SAVAAR-E

Privacy Policy

This Privacy Policy (“Policy”) describes how Redeal Solutions Private Limited (the “Company”, Savaar-E”, “we”, “us”, or “our”) collects, uses, processes, and protects your personal data. This Policy is compliant with the Digital Personal Data Protection (DPDP) Act, 2023 and the Information Technology Act, 2000.

  1. INTRODUCTION AND DATA FIDUCIARY STATUS

1.1. Consent-Based Processing: By accessing the Platform, you provide your free, specific, informed, and unambiguous consent to the processing of your personal data for the specified purposes outlined herein.

1.2. Data Fiduciary: Savaar-E acts as a Data Fiduciary under the DPDP Act, 2023, determining the purpose and means of processing personal data to facilitate its Mobility-as-a-Service (MaaS) discovery platform.

1.3. Data Principal: Refers to the individual to whom the personal data relates, including Users (Passengers) and Driver Partners.

1.4. Withdrawal of Consent: You maintain the right to withdraw your consent at any time, which will result in the immediate cessation of Platform access.

1.5. Implied Consent by Use: Continued use of the Platform following an update to this Policy shall be deemed as your informed consent to the revised provisions.

  1. INFORMATION WE COLLECT

2.1. Direct Identifiers: We collect Name, Mobile Number, Gender and Age provided directly during account creation.

2.1.1. Visual Identifiers: We may collect and display profile pictures provided by Data Principals to enhance safety and facilitate identification during the pickup process.

2.2. Gender Data: We collect gender information strictly through a self-declaration mechanism to facilitate gender-segregated safety features.

2.3. Driver Specific Data: We collect vehicle registration (RC), commercial driving license numbers, fitness certificates, and insurance certificates necessary for legal compliance.

2.4. Technical Device Data: We may collect specific device information, including hardware models, operating systems, IP addresses (for diagnostics), and app crash logs to ensure Platform stability.

2.5. Location Data: Precise location data is collected only when the App is running in the foreground or when a Driver Partner’s status is set to “Online”.

2.6. Advanced Technical Identifiers: We may collect device motion data and advertising identifiers to enhance fraud detection and safety monitoring.

 

 

  1. SPECIFIED PURPOSE OF PROCESSING

3.1. Safety and Gating: Data is processed to facilitate the safety mechanisms of the Only Female Shared Ride” feature and enable Visual Verification.

3.2. Lead Discovery: Location data is processed strictly to connect Users with the nearest available Driver Partners based on proximity.

3.3. Platform Integrity: Usage data is processed to prevent fraud (e.g., GPS spoofing) and investigate safety incidents.

3.4. Administrative Processing: Personal data may be processed for the purpose of delivering fare receipts, triggering verification OTP SMS, and facilitating essential coordination between parties.

3.5. Marketing Analytics: Collected data may be processed to measure interest in Platform features and deliver targeted service-related communications.

  1. DISCLOSURES AND DATA TRANSFERS

We share your information with third parties for the following specific purposes:

4.1. Ride Facilitation & Direct Communication: To coordinate origin-based pickups, we share actual mobile numbers, names, and pickup locations directly between the User and the assigned Driver Partner.

4.2. Co-Rider Identification: In the event of Origin-Based Co-Passenger Pooling, a User’s first name may be disclosed to co-passengers to facilitate identification at the designated pickup location.

4.3. User-Authorized Recipients: We share a User’s ETA and location with third parties (friends/family) only at the explicit request of the User.

4.4. Infrastructure & IT Partners: Information is shared with authorized IT vendors and cloud service providers strictly for secure data storage and Platform maintenance.

4.5. Product Analytics: Anonymized interaction logs may be shared with third-party analytics providers to evaluate usage trends and perform research for new Platform features.

4.6. Emergency Services: We offer features that enable Users to share data with the police or emergency services in the event of an incident or safety emergency.

4.7. Business Transactions: In the event of a merger or reorganization, your personal data may be transferred to the successor entity subject to this Policy.

  1. DATA RETENTION AND DELETION

5.1. Standard DPDP Erasure: Upon account termination, personal data will be erased from active databases within the timelines prescribed by the DPDP Act, 2023.

5.2. Retention for Outstanding Issues: The Company may retain data if there is an outstanding credit, an unresolved claim, or an ongoing safety investigation related to the account.

5.3. Tax Retention Override: Notwithstanding erasure requests, we are mandated by Section 36 of the CGST Act, 2017 to retain records of Driver SaaS Subscription payments for the timelines as prescribed.

  1. YOUR RIGHTS AS A DATA PRINCIPAL

6.1. Right to Correction: You have the right to correct inaccurate or outdated personal information within the app settings.

6.2. Profile Autonomy: You maintain the right to access your Platform profile at any time to add, remove, or modify information provided during registration.

6.3. Right to Nominate: You have the right to nominate an individual to exercise your data rights in the event of death or incapacity.

6.4. Non-Prejudice: Any modification or removal of personal data by the User shall not prejudice any lawful use of such data by the Company prior to the modification.

  1. GRIEVANCE REDRESSAL AND JURISDICTION

7.1. Grievance Officer: For privacy concerns, contact Mr. Vraj Shah at info@savaare.com.

7.2. Support Availability: The Grievance Officer is available daily between 10:00 AM and 7:00 PM IST (including weekends) for formal redressal.

7.3. Exclusive Jurisdiction: Any legal disputes shall be subject to the exclusive jurisdiction of the courts in Ahmedabad, Gujarat.

  1. FORCE MAJEURE AND SECURITY

8.1. Infrastructure Failure: The Company is not liable for temporary unavailability of privacy controls due to Force Majeure Events (e.g., regional internet blackouts).

8.2. Data Security: Our primary obligation is the preservation and encryption of existing data both in transit and at rest