Privacy Policy

Last Updated: April 18, 2026

This Privacy Policy describes how Tenqiva ("Company", "we", "us", or "our") collects, uses, stores, and protects your personal data when you visit our website tenqiva.com ("Website") or use our services and products ("Services"). This policy is published in compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act), the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.

1. Data Fiduciary Information

Tenqiva acts as a Data Fiduciary as defined under the DPDP Act, 2023.

• Company Name: TENQIVA SOLUTIONS PRIVATE LIMITED
• Registered Address: 13-1-122, Plot No. 57, 2nd Floor motinagar, Sanathnagar I E, Balanagar, Hyd- 500018, TG
• Email: privacy@tenqiva.com
• Phone: +91-9398178943

2. Personal Data We Collect

We collect the following categories of personal data:

Data Category	Examples	Purpose
Identity Data	Full name, email address, phone number	Account creation, communication
Contact Data	Business address, company name, designation	Service delivery, invoicing
Financial Data	Billing address, GST number, payment transaction IDs	Payment processing, tax compliance
Technical Data	IP address, browser type, device information, cookies	Website functionality, security, analytics
Usage Data	Pages visited, features used, session duration	Service improvement, analytics
Communication Data	Emails, chat messages, support tickets	Customer support, service delivery

We do not store credit card numbers, debit card numbers, CVV codes, or banking passwords. All payment processing is handled by PCI-DSS compliant third-party payment gateways.

3. Lawful Basis for Processing

We process your personal data based on the following lawful grounds as permitted under the DPDP Act, 2023:

• Consent: You have given explicit consent for specific purposes (e.g., marketing communications).
• Contractual Necessity: Processing is necessary for the performance of a contract to which you are a party (e.g., delivering services you have purchased).
• Legal Obligation: Processing is necessary for compliance with applicable Indian laws, including the Income Tax Act, GST laws, and other statutory requirements.
• Legitimate Interest: Processing is necessary for our legitimate business interests, such as improving our services, preventing fraud, and ensuring security.

4. How We Use Your Data

We use your personal data for the following purposes:

• To provide, maintain, and improve our Services.
• To process payments and generate invoices (including GST invoices).
• To communicate with you about your account, orders, and support requests.
• To send promotional communications (only with your explicit consent; you may opt out at any time).
• To comply with legal obligations, including tax reporting and regulatory requirements.
• To detect and prevent fraud, abuse, and security incidents.
• To analyse usage patterns and improve our Website and Services.

5. Data Sharing & Disclosure

We may share your personal data with the following categories of recipients:

• Payment Processors: Razorpay, PayU, or other RBI-authorised payment aggregators for processing transactions.
• Cloud Service Providers: AWS, Microsoft Azure, or Google Cloud for hosting and infrastructure services, with appropriate data processing agreements in place.
• Legal Authorities: When required by law, court order, or government request under applicable Indian legislation.
• Professional Advisors: Auditors, accountants, and legal counsel as necessary for business operations.

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

6. Data Storage & Localisation

Your personal data is stored on secure servers located in India. In cases where data may be processed outside India (e.g., through global cloud services), we ensure that adequate safeguards are in place in compliance with the DPDP Act, 2023 and applicable data localisation requirements of the Reserve Bank of India for payment data.

All payment-related data is stored exclusively in India in compliance with RBI's data localisation circular dated April 6, 2018.

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

• Account Data: Retained for the duration of your active account and for 3 years after account closure.
• Transaction Data: Retained for 8 years as required under the Income Tax Act, 1961 and GST laws.
• Communication Data: Retained for 2 years after the last interaction.
• Technical/Usage Data: Retained for 1 year.

8. Your Rights (Under DPDP Act, 2023)

As a Data Principal, you have the following rights:

• Right to Access: You may request a summary of the personal data we hold about you and the processing activities.
• Right to Correction: You may request correction of inaccurate or incomplete personal data.
• Right to Erasure: You may request deletion of your personal data, subject to our legal retention obligations.
• Right to Withdraw Consent: Where processing is based on consent, you may withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
• Right to Grievance Redressal: You may raise concerns with our Grievance Officer or the Data Protection Board of India.
• Right to Nominate: You may nominate another individual to exercise your rights in the event of your death or incapacity.

To exercise any of these rights, please contact us at privacy@tenqiva.com. We will respond to your request within 30 days.

9. Cookies & Tracking Technologies

Our Website uses cookies and similar tracking technologies to enhance your browsing experience, analyse traffic, and personalise content. Types of cookies we use:

• Essential Cookies: Necessary for the Website to function properly. Cannot be disabled.
• Analytics Cookies: Help us understand how visitors interact with our Website (e.g., Google Analytics).
• Marketing Cookies: Used to deliver relevant advertisements (only with your consent).

You can manage your cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of our Website.

10. Security Measures

We implement reasonable security practices and procedures as required under the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. These include:

• SSL/TLS encryption for all data in transit.
• Encryption of sensitive data at rest.
• Regular security audits and vulnerability assessments.
• Access controls and authentication mechanisms.
• Employee training on data protection and security practices.

11. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without verified parental consent, we will take steps to delete such data promptly.

12. Grievance Officer

In accordance with the Information Technology Act, 2000 and the DPDP Act, 2023, the details of the Grievance Officer are:

• Name: MONISHA AGARWAL
• Email: grievance@tenqiva.com
• Phone: +91-9398178943
• Address: 13-1-122, Plot No. 57, 2nd Floor motinagar

Grievances will be addressed within 30 days of receipt. If you are not satisfied with our response, you may approach the Data Protection Board of India.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with a revised "Last Updated" date. We encourage you to review this policy periodically. Material changes will be notified via email to registered users.

14. Contact Us

For any questions or concerns about this Privacy Policy or our data practices, please contact us at:

• Email: privacy@tenqiva.com
• Phone: +91-9398178943
• Address: 13-1-122, Plot No. 57, 2nd Floor motinagar, Sanathnagar I E, Balanagar, Hyd- 500018, TG