Jovaris CRMSign in

Privacy Policy

Effective: 8 May 2026 · Last updated: 8 May 2026

Draft notice. This document is a template starting point and must be reviewed by a qualified lawyer familiar with the Digital Personal Data Protection Act 2023 (India) before publication.

1. Introduction

Jovaris Tech ("we", "us", "our") operates the Jovaris CRM mobile application and web portal (the "App") for use by our authorised employees, agents, and administrators. This Privacy Policy explains what information we collect through the App, how we use it, and your rights under applicable data protection laws including the Digital Personal Data Protection Act, 2023 (DPDP).

2. Information We Collect

a) Information you provide directly

  • Account credentials: name, email address, phone number, employee ID, role.
  • Profile information: photo, designation, department, branch.
  • Lead and customer data you enter on behalf of the company.
  • Documents and photos you upload (KYC documents, customer ID proofs, policy paperwork).

b) Information collected automatically

  • Device information: device model, OS version, unique device identifier.
  • Location: GPS coordinates at the moment you check in or check out for attendance.
  • Usage data: features used, timestamps, app crash reports.
  • Network information: IP address, connection type.

c) Information from third parties

  • Authentication providers if you sign in via Google / Microsoft / Apple.
  • HR-system integration data (employee status, reporting hierarchy).

3. How We Use Your Information

  • To authenticate you and provide access to the App.
  • To record attendance and verify your check-in / check-out location.
  • To manage leads and customer records assigned to you.
  • To enable communication between agents, employees, and administrators.
  • To improve the App, fix bugs, and analyse usage patterns.
  • To comply with legal, regulatory, and audit requirements.
  • To prevent fraud and unauthorised access.

4. Legal Basis for Processing

  • Your consent, provided during account registration.
  • Performance of your employment / agency contract with us.
  • Compliance with our legal obligations under labour and tax law.
  • Our legitimate business interests in operating, securing, and improving the App.

5. Data Sharing

We do not sell your personal data. We share it only with:

  • Cloud service providers (Supabase, Cloudflare, Vercel) who host the App and database, under data-processing agreements.
  • Authentication providers if you use third-party sign-in.
  • Government authorities when required by law (court orders, tax / regulatory inquiries).
  • Internal company personnel on a need-to-know basis (HR, IT admin, compliance).

6. Data Retention

  • Active account data: retained while you are an active user of the App.
  • Attendance records: retained for [X years] as required by Indian labour law.
  • Lead and customer records: retained per company record-keeping requirements.
  • Audit logs: retained for [X years].
  • Account deletion requests are processed within 30 days, subject to legal retention requirements.

7. Your Rights

Under applicable data-protection law, you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate or incomplete data.
  • Request erasure (subject to legal retention obligations).
  • Withdraw consent at any time.
  • Data portability — receive your data in a machine-readable format.
  • Lodge a grievance with our Grievance Officer (details in Section 13) or with the Data Protection Board of India.

8. Account Deletion

You may request deletion of your account at any time by:

Upon deletion, we remove or anonymise your personal information within 30 days. Records required for legal, audit, or regulatory purposes may be retained in anonymised form.

9. Data Security

  • All data is encrypted in transit using TLS 1.3.
  • Data at rest is encrypted using AES-256.
  • Access to data is restricted by role-based access controls.
  • We conduct regular security audits and vulnerability assessments.
  • In the event of a breach, we will notify affected users and the Data Protection Board of India within 72 hours as required by law.

10. Children's Data

The App is not intended for use by individuals under 18. We do not knowingly collect data from minors. If you believe a minor's data has been collected through customer leads, contact our Grievance Officer.

11. International Data Transfers

Your data is primarily stored on servers located in India / the region designated by your hosting provider. If we transfer data outside India, we ensure equivalent protection through contractual safeguards.

12. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be notified through the App or via email. Continued use of the App after changes means acceptance of the updated policy.

13. Grievance Officer / Contact

Grievance Officer: [Full Name]
Designation: [Title]
Email: privacy@jovariscrm.com
Support: support@jovariscrm.com
Phone: [+91 XXXXX XXXXX]
Address: [Full office address]

We respond to all grievances within 30 days of receipt.