top of page

SCROLLX PRIVACY POLICY

1. GENERAL

(a) This privacy policy is an electronic record in the form of an electronic contract drafted under the (Indian) Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data of Information) Rules, 2011, as amended from time to time (“Privacy Policy”). This Privacy Policy is an electronic document and does not require any physical, electronic or digital signature.
 

(b) The terms “we/us/our” shall refer to ScrollX Private Limited, having our registered office at Shade No. 8, Industrial Area, Zone-1, M.P. Nagar, Bhopal - 462011, Madhya Pradesh and the terms “you/your” shall refer to the users and any other persons accessing or seeking to use the Platform (defined herein-below).
 

(c) This Privacy Policy is a legal agreement between you and us which governs the usage, collection, protection and sharing of any information that you provide us, when you access and/or use our website located at Scrollx.io (hereinafter referred to as the “Platform”). This Privacy Policy is only applicable to the users of the Platform and the information and data gathered from the users and not to any other information or website. You are hereby advised to read this Privacy Policy carefully and fully understand the nature and purpose of gathering and/or collecting sensitive, personal and other information and the usage, disclosure and sharing of such information.
 

(d) This Privacy Policy shall be read together with the other policies published by us on the Platform, including without limitation the terms of use, the disclaimer and any other applicable policies (together the “Policies''). The Policies describe our policies and procedures on the collection, use, storage and disclosure of any information including, business or personal information provided by you while using our Platform. This Policy specifically governs (i) the collection and use of PII (defined herein-below) and/or NPI (defined herein-below) provided by you; and (ii) the processing of PII and/or NPI by you while using our Platform. The Policies are published in accordance with Rule 3(1)(a) of the Information Technology (Intermediaries Guidelines and Digital Media Ethics Code) Rules, 2021, which requires the publication of privacy policy for access or usage of the Platform.
 

(e) We value the relationship we have with you, and we are committed to responsible information handling practices. We take your privacy very seriously and want you to feel comfortable whenever you visit the Platform with your PII and/or NPI. We recognize the importance of privacy as well as the importance of maintaining the confidentiality of PII and/or NPI.

2. TYPES OF INFORMATION COLLECTED BY US

2.1. Personally Identifiable Information (“PII”)

(a) PII, as used in information security and privacy laws, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context and includes information such as name, email address, phone number, information about your mobile device, cardholder name and information linked to a business transaction.

(b) When you use our Platform, we collect information regarding your computer and mobile device such as internet protocol address, domain, host and mobile status. As part of our KYC process, we capture your name, phone number and email id. These PII are essential for rendering our services to you. We may also use this information to customize our services based on such information as provided by you. for which if the purpose of processing changes, you will be notified through this policy via this platform.

(c) By using the Platform, you hereby represent, confirm and acknowledge that any PII of third party/individual provided by you has been provided with due consent from such third party/individual. Please note that PII submitted by you or such third party/individual who are not the users of this Platform, are retained by us for purposes of enhancing our services.

(d) We also collect any information exchanged by you with us in the form of written communication, responses to emails, feedback provided, etc.

(e) You, as a data principal, have the right to access information about personal data, right to correction and erasure of personal data, right of grievance redressal and right to nominate and the right to request to discontinue our use of your PII and/or any third party/individual’s PII provided by you. To withdraw your consent at any given point in time (apart from the exceptions as per the Digital Personal Data Protection Act 2023) to our collection and processing of such information in future, you may do so by sending an email to admin@scrollx.io.

2.2. Non-Personal Information (NPI)

(a) We also collect information in a form that does not permit direct association with any specific individual including without limitation the information of the browser you use, usage details and identifying technologies(NPI). NPI includes without limitation, referring/exit pages, anonymous usage data, and URLs, platform types, number of clicks, etc. We request you to note that when you access the Platform or receive emails or any communication from us, we along with our affiliated companies and permitted agents, may use cookies and/or pixel tags to collect information and store your online preferences.

