VeriTAS

Privacy Policy

Last Updated: January 10, 2026

Not legal advice. This Privacy Policy is a comprehensive starting template. You should have counsel review for your exact analytics/pixels configuration and DPDP operational requirements.

Privacy Policy

Last Updated: January 10, 2026

This Privacy Policy (“Policy”) explains how Inforeaper internet (OPC) Pvt. Limited (“Company,” “we,” “us,” “our”) collects, uses, discloses, and protects information when you use VeriTAS (the “Service”).

1) Who we are

Company: Inforeaper internet (OPC) Pvt. Limited
Location: Gurugram, Haryana, India
Website: https://inforeaperinternet.com
Email: prerna@inforeaperinternet.com
Address: Registered office address is not publicly listed. Verified regulators and authorized requesters may obtain the full address by emailing us.

2) Scope

This Policy applies to information processed through the Service. It does not cover third-party websites or services you access through the Service, which are governed by their own policies.

3) Information we collect

3.1 Account information

  • Email address and authentication data (via Supabase/Auth).
  • Optional profile info you provide (name, preferences, etc.).
  • Security-related logs (e.g., login timestamps).

3.2 User Content (including confidential due diligence documents)

You may submit:

  • prompts, messages, instructions, conversation history;
  • uploaded documents/files/images; and
  • generated AI Output stored as part of your use.

You told us users may upload confidential client/customer documents. We treat this content as sensitive and apply safeguards, but you must only upload content you are authorized to share.

3.3 Usage, device, and log data

We may collect:

  • IP address, browser/device type, timestamps;
  • diagnostics and error logs;
  • performance and feature usage events.

3.4 Cookies and similar technologies

We use cookies/local storage for:

  • sign-in/session,
  • preferences (e.g., theme),
  • security,
  • analytics and marketing (where enabled and permitted).

3.5 Payments (if you enable paid plans)

If you purchase a subscription, payments are processed by third-party payment processors. We typically receive limited billing metadata (plan, status, transaction references) but do not store full payment card details on our servers.

4) How we use information

We use information to:

  • provide, operate, and maintain the Service;
  • authenticate users and prevent fraud/abuse;
  • process User Content to generate AI Output;
  • store chats/workspaces/files at your direction;
  • provide support and communicate service updates;
  • monitor, debug, and improve reliability/performance;
  • comply with law and enforce our Terms.

5) Legal bases (where applicable)

Depending on jurisdiction, processing may be based on:

  • Contract (providing the Service you request),
  • Legitimate interests (security, prevention of abuse, service improvement),
  • Consent (certain analytics/marketing cookies),
  • Legal obligation (compliance and lawful requests).

6) Sharing and disclosures

We do not sell personal information in the ordinary sense. We share information only as needed:

6.1 AI model providers (processors)

To generate AI Output, we may transmit relevant User Content to third-party AI model providers you select or we configure, which can include:

  • OpenAI,
  • Google (Gemini),
  • Anthropic,
  • Mistral,
  • Groq,
  • Perplexity,
  • OpenRouter,
  • Azure OpenAI,
  • and others as integrated.

What we share: prompts/messages and necessary context; files or extracts if you request file-based processing.

Third-party AI providers process data under their own terms and policies. Avoid sending highly sensitive information unless necessary and authorized.

6.2 Hosting and core infrastructure

We use providers such as:

  • Vercel (hosting/infrastructure),
  • Supabase (database/auth/storage).

6.3 Analytics and marketing pixels

You stated you run Google Analytics and marketing pixels. These tools may collect:

  • device/browser identifiers,
  • page views/events,
  • approximate location (derived from IP),
  • and cookie identifiers.

Where required, we present a cookie consent mechanism for non-essential cookies, and you can adjust browser settings to block cookies (some features may not work).

6.4 Legal, safety, enforcement

We may disclose information when we believe it is reasonably necessary to:

  • comply with law or lawful requests,
  • protect users, the Company, or the public,
  • investigate fraud/security incidents, or
  • enforce our Terms.

6.5 Business transfers

If we undergo a merger, acquisition, reorganization, or asset sale, information may be transferred as part of that transaction, subject to applicable law.

7) Confidentiality and due diligence documents

Because the Service may be used for due diligence and other high confidentiality workflows:

  • We limit internal access to User Content on a need-to-know basis (support, security, legal).
  • We use reasonable administrative, technical, and organizational safeguards.
  • Important: AI processing may transmit content to third-party model providers, which may involve cross-border processing. See “International transfers”.

If you require enterprise contractual commitments (DPA, confidentiality addendum, security terms), contact prerna@inforeaperinternet.com.

8) International transfers

Our service providers and AI model providers may process data in countries other than your country of residence. We take steps to use reputable providers and safeguards where commercially reasonable.

9) Data retention

We retain information as long as necessary to:

  • provide the Service,
  • maintain your account,
  • comply with legal obligations,
  • resolve disputes and enforce agreements.

Chat/workspace data is generally retained until you delete it or your account, subject to backup retention and legal requirements.

10) Security

We use reasonable security safeguards, which may include:

  • TLS encryption in transit,
  • access controls and least-privilege,
  • Supabase row-level security patterns for user-scoped data,
  • monitoring and rate limiting.

No system is 100% secure, but we work to protect your information.

11) Your rights and choices (including India)

Depending on applicable law (including India’s DPDP framework), you may have rights to:

  • access information about your data,
  • request correction,
  • request deletion/erasure (subject to legal retention),
  • withdraw consent where processing is based on consent,
  • grievance redressal.

Grievance Officer / Contact

Name: Prerna
Email: prerna@inforeaperinternet.com
Location: Gurugram, Haryana, India
Address: Registered office address is not publicly listed. Verified regulators and authorized requesters may obtain the full address by emailing us.

12) Children’s privacy

The Service is not intended for children under 18. We do not knowingly collect personal information from children.

13) Changes to this Policy

We may update this Policy. If changes are material, we may notify you via the Service or email. The “Last Updated” date indicates the most recent revision.

14) Contact

For privacy questions or requests: Prerna
Inforeaper internet (OPC) Pvt. Limited
Email: prerna@inforeaperinternet.com
Website: https://inforeaperinternet.com
Location: Gurugram, Haryana, India
Address: Registered office address is not publicly listed. Verified regulators and authorized requesters may obtain the full address by emailing us.

Back to home