Privacy Policy

Last Updated on July, 15, 2025

1. Introduction

Welcome to Swift Struck. Your privacy is critically important to us. This privacy policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services. By accessing or using our services, you agree to this privacy policy.

Swift Struck Private Limited

1.1 Registered Office

3703, Tower 5, Crescent Bay, Mumbai, 400012, Maharashtra, India.

1.2 Contact Information

Email: assist.swiftstruck@gmail.com

Phone: +91 9920706729, +91 9167418168

1.3 Legal Identifiers

GSTIN: 27ABMCS4223P1ZQ

PAN: ABMCS4223P

2. Definitions

2.1 Company

Swift Struck Private Limited, Mumbai, Maharashtra, India.

2.2 Client

Any individual or entity that uses Swift Struck’s services.

2.3 Data Principal

The individual to whom the personal data relates.

2.4 Data Fiduciary

Swift Struck, responsible for determining the purpose and means of processing personal data.

2.5 Personal Data

Information that relates to an identified or identifiable individual.

2.6 Sensitive Personal Data

As defined by applicable laws, including financial and health data.

Scenario:

If a user provides their email address and phone number when registering for our services, this information is considered personal data.

3. Data Collection

We collect personal data that you voluntarily provide to us when you register, make a purchase, or otherwise interact with our services. The categories of data we collect include:

3.1 Contact Information

Email address, phone number, and country code.

3.2 Location Data

Geolocation data for services requiring location-based functionalities.

3.3 Device Information

Type of device, browser type, screen type, and other relevant device details.

Additional Data Collection:

  1. Usage Data

Information about how users interact with our website and services, including IP addresses, browsing history, and usage patterns.

  1. Cookies and Tracking Technologies

We use cookies and similar technologies to collect information about user interactions with our website to improve user experience and for analytics purposes.

Scenario:

If a user signs up for a service, they will need to provide their email address and phone number. If they use location-based features, they will need to grant location access permissions.

Legal Reference:

Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011: These rules govern the collection, processing, and storage of sensitive personal data or information in India.

4. Purpose of Data Processing

The personal data we collect is used for the following purposes:

4.1 Service Functionality

To ensure our software and features work correctly.

4.2 Customer Communication

For customer support and communication.

4.3 Marketing

To send marketing communications via email, which users can opt out of at any time.

Scenario:

Location data is used to enable attendance features, and email addresses are used for sending updates and marketing content relevant to the specific services used by the client.

Detailed Purposes:

  1. Improvement of Services

Analyzing usage data to improve our services and user experience.

  1. Legal Compliance

Complying with legal obligations, court orders, and government requests.

  1. Security

Monitoring and ensuring the security of our services and data.

Legal Reference:

Digital Personal Data Protection Act (DPDPA) 2023: Governs the processing of personal data, requiring explicit consent from data principals for specific purposes.

5. User Rights

You have the right to access, correct, and delete your personal data. These rights can be exercised through your user profile in our applications or website.

Scenario:

Users can update their contact information through the profile settings. If they choose to delete their data, a warning will inform them that all associated data will be archived and deleted, requiring a fresh start if they wish to use the services again.

Detailed Purposes:

  1. Right to Access

Users can request a copy of their personal data.

  1. Right to Correction

Users can request corrections to any inaccurate or incomplete data.

  1. Right to Deletion

Users can request the deletion of their personal data.

  1. Right to Data Portability

Users can request their data in a structured, commonly used, and machine-readable format.

  1. Right to Restrict Processing

Users can request a restriction on the processing of their data in certain circumstances.

Legal Reference:

DPDPA 2023: Provides data principals with rights to access, correction, deletion, and portability of their personal data.

6. Consent Management

Consent is obtained through a user-friendly interface where users can provide their email, phone number, and location data as needed for service features. Users can withdraw their consent by deleting their profile or by contacting us directly.

Scenario:

A user must provide consent to access location data for location-based services. Consent can be withdrawn by deleting their account or sending a request via email.

Detailed Consent Management:

  1. Granular Consent

Users can provide consent for specific purposes separately.

  1. Withdrawal of Consent

Users can withdraw consent at any time through their profile settings or by contacting us.

  1. Consent for Marketing

Explicit consent is required for sending marketing communications.

Legal Reference:

DPDPA 2023: Emphasizes the need for free, informed, specific, and unambiguous consent from data principals.

7. Data Security Measures

We implement the highest security standards as provided by Google Sheets, Google Workspace, and GlideApps. These include encryption, secure storage, and regular security assessments.

Google Sheets Security Measures:

  1. Encryption

Data is encrypted in transit and at rest using advanced encryption standards.

  1. Access Control

Google Sheets uses robust access control mechanisms to ensure only authorized users can access data.

  1. Data Centers

Google operates a global network of data centers that comply with industry-standard security certifications.

  1. Redundancy

Data is replicated across multiple data centers to ensure availability and durability.

Google Workspace Security Measures:

  1. Identity and Access Management

Advanced user authentication, including 2-step verification and single sign-on (SSO).

  1. Endpoint Management

Tools to manage and secure endpoints that access Google Workspace.

  1. Data Protection

Google Workspace provides built-in protections against phishing, malware, and spam.

  1. Compliance

Google Workspace complies with major global privacy and security standards, including ISO/IEC 27001, ISO/IEC 27017, and ISO/IEC 27018.

GlideApps Security Measures:

  1. Data Encryption

Data in GlideApps is encrypted in transit and at rest.

