposes beyond core service delivery.

  • You have the right to withdraw consent at any time. Withdrawal will not affect processing done prior to withdrawal (if lawfully done).

7. Data Sharing / Disclosure

We may share your personal data with:

  • Service providers, contractors, vendors who perform functions on our behalf (e.g. payment processors, cloud hosting, analytics).

  • Affiliates or partner organisations in India or abroad, where required to deliver services.

  • Law enforcement, regulatory, judicial bodies when required by law or to defend legal claims.

  • During mergers, acquisitions, or business transfers, subject to confidentiality and notice.

If data is transferred outside India, we will ensure adequate safeguards (contractual, technical, legal) as required under law.

8. Data Retention

  • We keep personal data only as long as necessary for the purposes described, or as required by law.

  • Retention periods will vary depending on purpose (e.g. financial records may need to be retained longer under tax law).

  • After expiry of the retention period, data will be securely deleted or anonymized.

9. Security Measures

We adopt reasonable security practices and procedures as required under Indian law, including but not limited to:

  • Physical, administrative and technical controls (access control, encryption, firewalls, secure networks).

  • Regular assessment of security risks and audits.

  • Employee training, confidentiality obligations.

  • Incident response plan in case of data breach.

10. Your Rights

As a Data Principal, you have rights, subject to applicable law:

  • Right to access your personal data.

  • Right to correction / update inaccurate or incomplete data.

  • Right to erasure (delete data) where provided by law, or when data is no longer needed for the purpose collected.

  • Right to withdraw consent.

  • Right to object to processing in certain cases (e.g. direct marketing).

  • Right to data portability, where applicable.

To exercise these rights, you can contact us using the contact details in Section 15.

11. Children’s Data

If you are under 18 (or the age of legal majority in your jurisdiction), do not provide us with personal data without parental/guardian consent. If we learn we have collected such data without the required consent, we will delete it promptly.

12. Automated Decision-Making / Profiling

If we use automated decision-making or profiling (e.g. AI/ML) that significantly affects you, we will:

  • provide information about how the decision is made, what logic is involved, and what consequences for you.

  • allow you to contest or request human review, where applicable under law.

13. Cookies & Tracking Technologies

We may use cookies, web beacons, tracking pixels or similar technologies to collect technical/usage data.

  • You will be informed about cookies and similar tools.

  • You can opt out of non-essential cookies (e.g. analytics, marketing).

  • Instructions to disable cookies will be provided.

14. Data Breach Notification

In the event of a data breach which is likely to result in harm to individuals, we will:

  • take prompt steps to contain, investigate and remediate.

  • notify affected Data Principals and authorities as required under applicable law.

15. Grievance / Complaints

If you have questions or complaints regarding this privacy policy or our data practices, or wish to exercise your rights, you may contact us:

info@cosmiustechnologies.in

We will endeavour to respond to complaints within a reasonable timeframe as required under law.

16. Changes to this Policy

We may update this policy from time to time in order to reflect changes in our practices or legal obligations. We will post the updated version on our website with the effective date. Where required, we may notify you (e.g. via email or in-app) of significant changes.

17. Governing Law & Jurisdiction

This Privacy Policy shall be governed by and construed in accordance with Indian law, including the Digital Personal Data Protection Act, 2023 and other applicable statutes. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of the courts in [City, State, India] (for example, Surat / Gujarat, if that is your registered place of business).

18. Miscellaneous

  • If any provision of this policy is found invalid or unenforceable, the remaining provisions will continue in full force.

  • This policy does not create any third-party beneficiary rights unless explicitly stated.