Privacy Policy

Effective: February 2026

1. Introduction

orangeprop is a product of Perseus Intelligence, a company registered in India with its office at 312, Rupa Solitaire, Millenium Business Park, Mahape, Navi Mumbai, Maharashtra, India - 400710.

This Privacy Policy explains how we collect, use, store, and protect your personal data when you use the orangeprop platform (“Service”). We are committed to protecting your privacy in accordance with the Digital Personal Data Protection Act, 2023 (“DPDP Act”), the Information Technology Act, 2000 (“IT Act”), and applicable Indian regulations.

By using the Service, you consent to the collection and use of your personal data as described in this policy. If you do not agree with this policy, please do not use the Service.

2. Data We Collect

We collect the following categories of personal data:

2.1 Information You Provide

  • Account information — name, email address, phone number, company name, and job title when you register or are invited to the platform.
  • Customer data — lead details, property information, notes, communications, and other data you or your team enter into the Service.
  • Payment information — billing details processed through our payment partners. We do not store full payment card numbers on our servers.
  • Support communications — messages, emails, and feedback you send to us.

2.2 Information Collected Automatically

  • Usage data — pages visited, features used, actions taken, timestamps, and session duration.
  • Device information — browser type, operating system, device type, screen resolution, and IP address.
  • Cookies and similar technologies — as described in section 10 below.

2.3 Information from Third Parties

  • Data received through integrations you enable (e.g., telephony providers, marketing platforms).
  • Information from publicly available sources for lead enrichment, where permitted by law.

3. How We Use Your Data

We use your personal data for the following purposes:

  • Service delivery — to provide, maintain, and improve the orangeprop platform.
  • Account management — to manage your account, authenticate users, and enforce access controls.
  • Communication — to send service-related notifications, respond to support requests, and provide updates.
  • Analytics — to understand usage patterns and improve the Service.
  • Security — to detect, prevent, and respond to fraud, abuse, and security incidents.
  • Legal compliance — to comply with applicable laws, regulations, and legal processes.

4. Lawful Basis for Processing

We process your personal data on the following grounds under the DPDP Act:

  • Consent — you have given clear consent for us to process your personal data for specified purposes.
  • Contract performance — processing is necessary to fulfil our contractual obligations to you.
  • Legitimate interest — processing is necessary for our legitimate interests (e.g., improving the Service, ensuring security) provided it does not override your rights.
  • Legal obligation — processing is required to comply with Indian law.

5. Data Sharing

We do not sell your personal data. We may share your data with:

  • Service providers — trusted third parties who assist in operating the Service (hosting, analytics, payment processing, communication tools). These providers are bound by data processing agreements.
  • Legal requirements — when required by law, court order, or governmental authority.
  • Business transfers — in connection with a merger, acquisition, or sale of assets, with appropriate notice to you.
  • Your organisation — account administrators within your tenant may access data within that tenant as part of normal CRM operations.

6. Data Storage & Transfers

Your data is primarily stored on servers located in India. Where data is transferred to servers outside India (for example, through third-party service providers), we ensure adequate safeguards are in place in compliance with the DPDP Act, including contractual protections and security measures.

7. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • Encryption of data in transit (TLS/SSL) and at rest.
  • Role-based access controls and multi-tenant data isolation.
  • Regular security assessments and monitoring.
  • Incident response procedures for data breaches.

While we take reasonable precautions, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security of your data.

8. Your Rights

Under the DPDP Act, you have the following rights as a Data Principal:

  • Right to access — obtain confirmation of whether your personal data is being processed and request a summary of such data.
  • Right to correction — request correction or completion of inaccurate or incomplete personal data.
  • Right to erasure — request deletion of your personal data, subject to legal retention requirements.
  • Right to withdraw consent — withdraw previously given consent at any time. Withdrawal does not affect the lawfulness of prior processing.
  • Right to grievance redressal — lodge a complaint with our Grievance Officer or the Data Protection Board of India.
  • Right to nominate — nominate another individual to exercise your rights in the event of your death or incapacity.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days of receiving your request.

9. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy, or as required by Indian law and regulatory obligations. When data is no longer needed, we securely delete or anonymise it.

Upon termination of your account, we retain your data for a period of 30 days to allow for data export, after which it is permanently deleted unless retention is required by law.

10. Cookies

We use cookies and similar technologies for the following purposes:

  • Essential cookies — required for the Service to function (authentication, session management, security).
  • Analytics cookies — help us understand how the Service is used so we can improve it.
  • Preference cookies — remember your settings and preferences.

You can manage cookie preferences through your browser settings. Disabling essential cookies may affect the functionality of the Service.

11. Children’s Data

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will take steps to delete such data promptly.

12. Grievance Officer

In accordance with the Information Technology Act, 2000, and the DPDP Act, 2023, the details of the Grievance Officer are as follows:

  • Name: Grievance Officer
  • Email: [email protected]
  • Address: 312, Rupa Solitaire, Millenium Business Park, Mahape, Navi Mumbai, Maharashtra, India - 400710

The Grievance Officer shall address your concerns within 30 days of receipt of a complaint.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the “Effective” date above. Your continued use of the Service after such changes constitutes acceptance of the revised policy.

14. Contact Information

For questions or concerns about this Privacy Policy, contact us at:

  • Perseus Intelligence
  • 312, Rupa Solitaire, Millenium Business Park, Mahape, Navi Mumbai, Maharashtra, India - 400710
  • Email: [email protected]