(b) If we do combine NPI with PII, then the combined information will be treated as PII for as long as it remains combined.

(c) We use various technologies and/or third-party tools to collect NPI, including without limitation:

I. Cookies: A “cookie” is a name for tokens of information that is sent to your web browser, which is used only when you browse a website. Cookies are used to help us better understand website usage in the aggregate to ascertain which areas or features of the Platform users prefer. We use cookies and tracking technology depending on the services opted for by the user. No PII will be collected via cookies and other tracking technology; however, if you have previously provided PII, cookies may be tied to such information. Aggregate cookie and tracking information may be shared with third parties for the delivery of our service(s) to you.

II.  Log File Information: Our servers automatically collect limited information about your device's connection to the internet, including your IP address, when you visit our Platform. We automatically receive and log information from the Platform including but not limited to IP address, your device or computer's name, and your operating system. We may also collect log information from your device, including but not limited to your system, device's name, device’s serial number and your device operating system. This information helps us facilitate the provision of software updates and other services to you. We may use this information, among other things, to improve our services or technologies

III.  Google Analytics or other tools: Our Platform uses certain third-party tools (including but not limited to Google Analytics), in order to evaluate your use of our Platform, and to provide other services relating to the Platform activity, among other things.

(d) We may also collect other non-specific information to provide you better access to our services each time, such as preferences and interests and other non-personal details via the Platform, any application form or email or any other medium. We may also store and publish such information to assist us in making the Platform better and easier to use.

3  INFORMATION USAGE AND SHARING

3.1. Our primary goal in collecting the information is for us to render our services to you, and to ensure quality and efficiency in the services provided to you. We may also use such information to verify whether you are entitled to access and use the Platform and the services made available through the Platform. Additionally, we will also be using the information for our internal operational purposes, such as providing, maintaining, evaluating, and improving the Platform and our services, and also for providing customer support. We would also be sharing the information with others in the manner provided in this Privacy Policy.

3.2. By using the Platforms or by making use of the facilities provided by it and/or by providing your information, you consent to the collection and use of the information you disclose in accordance with this Privacy Policy, including but not limited to your consent for sharing your information as per this Privacy Policy. We acting as the Data Fiduciary of the PII you share with us, we will take reasonable and appropriate security/ privacy measures to ensure that such collection, use, storage and transfer of information shall not cause any loss or wrongful gain to you or any other person.

3.3. We are both a data fiduciary and a data processor.

3.4. We may share your PII and/or NPI with third parties in the following circumstances:

(a) To enable business entities or persons to process PII and/or NPI on our behalf or in connection with our services. We require that these parties agree to process such information based on our instructions and with appropriate confidentiality and security measures as a part of our due diligence.

(b) We have a good faith belief that access, use, preservation or disclosure of such PII and/or NPI is reasonably necessary to: (i) satisfy any applicable law, regulation, legal process or enforceable governmental request including to law enforcement and in response to a court order, (ii) detect, prevent, or otherwise address fraud, technical or security issues, (iii) enforce applicable Policies of the Platform, which may be further extended to investigation of potential violations thereof, or (iv) protect against harm to our rights, safety or property, our users or the public as required or permitted by law;

(c) To protect ourselves against third-party claims;

 

(d) Is necessary for performance of a contract between you and us

 

(e) To any member of our related or group companies including our subsidiaries, our ultimate holding company and its subsidiaries, as the case may be

 

(f) In the event that we sell or buy any business or assets, we may disclose your PII and/or NPI to the prospective seller or buyer of such business or assets. User, email, and visitor information is generally one of the transferred business assets in these types of transactions. We may also transfer or assign such information in the course of corporate reorganization, corporate divestitures, mergers, acquisition, sale of business and/or dissolution.

