For legal accuracy, the formal text below is provided in English.
1. Who we are
GharSewa is operated by GharSewa Technologies Private Limited(CIN: U72200DL2026PTC123456), with its registered office at Dwarka, New Delhi 110075, India (“GharSewa”, “we”, “our”). GharSewa operates the website gharsewa.co.inand the GharSewa iOS & Android applications (together, the “Platform”).
We are the Data Fiduciaryunder the Digital Personal Data Protection Act, 2023 (“DPDP Act”) for the personal data described in this policy.
2. What data we collect
We collect only the data needed to operate the Platform:
- Contact details — mobile number (mandatory, used as your account identifier and for SMS booking updates) and, optionally, email.
- Profile — first and last name, profile photo or avatar emoji you upload, saved addresses (up to five).
- Location — coarse location (city / pincode) when you set it manually, or precise location when you tap “Use my current location”. We use this only to dispatch a pro and to show pincode-based pricing.
- Booking history — services booked, dates, amounts, ratings you give.
- Payment metadata — order IDs and payment status from Razorpay. We never receive or store your card or UPI credentials; those go directly to Razorpay.
- Device & diagnostics — non-personal crash data, app version, OS version. Helps us debug.
- Identifiers — a Firebase/Clerk user ID we use internally to link your sessions.
We do not collect Aadhaar, PAN, biometric data, financial account numbers, or sensitive personal data of any kind from customers.
3. Why we collect it
- Service delivery — dispatch a pro to the right address, send booking updates and reminders.
- Payments — process bookings and refunds via Razorpay.
- Safety & quality — link bookings to ratings, investigate complaints, hold pros accountable.
- Support — respond to your queries on WhatsApp / phone / email.
- Legal compliance — meet GST, tax, consumer-protection and anti-fraud obligations.
We process your data on the legal bases of contract performance, compliance with law and your consent (for optional uses like marketing — which you can withdraw any time).
4. Who we share it with
We share the minimum necessary data with:
- The specific pro you book — they see your first name, phone (masked until they accept), and the address for that single booking. They do not see your full booking history or other addresses.
- Razorpay — for payment processing. Their privacy policy applies to what they see (cards, UPI handles). See razorpay.com/privacy.
- Fast2SMS — for delivering OTP and booking-update SMS to your mobile.
- Firebase & Clerk — our authentication providers. They store your phone + name and issue session tokens.
- Government / regulators — when legally required (court order, tax notice, statutory request under the IT Act 2000 or DPDP Act 2023).
We do not sell or rent your personal data to any third party for advertising, profiling or any other purpose.
5. How long we keep it
- Account data — for as long as your account is active.
- Booking records — 8 years after the booking, as required under Indian tax law (GST + Income Tax Act).
- Crash & diagnostic data — 90 days.
- OTP codes & session tokens — immediately discarded after verification.
When you delete your account, we remove everything except booking records covered by the retention obligation above. Those are pseudonymised so the receipts remain valid but the data is no longer linked to you.
6. Your rights
Under the DPDP Act 2023 you have the right to:
- Access — a summary of the data we hold about you. Email us at the address below.
- Correction & erasure — fix wrong data or delete it. Most fields are editable from Profile → Preferences. Account deletion is from the same screen.
- Withdraw consent — for any optional processing (e.g. marketing). Toggle “Email updates” off in Preferences, or unsubscribe from any email.
- Grievance redressal — see Section 10 below.
- Nominate — name a person to exercise your rights in case of death or incapacity.
7. Children
GharSewa is intended for users 18 years of age or older. We do not knowingly collect data from children under 18. If you believe a child has signed up, please tell us at the address in Section 10 and we will delete the account.
8. Security
All data in transit is protected by TLS 1.2+. Passwords (where applicable) are never stored — we use phone OTP authentication. Payment credentials are handled entirely by Razorpay, a PCI-DSS Level 1 provider. We follow ISO 27001-aligned practices for our own servers and we run automated security reviews on every deploy. Despite these measures, no system is perfectly secure — please use a strong, unique device passcode and don't share your OTP with anyone.
9. Cross-border transfers
Our servers are hosted in Mumbai (Vercel ap-south-1, Upstash Mumbai region). Limited diagnostic data may transit to Vercel's global edge network and to Firebase & Clerk (US data centres) for the authentication step only. These providers are bound by Standard Contractual Clauses and meet GDPR adequacy standards.
10. Grievance officer
As required under Rule 5(9) of the IT Rules 2011 and Section 8(9) of the DPDP Act 2023, our designated Grievance Officer is:
Name: Privacy Officer, GharSewa
Email: privacy@gharsewa.co.in
Postal: GharSewa Technologies Pvt Ltd, Dwarka, New Delhi 110075
Response time: we acknowledge within 24 hours and resolve within 15 days.
11. Changes to this policy
We may update this policy as the Platform evolves. Material changes will be announced in-app and via a notice on this page; the “Last updated” date at the top will reflect any change. Continued use of the Platform after a change constitutes acceptance.
Questions or a privacy concern?
We aim to respond inside 24 hours.
See also: Terms of service