Privacy Policy

1. Introduction

Bell24h ("we," "us," or "our"), operated by DIGITEX STUDIO, is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you use www.bell24h.com ("Platform").

This Policy complies with:

• Digital Personal Data Protection Act, 2023 (India) - Governs collection and processing of personal data
• Information Technology Act, 2000 and Rules - Establishes data protection standards
• General Data Protection Regulation (GDPR) - For users in the European Economic Area

By using Bell24h, you consent to the data practices described in this Policy. If you do not agree, please discontinue use immediately.

2. Information We Collect

2.1 Information You Provide Directly

When you register, post RFQs, submit quotes, or use our services, we collect:

• Account Information: Name, email address, mobile number, company/business name, role (Buyer/Supplier)
• Business Verification: GST number, Udyam Aadhar number, trade license, company registration certificate (optional, for verified status)
• Profile Information: Business description, location/address, product categories, service areas, website URL, logo/avatar
• RFQ and Quote Data: Product requirements, specifications, quantities, budgets, delivery locations, timelines, attached documents/images
• Payment Information: For credit purchases or paid plans, payment data is processed by Razorpay (our payment gateway). We do NOT store full credit card numbers or CVV codes.
• Communication: Messages exchanged with other users, support tickets, feedback forms

2.2 Information Collected Automatically

• Device and Browser Information: IP address, browser type and version, operating system, device identifiers, screen resolution
• Usage Data: Pages visited, features used, time spent on pages, click patterns, search queries, RFQ views, quote submissions
• Location Data: Approximate location based on IP address (for regional content and supplier matching)
• Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies. See Section 8 for details.

2.3 Information from Third-Party Services

• MSG91 (OTP Verification): Mobile number, OTP verification status, message delivery status
• Razorpay (Payments): Payment transaction details, payment method, transaction status
• NVIDIA AI (Voice/Video Processing): Audio/video content you upload for RFQ creation is processed by NVIDIA's AI models (DeepSeek V3.2, MiniMax M2.1) to extract structured data. We do not permanently store raw audio/video files beyond processing time.
• Cloudinary (Media Storage): Images and documents you upload are stored on Cloudinary's secure servers

3. How We Use Your Information

We use collected data for the following purposes:

3.1 Platform Operations

• Create and manage user accounts
• Enable RFQ posting and quote submission
• Facilitate communication between Buyers and Suppliers
• Process payments, credits, and escrow transactions
• Match Buyers with relevant Suppliers based on categories, location, and requirements
• Track deal status and calculate platform fees/commissions

3.2 Service Improvement and Personalization

• Analyze user behavior to improve features and user experience
• Personalize content, recommendations, and search results
• Develop new features and AI models for better RFQ extraction
• Conduct A/B testing and performance analysis

3.3 Communication and Notifications

• Send transactional emails/SMS: OTP codes, deal confirmations, payment receipts
• Notify you of new quotes, messages, or RFQ matches (if notification settings enabled)
• Send service announcements, policy updates, or important account changes
• Respond to support inquiries and resolve disputes
• Send marketing communications (you can opt out - see Section 7)

3.4 Legal and Security

• Prevent fraud, abuse, and unauthorized access
• Enforce our Terms and Conditions
• Comply with legal obligations, court orders, or government requests
• Protect the rights, property, and safety of Bell24h, users, and the public

4. Information Sharing and Disclosure

We do NOT sell your personal information to third parties. However, we may share data in the following circumstances:

4.1 With Other Users

When you post an RFQ or submit a quote, certain information becomes visible to relevant users:

• Buyers can see: Supplier company name, location, trust score, quote details
• Suppliers can see: RFQ requirements, Buyer location (city/state only), urgency level
• We do NOT share full contact details (phone/email) until a quote is accepted, to prevent circumventing platform fees

4.2 With Service Providers

• MSG91: For OTP and transactional SMS/WhatsApp delivery
• Razorpay: For payment processing (they have their own privacy policy)
• NVIDIA: For AI-powered voice/video RFQ processing
• Cloudinary: For image and document storage
• n8n (Self-Hosted): For workflow automation (no external data sharing)
• Vercel: For hosting and deployment infrastructure

All service providers are contractually obligated to protect your data and use it only for the specified purposes.