 

(g) We may partner with third-party entities to provide you with additional services related to our business or other programs that involve third parties, and this implicitly authorizes us to share your PII and/or NPI with those parties. A third party’s use of your information is bound by contracts and agreements between us and the third party. We only share information reasonably needed to provide the additional services/benefits. By sharing information with us, you agree that we are not liable or responsible, directly or indirectly, for the actions or inactions of third parties apart from where we act directly as the fiduciary of your PII and if any of our third-party processors act beyond our agreed terms with them

 

(h) We may disclose/share information to third-parties who support our business, such as those providing technical infrastructure services, analysing how our services are used, measuring the effectiveness of advertisements, providing customer support and business support services, facilitating payments, or conducting research and surveys, and the information will be used for the limited purposes of such services received by us.

 

(i) We may also provide your information to our partners, associates, advertisers, service providers or other third parties to provide, advertise or market their legitimate products and/or services which may be of your interest. You will have the choice to 'opt out' of such marketing or promotional communications at your will.

 

(j) We also use your contact information to send you offers based on your availment of services on the platform and your interests

 

(k) We use PII to provide you with services you explicitly request for, to resolve disputes, troubleshoot concerns, help promote safe services, collect payment, measure interest of various users of our services, send important information, services, updates, customize your experience, detect and protect against error and fraud, enforce our terms and conditions, etc.

4.  LINKS TO/FROM THIRD-PARTY WEBSITES

(a) The Platform may contain links to third-party websites, products, and services. Information collected by third parties, which may include without limitation information such as location data or contact details, is governed by the privacy practices undertaken by such third parties. The provision of such links does not signify our endorsement of such other websites or locations or its contents. We have no control over, do not review, and cannot be held responsible for these outside websites or their content. Please be aware that the terms of this Privacy Policy do not apply to these outside websites or locations or their content. We encourage you to learn about the privacy practices of those third parties. We expressly assert that we cannot be held responsible for these practices and cannot be made liable, directly or indirectly, for these practices

 

(b) We may have a presence on social networking websites including but not limited to LinkedIn, Facebook, Twitter, YouTube, Telegram, Instagram and blogs which are promotional and business initiatives to attract, engage and connect to a larger group of people. The domain links contained therein may either direct you to our Platform or request your participation by way of feedback, suggestions, etc. We, in this regard, fully disclaim any liability(ies) or claim(s), which may arise by use/misuse of your feedback, suggestions, views, etc. on any of the aforementioned networking websites or blogs, by any third party whether or not known to us.

5.  INFORMATION SECURITY & RETENTION

(a) We take precautions including without limitation, administrative and technical measures to safeguard your personal information against loss, misuse or theft, as well as against destruction, alteration, disclosure and unauthorized access.

(b) For this purpose, we adopt internal reviews of the data collection, storage and processing practices and security measures, including appropriate encryption and physical security measures to guard against unauthorized access to systems, where we store your PII. Specifically, while we will ensure our best efforts to protect your information in line with commercially reasonable efforts and general industry standards; however, we do not represent, warrant, or guarantee that your information will be protected against unauthorized access, loss, misuse or alterations.

 

(c) We recognize industry standards and employ security safeguards to protect PII from unauthorized access and misuse. All information you provide to us is stored on secure servers. Any payment transactions will be protected and safeguarded by encryption during data transit and storage by specific safeguards and security measures. We will not disclose to third parties any PII that you provide without your consent, except as necessary to provide services you have specifically requested and as specifically mentioned in this Policy. Once we have received your information, we will use industry standard procedures and security features to try to prevent unauthorized access to that information

 

(d) Further, you are responsible for maintaining the confidentiality of your account and password and for restricting access to your computer/mobile systems, and you agree to accept responsibility for all activities that occur under your account or password.

