Privacy Policy

Effective Date: June 1, 2026Last Updated: June 1, 2026

1. Introduction

Inficrux AI Solutions ("Inficrux," "we," "our," or "us") develops and operates software products including web applications, mobile applications, SaaS platforms, AI solutions, IoT platforms, cloud-based applications, enterprise software, APIs, and customer-specific software solutions. We are committed to protecting your privacy and handling personal data responsibly.

This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you visit https://inficrux.com, use our applications (including apps published on Google Play Store and Apple App Store), access our APIs, or interact with any of our digital services.

By using our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, please discontinue use of our services.

2. Scope of Policy

This Privacy Policy applies to all websites, applications, software products, APIs, AI platforms, IoT platforms, and digital services operated by Inficrux AI Solutions unless a separate policy is provided for a specific product.

This policy covers, without limitation:

  • Corporate website and marketing pages
  • Web applications and SaaS platforms
  • Mobile applications for Android and iOS
  • AI-powered products and automation services
  • IoT platforms, device management, and telemetry systems
  • Cloud-hosted applications and backend services
  • APIs, integrations, and developer tools
  • Customer-specific and enterprise software solutions

Product-specific privacy notices may supplement this policy where required by law or platform policies (e.g., Google Play, Apple App Store). In case of conflict for a specific product, the product-specific notice prevails for that product only.

3. Information We Collect

We collect personal and non-personal information depending on how you interact with our services. Categories include:

  • Identity and profile data (name, username, organization, role)
  • Contact information (email address, phone number, mailing address)
  • Account and authentication data (hashed passwords, verification status, session tokens)
  • Usage and analytics data (feature usage, page views, interaction logs)
  • Device and technical data (device type, OS, browser, IP address, app version)
  • IoT and sensor data (device identifiers, telemetry, location where enabled)
  • Communication data (support tickets, contact form submissions, correspondence)
  • Payment and billing data (processed by secure third-party providers)
  • Cookie and tracking data (as described in Section 7)

We collect information directly from you, automatically through your use of our services, from connected devices (where authorized), and from third-party integrations you choose to enable.

4. Account Registration Data

When you create an account, we may collect:

  • Full name or display name
  • Email address (primary account identifier)
  • Phone number (for verification, SMS, or support where applicable)
  • Password (stored in encrypted or hashed form only)
  • Organization, company, or tenant details
  • Account preferences, roles, and permissions
  • Registration timestamp, last login, and account activity logs

You are responsible for providing accurate registration information and maintaining the confidentiality of your credentials.

5. Usage Analytics

We collect usage analytics to understand how our services are used, improve performance, and enhance user experience. This may include:

  • Pages, screens, or features accessed
  • Session duration and frequency of use
  • Error logs, crash reports, and performance metrics
  • Referral sources and navigation paths
  • Aggregated or anonymized usage statistics

Analytics data is used internally and may be processed through third-party analytics tools subject to appropriate safeguards and, where required, your consent.

6. Device Information

When you access our services via web browser, mobile app, or IoT device, we may collect device-related information including:

  • Device model, manufacturer, and unique identifiers
  • Operating system and version
  • Browser type and language settings
  • Mobile network and carrier information
  • IP address and approximate geographic location
  • Push notification tokens and app installation identifiers
  • IoT device serial numbers, firmware version, and connectivity status

Location data is collected only where necessary for service functionality (e.g., GPS tracking products) and with appropriate permissions on mobile devices.

7. Cookies and Tracking Technologies

We use cookies, pixels, local storage, and similar technologies to operate our website and applications. These include:

  • Essential cookies: Required for authentication, security, and core functionality
  • Analytics cookies: Help us measure traffic and usage patterns
  • Preference cookies: Remember settings such as language or display options
  • Marketing cookies: Used only with consent to measure campaign effectiveness

You may control cookies through browser or device settings. Disabling essential cookies may limit functionality. Mobile apps may use equivalent technologies such as SDK identifiers. Where required by law, we obtain consent before placing non-essential tracking technologies.

8. Purpose of Data Collection

We process personal data for the following purposes:

  • Providing, operating, maintaining, and improving our products and services
  • Creating, authenticating, and managing user accounts
  • Delivering transactional, security, and service-related communications
  • Processing subscriptions, billing, and customer support requests
  • Monitoring service performance, diagnosing errors, and preventing fraud
  • Enabling AI features, automation workflows, and IoT device management
  • Complying with legal obligations and enforcing our Terms & Conditions
  • Sending marketing communications where permitted and with appropriate consent
  • Conducting research and analytics to develop new features and products

We process data based on contractual necessity, legitimate interests, legal obligations, and consent where required under applicable law, including the India Digital Personal Data Protection Act (DPDP Act) and GDPR principles.

9. Email and SMS Communications

Users may receive transactional communications including OTP verification, account verification, password reset emails, security notifications, login alerts, device alerts, service notifications, subscription updates, workflow notifications, and other communications required for operation of the services.

Communications may be delivered via email, SMS, or other channels and include:

  • OTP and one-time verification codes
  • Account registration and email verification messages
  • Password reset and credential change confirmations
  • Security alerts and login notifications
  • Service maintenance, downtime, and operational updates
  • Subscription renewals, billing confirmations, and payment receipts
  • Workflow and automation notifications
  • IoT device alerts and threshold notifications
  • Customer support responses
  • Marketing messages (only with your consent, where required by law)

Transactional and security-related communications are essential to service operation and generally cannot be opted out of while maintaining an active account. Marketing communications include an unsubscribe option. To opt out of marketing emails, use the unsubscribe link or contact info@inficrux.com.

