Website Privacy Policy

Last Reviewed: March 2025

At a Glance

A plain-language summary. The full policy follows below.

Who is responsible for your data? 

Pranik Technologies Private Limited, Hyderabad. Contact: dpo@pranik.ai.

What does the website collect? 

Cookies and anonymised analytics automatically; your contact details only if you choose to submit an enquiry or form.

Does the website collect health data? 

No. Health data is collected only within our product apps, under separate dedicated agreements.

Do you sell personal data? 

Never. We do not sell, rent, or trade personal data to any third party for any purpose.

Who do you share data with? 

Only technology service providers who support the website, under strict written agreements. And with regulators or courts when required by law.

How long do you keep it? 

Enquiry submissions: up to 24 months. Analytics: anonymised, up to 24 months. See Section 8 for full details.

Can you control your data? 

Yes. Request access, correction, or deletion at any time at dpo@pranik.ai.

Does this policy cover P4P, P4D, or P4H? 

No. Each product has its own privacy notice. See Section 10 for links.

1. About This Policy

Pranik Technologies Private Limited ("Pranik.ai," "Company," "We," "Us," or "Our") is committed to protecting the privacy of everyone who interacts with us. This Privacy Policy explains how we collect, use, store, and protect personal data gathered through the Pranik.ai website at https://pranik.ai (the "Website").

This Policy is prepared in compliance with the Digital Personal Data Protection Act, 2023 ("DPDP Act"), the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and other applicable Indian data protection legislation.

This Policy applies only to data collected through the Website itself. It does not apply to data collected through or within any of the Company's product platforms - those are governed by separate, more detailed privacy notices referenced in Section 10.

By using this Website, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, please discontinue use of the Website.

2. Who This Policy Applies To

This Policy applies to all of the following:

  • Casual visitors who browse the Website without submitting any information.

  • Individuals who submit enquiries, contact forms, demo requests, or partnership proposals through the Website.

  • Individuals who subscribe to updates or newsletters through the Website.

  • Job applicants who submit applications through the Website.

  • Representatives of healthcare institutions who engage with the Website in a business development capacity.

Users of the Company's P4P, P4D, and P4H products are governed by those products' dedicated privacy frameworks. This Website Policy covers only website-level data interactions.

3. Data Fiduciary - Who Is Responsible

The Data Fiduciary responsible for personal data collected through this Website under the DPDP Act, 2023 is Pranik Technologies Private Limited, having its registered office. Data Protection Officer can be contacted at dpo@pranik.ai. General enquiries can be sent to support@pranik.ai.

[DPO name to be inserted before publication as required under the DPDP Act, 2023.]

4. Personal Data We Collect Through the Website

4A. Data Collected Automatically

When you visit the Website, certain technical data is collected automatically through cookies, analytics tools, and server logs. This includes your IP address and approximate location, browser type and version, operating system and device type, pages visited and navigation path, and the date and time of your visit. This data is used in anonymised and aggregated form to understand Website performance. It is not used to identify individual visitors unless required for security or legal purposes.

4B. Data You Provide Voluntarily

You may choose to provide personal data through contact and enquiry forms (your name, email address, phone number, and message content), business or institutional enquiries (your name, role, and organisation), newsletter subscriptions (your email address), or job applications (your CV and professional background). Submission of any form is voluntary - you are not required to provide personal data to browse the Website.

4C. What We Do Not Collect

We do not collect health or medical data through the Website - health information is collected only within the Company's dedicated product platforms. We do not collect payment card or financial account data. We do not collect biometric data. We do not collect Sensitive Personal Data or Information as defined under the IT-SPDI Rules, 2011.

5. How and Why We Use Your Data

We use automatically collected technical data in anonymised form to monitor Website performance, detect security incidents, and improve the user experience. The legal basis is Legitimate Use - our interest in maintaining a functional and secure website does not override visitors' privacy interests given the data is anonymised before use.

We use contact form submissions to respond to your enquiry, with your consent given by submitting the form. We use business enquiry data for sales follow-up where you have expressed interest in our products. We use newsletter subscription data to send updates and content you have opted in to receive, and you may withdraw this consent at any time. We use job application data to evaluate your application as a pre-contractual step. We use security logs for fraud prevention and legal compliance under our Legitimate Use and legal obligation bases.

'Legitimate Use' under the DPDP Act, 2023 is functionally equivalent to 'Legitimate Interests' under GDPR. Where we rely on it, our interest has been assessed against and confirmed not to override the fundamental privacy rights of the Data Principal.

6. Sharing and Disclosure

We do not sell your data.

Pranik Technologies Private Limited does not sell, rent, barter, or transfer personal data collected through this Website to any third party for commercial gain. This commitment is unconditional.

Who we share data with

We share data only with technology service providers who support Website operations - including hosting, analytics, email delivery, and CRM systems. All operate under written data processing agreements that restrict use of data to the specified purpose only and prohibit onward sharing. We also disclose data to courts, government bodies, law enforcement, or regulators when required by a valid legal obligation or lawful order, and will inform you where legally permissible. In the event of a merger, acquisition, or asset sale, data may pass to a successor entity subject to equivalent privacy obligations, with notice to you before any such transfer.

