Privacy Policy for SAHARSH IOT
Effective Date: January 1, 2025
Last Updated: October 7, 2025
1. Introduction
SAHARSH IOT Pvt. Ltd., the legal entity listed in our Google Play Store listing (“we,” “our,” or “us”), values your privacy and is committed to protecting your personal information. This Privacy Policy applies to our SAHARSH IOT mobile application and related services (collectively, the “Services”).
By using our Services, you agree to the practices described in this Privacy Policy. This Policy complies with all applicable data protection laws and the Google Play Developer Program Policy (2025), including requirements for prominent disclosures and sensitive permissions.
2. Information We Collect
We collect information necessary to operate and improve our Services. If third-party SDKs or libraries are used, we ensure they comply with Google Play’s data collection and sharing requirements, and no undisclosed third-party data sharing occurs via these SDKs.
2.1 Personal Information
We may collect:
- Account Information: Name, email address, mobile number, and other registration details.
- Device Information: Device model, operating system version, app version, Android ID (non-persistent and not linked to other personal data), Android Advertising ID (AAID), and network data for performance and security purposes.
Important Disclosure Regarding Sensitive Permissions and Data Access
Required for Core Functionality - Please Read Carefully:
To deliver the essential features of SAHARSH IOT, we require certain sensitive permissions. Before requesting these permissions, we provide prominent in-app disclosures—displayed immediately before the permission request during normal app usage—explaining the type of data, its purpose, and how it is used or shared, followed by a clear user consent action (e.g., tap-to-accept). We will always request your explicit consent before accessing this data. You can revoke these permissions anytime in your device settings; however, doing so may impact the functionality of our Services.
2.2 Sensitive Permissions and Associated Data Access (Required for Core Functionality)
(a) Location Data (Foreground & Background)
- Data Collected: Precise or approximate location (via GPS, Wi-Fi, or network).
- Purpose:
- Enable geo-fencing and location-based IoT automation (e.g., turning lights on when you arrive home).
- Detect user presence for device triggers, even when the app is closed.
- Usage: Collected in foreground (app open) and, with explicit consent, in background for continuous automation.
- Sharing: Location data is never shared for advertising or unrelated purposes.
(b) Storage Access (Photos/Media/Files)
- Data Collected: User-selected files, photos, and IoT configuration data.
- Purpose:
- Upload or download device configurations or profile images.
- Store logs and cache for smoother app operation.
- Enable user-initiated data backup/export.
- Usage: Only files you select are accessed. No analytics or ad tracking uses this data.
(c) IMEI / Device Identifiers
- Data Collected: IMEI (for specific security use cases) and Android Advertising ID (AAID).
- Purpose:
- IMEI: Security verification, fraud prevention, and unique device authentication for IoT pairing.
- AAID: Anonymous usage analytics; never used for marketing.
- Usage: IMEI is not used for ads. AAID follows your device opt-out preferences.
2.3 Automatically Collected Data
We may collect:
- Usage Data: Features used, session duration, and IoT interactions.
- Log Data: IP address, OS details, and crash/diagnostic information.
- IoT Device Data: Sensor readings, device status, and automation data—processed securely to operate your IoT setup.
2.4 Third-Party Data
If you use third-party logins (e.g., Google Sign-In) or connect with external IoT platforms, we only receive minimal data (e.g., tokens, IDs) as permitted by your privacy settings with those services.
3. How We Use Your Information
We use data to:
- Operate and maintain the app and IoT connectivity.
- Provide smart automation and personalized control.
- Send service notifications and respond to support requests.
- Analyze usage trends to improve app reliability.
- Enhance security and prevent unauthorized access or fraud.
- Personalize dashboards and device suggestions.
- Comply with applicable legal obligations.
We never sell or rent your personal data.
4. Data Sharing and Disclosure
We share data only under strict safeguards:
- Service Providers: Trusted vendors (e.g., cloud hosting, analytics, support), bound by confidentiality agreements.
- Integrations: With your consent, data may be shared with third-party smart home services.
- Legal Requirements: When required by law, regulation, or court order.
- Business Transfers: During mergers or acquisitions (you’ll be notified of ownership changes).
- With Your Consent: Any other sharing only occurs with explicit permission.
5. Data Security
We apply strong measures to protect your data:
- HTTPS/TLS encryption for all communication.
- Secure local and cloud data storage.
- Strict employee access controls and logging.
- Routine security audits and vulnerability testing.
Despite safeguards, no system is fully immune from threats. We continually improve our defenses to protect your information.
6. Data Retention
We retain data only as long as needed for service delivery, compliance, or security. When you delete your account or use the app’s data deletion tool (accessible via Settings > Account > Delete Data, as disclosed in Google Play’s Data Safety section), we erase or anonymize data within 30 days, unless legal retention is required (e.g., fraud prevention).
7. Your Rights and Choices
You have full control over your personal data:
- Access / Update / Delete: Manage or delete data from in-app settings or by contacting us.
- Revoke Permissions: Disable location, storage, or other permissions anytime.
- Data Portability: Request a copy of your information in a portable format.
- Withdraw Consent: Remove consent for specific data use by disabling permissions or deleting your account.
- Advertising ID Control: Reset or limit ad personalization in Android settings.
We respond to all verified privacy requests per applicable data protection laws.
8. Children’s Privacy
Our Services are not intended for users under 13 years of age. We do not knowingly collect data from children. If we learn that a child’s data was collected without parental consent, we will delete it immediately.
9. International Data Transfers
Your data may be processed in India or other jurisdictions where our servers or partners operate. We ensure all transfers comply with applicable data protection laws using approved safeguards (e.g., contractual clauses).
10. Policy Updates
We may update this Policy periodically. Updates will reflect on this page with a new “Last Updated” date. Significant changes will be communicated via in-app notice or email (if applicable) at least 30 days in advance. Your continued use of the Services after updates indicates acceptance of the revised Policy.