Privacy Policy

Last Revised: November 1, 2023

XEMI Private Limited (“XEMI”) is committed to protecting and respecting your privacy.

This policy and any other documents referred to set out the basis on which any personal information XEMI collects from you, or that you provide to us, will be processed by us, and sets out our commitment to protecting the privacy of personal information provided to us, or otherwise collected by us, offline or online, including through this website (“Site”), any mobile applications operated by us (“Apps”) and our platform more generally (“Service”).

We encourage you to familiarize yourself with our privacy practices set forth herein, to understand how we collect and use your personal data. Any reference to “we”, “us”, “our” and similar terms herein refers to XEMI Private Limited.

Whenever you give us personal data, you are consenting to its processing, collection and use in accordance with this privacy policy. You may withdraw your consent at any time by emailing privacy@xemi.io with your full name.

THE BINDING NATURE OF THIS PRIVACY POLICY AND ITS SCOPE

By accessing or otherwise using the Service, you agree to be bound contractually by this Privacy Policy. This Privacy Policy applies to information collected, used and maintained by us in conjunction with the use of our Services, Apps and / or Site, and explains our information gathering and dissemination practices.

This Privacy Policy has been compiled to better serve those who are concerned with how their “Personally Identifiable Information” (“PII”) is being used online. PII is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.

THE RIGHT TO MODIFY

We reserve the right to revise or modify this Privacy Policy at any time by posting amended terms on this page, including an indication of the last date of revision. Please revisit this page periodically to stay aware of any modifications to this Privacy Policy. In the event that the modifications materially alter your rights or obligations hereunder, we will make reasonable efforts to notify you of the change. For example, we may send a message to your email address, if we have one on file, or generate a pop-up or similar notification when you access the Service for the first time after such material changes are made. In all cases, your continued use of the Service after our posting of a revised Privacy Policy on this page, indicates that you have read, understood and agreed to the revised Privacy Policy.

INFORMATION XEMI MAY COLLECT FROM YOU

XEMI may collect and process two types of information from our users:

The first type of information is non-identifiable and anonymous information (“Non-Personal Information”). We are not aware of the identity of the user from which we have collected the Non-Personal Information. Non-Personal Information is any unconcealed information which is available to us while Users are using the Site, Apps and/or Service. Non-Personal Information which is being gathered consists of technical information and behavioural information, and may contain, among other things, type of operating system (e.g. Windows, Linux, etc.), computer configurations, screen resolution (e.g. 800×600, 1024×768, etc.), type of web browser used, keyboard language (e.g. English), location data, the activity of the user on the Site, Apps and / or Service (including dates and times and duration of use, and the nature of the resources and features accessed), details of the user’s internet service provider or mobile carrier, and the user’s “click-stream” on the Site, Apps and / or Service. In addition, Non-Personal Information may include information you provide to us through inquiries and / or feedback, as well as when you report a problem with the Site, Apps and / or Service, including the textual information you submit to help us reproduce the issue, and screenshots. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual.

The second type of information is PII (as defined above). Each user of the Site, Apps and / or Service automatically provides the user’s IP address and unique device identifiers mainly for enhancing the user’s experience and for geolocation and security purposes. In addition, PII collected and stored consists of any personal details provided consciously and voluntarily by you when the user wish to contact us or subscribe for a demo via forms on the Site or Apps, or send us customer service related requests; specifically: your first and last name, your e-mail address(es), your job title, the name of your company or entity, your industry, your phone number, your credit card or other billing information, and copies or records of your correspondence with us. For avoidance of doubt, any Non-Personal Information connected or linked to any PII shall be deemed as PII as long as such connection or linkage exists. We do not collect any PII from you or related to you without your approval, which is obtained, inter alia, through your active acceptance of the Terms of Service and the Privacy Policy.

COOKIES

Cookies are small text files that websites save to your computer. These files are used to improve services for you through, for example: (i) remembering settings, so you don’t have to keep re-entering them whenever you visit a new page; (ii) remembering information you’ve given (e.g. your postcode) so you don’t need to keep entering it. Cookies in and of themselves do not personally identify users, although they do identify a device.

