Legal · Privacy

Privacy Policy

Identora is built and operated in compliance with India's Digital Personal Data Protection Act, 2023 (“DPDP Act”).

1. Data we process

When you upload an Azure IAM export, we process the contents of that file to produce a compliance audit. Uploaded files are stored on our database (MongoDB Atlas, hosted in ap-south-1, Mumbai) and are accessible only to the user who uploaded them.

2. Where data goes

The contents of your uploaded export are sent to our LLM provider (Groq) for analysis. No other third party receives this data. Payment metadata (order IDs, payment IDs) is shared with Razorpay solely for transaction processing.

3. Your rights under the DPDP Act

• Right to access your personal data (Section 11)
• Right to correction and erasure (Section 12)
• Right to nominate a successor (Section 14)
• Right to grievance redressal (Section 13)

4. Grievance Officer

Name: [placeholder — your name]
Email: [placeholder — privacy@yourdomain.com]
Address: [placeholder — registered office address]

To exercise any of the rights above, email the Grievance Officer. We will respond within the period prescribed by the Act.

5. Retention

Audit records are retained for as long as your account is active. On account deletion, all audit records and uploaded files are purged within 30 days. You can request earlier deletion at any time.

← Back to home