AI Automation Software

Privacy Policy

Last updated: April 10, 2025

This Privacy Policy describes the policies and procedures of Sankit ("Operator", "I", "Me", "My") on the collection, use, and disclosure of Your information when You use the Otomates application or the https://otomates.io website (collectively, the "Service"). It also informs You about Your privacy rights and how the law protects You.

I use Your Personal data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Interpretation and Definitions

Interpretation The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions For the purposes of this Privacy Policy:

  • Account means a unique account created for You to access parts of the Service, if applicable.
  • Application means the software program named Otomates provided by the Operator.
  • Business, for the purpose of the CCPA (California Consumer Privacy Act), refers to the Operator as the legal entity that collects Consumers’ personal information and determines the purposes and means of the processing of Consumers’ personal information, or on behalf of which such information is collected and that alone, or jointly with others, determines the purposes and means of the processing of consumers’ personal information, that does business in the State of California.
  • Operator (referred to as either "the Operator", "I", "Me", or "My" in this Agreement) refers to Sankit, located in Gujarat, India. For the purpose of the GDPR, the Operator is the Data Controller.
  • Consumer, for the purpose of the CCPA (California Consumer Privacy Act), means a natural person who is a California resident. A resident, as defined in the law, includes (1) every individual who is in the USA for other than a temporary or transitory purpose, and (2) every individual who is domiciled in the USA who is outside the USA for a temporary or transitory purpose.
  • Cookies are small files that are placed on Your computer, mobile device or any other device by a website, containing the details of Your Browse history on that website among its many uses.
  • Country refers to: India
  • Data Controller, for the purposes of the GDPR (General Data Protection Regulation), refers to the Operator as the natural person who alone determines the purposes and means of the processing of Personal Data.
  • Device means any device that can access the Service such as a computer, a cellphone or a digital tablet.
  • Do Not Track (DNT) is a concept that has been promoted by US regulatory authorities, in particular the U.S. Federal Trade Commission (FTC), for the Internet industry to develop and implement a mechanism for allowing internet users to control the tracking of their online activities across websites.
  • Personal Data is any information that relates to an identified or identifiable individual. For the purposes of GDPR, Personal Data means any information relating to You such as a name, an identification number, location data, online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity. For the purposes of the CCPA, Personal Data means any information that identifies, relates to, describes or is capable of being associated with, or could reasonably be linked, directly or indirectly, with You. Specifically for this Service, it includes Email, First name, and Last name provided by You.
  • Sale, for the purpose of the CCPA (California Consumer Privacy Act), means selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a Consumer’s personal information to another business or a third party for monetary or other valuable consideration. The Operator does not Sell Personal Data.
  • Service refers to the Application (Otomates) or the Website (https://otomates.io) or both.
  • Service Provider means any natural or legal person who processes the data on behalf of the Operator. It refers to third-party companies or individuals employed by the Operator to facilitate the Service, to provide the Service on behalf of the Operator, to perform services related to the Service or to assist the Operator in analyzing how the Service is used (such as analytics tools or email marketing platforms). For the purpose of the GDPR, Service Providers are considered Data Processors.
  • Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
  • Website refers to Otomates, accessible from https://otomates.io
  • You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable. Under GDPR (General Data Protection Regulation), You can be referred to as the Data Subject or as the User as you are the individual using the Service.

Collecting and Using Your Personal Data

Types of Data Collected

  • Personal Data While using the Service, I may ask You to provide certain personally identifiable information that can be used to contact or identify You. Personally identifiable information may include, but is not limited to:

    • Email address
    • First name and last name

  • Usage Data Usage Data is collected automatically when using the Service. Usage Data may include information such as Your Device’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of the Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data. When You access the Service by or through a mobile device, I may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data. I may also collect information that Your browser sends whenever You visit the Website or when You access the Service by or through a mobile device. When using the Application, Usage Data may include interaction patterns within the interface, error messages returned by the Application, and general usage statistics.

Tracking Technologies and Cookies I use Cookies and similar tracking technologies (like beacons, tags, and scripts) to track the activity on the Service and store certain information. These technologies are used to collect and track information and to improve and analyze the Service. The technologies used may include:

  • Cookies or Browser Cookies. A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of the Service. Unless you have adjusted Your browser setting so that it will refuse Cookies, the Service may use Cookies.
  • Web Beacons. Certain sections of the Service and emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Operator, for example, to count users who have visited those pages or opened an email and for other related website statistics.

Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser.

I use both Session and Persistent Cookies for the purposes set out below:

  • Necessary / Essential Cookies
    • Type: Session Cookies
    • Administered by: Me
    • Purpose: These Cookies are essential to provide You with services available through the Website and Application and to enable You to use some features. They help to authenticate users and prevent fraudulent use. Without these Cookies, the services cannot be provided.
  • Functionality Cookies
    • Type: Persistent Cookies
    • Administered by: Me
    • Purpose: These Cookies allow the Service to remember choices You make (e.g., language preference) to provide a more personal experience.
  • Tracking and Performance Cookies
    • Type: Persistent Cookies
    • Administered by: Third-Parties (Google Analytics, Firebase)
    • Purpose: These Cookies are used to track information about traffic to the Service and how users use the Service. The information gathered may directly or indirectly identify you as an individual visitor, typically linked to a pseudonymous identifier associated with the device you use. These are used to test new features and understand user interaction.

For more information about the cookies used and your choices, consult your browser settings. Consider reviewing the privacy policies of the third-party analytics providers mentioned.

Use of Your Personal Data

The Operator may use Personal Data for the following purposes:

  • To provide and maintain the Service, including monitoring its usage.
  • To manage Your Account: (If applicable) To manage Your registration as a user.
  • To contact You: By email or other electronic means (e.g., push notifications) regarding updates, security alerts, or informative communications related to the Service functionalities.
  • To provide You with news, special offers, and general information about other goods, services, and events offered that are similar to those you have already used or enquired about, unless You have opted not to receive such information (managed via the email marketing tool).
  • To manage Your requests: To attend and manage Your requests to Me.
  • For business transfers: To evaluate or conduct a merger, divestiture, restructuring, sale, or other transfer of some or all assets (including the Application), where Personal Data is among the assets transferred.
  • For other purposes: Such as data analysis (using tools like Google Analytics, Firebase), identifying usage trends, determining promotional campaign effectiveness, and improving the Service, products, marketing, and Your experience.

Sharing Your Personal Information

I do not sell Your Personal Data. I may share Your personal information in the following limited situations:

  • With Service Providers: I share Your personal information with Service Providers to monitor and analyze the use of the Service (Google Analytics, Firebase), and to manage and send emails to You (Mailmodo). These Service Providers are bound by their own privacy policies regarding how they handle data.
  • For business transfers: I may share or transfer Your personal information in connection with, or during negotiations of, any merger, sale of assets, financing, or acquisition of all or a portion of the Application/business to another entity. You will be notified beforehand if Your Personal Data becomes subject to a different Privacy Policy.
  • With Your consent: I may disclose Your personal information for any other purpose with Your explicit consent.
  • To Comply with Laws: I may disclose Your Personal Data if required by law or valid legal requests (e.g., court order, government agency).

Retention of Your Personal Data

I will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. I will retain and use Your Personal Data to the extent necessary to comply with legal obligations (e.g., retaining data to comply with applicable laws), resolve disputes, and enforce legal agreements and policies.

Usage Data is generally retained for a shorter period, except when needed to strengthen security, improve Service functionality, or if legally obligated to retain it longer.

Transfer of Your Personal Data

Your information, including Personal Data, is processed at the Operator's location in India and potentially in other locations where Service Providers operate. This means information may be transferred to — and maintained on — computers located outside Your state, province, country, or other governmental jurisdiction where data protection laws may differ.

Your consent to this Privacy Policy followed by Your submission of such information represents Your agreement to that transfer.

I will take all steps reasonably necessary to ensure Your data is treated securely and in accordance with this Privacy Policy. No transfer of Your Personal Data will occur to an organization or country unless adequate controls are in place, including data security.

Delete Your Personal Data

You have the right to delete or request assistance in deleting the Personal Data collected about You.

You may update, amend, or delete Your information at any time by contacting Me. You can also contact Me to request access to, correct, or delete any personal information You have provided.

Please note, however, that I may need to retain certain information when there is a legal obligation or lawful basis to do so.

Disclosure of Your Personal Data

  • Business Transactions: If the Application/business is involved in a merger, acquisition, or asset sale, Your Personal Data may be transferred. Notice will be provided before transfer and subjection to a different Privacy Policy.
  • Law enforcement: Under certain circumstances, I may be required to disclose Your Personal Data if required by law or in response to valid requests by public authorities.
  • Other legal requirements: I may disclose Your Personal Data in the good faith belief that such action is necessary to:
    • Comply with a legal obligation
    • Protect and defend the rights or property of the Operator
    • Prevent or investigate possible wrongdoing in connection with the Service
    • Protect the personal safety of Users or the public
    • Protect against legal liability

Security of Your Personal Data

The security of Your Personal Data is important, but remember no internet transmission or electronic storage is 100% secure. While I strive to use commercially acceptable means to protect Your Personal Data, I cannot guarantee its absolute security.

Detailed Information on the Processing of Your Personal Data

Service Providers used may have access to Your Personal Data only to perform tasks on My behalf and are obligated not to disclose or use it for other purposes.

  • Analytics I use third-party Service providers (Google Analytics, Firebase) to monitor and analyze Service usage.

  • Email Marketing Currently, the Service does not engage in email marketing or utilize third-party email marketing providers. Should email marketing be introduced in the future, any communications will be managed by a third-party service, and you will be able to opt-out by following the unsubscribe link in any email or by contacting me. This policy will be updated accordingly if email marketing is implemented.

  • Payments Currently, the Service does not process payments or use third-party payment processors. If paid products/services are introduced, third-party processors will be used. I will not store or collect payment card details; this information goes directly to the processor, governed by their Privacy Policy and adhering to PCI-DSS standards. This policy will be updated if payment processing is implemented.

GDPR Privacy

Legal Basis for Processing Personal Data under GDPR I may process Personal Data under conditions like:

  • Consent: You've given consent for specific purposes.
  • Performance of a contract: Processing is necessary for an agreement with You or pre-contractual steps.
  • Legal obligations: Necessary for compliance with a legal obligation.
  • Vital interests: Necessary to protect Your or another person's vital interests.
  • Public interests: Related to a task in the public interest or official authority.
  • Legitimate interests: Necessary for legitimate interests pursued by the Operator, not overridden by Your rights. I will gladly clarify the specific legal basis for processing upon request.

Your Rights under the GDPR I undertake to respect the confidentiality of Your Personal Data and guarantee You can exercise Your rights. If You are within the EU/EEA, You have the right to:

  • Request access: Access, update, or delete Your Personal Data. Contact Me if you cannot do this yourself. Receive a copy of the data held.
  • Request correction: Have incomplete or inaccurate information corrected.
  • Object to processing: Object if processing relies on legitimate interest and Your situation warrants it, or for direct marketing.
  • Request erasure: Ask for deletion when there's no good reason for continued processing.
  • Request transfer: Receive Your Personal Data in a structured, machine-readable format or have it transferred to a third party (applies to automated info based on consent or contract).
  • Withdraw Your consent: Withdraw consent for processing. This may affect access to certain Service features.

Exercising of Your GDPR Data Protection Rights Contact Me at support@otomates.io to exercise these rights. I may ask for identity verification. I will respond as soon as possible. You have the right to complain to a Data Protection Authority in the EEA about data collection and use.

CCPA Privacy

This section supplements the policy for California residents.

Categories of Personal Information Collected In the last 12 months, I may have collected the following categories (defined by CCPA):

  • Category A: Identifiers. Examples: Name, email address, IP address, online identifier. Collected: Yes.
  • Category B: Personal information categories (Cal. Civ. Code § 1798.80(e)). Examples: Name, email address. Collected: Yes.
  • Category C: Protected classification characteristics. Examples: Age, race, gender, etc. Collected: No.
  • Category D: Commercial information. Examples: Records of Service interaction/usage. Collected: Potentially Yes (as Usage Data).
  • Category E: Biometric information. Collected: No.
  • Category F: Internet or other similar network activity. Examples: Interaction with the Service (Usage Data). Collected: Yes.
  • Category G: Geolocation data. Examples: Approximate physical location. Collected: No (beyond what IP address might generally indicate).
  • Category H: Sensory data. Collected: No.
  • Category I: Professional or employment-related information. Collected: No.
  • Category J: Non-public education information. Collected: No.
  • Category K: Inferences drawn from other personal information. Collected: No.

Personal information under CCPA does not include publicly available info, deidentified/aggregated info, or certain info covered by other laws (HIPAA, CMIA, FCRA, GLBA, FIPA, DPPA).

Sources of Personal Information

  • Directly from You: Forms You complete, preferences expressed.
  • Indirectly/Automatically from You: Observing Your activity on the Service (e.g., Usage Data, Cookies).
  • From Service Providers: Analytics vendors (Google Analytics, Firebase).

Use of Personal Information for Business Purposes or Commercial Purposes I may use or disclose collected personal information for CCPA-defined "business" or "commercial" purposes:

  • Operating and providing the Service.
  • Providing support and responding to inquiries.
  • Fulfilling the reason You provided the information (e.g., responding to a question).
  • Responding to law enforcement requests, court orders, regulations.
  • As described when collecting information or as set forth in CCPA.
  • Internal administrative and auditing purposes.
  • Detecting security incidents; protecting against malicious, deceptive, fraudulent, or illegal activity.

Sale of Personal Information As stated, I do not sell Personal Information, including that of minors under 16.

Sharing Personal Information I may disclose Your personal information to Service Providers for business purposes as outlined above. These providers are contractually restricted from using it except to perform services for Me.

Your Rights under the CCPA California residents have specific rights:

  • Right to Know/Access: Request disclosure of categories and specific pieces of personal information collected, sources, purposes, and categories shared/sold (though no sale occurs).
  • Right to Delete: Request deletion of personal information, subject to exceptions (e.g., necessary for Service function, legal compliance).
  • Right to Opt-Out of Sale/Sharing: You have the right to opt-out. As I do not sell data, there is no need to opt-out of sale.
  • Right to Correct: Request correction of inaccurate personal information.
  • Right to Limit Use/Disclosure of Sensitive Personal Information: (Likely N/A as I don't collect sensitive info as defined by CCPA, but the right exists).
  • Right to Non-Discrimination: You won't be discriminated against for exercising CCPA rights.

Exercising Your CCPA Rights Contact Me at support@otomates.io. Only You or an authorized agent can make a verifiable consumer request. I will need to verify Your identity. I aim to respond within 45 days.

Do Not Track Policy Currently, the Service does not respond to Do Not Track signals.

Children's Privacy

The Service is not intended for anyone under 13 (or 16 in the EEA/UK). I do not knowingly collect personally identifiable information from children under these ages. If You are a parent/guardian and know Your child provided data, contact Me. If I learn I collected such data without parental consent verification, I will take steps to remove it.

The Service may contain links to other websites not operated by Me. If You click a third-party link, You are directed to their site. I strongly advise reviewing their Privacy Policy. I have no control over and assume no responsibility for third-party sites' content or practices.

Changes to this Privacy Policy

I may update this Privacy Policy occasionally. I will notify You by posting the new policy on this page and updating the "Last updated" date. You are advised to review this policy periodically. Changes are effective when posted.

Contact Us

If you have questions about this Privacy Policy, contact Me: