Effective Date: May 24, 2025 · Last Updated: May 24, 2025 · egrey, Chennai, Tamil Nadu, India
At egrey, your privacy is a core principle — not an afterthought. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you visit egrey.in or use any product built and operated by egrey.
1. Who We Are
egrey is an Indian technology company headquartered in Chennai, Tamil Nadu. We build intelligent SaaS products for modern businesses. As we grow, egrey will develop and launch multiple products across categories — this policy covers all current and future egrey products and services.
2. Information We Collect
We may collect the following:
- Identity & contact info — name, email, company, phone
- Account credentials — username and encrypted password
- Usage data — pages visited, features used, time spent
- Technical data — IP address, browser type, device type
- Communications — messages or feedback you send us
- Business data entered by organisation admins into egrey products
3. How We Use Your Information
- To deliver and operate egrey products and services
- To respond to enquiries and support requests
- To improve and develop our products
- To send service communications and security alerts
- To send marketing emails — only with your explicit opt-in
- To comply with applicable Indian laws and regulations
4. Data Security
We implement industry-standard security measures: TLS encryption, bcrypt password hashing, row-level database security, JWT authentication, and strict multi-tenant data isolation. We do not sell your personal data to any third party.
5. Third-Party Service Providers
We work with trusted providers to operate our infrastructure — including Supabase (database), Resend (email), Zoho (communications), and Netlify (hosting). All providers are contractually bound to protect your data.
6. Cookies
We use essential cookies for sessions and functionality, and optional analytics cookies to understand site usage. We do not use advertising or cross-site tracking cookies.
7. Your Rights
Under India's DPDPA 2023, you have the right to access, correct, or request deletion of your personal data. Email hello@egrey.in with subject "Privacy Rights Request" and we will respond within 30 days.
8. Children's Privacy
Our website and products are intended for adults and businesses only. We do not knowingly collect data from individuals under 18 years of age.
9. Data Retention
We retain data only as long as necessary for the purposes described above or as required by Indian law. Account data is deleted within 90 days of a deletion request. Payment records are retained for 8 years as required by tax law.
10. Changes to This Policy
We may update this policy periodically. Material changes will be notified via our website and email. Continued use after changes constitutes acceptance.
11. Governing Law
This policy is governed by the Information Technology Act 2000, SPDI Rules 2011, and the Digital Personal Data Protection Act 2023 (India). Disputes are subject to the jurisdiction of courts in Chennai, Tamil Nadu.
12. Contact & Grievance Officer
For privacy questions, requests, or complaints (as required under the IT Act 2000 and DPDPA 2023):
📧 hello@egrey.in
📍 egrey, Chennai, Tamil Nadu, India
We aim to acknowledge all privacy enquiries within 7 working days.