Version 1.0 — Effective: 3 May 2026
This Privacy Policy (“Policy”) describes how Ready1Go Technologies, Chandigarh, India (“Ready1Go,” “we,” “us,” “our”) collects, uses, stores, shares, and protects personal data from:
This Policy is issued in compliance with: the Information Technology Act, 2000 (“IT Act”); the Information Technology (Amendment) Act, 2008; the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (“SPDI Rules”); the Digital Personal Data Protection Act, 2023 (“DPDP Act”); the Consumer Protection Act, 2019; and all other applicable Indian and international laws governing personal data.
Ready1Go Technologies, Chandigarh, Punjab, India, is the Data Fiduciary (as defined under the DPDP Act) and Data Controller for personal data of Website Visitors and account holders. For Customer Data processed on behalf of subscribing organisations, Ready1Go acts as a Data Processor / Data Processor and the subscribing organisation is the Data Fiduciary / Controller. Grievance / Data Protection Officer contact: admin@ready1go.com.
2.1 Website Visitors: IP address, browser type, OS, referring URL, pages visited, and session duration via server logs and analytics cookies. Contact-form submissions (name, email, phone, message). No account is created without your active action.
2.2 Account & Subscription Data: Company name, contact person name, business email, phone, billing address, subdomain selection, GST/PAN numbers (where provided), payment references (no card numbers are stored by us).
2.3 Platform Usage Data: Log files, IP addresses, device identifiers, browser version, session data, feature-interaction logs, API call metadata, and error reports.
2.4 Customer Data: All data uploaded or generated by you or your Authorised Users within the Platform (leads, contacts, deals, documents, campaign content). Processed only on your instructions; we do not access or use it for our own purposes.
2.5 Communications: Support tickets, emails, chat transcripts, and any feedback you voluntarily submit.
2.6 Cookies & Tracking: As described in our Cookie Policy: essential, functional, analytics, and marketing cookies and similar technologies.
2.7 Sensitive Personal Data (SPDI): We do not intentionally collect Sensitive Personal Data or Information as defined under the SPDI Rules (financial account numbers, health, biometric, sexual orientation data, passwords beyond hashed credentials) through the Website. If Customer Data you upload contains SPDI, you are the Data Fiduciary for that data and must ensure compliant collection and disclosure to your data subjects.
| Purpose | Legal Basis (DPDP Act / IT Act) |
|---|---|
| Providing and operating the Platform | Contractual necessity |
| User authentication and security | Legitimate interest; legal obligation (IT Act s.43A) |
| Billing, invoicing, GST compliance | Legal obligation (GST Act, Income Tax Act) |
| Customer support and communications | Contractual necessity; consent |
| Platform improvement and analytics | Legitimate interest; consent (for non-essential cookies) |
| Fraud detection and security monitoring | Legitimate interest; legal obligation (IT Act s.43A) |
| Marketing communications | Consent (freely given, specific, informed); may be withdrawn |
| Legal claims and regulatory compliance | Legal obligation; legitimate interest |
4.1 Service Providers: We share data with vetted sub-processors (hosting, payment gateways, transactional email, SMS, analytics, support software) under binding data processing agreements that require equivalent protections.
4.2 Legal Obligations: We may disclose personal data when required by a court order, government authority, or applicable law (including under the IT Act, Code of Criminal Procedure, 1973, or Prevention of Money Laundering Act, 2002).
4.3 Business Transfers: In the event of a merger, acquisition, or sale of assets, personal data may be transferred subject to equivalent protections and notice to you.
4.4 No Sale of Data: We do not sell, rent, or trade personal data or Customer Data to third parties for their independent marketing use.
Account and billing data: subscription period plus 7 years (to meet GST and income-tax record-keeping requirements under the Income Tax Act, 1961 and CGST Act, 2017). Customer Data: subscription period plus a 30-day export window, then securely deleted. Website analytics: up to 26 months. Support communications: 3 years. Legal holds or government orders override these schedules.
We implement “reasonable security practices and procedures” as mandated by Section 43A of the IT Act and the SPDI Rules, including: TLS 1.2+ encryption in transit; encryption at rest for sensitive fields; role-based access controls; regular vulnerability assessments; intrusion detection; and an incident response plan. READY1GO DOES NOT GUARANTEE ABSOLUTE SECURITY. DATA IS PROVIDED AT YOUR OWN RISK.
In the event of a personal-data breach likely to result in risk to your rights, we will notify you and the appropriate authority within the timeframe required by the DPDP Act (currently within a reasonable period not exceeding 72 hours of becoming aware of a high-risk breach, subject to Government notification).
Data is primarily processed in India. Where data is transferred outside India (e.g., to a cloud sub-processor), such transfers are made only to countries or entities that provide an adequate level of protection or under contractual safeguards consistent with Section 16 of the DPDP Act and the Government’s notified list of permitted jurisdictions. By using the Platform you consent to such transfers.
Under the DPDP Act, 2023 and the SPDI Rules, you have the right to:
Submit requests to admin@ready1go.com. We will verify your identity before acting on requests and respond within 30 days.
As Data Processor we: (a) process Customer Data only on your documented instructions; (b) ensure staff are bound by confidentiality; (c) implement appropriate technical and organisational security measures; (d) assist you in fulfilling your data-subject obligations; (e) delete or return all Customer Data at termination; (f) make available compliance information on request.
You, as Data Fiduciary for Customer Data, warrant that you have obtained all necessary consents and have valid lawful bases for submitting that data to the Platform, and that doing so complies with all applicable laws including the DPDP Act and the SPDI Rules.
The Platform and Website are not directed at children under the age of 18. We do not knowingly process personal data of minors. Under the DPDP Act we do not process personal data of children without verifiable parental consent. If you believe a minor’s data has been submitted, contact admin@ready1go.com immediately and we will delete it promptly.
Our use of cookies is governed by our Cookie Policy, incorporated herein by reference.
In accordance with the IT Act, 2000 and SPDI Rules, the Grievance Officer for Ready1Go is:
Grievance Officer: Data Protection Team, Ready1Go Technologies, Chandigarh, India.
Email: admin@ready1go.com
Response time: Complaints acknowledged within 1 business day; resolved within 30 days.
We may update this Policy at any time. Material changes will be notified 30 days before effect by email or prominent notice on the Website. Continued use constitutes acceptance. The version and date above indicate the currently applicable Policy.
This Policy and all data-processing activities are governed by the laws of India, including but not limited to: the Information Technology Act, 2000; the DPDP Act, 2023; the SPDI Rules, 2011; the Consumer Protection Act, 2019; the Indian Contract Act, 1872; and all subordinate regulations thereunder. Disputes are resolved by arbitration in Chandigarh as set out in the EULA.