  1. Authentication

Supports secure user authentication methods.

  1. Secure Hosting

Hosted on secure servers with regular security audits.

  1. Compliance

GlideApps adheres to industry-standard security and privacy practices.

Legal Reference:

IT Act 2000: Governs data security practices in India, requiring reasonable security practices and procedures.

8. Data Retention

Personal data is retained as long as you continue to use our services. If you withdraw consent, your data will be archived and deleted within 60 days. If you delete your data, it will be removed within 45 working days.

Scenario:

A user who chooses to delete their profile will have their data securely archived and deleted within the specified timeframes, during which it remains protected.

Detailed Retention Policy:

  1. Active Users

Data is retained as long as the user is active.

  1. Inactive Accounts

Data is archived and deleted after a specified period of inactivity.

  1. Withdrawal of Consent

Data is archived and deleted within 60 days of consent withdrawal.

  1. Deletion Requests

Data is deleted within 45 working days of a deletion request.

Legal Reference:

DPDPA 2023: Requires data fiduciaries to have clear data retention and deletion policies.

9. Data Transfers

While Swift Struck does not directly transfer personal data outside India, the storage services we use (such as GlideApps and Google Documents) may store data on servers located outside India.

Scenario:

Data stored in Google Sheets or GlideApps may reside on servers outside India due to their global infrastructure.

Legal Reference:

DPDPA 2023: Governs cross-border data transfers and requires appropriate safeguards for data transferred outside India.

10. Grievance Redressal

Each application and service provided by Swift Struck includes a help tab or page for lodging complaints and creating support tickets. Complaints will be addressed promptly.

Scenario:

A user facing issues with their account can submit a ticket through the help page, and our team will resolve the issue according to our support protocols.

Detailed Redressal Mechanism:

  1. Complaint Submission

Users can submit complaints through the help page or via email.

  1. Response Time

We aim to respond to complaints within 24 hours on working days.

  1. Resolution Process

Complaints are investigated and resolved within a reasonable timeframe.

  1. Escalation

Users can escalate unresolved complaints to higher authorities within Swift Struck.

Legal Reference:

DPDPA 2023: Requires data fiduciaries to establish a grievance redressal mechanism for data principals.

11. Compliance with Legal Obligations

Swift Struck complies with all applicable data protection laws, including the Digital Personal Data Protection Act (DPDPA) 2023, Information Technology Act, 2000, and other relevant regulations.

Legal Compliance Details:

  1. DPDPA 2023

Compliance with consent, data processing, and user rights provisions.

  1. Information Technology Act, 2000

Governs digital transactions and cyber laws in India, ensuring data protection and privacy.

  1. Indian Contract Act, 1872

Provides the legal framework for contracts, including those related to data privacy and security.

Scenario:

Swift Struck ensures that all user data processing activities comply with these legal frameworks. For instance, when processing personal data for marketing purposes, explicit consent is obtained from users as mandated by DPDPA 2023.

12. Contact Information

For any questions, concerns, or inquiries about these terms and conditions, please contact us at:

  1. Email

assist.swiftstruck@gmail.com

  1. Phone

+91 9920706729, +91 9167418168

  1. Address

Swift Struck Private Limited, 3703, Tower 5, Crescent Bay, Mumbai, Maharashtra, India.

GSTIN and PAN Details

GSTIN: 27ABMCS4223P1ZQ, PAN: ABMCS4223P

Scenario:

If a user has any concerns regarding their data privacy, they can reach out to Swift Struck through the provided contact details. Swift Struck ensures prompt responses to all inquiries.

13. Miscellaneous Provisions

Entire Agreement

This Privacy Policy constitutes the entire agreement between the parties regarding the subject matter hereof and supersedes all prior and contemporaneous agreements, understandings, and communications, whether written or oral.

Amendments

Any amendments to this Privacy Policy must be made in writing and signed by authorized representatives of both parties.

Severability

If any provision of this Privacy Policy is found to be invalid or unenforceable, the remaining provisions will continue in full force and effect.ents to this Privacy Policy must be made in writing and signed by authorized representatives of both parties.

Waiver

No waiver of any breach or default hereunder shall be deemed to be a waiver of any preceding or subsequent breach or default. A waiver of any term or condition of this agreement must be in writing and signed by both parties.

Force Majeure

Neither party shall be liable for any failure or delay in performing its obligations under this Privacy Policy if such delay or failure is due to circumstances beyond its reasonable control, including but not limited to acts of God, natural disasters, war, civil unrest, or governmental regulations.

Assignment

The Client may not assign or transfer its rights or obligations under this Privacy Policy without the prior written consent of Swift Struck. Any attempted assignment without such consent will be void.

Notices

All notices required or permitted under this Privacy Policy shall be in writing and shall be deemed to have been duly given when received, if personally delivered; when receipt is electronically confirmed, if transmitted by email; or the day after it is sent, if sent for next day delivery by recognized overnight delivery service.

Governing Language

This Privacy Policy has been drafted in English, which shall be the governing language for all matters relating to the meaning or interpretation of this agreement.

Legal References

  1. Information Technology Act, 2000

Governs cyber law and digital transactions in India.

  1. Digital Personal Data Protection (DPDP) Act, 2023

Regulates data protection and privacy rights in India.

  1. Indian Contract Act, 1872

Provides the legal framework for contracts in India.

Scenario:

These legal references ensure that Swift Struck's privacy practices are aligned with Indian laws and regulations, providing a robust framework for data protection and privacy.