Privacy Policy
At HospiDirect Pvt. Ltd., we are committed to maintaining the trust and confidence of our B2B partners. This Privacy Policy outlines how we collect, use, and protect your business and personal data in compliance with the Information Technology Act, 2000, and other applicable Indian laws.
01. Information We Collect
Business Identifiers Company name, registered business address, GSTIN, and trade license details required for B2B verification.
Contact Information Contact person name, email address, and phone number for order communication and account management.
Financial Details UTR/transaction reference numbers, bank transfer receipts, order history, and payment proof uploads.
02. How We Use Your Information
Verification Validating your business registration and GSTIN for compliance with B2B regulations.
Order Processing Fulfilling orders, communicating shipping updates, and providing customer support.
Invoicing Generating GST-compliant invoices including Proforma Invoices, Tax Invoices, and Credit Notes.
03. GSTIN Data Compliance
Your GSTIN is collected as a mandatory requirement for B2B transactions under Indian GST law. It is used to verify your business legitimacy, determine applicable tax rates (CGST+SGST or IGST), generate GST-compliant tax invoices, and file GST returns as required by law.
04. Data Sharing
We do not sell, rent, or trade your personal or business information. We may share data only with the following trusted parties:
Logistics Partners
Shipping address and contact details shared for delivery fulfillment within Karnataka, Tamil Nadu, and Kerala.
Payment Processors
Transaction details shared as required for payment verification and reconciliation.
Government Agencies
Data disclosed as required under Indian tax laws (GST filings), court orders, or regulatory authorities for legal compliance.
05. Data Security
All data is stored on secure servers with encrypted connections (SSL/TLS). Passwords are stored using one-way hashing and are never accessible in plain text. Payment proof files are stored in protected directories not accessible via direct URL. Access to business data is restricted to authorized Hospidirect personnel only.
06. Data Retention
Account and order data is retained for a minimum of 8 years as required by Indian tax and commercial law. You may request deactivation of your account, but historical transaction records will be retained for legal compliance.
07. Your Rights
Access You have the right to access your registered business information at any time.
Corrections You may request correction of inaccurate data through your account or by contacting us.
Deletion You may request account deactivation, subject to legal retention requirements for transaction records.
08. Cookies
Our website uses essential cookies for session management and cart functionality. No third-party advertising or tracking cookies are used.
09. Legal Compliance
This policy complies with the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.