Privacy Policy

1. Introduction

This Privacy Policy ("Policy") explains how Kartel Infotech ("Company," "we," "us," or "our") collects, uses, discloses, and safeguards personal information when individuals ("you," "user," or "data subject") access or use our website, services, or communicate with us.

We are committed to protecting your privacy in compliance with the Information Technology Act 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011, and applicable principles under the General Data Protection Regulation (EU) 2016/679 ("GDPR").

By using our website or services, you consent to the practices described herein.

2. Company Identification

Legal Name: Kartel Infotech

Registered Office: Delhi, India

Email (for privacy concerns): support@kartelinfotech.in

Nature of Business: Digital services provider specializing in:

• Busy Accounting Software license sales, customization, and support
• Tally Accounting Software license sales, customization, and support
• Cloud space and database management services

3. Definitions

• "Personal Data" means any information that can identify a natural person directly or indirectly (e.g., name, email, phone number, company name).
• "Processing" means any operation performed on Personal Data, including collection, storage, use, or deletion.
• "Controller" refers to Kartel Infotech, which determines the purposes and means of processing your Personal Data.
• "Processor" refers to any third party that processes data on behalf of Kartel Infotech (e.g., cloud partners).
• "Sensitive Personal Data" as defined under Indian SPDI Rules includes passwords, financial data, medical data, biometric data, etc.

4. Scope of This Policy

This Policy applies to:

• All online and offline data collected by Kartel Infotech;
• Visitors to our website, customers, partners, and service recipients; and
• Processing of data both within India and internationally.

5. Categories of Data We Collect

5.1. Data You Provide Directly

• Name
• Email address
• Phone number
• Company name
• Any other data voluntarily provided for service or support

5.2. Service-Specific Data

To deliver Busy, Tally, and cloud services, we may temporarily collect configuration or business data relevant to customization or troubleshooting.

Such data is stored securely and deleted upon completion of service.

5.3. Verification Data

We may request government identification solely for identity confirmation where required by law or for account security.

5.4. Automatically Collected Data

When you visit our website, basic technical information (IP address, browser type, access date/time) may be logged to ensure system security and performance. No behavioral tracking or profiling is performed without your consent.

6. Legal Basis for Processing (GDPR-Compliant)

We process Personal Data only where one or more of the following lawful bases apply:

1. Consent: You have given clear consent for processing your data.
2. Contractual Necessity: Processing is required to provide requested services.
3. Legal Obligation: Processing is required for compliance with applicable laws.
4. Legitimate Interests: Processing is necessary for our legitimate business purposes, provided your interests are not overridden.

7. Purpose of Data Collection

We collect and process your information for the following purposes:

• To provide, operate, and manage requested digital services;
• To communicate regarding service delivery, support, and updates;
• To improve customer experience and internal quality;
• To maintain lawful business records and prevent misuse; and
• To comply with applicable legal and regulatory requirements.

8. Data Retention Policy

• We retain Personal Data only as long as necessary for the stated purpose or as required by law.
• Temporary service data (e.g., for software customization or cloud setup) is securely deleted after service completion.
• Users may request deletion or withdrawal of data by contacting support@kartelinfotech.in.

9. Data Sharing and Disclosure

9.1. Internal Disclosure

Access to your data is limited to authorized personnel who need it to perform their job functions.

9.2. External Disclosure

We may share your data only with:

• Official Software Partners: Busy Infotech Ltd., Tally Solutions Pvt Ltd.
• Verified Cloud Service Providers engaged for infrastructure support.
• Secure Payment Gateways for transaction processing.

9.3. Legal and Regulatory Disclosure

We may disclose information when required by law, regulation, or valid legal process to protect our rights or prevent fraud.

9.4. Third-Country Transfers

If data is transferred outside India, we ensure adequate safeguards consistent with GDPR Chapter V (standard contractual clauses, secure encryption, etc.).

10. Data Security Measures

Kartel Infotech implements reasonable security practices and procedures under Rule 8 of the SPDI Rules 2011, including:

• Encryption of stored and transmitted data;
• Secure access control and authentication protocols;
• Firewalls, intrusion detection, and regular system audits; and
• Limited employee access under confidentiality obligations.

Despite these safeguards, no electronic system is entirely immune from risk; users share information at their discretion.

11. Cookies and Tracking Technologies

Our website currently uses only essential cookies required for secure session management and service delivery.

We do not use cookies for advertising, analytics, or profiling without prior consent.

If non-essential cookies are introduced in the future, users will be notified and provided opt-in choices consistent with global privacy standards.

12. Your Rights (Under Indian Law and GDPR)

Depending on your jurisdiction, you may exercise the following rights:

1. Right to Access: Request confirmation and a copy of your Personal Data held by us.
2. Right to Rectification: Request correction of inaccurate or incomplete information.
3. Right to Erasure ("Right to be Forgotten"): Request deletion of your data, subject to legal retention requirements.
4. Right to Restrict Processing: Request temporary suspension of processing under certain conditions.
5. Right to Data Portability: Request transfer of your data in a structured, commonly used, machine-readable format.
6. Right to Withdraw Consent: Withdraw consent at any time without affecting prior lawful processing.
7. Right to Lodge a Complaint: If you believe your data has been mishandled, you may contact us directly or approach your relevant data protection authority.

13. Children's Privacy

Our services are not directed toward minors under the age of 18.

We do not knowingly collect Personal Data from children.

If we learn that we have inadvertently collected data from a minor, it will be promptly deleted.

14. International Data Processing

While Kartel Infotech is based in India, we serve international clients.

By providing your data, you acknowledge that it may be processed in India and other jurisdictions where our partners operate.

All such processing will adhere to this Policy and applicable privacy laws.

15. Updates to This Policy

We may modify this Policy to reflect changes in law, technology, or business operations.

Any material updates will be posted on our website with an updated "Last Updated" date.

Continued use of our services after such updates constitutes acceptance of the revised Policy.

16. Contact Information

For all privacy-related inquiries, requests, or complaints, please contact:

17. Governing Law and Jurisdiction

This Privacy Policy and any dispute arising therefrom shall be governed by and construed in accordance with the laws of India, particularly the Information Technology Act 2000 and relevant data-protection rules.

Where GDPR applies, any unresolved disputes shall fall under the jurisdiction of competent courts in Delhi, India, without prejudice to mandatory rights under the GDPR.