10. Push Notifications

Our mobile and web applications may send push notifications for account activity, security events, service updates, workflow triggers, IoT alerts, and other time-sensitive information. Push notifications require your device permission.

You may disable push notifications at any time through your device or application settings. Disabling notifications may limit certain real-time features but will not affect essential email or SMS communications where required for security.

11. AI and IoT Platform Data Processing

Our AI solutions may process user-provided data, application data, and operational inputs to deliver automation, analytics, recommendations, and intelligent features. AI processing is performed to provide contracted services and is subject to access controls and data minimization practices.

Our IoT platforms may collect device telemetry, sensor readings, connectivity logs, configuration data, and location information (where enabled) to monitor, manage, and alert on connected devices. IoT data is processed only as necessary for the functionality you configure or authorize.

We do not use your confidential data to train public-facing AI models unless explicitly disclosed and consented to in a separate agreement. Enterprise customers may have additional data processing terms under their service contracts.

12. Third-Party Services

We use trusted third-party service providers to operate our business, including cloud infrastructure (such as Amazon Web Services), email delivery, SMS gateways, payment processors, analytics platforms, customer support tools, and app store distribution services. These providers process data on our behalf under contractual obligations to protect your information.

Third-party links, integrations, or services accessible through our platforms are governed by their own privacy policies. We encourage you to review those policies before providing personal information to third parties.

13. Data Sharing

We do not sell your personal information. We may share personal data in the following circumstances:

  • Service providers: Cloud hosting, email/SMS delivery, payments, analytics, and support tools operating on our behalf
  • Business partners: Where you use integrated services or co-branded products with your consent
  • Legal compliance: When required by law, regulation, court order, or government request
  • Protection of rights: To protect the rights, property, or safety of Inficrux, our users, or others
  • Business transfers: In connection with merger, acquisition, or sale of assets, with notice where required
  • With your consent: For any other purpose disclosed at the time of collection

14. Data Retention

We retain personal data only as long as necessary for the purposes described in this policy, unless a longer period is required by law. Retention periods vary by data type:

  • Account data: Retained while your account is active and for a reasonable period after closure
  • Transaction and billing records: Retained as required for accounting and tax compliance
  • Support and communication records: Retained as needed to resolve inquiries and maintain records
  • Log and security data: Retained for a limited period for monitoring and incident response
  • IoT telemetry: Retained according to product configuration and contractual terms

When data is no longer required, we securely delete or anonymize it in accordance with our retention schedules.

15. Security Measures

We implement technical and organizational measures designed to protect personal data, including:

  • Encryption of data in transit using HTTPS/TLS
  • Secure password hashing and authentication controls
  • Role-based access controls and least-privilege principles
  • Cloud infrastructure security aligned with AWS best practices
  • Monitoring for unauthorized access and security incidents
  • Regular review of security practices and vendor compliance

No system is completely secure. You are responsible for safeguarding your account credentials and reporting suspected unauthorized access promptly.

16. User Rights

Depending on your location and applicable law—including the India DPDP Act and GDPR—you may have the following rights:

  • Right to access and obtain a copy of your personal data
  • Right to correction of inaccurate or incomplete data
  • Right to erasure (deletion) subject to legal exceptions
  • Right to withdraw consent where processing is consent-based
  • Right to object to certain processing, including direct marketing
  • Right to data portability in a structured, commonly used format
  • Right to nominate another individual to exercise rights on your behalf (where applicable under DPDP Act)
  • Right to lodge a complaint with a supervisory or grievance authority

To exercise your rights, contact info@inficrux.com. We will respond within the timeframe required by applicable law and may verify your identity before processing requests.

17. Account Deletion Requests

You may request deletion of your account and associated personal data by contacting info@inficrux.com or using in-app account deletion features where available (as required by Google Play and Apple App Store policies).

Upon verified request, we will:

  • Deactivate or delete your account within a reasonable timeframe
  • Remove or anonymize personal data not required for legal or legitimate business purposes
  • Retain limited data where required by law, dispute resolution, fraud prevention, or contractual obligations

Account deletion is irreversible and may result in permanent loss of data, configurations, and access to paid services without refund unless otherwise stated.

18. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided personal data to us, contact info@inficrux.com and we will take steps to delete such information promptly.

19. International Data Transfers

Your information may be processed in India and other countries where we or our service providers operate, including regions where AWS and other cloud providers maintain data centers. Where cross-border transfers are subject to legal requirements, we implement appropriate safeguards such as contractual protections and compliance with applicable transfer mechanisms.

20. Changes to Policy

We may update this Privacy Policy periodically to reflect changes in our practices, products, technology, or legal requirements. We will post the updated policy on this page and revise the "Last Updated" date. Material changes may be communicated via email, in-app notice, or website announcement. Continued use after the effective date constitutes acceptance of the updated policy.

21. Contact Information

For privacy-related questions, data subject requests, or concerns about this policy, contact:

Inficrux AI Solutions

Email: info@inficrux.com

Website: https://inficrux.com

Contact Form: https://inficrux.com/contact