Legal

Privacy Policy

Effective date: July 3, 2026  ·  Last updated: July 3, 2026

This Privacy Policy explains how Infinix IT Solutions ("Infinix," "we," "us," or "our") collects, uses, discloses, and protects information when you use our website, our products (including StockUp, NoTask AI, and SchemaShift), and any other service that links to this policy.

01Scope of this policy

Infinix IT Solutions is a software development company based in Pune, Maharashtra, India. We build custom AI software for clients and operate our own SaaS products, including StockUp (liquor retail management), NoTask AI (communications and marketing planning), and SchemaShift (publishing metadata conversion).

This policy applies to our marketing website, our product applications and dashboards, our APIs, and any integrations we build that connect to third-party platforms such as Google, Microsoft, and WhatsApp Business. Individual products may publish a supplementary notice for practices unique to that product; where one exists, it should be read together with this policy.

By accessing or using our website or products, you agree to the collection and use of information as described here. If you do not agree, please do not use our services.

02Information we collect

Information you provide directly

  • Account and contact details — name, email address, phone number, company name, job title, billing address.
  • Business data you upload or enter — inventory records, invoices, client communications, task and campaign content, catalogue and product data, and similar business records you submit to use our products.
  • Communications — messages you send us via email, contact forms, WhatsApp, or during scoping and support calls.
  • Payment information — processed by our third-party payment processors; we do not store full card numbers on our own servers.

Information collected automatically

  • Usage data — pages visited, features used, timestamps, click events, and session duration.
  • Device and log data — IP address, browser type, operating system, device identifiers, and referring URLs.
  • Cookies and similar technologies — see Section 11.

Information from third parties

  • Data received through authorized integrations you connect (for example Google Workspace, Microsoft 365, WhatsApp Business API, or payment gateways), limited to what is needed to provide the connected functionality.
  • Data from staffing and recruitment activity, such as resumes and candidate details submitted through our recruiting line of business.

03How we use information

  • To provide, operate, and maintain our products and client engagements.
  • To process transactions, subscriptions, and invoices.
  • To authenticate accounts and secure access to our systems.
  • To respond to inquiries, provide support, and communicate service updates.
  • To improve our products, develop new features, and perform analytics.
  • To detect, investigate, and prevent fraud, abuse, or security incidents.
  • To comply with legal obligations, including tax, accounting, and regulatory requirements.
  • To send product updates or marketing communications, where you have opted in or as otherwise permitted by law; you may opt out at any time.

04Legal basis for processing

Where applicable law requires a legal basis for processing (such as the EU/UK GDPR), we rely on one or more of the following: performance of a contract with you, your consent, our legitimate interests in operating and improving our services, and compliance with legal obligations. Where required by India's Digital Personal Data Protection Act, 2023, we process personal data based on your consent or another permitted ground under that Act.

05Third-party services and sub-processors

We use trusted third parties to help us operate our services, including cloud hosting and infrastructure providers, database and storage providers, analytics providers, payment processors, email and messaging providers, and OCR/AI processing providers. These providers process data on our behalf under contractual confidentiality and data-protection obligations, and only to the extent necessary to perform their function for us.

06Use of Google and Microsoft data

Some of our products allow you to connect a Google or Microsoft account (for example to sync calendars, send communications, access Drive/OneDrive files, or authenticate your login). When you do so:

  • We request only the specific scopes required for the feature you enable, and you can revoke access at any time from your Google or Microsoft account settings.
  • We do not use data obtained through these integrations for serving advertisements.
  • We do not allow humans to read this data except: with your affirmative consent, for security purposes such as investigating abuse, to comply with applicable law, or in aggregated and anonymized form for internal operations.
  • We do not transfer this data to third parties except as necessary to provide or improve the features you use, to comply with law, as part of a merger or acquisition, or with your consent.

Google API Services User Data Policy. Infinix IT Solutions' use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Microsoft Graph and identity data. Data accessed via Microsoft Graph or the Microsoft identity platform is used solely to provide the feature you have explicitly enabled, and is handled in accordance with the Microsoft Services Agreement and applicable Microsoft API terms.

07Sharing and disclosure

We do not sell your personal information. We may share information:

  • With service providers and sub-processors described in Section 5, under confidentiality obligations.
  • With your explicit consent or at your direction (for example, when you connect a third-party integration).
  • To comply with applicable law, legal process, or governmental request.
  • To protect the rights, property, or safety of Infinix, our users, or others.
  • In connection with a merger, acquisition, financing, or sale of business assets, subject to standard confidentiality arrangements.

08Data retention

We retain personal data for as long as necessary to provide our services, fulfil the purposes described in this policy, and comply with legal, accounting, or reporting obligations. When data is no longer needed, we delete or anonymize it, subject to backup and legal retention schedules.

09Data security

We apply administrative, technical, and physical safeguards designed to protect information against unauthorized access, alteration, disclosure, or destruction, including encryption in transit, access controls, and regular review of our systems. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10Your rights and choices

Depending on your location, you may have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate or incomplete data.
  • Request deletion of your personal data, subject to legal retention requirements.
  • Object to or restrict certain processing, and withdraw consent where processing is based on consent.
  • Request a copy of your data in a portable format.
  • Lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us using the details in Section 15. We will respond within the timeframe required by applicable law.

11Cookies and tracking technologies

We use cookies and similar technologies to keep you logged in, remember preferences, and understand how our website and products are used. You can control cookies through your browser settings; disabling cookies may limit some functionality.

12Children's privacy

Our services are intended for business use by adults and are not directed at children. We do not knowingly collect personal data from anyone under 18. If you believe a child has provided us with personal data, please contact us so we can delete it.

13International data transfers

We are based in India and may work with clients, providers, and infrastructure located in other countries, including the United States and the European Union. Where we transfer personal data internationally, we take steps to ensure it receives an appropriate level of protection consistent with this policy and applicable law.

14Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be reflected by an updated "Last updated" date at the top of this page, and where appropriate we will provide additional notice. Continued use of our services after changes take effect constitutes acceptance of the revised policy.

15Contact us

If you have questions about this Privacy Policy or how we handle your data, reach out to us:

Company
Infinix IT Solutions
Address
Kumar Pebble Park, Handewadi, Pune, Maharashtra, India