International transfers

Certain analytics and service provider tools may process data on infrastructure outside India. Where this occurs, we ensure transfers are made only to countries with adequate data protection under applicable Indian law, or under contractual arrangements imposing equivalent obligations. We maintain a list of third-party service providers we engage for Website operations - including their names, data processing locations, and the nature of data transferred - at pranik.ai/subprocessors. This list is updated whenever a provider is added or changed. We will comply with any future adequacy decisions or transfer restrictions issued by the Central Government under the DPDP Act, 2023.

7. Cookies and Tracking Technologies

The Website uses three categories of cookies. Essential cookies are required for session management, security, and navigation - they cannot be declined without affecting Website functionality. Analytics cookies collect anonymised data on pages visited, traffic sources, and session duration to help us improve Website performance - no individual is identifiable from analytics data. Preference cookies remember your language or display settings across sessions.

We do not use advertising cookies or cross-site tracking technologies. No third-party advertiser receives data about your visit to this Website.

A cookie consent tool is deployed on this Website. When you first visit, you will be given the opportunity to accept or decline non-essential cookies. You may change your preferences at any time through the cookie settings link in the Website footer. Essential cookies cannot be declined as they are required for the Website to function.

8. How Long We Keep Your Data

Website analytics data is retained in anonymised and aggregated form for up to 24 months, then permanently deleted or further anonymised. Contact and enquiry form submissions are retained for up to 24 months from submission, or until the relevant business relationship concludes - whichever is longer. Newsletter subscriptions are retained until you unsubscribe; records of the subscription may be retained for up to 12 months thereafter for anti-spam compliance. Job applications are retained for up to 12 months from submission unless the application results in employment. Security and access logs are retained for up to 12 months for fraud prevention purposes. Any data subject to a legal retention obligation is held for as long as that obligation requires.

9. Your Rights

Under the DPDP Act, 2023, you have the following rights in respect of personal data collected through this Website. To exercise any right, contact dpo@pranik.ai:

  • Right of Access: request confirmation of whether we hold personal data about you and a summary of how it is used.

  • Right to Correction: request correction of any inaccurate or incomplete personal data.

  • Right to Erasure: request deletion of your personal data. We will comply unless retention is required by a legal obligation.

  • Right to Withdraw Consent: where processing is consent-based (e.g., newsletter subscriptions), withdraw your consent at any time. Withdrawal does not affect processing already carried out.

  • Right to Grievance Redressal: lodge a complaint with our Data Protection Officer at dpo@pranik.ai. We will acknowledge within 72 hours and endeavour to resolve within 30 days. Unresolved grievances may be escalated to the Data Protection Board of India once constituted under the DPDP Act, 2023.

We do not discriminate against persons who exercise their data rights.

10. Product-Specific Privacy Notices

This Website Privacy Policy covers only data collected through https://pranik.ai. Each of the Company's three products has its own, more detailed privacy notice:

  • P4P - Pranik for People: the P4P User Agreement, Part 2 (Privacy Policy), covers all health and personal data collected through the P4P App. Available at pranik.ai/legal/user-agreement

  • P4D - Pranik for Doctors: the P4D Professional Agreement, Part 2 (Privacy Policy), covers all professional and patient data processed through the P4D App. Available at pranik.ai/legal/professional-agreement

  • P4H - Pranik for Hospitals: governed by the institutional agreement between Pranik.ai and the relevant healthcare institution. Contact sales@pranik.ai for details.

11. Children's Privacy

This Website is not directed at children under 18. We do not knowingly collect personal data from minors through the Website. If you believe a minor has submitted personal data through the Website, please contact dpo@pranik.ai and we will delete it promptly.

12. Security

We implement appropriate technical and organisational security measures to protect personal data collected through the Website, including HTTPS encryption for all Website traffic, access controls limiting personal data to authorised personnel, regular security assessments, and incident response procedures. While we take these precautions, no website or internet transmission is entirely secure. We cannot guarantee absolute security of data transmitted to or from the Website.

In the event of a personal data breach affecting data collected through this Website that is likely to result in risk to your rights or interests, we will notify affected individuals without undue delay and, where required by applicable law, notify the Data Protection Board of India. Notification will be provided through the contact details you have given us, or through a prominent notice on the Website if individual notification is not feasible. Our notification will describe the nature of the breach, its likely consequences, and the steps taken to address it.

13. Changes to This Policy

We may update this Privacy Policy from time to time. For material changes, we will display a notice on the Website and update the Effective Date above. Continued use of the Website after a notice is displayed constitutes acceptance of the revised Policy. Previous versions are available on request from dpo@pranik.ai.

14. Contact and Grievance Redressal

For questions, requests, or grievances relating to this Privacy Policy or the handling of your personal data:

General enquiries: support@pranik.ai

Response: acknowledgement within 72 hours; resolution within 30 days.

Escalation: Data Protection Board of India, once constituted under the DPDP Act, 2023.