Privacy Policy

Privacy Policy

Effective Date: 01-Nov-2025

This Privacy Policy explains how Ebitaa Private Limited (“EBITAA”, “we”, “our”, “us”) collects, processes, and protects your information when you access or use our financial reporting platform, website, and related services.
Your trust is essential to us, and we are committed to maintaining the confidentiality, integrity, and security of your information.

1. Introduction

This Privacy Policy describes our practices for collecting, using, storing, protecting, and disclosing information related to users of the EBITAA platform.
By using our platform, you agree to the terms of this Policy. If you do not agree, please discontinue use of our services.
This Policy applies to all users, organizations, and authorized representatives who register or upload financial data to our platform.

2. Information We Collect

We collect various types of information to deliver and improve our services:
a) Account Information: Name, email address, phone number, company name, password.
b) Usage Data: Log files, IP addresses, browser type, access time, and activity logs.
c) Financial Data: Uploaded files such as trial balances, ledgers, and reports.
d) Subscription Data: Billing details, payment method, and plan usage.
e) AI Interaction Data: Queries, insights, or feedback provided during report generation.
f) Device and Technical Data: Cookies, session identifiers, and API request metadata.

3. How We Use the Information

Your information is used to:
- Operate and maintain the platform.
- Generate and deliver AI-driven financial reports and analytics.
- Provide technical support and customer service.
- Improve accuracy, functionality, and user experience.
- Process billing, payments, and renewals.
- Comply with legal, tax, or regulatory obligations.

4. Data Accuracy and User Responsibility

You are responsible for ensuring that all uploaded or submitted data is accurate, authorized, and does not violate any confidentiality obligations.
EBITAA shall not be responsible for errors, omissions, or inaccuracies in user-uploaded data or resulting reports.

5. Data Processing and AI Reporting

EBITAA processes uploaded data automatically through secure algorithms to generate insights and reports. No human review of financial content occurs unless required for support or compliance.
All AI insights and results are informational and not professional financial advice.
All AI insights are generated using EBITAA’s internal proprietary algorithms. No external AI engines, APIs, or open-source tools are utilized for processing client data.

6. Proprietary Technology and AI Usage Policy

EBITAA does not use any open-source AI models, third-party analytics engines, or external data-processing tools for generating financial insights or reports.
All computations, analytics, and AI-driven insights are processed exclusively within our proprietary, closed, and secure environment.
Your financial data is never transmitted, shared, or exposed to any public AI system, cloud AI API, or third-party data service for analysis or storage.
EBITAA’s AI technology is fully owned, developed, and maintained by Ebitaa Private Limited, ensuring total data isolation, confidentiality, and intellectual property control.

7. Data Sharing and Third Parties

We do not sell, rent, trade, or externally analyze your data. EBITAA does not transmit user data to any third-party or open-source AI systems for processing or improvement purposes.
Limited data may be shared only with:
- Secure third-party cloud infrastructure providers.
- Payment gateways for subscription processing.
- Legal or regulatory authorities when required by law.
All third parties are bound by strict data protection and confidentiality agreements.

8. Data Retention and Deletion

EBITAA retains user data only as long as necessary for the purpose it was collected.
- Uploaded datasets and reports can be permanently deleted by the user from within their account.
- Upon account deactivation, user information (e.g., subscription history, invoices, and audit logs) will be securely retained as required by law and accounting standards.
- After the retention period, data is deleted or anonymized in a secure manner.

9. Data Security and Protection

We employ industry-standard security measures to protect data against unauthorized access, alteration, disclosure, or destruction, including:
- Encrypted storage and transmission (HTTPS, TLS, AES-256).
- Secure data backups and redundancy.
- Access control and multi-level authentication.
- Regular security audits and incident monitoring.

10. Data Residency and Cross-Border Transfers

Your information may be processed or stored on secure third-party cloud infrastructure located inside or outside India.
By using our services, you consent to such transfers in accordance with applicable data protection standards.

11. User Rights

Subject to applicable laws, users have the right to:
- Access their personal and uploaded data.
- Request correction or deletion of inaccurate data.
- Deactivate their account at any time.
- Withdraw consent for optional data processing.
Requests may be sent to [email protected]. We will respond within a reasonable period, typically 30 days.

12. Cookies and Analytics

EBITAA uses cookies and analytics tools to understand user interactions, improve usability, and enhance performance. Users can disable cookies in their browser settings, though some features may be limited.

13. Account Termination and Data Erasure

Users can permanently delete uploaded financial data at any time. Account deactivation will restrict future logins but retain essential records (e.g., billing, subscription logs) for compliance and auditing. Once deleted, data cannot be restored.

14. Children’s Data

EBITAA does not knowingly collect or process data from individuals under the age of 18. If we learn that such data has been collected, it will be deleted immediately.

15. Legal Requests and Disclosures

We may disclose limited user data if required by law, court order, or government regulation, and only to the extent necessary to comply with legal obligations.

16. Breach Notification and Incident Response

In the event of a data breach, EBITAA will promptly investigate, contain, and mitigate the incident. Users affected by material breaches will be notified within a reasonable timeframe as required by applicable law.

17. Policy Updates and Revisions

We may update this Privacy Policy periodically to reflect system improvements or regulatory changes. The revised version will be published on our website with an updated “Effective Date.” Continued use after such updates constitutes acceptance of the revised Policy.

18. Contact and Grievance Officer

For questions, concerns, or complaints regarding privacy or data protection, please contact:
Ebitaa Private Limited
Email: [email protected]
Address: 31, OTC, City of Lakes, India, 313001
Grievance Officer: Wasim Akram