Legal
Privacy Policy
Effective: April 01, 2026 Version 1.0 MydealX Market Private Limited
Contents
1. Introduction 2. Information We Collect 3. How We Use It 4. Information Sharing 5. Data Retention 6. Security 7. Cross-Border Transfers 8. Cookies 9. Your Rights 10. Contact Us
Effective: April 01, 2026 Version 1.0
This Privacy Policy complies with the Information Technology Act, 2000, the IT (Reasonable Security Practices) Rules, 2011, and applicable Indian data protection regulations. We do not sell, rent, or trade your personal data to any third party.
1
Introduction

MyDealX is a digital marketplace owned and operated by MyDealX Market Private Limited ("Company", "We", "Us", "Our"), a Limited Liability Partnership registered in India. This Privacy Policy describes the manner in which we collect, receive, possess, store, deal with, and handle information, including sensitive personal data or information ("SPDI"), in connection with the Platform at www.mydealx.in.

This Policy applies to all Users of the Platform, including Service Providers, Customers, and visitors. By registering on, accessing, or using the Platform, you consent to the collection, processing, and use of your information as described in this Policy.

This Policy forms an integral part of the Terms and Conditions and should be read in conjunction with them.

2
Information We Collect
2.1 Information You Provide Directly
  • Identity Information: Full name, gender, date of birth, photograph, government-issued identity number
  • Contact Information: Email address, mobile number, postal address, city, state, and PIN code
  • Professional Information (Service Providers): Qualifications, certifications, licences, experience, portfolio, service descriptions, and pricing
  • Business Information (Service Providers): Business name, registered address, GSTIN, PAN, bank account details (account number, IFSC code, bank name)
  • Communications: Messages, correspondence, and feedback submitted through the Platform's messaging system or support channels
2.2 Information We Collect Automatically
  • Device Information: Device type, operating system, browser type and version, device identifiers
  • Usage Data: Pages visited, features used, links clicked, search queries, session duration
  • Log Data: IP address, date and time of access, referring URL, error logs
  • Location Data: Approximate geographic location from IP address; precise location only with your explicit consent
2.3 Information from Third Parties
  • Payment Gateway providers regarding transaction status and verification
  • Identity verification services for KYC compliance
  • Government databases for GST and PAN verification
  • Social login providers (Google, etc.) if you choose to log in via such services
3
How We Use Your Information
Purpose Legal Basis
Account registration and authentication Contractual necessity
Processing Orders and facilitating service delivery Contractual necessity
Processing payments and managing Payouts Contractual necessity
KYC verification and fraud prevention Legal obligation / Legitimate interest
Customer support and grievance resolution Contractual necessity
Sending transactional notifications Contractual necessity
Sending promotional communications Consent (opt-in only)
Improving Platform features and user experience Legitimate interest
Analytics and market research (anonymised) Legitimate interest
Compliance with legal and regulatory obligations Legal obligation
Detecting and preventing security threats or abuse Legitimate interest
We will not use your personal information for any purpose beyond what is stated above without your prior consent, except where required by law.
4
Information Sharing & Disclosure
4.1 Sharing Between Users

Customers can view a Service Provider's public profile including name, photo, listings, ratings, and reviews. Service Providers receive a Customer's name, contact information, and Order details necessary to fulfil the booked service. Contact details are shared only to the extent required.

4.2 Sharing with Service Partners
  • Payment Gateway providers for payment processing
  • Cloud hosting and infrastructure providers for data storage
  • KYC and identity verification service providers
  • SMS and email communication service providers
  • Analytics and performance monitoring tools
  • Legal, accounting, and compliance advisors

All third-party service providers are contractually bound to process your information only for the specified purpose.

4.3 Legal Disclosure

We may disclose your information to government authorities, law enforcement, or courts in response to a lawful order, to comply with Applicable Laws, or to protect the safety of Users or the public.

4.4 No Sale of Data
MyDealX does NOT sell, rent, or trade your personal information to any third party for commercial purposes — ever.
5
Data Retention
Category Retention Period
Account and profile information Duration of account + 5 years post closure
Order and transaction records 8 years (as required under tax and accounting laws)
Financial / payment records 8 years (Income Tax Act and GST laws)
KYC documents As required by applicable KYC / AML regulations
Communication logs and support records 3 years from date of communication
Marketing preferences and consent records Until consent is withdrawn + 3 years
Log files and access data 90 days, unless required longer for legal proceedings

After the applicable retention period, your information will be securely deleted or anonymised.

6
Security of Information

We implement reasonable security practices as mandated under Rule 8 of the SPDI Rules, 2011:

  • SSL/TLS encryption for all data transmitted to and from the Platform
  • Encryption of SPDI stored in our databases
  • Role-based access controls limiting access to authorised personnel
  • Regular security audits and vulnerability assessments
  • Secure Payment Gateway integration
  • Two-factor authentication (2FA) for account access

While we take all reasonable precautions, no method of transmission over the internet is 100% secure. You are responsible for maintaining the confidentiality of your Account credentials. We will never ask for your password via email or phone.

7
Cross-Border Data Transfers

The Platform and its servers are primarily hosted in India. Where necessary to transfer data outside India (for cloud services or analytics), we ensure such transfers comply with Applicable Laws and appropriate contractual safeguards.

We will not transfer Sensitive Personal Data outside India without your prior explicit consent, unless required by law.

8
Cookies & Tracking Technologies

Cookies are small text files stored on your device to help us provide a better experience, remember preferences, and understand how users interact with the Platform.

Cookie Type Purpose Duration
Essential Required for Platform functionality (login sessions, security tokens) Session / up to 1 year
Performance / Analytics Anonymised data on Platform usage to improve performance Up to 2 years
Functional Remember preferences, language settings, and personalisation choices Up to 1 year
Marketing / Targeting Track browsing to deliver relevant advertisements (with consent only) Up to 2 years

You can control non-essential cookies through your browser settings. This may affect some Platform features.

9
Your Rights

Under applicable Indian data protection law, you have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Ask us to update inaccurate or incomplete data
  • Deletion: Request deletion of your account and associated data
  • Objection: Opt out of non-essential or marketing communications
  • Portability: Receive your data in a structured, machine-readable format

To exercise any of these rights, email support@mydealx.in. We will respond within 30 days.

10
Contact Us

For any privacy-related concerns or data requests, please contact our team:

  • Email: support@mydealx.in
  • Phone: +91-9205693336 (Mon–Sat, 9:00 AM – 8:00 PM IST)
  • Address: MyDealX | MydealX Market Private Limited, G-31, SF, Noida Sector 3, Noida, Uttar Pradesh 201301