Privacy Policy

Last updated: 20 May 2026  ·  Effective: 20 May 2026

This Privacy Policy describes how Daksh AI Labs Private Limited ("Daksh", "we", "us", or "our") collects, uses, discloses, and protects information about you when you use our website at dakshapp.com and our enterprise search platform, Daksh Search (collectively, the "Services").

By using the Services, you agree to this Privacy Policy. If you do not agree, please discontinue use of the Services.

1. Information We Collect

1.1 Information you provide directly

• Account information: Name, email address, company name, job title, and password when you create an account or request a demo.
• Billing information: Payment details processed securely through our payment processors. We do not store full card numbers.
• Communications: Information you share when contacting us via email, demo request forms, or support channels.

1.2 Information collected automatically

• Usage data: Search queries, pages visited, features used, and time spent on the platform (used to improve the product, not shared with third parties).
• Log data: IP address, browser type, operating system, referral URLs, and timestamps.
• Cookies: We use essential cookies for session management and optional analytics cookies (see Section 6).

1.3 Data from connected integrations

When you connect third-party tools (Google Drive, Slack, Jira, Confluence, Salesforce, etc.), Daksh indexes content from those services to power search. This data is:

• Stored in isolated, tenant-specific storage (never co-mingled with other customers)
• Indexed solely to power search results for authorized users within your organisation
• Never used to train AI models
• Deleted within 30 days of disconnecting the integration or terminating your account

1.4 Google API Data — Limited Use Disclosure

Daksh's use of information received from Google APIs (including Google Drive) adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, when you connect your Google account:

• Scopes requested: Daksh requests read-only access to your Google Drive files (https://www.googleapis.com/auth/drive.readonly) solely to index your documents for search within your organisation.
• Limited use: Data obtained via Google APIs is used only to provide the search functionality you have requested. It is not used for advertising, sold to third parties, or used for any purpose unrelated to improving your search experience within Daksh.
• No transfer: Google user data is never transferred to third parties except as necessary to provide the service (e.g., storing indexed content on your isolated AWS instance) or as required by law.
• Human access: Daksh staff do not read your Google Drive content. Access is automated and limited to the indexing pipeline. We may access data to provide technical support if you explicitly request it.
• Revocation: You can disconnect Google Drive at any time from the Daksh admin settings. This immediately revokes our access and triggers deletion of indexed Google data within 30 days.

2. How We Use Your Information

• Provide, maintain, and improve the Services
• Process payments and send transaction-related communications
• Respond to enquiries, provide support, and send product updates (with your consent)
• Monitor and analyse usage patterns to improve product quality
• Detect, investigate, and prevent fraudulent or unauthorised activity
• Comply with applicable laws and regulations including the Indian Digital Personal Data Protection Act, 2023 (DPDP Act)

3. How We Share Your Information

We do not sell your personal data. We share it only:

• With service providers: Cloud infrastructure (AWS), payment processors, and analytics providers who are contractually obligated to protect your data.
• Within your organisation: Administrators of your Daksh account can view user activity within their tenant.
• For legal compliance: When required by applicable law, court order, or government authority.
• Business transfers: In the event of a merger, acquisition, or asset sale, subject to equivalent privacy protections.

4. Data Retention

We retain personal data for as long as your account is active or as needed to provide Services. Upon account termination:

• Account data is deleted within 30 days
• Indexed integration data is deleted within 30 days
• Billing records are retained for 7 years as required by Indian tax law
• Anonymised, aggregated usage statistics may be retained indefinitely

5. Your Rights

Depending on your location, you may have the following rights under applicable data protection law (including India's DPDP Act and the EU GDPR):

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate personal data.
• Deletion: Request deletion of your personal data, subject to legal retention obligations.
• Portability: Receive your personal data in a structured, machine-readable format.
• Objection: Object to processing of your personal data for marketing purposes.
• Consent withdrawal: Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, contact us at privacy@dakshapp.com. We will respond within 30 days.

6. Cookies

We use the following types of cookies:

• Essential cookies: Required for the Services to function (session authentication, CSRF protection). Cannot be disabled.
• Analytics cookies: Help us understand how the Services are used. You can opt out via your browser settings or our cookie banner.

We do not use advertising or tracking cookies.

7. Security

We implement industry-standard security measures including:

• TLS 1.2+ encryption for all data in transit
• AES-256 encryption for data at rest
• SOC 2 Type II compliance (in progress)
• Tenant-isolated storage: your data is never co-mingled with other customers
• Regular penetration testing and vulnerability assessments

See our Security page for more details.

8. International Transfers

Our primary infrastructure is hosted on AWS in the ap-south-1 (Mumbai) region. If your data is transferred outside India, we ensure equivalent protection through standard contractual clauses or other lawful transfer mechanisms.

9. Children's Privacy

The Services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from minors. If you become aware that a minor has provided us with personal data, contact us at privacy@dakshapp.com.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by email or via a notice in the Services. Continued use after the effective date constitutes acceptance.

11. Contact Us

For privacy-related enquiries, contact our Data Protection contact:

• Email: privacy@dakshapp.com
• Company: Daksh AI Labs Private Limited
• Website: dakshapp.com