EFFECTIVE / LAST UPDATED: 05 Feb 2026

LEGAL ENTITY: GURUVION

CONTACT: support@policytruth.in

​

1) Scope

This Privacy Policy explains how we collect, use, share, protect, and retain personal data when you visit PolicyTruth.in and use our document review services.

 

2) Key principles

- Plain-English transparency

- Data minimisation and purpose limitation

- No sale of personal data

- Time-bound retention and deletion

- Security by design

 

3) Personal data we collect

A. Contact/Account data

- Name, email, phone

B. Service data (uploaded content)

- Loan/insurance documents and any personal/financial/health information contained within those documents that you choose to upload

C. Payment data

- Payment status, transaction reference, invoice details (we do not store full card details; handled by the payment gateway)

D. Technical data

- IP address, device/browser info, timestamps, security logs

E. Cookies/Tracking (if used)

- See Cookie Policy for details and controls

 

4) Purposes of use

We use personal data to:

- Deliver the service (analyse documents; generate and send your report)

- Provide customer support

- Maintain platform security and prevent misuse

- Comply with legal/tax obligations

We do not use your uploaded documents to advertise bank/insurance products to you.

 

5) Legal basis (DPDP Act framing)

- Consent: for processing uploaded documents and contact data for service delivery

- Legitimate uses / compliance: for security logs, fraud prevention, legal compliance, and accounting records (where applicable under law)

 

6) Sharing and disclosure

We do not sell your data.

We may share limited data with:

A. Processors / service providers (only as needed)

- Website/hosting platform provider: [Wix / entity]

- Payment gateway: [name]

- Email/SMS/WhatsApp delivery provider (if any): [name]

- Cloud storage (if separate from hosting): [name]

- AI processing provider (if used): [name]

B. Legal disclosures

- If required by law, court order, or lawful government request

C. Business protection

- To investigate fraud, abuse, or security incidents

 

7) AI use 

We may use AI tools to assist with extracting, summarising, or structuring text from documents.

- Outputs are “educational document analysis”, not professional advice.

- AI can make mistakes; you should verify critical details against the original document.

- We do not authorise our vendors to use your uploaded documents for their own advertising.

​

 

8) Retention and deletion

Default retention schedule:

- Uploaded documents: deleted within 10 days after report delivery (or earlier upon valid request)

- Support communications: up to 30 days

- Reports delivered: retained up to 30 days

- Billing/invoices: retained as required under applicable Indian tax/accounting laws

After expiry, data is deleted or anonymised.

 

9) Security measures

We use reasonable security safeguards, such as:

- Encryption in transit (HTTPS/TLS)

- Restricted access controls for internal systems

- Monitoring and audit logs

- Vendor access controls and periodic reviews

 

10) Your rights and how to exercise them

See “DPDP Notice & Data Principal Rights” page for the rights list and request process.

Submit requests via:

- privacy@policytruth.in

 

11) Grievances

For privacy grievances:

Name: Rajiv Kumar

Designation: Grievance / Privacy Officer

Email: grievance@policytruth.in

SLA: acknowledgement within 48 hours; resolution within 30 days.

 

12) Children

Services are for 18+ only. If we discover a minor’s data, we delete it promptly.

 

13) Cross-border transfers

If vendors process/store data outside India, we will do so only as permitted by Indian law and applicable government directions.

 

14) Changes

We may update this Policy. Continued use after posting means you accept the updated Policy.