 

(e) Notwithstanding anything contained in this Privacy Policy or elsewhere, we shall not be held responsible for any loss, damage or misuse of your PII and/or NPI, if such loss, damage or misuse is attributable to a Force Majeure Event(defined below):

 

(f) A “Force Majeure Event” shall mean any event that is beyond our reasonable control and shall include, without limitation, sabotage, fire, flood, earthquakes, explosion, acts of God, civil commotion, strikes or industrial action of any kind, riots, insurrection, war, acts of government, computer hacking, unauthorized access to computer, computer system or computer network, computer crashes, breach of security and encryption (provided it is beyond our reasonable commercial control), power or electricity failure or unavailability of adequate power or electricity, failure of telecommunication network or internet

 

(g) While we will endeavor to take all reasonable and appropriate steps to keep secure any PII and/or NPI which we hold about you and prevent unauthorized access, you acknowledge that the internet or computer networks are not fully secure and that we cannot provide any absolute assurance regarding the security of your PII. Please exercise reasonable caution when determining what information, you disclose via the Platform. The transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to the Platform. Any transmission of data is at your risk

 

(h) You understand and agree that we may continue to store your information after you cease to use the services or disable your use of, or access to the services or the Platform only for the term as required by other legal statutory requirements of keeping the user/ customer data after the purpose is fulfilled. We will ensure that your PII stored with us after you cease to use the services, will be protected with reasonable security measures. Please note that we may share and/or disclose your PII with third parties, after you cease to use our services or disable your use of, or access to the services or the Platform. NPI will be retained indefinitely, and we may continue to use, share and/or disclose your NPI in furtherance of our Policies.

 

(i) You acknowledge and agree that we reserve the right to remove or edit content, refuse services, terminate accounts, or cancel services/plans at our sole discretion.

6.  YOUR RIGHTS RELATING TO THE INFORMATION

(a) The right of access - this is your right to see what information is held about you by us.

(b) The right to rectification – this is your right to have your information corrected or amended if what is held is incorrect in some way.

(c) The right to erasure – this is your right to ask for your personal information to be deleted under certain circumstances. This applies if the personal information is no longer required for the purposes it was collected for, or your consent for the processing of that information has been withdrawn, or the personal information has been unlawfully processed. We will usually inform you (before collecting your data) if we intend to use your data for marketing purposes or if we intend to disclose any of your information to any third party for such purposes.

7.  GRIEVANCE

(a) In case of breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed, we have the mechanisms and policies in place in order to identify it and assess it promptly. Depending on the outcome of our assessment, we will make the requisite notifications to the supervisory authorities and communications to the affected data subjects, which might include you.

(b) In accordance with the (Indian) Information Technology Act, 2000 and other legal requirements, the name and contact details of the Grievance Officer who can be contacted with respect to any complaints or concerns including those pertaining to breach of this Privacy Policy and other Polices are published as under: Grievance Officer Name: Kartikye Gupta Email address: Email address: hello@scrollx.io

(c) The Grievance Officer can be contacted between 10am to 5pm from Monday to Friday except on public and bank holidays declared in India.

8.  GOVERNING LAW

(a) We are incorporated in, and based out of the Republic of India, and we are duty bound to abide by Indian laws. We may not have complied with some privacy laws of other countries and further represent to be unaware of such other legal requirements.

(b) Further, any disputes regarding this Privacy Policy shall be subject to the jurisdiction of the courts of Madhya Pradesh, India.

9.  QUESTIONS AND CONTACT INFORMATION

(a) If you would like to access, correct, amend or delete any of your information shared with us, please register a complaint, or if you want more information about this Privacy Policy, please contact us at admin@scrollx.io. We shall respond to and address all reasonable concerns or inquiries in a reasonable amount of time.

10.  UPDATES TO THE PRIVACY POLICY

(a) We reserve the right to modify, amend, suspend, terminate or replace this Privacy Policy from time to time within our sole and absolute discretion. We will post any changes made to the Privacy Policy on the Platform without prior notice to you. Such changes will take effect immediately upon their posting on the Platform. If you do not agree with the revisions, please discontinue the use of this Platform.

(b) We encourage you to review the Privacy Policy frequently. By your continued use of the Platform, you consent to the terms of the revised/updated Privacy Policy.

bottom of page