Privacy Policy

1. Introduction

This Privacy Policy describes how TechHive LLP ("Company", "we", "us", or "our"), a limited liability partnership registered under the laws of India, acting as a Data Fiduciary where applicable, collects, uses, stores, and discloses information when you use fsiMetrics (the "Service"), accessible at fsimetrics.com, as a web application, and as a desktop application for macOS and Windows.

By accessing or using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use the Service. Where required under applicable law, you provide your free, specific, informed, and unambiguous consent to such processing.

2. Information We Collect

2.1 Information You Provide

• Account Information: When you sign in via Google OAuth, we receive your name, email address, and Google profile picture URL. We do not receive or store your Google password.
• Calculation Data: The inputs you enter into the calculators (plot area, construction costs, sale prices, etc.) and the resulting feasibility analysis outputs.
• Reports: Saved report data including project name, city, report type, inputs, outputs, notes, and any generated PDF files.
• Team Data: Team names, membership rosters, shared reports, and comments posted within team discussions.
• Feedback & Support: Any messages, feedback, or bug reports you voluntarily submit to us.
• Your Responsibility: You are responsible for ensuring that any personal data you upload or share through the Service is lawful and that you have obtained necessary consents, where required.

2.2 Information Collected Automatically

• Usage Data: We collect anonymised usage telemetry via Azure Application Insights, including pages viewed, features used, response times, and error logs. This data is used solely to improve the Service.
• Device & Browser Information: Device type, operating system, browser type, screen resolution, and language preference.
• IP Address: Your IP address is logged by our hosting infrastructure for security, rate-limiting, and abuse prevention purposes. We do not use it for tracking or advertising and may use it for fraud detection, security monitoring, and compliance purposes.
• Cookies & Local Storage: We use browser storage mechanisms (including localStorage and sessionStorage) to store authentication tokens and user preferences. We do not use third-party advertising or tracking cookies. You may control or disable such storage through your browser settings; however, this may affect functionality of the Service.

3. How We Use Your Information

We use the collected information to:

• Provide, operate, and maintain the Service;
• Authenticate your identity and manage your account;
• Save and retrieve your calculation reports;
• Enable team collaboration features (sharing, comments);
• Generate PDF reports for your projects;
• Diagnose bugs, monitor performance, and improve the Service;
• Respond to your support requests and feedback;
• Comply with legal obligations and enforce our Terms & Conditions.
• Prevent fraud, abuse, and unauthorised access;
• Enforce usage limits and monitor compliance with our Terms;
• Develop new features, analytics, and improvements using aggregated or anonymised data.

We do not use your data for advertising, profiling, or selling to third parties.

4. Data Sharing & Disclosure

We do not sell, rent, or trade your personal data. We may share information only in the following circumstances:

• Service Providers: We use Microsoft Azure (hosting, database, Application Insights) and Google (OAuth authentication). These providers process data on our behalf under their respective privacy commitments and are contractually bound to implement appropriate technical and organisational security measures.
• Affiliates: We may share data with our affiliates or group entities for internal business and operational purposes, subject to this Privacy Policy.
• Team Members: If you join or create a team, your name and email are visible to other team members. Reports shared to a team are accessible to all team members.
• Legal Requirements: We may disclose information if required by law, court order, or government request, or to protect the rights, property, or safety of TechHive LLP, our users, or the public, including for investigation, fraud prevention, or enforcement of our legal rights.
• Business Transfer: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of the transaction. We will notify you of any such change.

5. Data Storage & Security

• Location: Your data is stored on Microsoft Azure servers located in India (Central India region).
• Encryption: All data in transit is encrypted using TLS 1.2 or higher. Database connections use encrypted channels.
• Access Control: Backend API endpoints require valid JWT authentication. Admin operations require separate authorisation.
• Data Breach: In the event of a data breach, we will take reasonable steps to mitigate the impact and notify affected users and authorities where required under applicable law.
• Retention: Your data is retained for as long as your account is active. We retain personal data only for as long as necessary for the purposes described in this Policy, unless a longer retention period is required or permitted by law. We may retain anonymised or aggregated data indefinitely.

While we implement commercially reasonable security measures, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Your Rights

Under applicable Indian law (including the Digital Personal Data Protection Act, 2023, to the extent notified and in force), you have the right to:

• Access — Request a copy of the personal data we hold about you.
• Correction — Request correction of inaccurate or incomplete personal data.
• Erasure — Request deletion of your personal data and account.
• Withdraw Consent — Withdraw consent for processing your data at any time, which may result in inability to use the Service.
• Grievance Redressal — Lodge a complaint with the relevant Data Protection Board of India if you believe your rights have been infringed.
• Nomination — Nominate another individual to exercise your rights in the event of your death or incapacity, where applicable under law.

We may require verification of your identity before processing any request. These rights are subject to applicable law and may be limited in certain circumstances. To exercise any of these rights, contact us at the email address provided below.

7. Third-Party Services

The Service integrates with the following third-party services:

• Google OAuth 2.0: For user authentication. Google's privacy policy applies to the data Google processes. See Google Privacy Policy.
• Microsoft Azure: For hosting, database, and application monitoring. See Microsoft Privacy Statement.
• GitHub: For desktop app distribution (release downloads). See GitHub Privacy Statement.

We do not use any advertising networks, analytics platforms (beyond Azure Application Insights for performance monitoring), or social media tracking pixels. We are not responsible for the privacy practices of such third-party services, and your interactions with them are governed by their respective policies.

Your data may be processed or accessed by service providers located outside India, subject to applicable legal safeguards and government-notified restrictions under Indian law.

8. Children's Privacy

The Service is not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that a child has provided us with personal data, we will take steps to delete such information promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. For material changes, we will make reasonable efforts to notify you via the Service (e.g., an in-app notification). Your continued use of the Service after any changes constitutes acceptance of the updated Privacy Policy. Where required by applicable law, we will obtain your consent for material changes affecting your rights.

10. Lawful Basis for Processing

We process personal data based on your consent, performance of a contract (providing the Service), compliance with legal obligations, and legitimate business interests such as security, analytics, and service improvement.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

12. Grievance Officer

In accordance with the Information Technology Act, 2000 and the rules made thereunder, the Grievance Officer for the purpose of this Privacy Policy shall be: