Privacy policycy Policy

This privacy policy ("Policy") explains how Quantiv Solutions Private Limited ("SignalsHQ", "we", "us", "our") processes Personal Data that we collect from you. This Policy applies to all products, services, and websites offered by SignalsHQ, including but not limited to our main website at signalshq.io.

SignalsHQ acts as a data controller for the Personal Data we collect and process. We are committed to complying with applicable data protection laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other regional data protection regulations.

This policy DOES NOT apply to information collected offline, through any other apps or websites (including websites you may access through our website), or by any third party, including through any application or content (including advertising) that may link to or be accessible from our website. These other websites, apps, or third parties may have their own privacy policies, which we encourage you to read before providing information through them.

NOTICE REGARDING DISPUTE RESOLUTION: Any disputes or claims arising under this Privacy Policy, or relating in any way to your use of our website or services, will be resolved by final and binding arbitration as provided for in our Terms of Service. Unless you opt out, you will only be able to pursue claims against SignalsHQ on an individual basis, not as part of any class or representative action or proceeding.

1. Definitions

Controller means the natural or legal person, public authority, agency, or other body that alone or jointly with others, determines the purposes and means of the processing of Personal Data.

Data Subject means an identified or identifiable natural person whose Personal Data is processed.

End-User means any person or entity with whom the Subscriber interacts using our Service(s).

Personal Data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Processing means any operation or set of operations performed on Personal Data, whether or not by automated means.

Processor means a natural or legal person, public authority, agency, or other body that processes Personal Data on behalf of the Controller.

Consent means any freely given, specific, informed, and unambiguous indication of the Data Subject's wishes by which they agree to the processing of their Personal Data.

Data Protection Laws means all applicable laws and regulations relating to the processing of Personal Data, including but not limited to the GDPR, CCPA, and other regional data protection laws.

Service(s) means the services offered by SignalsHQ through our platform.

Subscriber means the natural or legal person that has subscribed to our Service(s) by signing up.

Website(s) means the website(s) that SignalsHQ operates.

2. How is your data collected?

You directly provide SignalsHQ with most of the data we collect. We collect Personal Data from you when you:

• Subscribe to any of our Service(s) by signing up

• Use or view our Website which may result in Personal Data being collected via your browser's Cookies

• Submit web forms on our Website(s) or use interactive features, including participation in surveys, contests, promotions

• Request customer support, or otherwise communicate with us

• Use our Service(s), where we automatically collect information on the type of device you use and the operating system version

• Use our mobile applications, where we collect device information and usage data

• Communicate with us via email or other electronic means

• Integrate our services with third-party platforms such as:

  • Customer Relationship Management (CRM) systems

  • Marketing automation platforms

  • Analytics tools

  • Social media platforms

We may also receive your Personal Data indirectly as follows:

• From third-party sources like databases and social media where we have verified consent or legal permission

• When you authorize us to connect with third-party services, we may access and store your name, email address(es), and other Personal Data that the third-party service makes available to us

• From social media platforms when you interact with our social media features or widgets

  
  

3. Processing of Personal Data

We process your Personal Data in the following scenarios:

• To facilitate your access and use of our Websites and Services

• To improve our Websites and Services

• To process and complete payment transactions

• To provide onboarding services, customer success services, and support

• To market and advertise in compliance with applicable law

• To perform analytics and generate reports about service usage and performance

• To investigate and prevent fraudulent transactions and unauthorized access

• To personalize our Websites and Services

• To notify you of updates and changes to our products and services

• To perform internal training and quality assurance

• To comply with legal obligations and regulatory requirements

• To integrate with third-party services you authorize

Automated Decision-Making and Profiling
We may use automated decision-making and profiling to:

• Detect and prevent fraudulent activities

• Personalize user experience based on usage patterns

• Optimize service delivery and performance

You have the right to object to automated decision-making and profiling. To exercise this right, please contact us at contact@signalshq.io.

Data Minimization
We only collect and process Personal Data that is necessary for the purposes for which it is processed. We regularly review our data collection and processing practices to ensure compliance with the principle of data minimization.

