Privacy Policy

Introduction

Flyocs Technologies Pvt Ltd ("Flyocs," "we," "us," or "our") operates the Flyocs export compliance platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, including our website, applications, and services (collectively, the "Services").

We are committed to protecting your privacy and complying with applicable data protection laws in India, including the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.

Information We Collect

1. Information You Provide

• Account Information: Name, email address, phone number, company name, business address, GST number, IEC (Importer Exporter Code), and other business identifiers
• Shipment Data: Product descriptions, HS codes, invoice details, buyer information, destination countries, shipping documentation, and related export data
• Financial Information: Bank account details (for trade finance), payment information (processed through secure third-party payment processors)
• Compliance Data: DGFT registrations, SCOMET declarations, customs documentation, and regulatory filings
• Communication Data: Support tickets, chat messages, email correspondence, and feedback

2. Automatically Collected Information

• Usage Data: IP address, browser type, device information, pages visited, time spent on platform, clickstream data
• Cookies & Tracking: We use cookies, web beacons, and similar technologies to enhance user experience and analyze platform usage
• Log Data: Server logs, error reports, and performance metrics

3. Information from Third Parties

• Government Databases: Data from ICEGATE, DGFT portals, and other regulatory databases for verification purposes
• Trade Finance Partners: Information from lenders and financial institutions when you apply for trade financing
• Integration Partners: Data from accounting software, ERPs, and other integrated platforms (with your authorization)

How We Use Your Information

We use your information to:

• Provide Services: Generate export documentation, verify compliance, process shipments, and deliver core platform functionality
• Compliance & Verification: Validate HS codes, check SCOMET restrictions, verify business credentials, and ensure regulatory compliance
• Trade Finance: Facilitate access to working capital by sharing necessary information with verified lenders
• Customer Support: Respond to inquiries, troubleshoot issues, and provide technical assistance
• Platform Improvement: Analyze usage patterns, identify bugs, develop new features, and enhance user experience
• Communication: Send transactional emails, policy updates, security alerts, and (with consent) marketing communications
• Security & Fraud Prevention: Detect and prevent unauthorized access, fraudulent activities, and security threats
• Legal Compliance: Meet regulatory obligations, respond to legal requests, and enforce our Terms of Service

Information Sharing & Disclosure

We may share your information with:

1. Service Providers

• Cloud hosting providers (data stored in India)
• Payment processors and financial service providers
• Email and communication service providers
• Analytics and monitoring tools
• Customer support platforms

2. Financial Institutions

When you apply for trade finance, we share relevant shipment and business information with our verified lending partners. You explicitly consent to this sharing when applying for financing.

3. Government Authorities

We may disclose information to comply with legal obligations, respond to lawful requests from DGFT, customs authorities, tax departments, or other regulatory bodies.

4. Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change in ownership.

We do NOT sell your personal information to third parties for marketing purposes.

Data Security

We implement industry-standard security measures:

• Encryption: 256-bit AES encryption for data at rest; TLS 1.3 for data in transit
• Access Controls: Role-based access, multi-factor authentication, and regular access audits
• Infrastructure: SOC 2 Type II certified hosting with redundant backups
• Monitoring: 24/7 security monitoring, intrusion detection, and incident response protocols
• Compliance: ISO 27001 certified information security management system
• Data Residency: All data stored on servers located in India

Data Retention

We retain your information:

• Account Data: As long as your account is active, plus 7 years after account closure (for regulatory compliance)
• Shipment Records: Minimum 7 years (as required by Indian export regulations and tax laws)
• Financial Records: Minimum 7 years (as per RBI and income tax requirements)
• Support Communications: 3 years for quality and training purposes
• Analytics Data: Aggregated and anonymized data may be retained indefinitely

Your Rights

You have the right to:

• Access: Request a copy of your personal information we hold
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your data (subject to legal retention requirements)
• Data Portability: Receive your data in a structured, machine-readable format
• Withdraw Consent: Opt-out of marketing communications or revoke consent for data processing
• Lodge Complaints: File complaints with our Data Protection Officer or relevant authorities

To exercise these rights, contact us at [email protected]

Cookies & Tracking

We use cookies for:

• Essential Cookies: Required for platform functionality (authentication, security)
• Analytics Cookies: Understand usage patterns and improve our platform
• Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Note that disabling essential cookies may limit platform functionality.

International Data Transfers

Your data is primarily stored in India. If we transfer data internationally (e.g., to cloud service providers with global infrastructure), we ensure adequate safeguards through contractual clauses and certifications.

Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect information from children.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or platform notifications. Continued use of our Services after changes constitutes acceptance.

Contact Us