Privacy Policy

Effective — 2026-04-22

Who we are

Upgear CRM Pvt Ltd ("we", "us", "our") is a private limited company registered in India at Kolhapur, Maharashtra. GSTIN 27BKFPK7515J1ZX. D-U-N-S 766381114. Contact: connect@upgearcrm.com.

What we collect

• Contact information you submit via demo requests, email, or WhatsApp.
• Product usage data from tenants of the Upgear platform (when tenants choose to share diagnostics).
• Standard analytics: page views, referrers, session duration. No cross-site tracking.

How we use it

• To respond to enquiries and schedule demos.
• To deliver the Upgear service to paying customers.
• To issue GST-compliant invoices and maintain statutory records.

Data residency

Customer-tenant databases are hosted in India on dedicated SQL servers. Each customer runs on their own database \u2014 not a shared multi-tenant pool. We do not export customer tenant data outside India without explicit written consent.

Data protection

AES-256 encryption at rest. TLS 1.2+ in transit. Row-level audit across ~98 tables (152 [DataAuditLog] references across 106 files). Per-tenant dedicated database. OAuth 2.0 for SSO. ClamAV antivirus on uploads.

Your rights under the DPDP Act

Right to access, correct, erase, and port your data. Write to connect@upgearcrm.com with the subject "DPDP request" and we will respond within 30 days.

This is a minimum-viable privacy notice. A fully-localised DPDP-compliant policy is being finalised; please check back or email for the latest version.