Legal basis for processing (UK and EEA Region)
If you are a data subject from the UK or European Economic Area, our legal basis for collecting and using your Personal Data will depend on the Personal Data concerned and the specific context in which we collect it. We will normally collect Personal Data from you only where we need it to perform a contract with you, where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms, or where we have your consent. In some cases, we may also have a legal obligation to collect Personal Data from you.

4. Sharing of Personal Data

We may share your Personal Data with:

• Our group companies and third-party service providers

• Credit reference agencies to prevent fraudulent purchases

• Third-party service providers that host and maintain our Websites and applications

• Third-party providers for marketing purposes in compliance with applicable laws

• Law enforcement or other third parties as required by law

5. International Transfer

We process Personal Data in various countries, including but not limited to:

• India (primary processing location)

• United States

• European Economic Area

If you are a resident of the UK or the European Economic Area and when your Personal Data is processed outside these regions, we ensure that the recipient offers an adequate level of protection by:

• Entering into Standard Contractual Clauses (SCCs) approved by the European Commission

• Conducting Data Transfer Impact Assessments (DTIAs)

• Implementing additional safeguards where necessary

6. Retention of Personal Data

We retain Personal Data where an ongoing legitimate business requires it. The retention periods for different types of data are as follows:

• Account information: Retained for as long as your account is active plus 2 years

• Transaction data: Retained for 7 years for tax and accounting purposes

• Customer support interactions: Retained for 3 years after the last interaction

• Marketing data: Retained for 2 years after the last interaction

• Analytics data: Retained for 2 years

When retention is no longer necessary, we will either delete or aggregate the data, or securely store and isolate it from further processing until deletion is possible.

7. Security of Personal Data

We implement appropriate technical and organizational measures to protect your Personal Data, including:

• Encryption of data in transit using TLS 1.2 or higher

• Encryption of data at rest using industry-standard algorithms (AES-256)

• Regular security audits and vulnerability assessments

• Access controls and multi-factor authentication

• Employee training on data protection and security

• Incident response and breach notification procedures

• Regular security testing and penetration testing

• Secure development practices and code reviews

While we take security seriously, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but we work hard to protect your information. We are in the process of obtaining SOC 2 certification to further enhance our security measures.

8. Your Rights

You have the right to:

• Access your personal data

• Correct inaccurate data

• Request deletion of your data

• Object to or restrict processing of your data

• Data portability

• Withdraw consent at any time

• Lodge a complaint with a supervisory authority

To exercise these rights, please contact us at contact@signalshq.io or use our Data Subject Rights Request Form. We will respond to your request within 30 days. If we need more time, we will inform you of the reason and extension period. If we deny your request, we will explain why and provide information about how to appeal the decision.

Note: We may charge a reasonable fee for excessive or repetitive requests, or refuse to comply with requests that are clearly unfounded or excessive.

9. Privacy of Children

We do not knowingly collect or maintain Personal Data from children under the age of 18. If we learn that we have collected Personal Data from a child under 18, we will take steps to delete such information.

10. Cookies and Tracking

We use cookies and similar tracking technologies to track activity on our website and hold certain information. Cookies are categorized as follows:

• Essential Cookies: Required for the website to function properly. These cannot be disabled.

• Functional Cookies: Enable enhanced functionality and personalization.

• Analytics Cookies: Help us understand how visitors interact with our website.

• Marketing Cookies: Used to track visitors across websites for advertising purposes.

You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may affect the functionality of our website.

11. Changes to This Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy on this page

• Sending you an email notification

• Displaying a notice on our website

The "last updated" date at the bottom of this page will be revised accordingly. We encourage you to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

General Inquiries: contact@signalshq.io
Data Protection Officer: dpo@signalshq.io
Legal Matters: legal@signalshq.io
Security Concerns: security@signalshq.io
Address: SDA,
Balagere Main Road,
Varthur,
Bangalore - 560087

Last updated: 26/05/2025
Version: 1.0