Session cookies allow us to track your actions during a single browser session, for example to remember the items returned from a search. They do not remain on your device beyond your session.

Persistent cookies remain on your device between sessions and allow us to authenticate you and to remember your preferences.

Session and persistent cookies can be either first or third-party cookies — a first-party cookie is set by the website being visited. A third-party cookie is issued by a different website to that being visited.

When you use the Service, we may send one or more cookies – small text files containing a string of alphanumeric characters – to your device. We may use both session cookies and persistent cookies.

We may also use a third-party cookie provided by Google Analytics or similar tools / applications to gather anonymized information for the benefit of all web users. XEMI does not use behavioural targeting cookies. All our cookies fall within the ICC classifications Strictly Necessary, Functionality and Performance and none within the classification Behavioural Targeting.

XEMI uses cookies to understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about traffic and interactions with our Service so that we can offer better experiences to our users in the future. We may also use trusted third-party services that track this information on our behalf.

You can choose to have your device warn you each time a cookie is being sent, or you can choose to disable cookies, through the settings on your browser. Please review your browser “Help” file to learn the proper way to modify your cookie settings. Please note that if you delete, or choose not to accept, cookies from the Service, you may not be able to utilize the features of the Service to their fullest potential.

To learn more about cookies and how to manage them, visit AboutCookies.org.

HOW DO WE HANDLE DO NOT TRACK SIGNALS?

We honour Do Not Track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

INFORMATION XEMI MAY RECEIVE FROM INTEGRATED SERVICES

You may be given the option to authorize certain third parties, such as Facebook or Google (each, an “Integrated Service”) to provide personal information or other information to us. By authorizing us to connect with an Integrated Service, you authorize us to access and store your name, email address(es), date of birth, gender, current city, profile picture URL, and other information that the Integrated Service makes available to us, and to use and disclose it in accordance with this privacy policy. You should check your privacy settings on each Integrated Service to understand and change the information sent to us through each Integrated Service. Please review each Integrated Service’s terms of use and privacy policies carefully before using their services and connecting to our Service.

INFORMATION XEMI MAY RECEIVE FROM OTHER SOURCES

We may obtain information, including personal information, from third parties and sources other than the Service, such as other users of our Service. For example, a user may provide your email address in order to invite you to the Services. If we combine or associate information from other sources with personal information that we collect through the Service, we will treat the combined information as personal information in accordance with this privacy policy.

GOOGLE API SERVICES USER DATA POLICY

XEMI use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data policy, including the Limited Use requirements.

LEGAL DOCUMENTS YOU UPLOAD TO OUR SERVICE

We store and analyse all legal documents that you choose to submit to us, whether through our user interface or through an API, in order to improve the quality and effectiveness of the Service.

HOW XEMI USES YOUR INFORMATION

We may use the information we collect from you in the following ways:

  • To carry out our obligations arising from any contracts entered into between you and us.
  • To allow you to collaborate and communicate with other Users.
  • To personalize your experience.
  • To allow us to better service you in responding to your customer service requests.
  • To process orders and generate billing information.
  • To ask for ratings and reviews, and other forms of feedback.
  • To follow up with you on live chat, email or phone (only with your explicit consent).
  • To verify your credentials for security purposes.
  • To carry out end user compliance checks for export control purposes.
  • To issue virus information alerts and other alert messages.
  • To provide training sessions for which you have registered.
  • To provide maintenance and technical support.
  • To inform you of any changes to the Service, as well as about upgrades, updates and renewals.
  • To generate logs, statistics and reports on service usage, service performance and malware infection.
  • To develop and enhance the Service, to repair errors or bugs, and to develop new versions of the Service.
HOW XEMI PROTECTS YOUR INFORMATION

XEMI endeavours to hold all PII securely in accordance with our internal security procedures and applicable laws. Once we have received your information, we maintain appropriate administrative, physical, technical and organizational measures to protect your PII accessed or processed by XEMI against unauthorized or unlawful processing or accidental loss, destruction, damage or disclosure. PII is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. We update and test our security on an ongoing basis.

