Privacy Policy

Last updated: 09 May 2026

This Privacy Policy describes how PulseIQ (the "Service") collects, uses, and protects your personal data. We comply with the Digital Personal Data Protection Act, 2023 (DPDP) and other applicable Indian privacy laws.

1. Data we collect

• Account data: email address, name, profile picture URL (when you sign in with Google).
• Telegram chat ID: if you opt in to Telegram alerts, we store your chat ID to deliver messages.
• Watchlist & preferences: the symbols you track, the alert categories you've enabled or disabled.
• Usage data: page paths, referrer, anonymised IP address (truncated). We do not use third-party trackers.
• Cookies: a single session cookie to keep you logged in. No advertising or analytics cookies.

2. How we use your data

• To deliver the Service: render dashboards, send alerts, enforce subscription limits.
• To communicate with you: trial-expiry notices, security alerts, important Service updates.
• To prevent abuse and debug failures.
• To comply with legal obligations.

We do not sell, rent, or share your personal data with third parties for marketing.

3. Sharing with processors

We share data only with the minimum set of processors needed to run the Service:

• Microsoft Azure — hosting (Container Apps, Postgres, Container Registry; Central India region).
• Google — sign-in / authentication.
• Telegram — message delivery (only if you enable it).
• Azure OpenAI — generating filing summaries. Filings are public; we do not send your personal data to the LLM.
• Razorpay — payment processing (only if you upgrade to Pro).

4. Your rights under DPDP

You may at any time:

• Access your data (Settings page or email request);
• Correct inaccurate data;
• Delete your account and personal data;
• Withdraw consent for any optional data use;
• Lodge a complaint with the Data Protection Board of India.

Email hi@pulseiq.in to exercise any of these rights. We respond within 30 days.

5. Data retention

We retain your account data for as long as your account is active. After deletion, personal data is purged within 30 days, except where Indian tax or other legal record-keeping requires longer retention (up to 8 years for financial transactions).

6. Security

Data is encrypted in transit (TLS 1.3) and at rest (AES-256 on Azure). Passwords (where used) are hashed with bcrypt. Access to production systems is restricted and logged. We follow reasonable technical and organisational practices but cannot guarantee absolute security.

7. Children

The Service is not directed at children under 18. We do not knowingly collect data from minors. If you believe a minor has registered, contact us and we will delete the account.

8. Cross-border transfers

Our infrastructure runs in Microsoft Azure's Central India region. Limited operational data (error traces, aggregated metrics) may be processed by US-based service providers under standard contractual clauses.

9. Changes to this Policy

We will post material changes here at least 14 days before they take effect. Significant changes will additionally be announced by email.

Questions? Email hi@pulseiq.in. Other policies: Terms · Privacy · Disclaimer · About.