4.3 For Legal Compliance

We may disclose information if required by law, legal process, court order, or government request, including:

• Tax authorities (GST compliance)
• Law enforcement agencies (fraud investigations)
• Regulatory bodies (RBI, SEBI, etc.)

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. You will be notified of any such change.

5. Data Security

We implement industry-standard security measures to protect your personal information:

• Encryption: All data transmitted between your browser and our servers is encrypted using TLS/SSL (HTTPS)
• Database Security: Data is stored in encrypted databases (Neon PostgreSQL) with access controls and regular backups
• Authentication: OTP-based login for enhanced security (no passwords to steal)
• Access Controls: Only authorized personnel can access personal data, and access is logged
• Regular Audits: Security audits and vulnerability assessments are conducted periodically

⚠️ Important: No method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted by law.

• Active Accounts: Data retained while your account is active
• Deleted Accounts: Data is anonymized or deleted within 90 days of account deletion, except:
• Transaction records (retained for 7 years for tax/audit compliance)
• Dispute/fraud records (retained for legal defense purposes)
• Anonymized analytics data (retained indefinitely)
• Inactive Accounts: Accounts inactive for 3+ years may be archived or deleted after email notification

7. Your Rights and Choices

Under Indian and international data protection laws, you have the following rights:

7.1 Access and Portability

You can request a copy of your personal data in a structured, machine-readable format. Contact privacy@bell24h.com.

7.2 Correction and Update

You can update your profile information, business details, and preferences directly from your account settings.

7.3 Deletion

You can request account deletion by emailing support@bell24h.com. Note: Transaction records will be retained for legal compliance.

7.4 Marketing Opt-Out

You can unsubscribe from marketing emails using the "Unsubscribe" link in any email, or by adjusting notification preferences in your account settings. Note: You cannot opt out of transactional emails (OTPs, deal confirmations, payment receipts).

7.5 Object to Processing

You can object to certain data processing activities (e.g., profiling for marketing). Contact privacy@bell24h.com to exercise this right.

7.6 Withdraw Consent

Where processing is based on consent (e.g., marketing communications), you can withdraw consent at any time without affecting prior processing legality.

8. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience and analyze Platform usage.

8.1 Types of Cookies We Use

• Essential Cookies: Required for login, authentication, and security. Cannot be disabled.
• Functional Cookies: Remember your preferences (language, location filters). Can be disabled in browser settings.
• Analytics Cookies: Track usage patterns to improve the Platform (using Google Analytics or similar). Can be disabled via cookie banner.
• Third-Party Cookies: Set by Razorpay (payment processing), MSG91 (notification delivery), and other service providers.

8.2 Managing Cookies

You can control cookies through your browser settings. However, disabling essential cookies may impair Platform functionality. Visit our Cookie Policy page for detailed information.

9. Children's Privacy

Bell24h is intended for business users aged 18 and above. We do not knowingly collect personal information from individuals under 18. If we become aware of such collection, we will delete the data promptly. Parents or guardians who believe their child has provided information to us should contact privacy@bell24h.com.

10. International Data Transfers

Your information may be transferred to and processed in countries other than India, including:

• United States: NVIDIA AI servers (for voice/video processing), Vercel hosting
• European Union: Cloudinary (media storage)

We ensure that all international transfers comply with applicable data protection laws and that adequate safeguards (such as Standard Contractual Clauses) are in place.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or Platform features. Updated policies will be posted on this page with a revised "Last Updated" date. Material changes will be communicated via email or in-app notification.

Continued use of Bell24h after changes indicates acceptance of the updated Policy.

12. Contact Us

For privacy-related questions, concerns, or requests to exercise your data rights, please contact: