DPDP Act compliance notice

When you use DealZen to process your own leads, DealZen acts as a Data Processor and you are the Data Fiduciary under the DPDP Act.

For data we collect about you directly as our customer (your name, email, billing info), DealZen is the Data Fiduciary.

We process customer data on the basis of the contract between you and us (your Terms of Service).

We process lead data you ingest on the basis of consent you collect from your leads through your own consent mechanism. You remain responsible for that consent.

Right to information about how we process data.

Right to correction and erasure.

Right to grievance redressal (see Grievance Officer below).

Right to nominate a person to exercise rights in case of death or incapacity.

You can exercise these rights from Settings → Privacy or by emailing privacy@dealzen.ai.

DealZen is not intended for use by persons under 18. We do not knowingly process personal data of children.

If you operate in a category that may receive messages from minors (e.g. education), you must obtain verifiable parental consent before ingesting their data into DealZen.

Data is encrypted in transit (TLS 1.3) and at rest (AES-256).

Role-based access control. Access to customer data by DealZen employees is logged and audited.

Regular security testing of our platform by third parties.

In the event of a personal data breach, we notify affected Data Principals and the Data Protection Board within 72 hours of discovery, as required by the DPDP Act.

Name: To be appointed.

Email: grievance@dealzen.ai

Address: To be added.

Response time: within 30 days.