Our employees or outside contractors are required by us to maintain and uphold your privacy and security and are aware of our privacy and security policies and/or abide by their own privacy and security policies in order to safeguard your information. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

All transactions are processed through a gateway provider and are not stored or processed on our servers.

Unfortunately, data transmissions made by means of the Internet cannot be made absolutely secure. Please keep in mind that if you transmit PII online, such transmissions may be intercepted by unauthorized third parties.

TRANSFERRING YOUR INFORMATION

When you give us information, that information may be used, processed or stored anywhere in the world. We will only transfer personal information to a supplier where the supplier has provided assurances that they will provide at least the same level of privacy protection as is required by this privacy policy. Where XEMI has knowledge that a supplier is using or sharing personal information in a way that is contrary to this policy, XEMI will immediately take reasonable steps to prevent or stop such processing.

DISCLOSURE OF YOUR INFORMATION TO THIRD PARTIES

We do not sell, trade, or otherwise transfer to outside parties your PII unless we provide you with advance notice. This does not include website hosting partners and other parties who assist us in operating our Site, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release PII when its release is appropriate to comply with the law, enforce our site policies, or protect our or others’ rights, property or safety. However, Non-Personal Information may be provided to other parties for marketing, advertising, or other uses.

Where permitted by law, we may share information from or about you with subsidiaries, joint ventures, or other companies under common control, in which case we will require them to adhere to this privacy policy.

If we are acquired by or merged with another entity, if substantially all of our assets are transferred to another company, or as part of a bankruptcy proceeding, we may transfer the information we have collected about you to the other company. Our successors and assigns may collect and use your information for substantially similar purposes as described in this privacy policy.

WHO WILL YOUR INFORMATION BE SHARED WITH?

We have categorized each party so that you may be easily understand the purpose of our data collection and processing practices.

Advertising, Direct Marketing, and Lead Generation
Google AdSense

AI Models and Services
OpenAI’s GPT , Google’s Bard, Meta’s Llama,Nanonets

Cloud Computing Services
Microsoft Azure, Amazon Web Services (AWS) and Google Cloud Platform

Communicate and Chat with Users
Crisp

Invoice and Billing
Zoho, Razorpay

User Account Registration and Authentication
Google OAuth 2.0

Web and Mobile Analytics
Google Analytics

THIRD-PARTY LINKS

Our Site may contain hyperlinks to websites of third parties (“Third-Party Websites”) that can cause you to leave the Site. We provide these hyperlinks for convenience. The Third-Party Websites are not under our control, and we do not accept any responsibility or liability with respect to the privacy and confidentiality practices of such Third-Party Websites. Any PII that is submitted by you to such Third Party Websites is subject to the privacy policies of the such Third-Party Websites, and it is your responsibility to consult these policies in order to ensure that your PII is being protected.

SOCIAL MEDIA

We may use social media (for example, Facebook and Twitter) in addition to the operation of the Site, Apps and / or Service. Social media accounts are public and are not hosted by us. Users who decide to interact with us through social media must, therefore, read the terms of service and privacy policies of these third-party suppliers of services and the applications used to have access to them.

The PII that is provided to us by way of social media accounts is collected in order to record exchanges (for example, questions and answers, comments, “likes”, shared tweets) between the users and us. It may be used to answer requests, make statistical evaluations and prepare reports and for all other purposes indicated in this privacy policy.

FAIR INFORMATION PRACTICES

In correspondence with the United States Federal Trade Commission’s Fair Information Practices we will take the following responsive action, should a data breach occur, we will notify the users via in-site notification within 7 business days. We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.

DATA PRIVACY OFFICER

XEMI is headquartered in Mumbai, India. XEMI has appointed an internal data protection officer for you to contact if you have any questions or concerns about XEMI’s Privacy Policy. The contact information for the XEMI data protection officer is as follows:

Mihir Shah
XEMI Pvt. Ltd.
4-B, 4th Floor, ‘A’ Wing, Kakad House
11, Sir Vitthaldas Thackersey Marg
New Marine Lines, Churchgate, Mumbai 400020
India
privacy@xemi.io