This document describes what personal data socei.ai collects, how it is used, and your rights under the Digital Personal Data Protection Act, 2023 (India). You may download a copy for your records.
The entity responsible for your personal data is:
socei.ai (operated by [Company Legal Name])
[Registered Address], India
Grievance Officer: grievance@socei.ai
We respond to all grievances within 30 days as required under the DPDP Act, 2023.
We collect the minimum data necessary to provide our services:
| Category | Data Points | Purpose | Retention |
|---|---|---|---|
| Identity | Name, mobile number, email address | Account creation, communication, OTP authentication | While membership is active + 1 year |
| Property | Flat/unit number, society name, city | Generating bills, receipts, and statements | 7 years (tax compliance) |
| Financial | Bill amounts, payment history, transaction references, UPI details | Payment collection, reconciliation, GST/TDS compliance | 7 years (GST Act requirement) |
| Device | Push notification token, app version, device platform | Sending bill reminders and payment confirmations | Until you log out or uninstall the app |
| Usage | Chat queries (AI assistant) | Answering your billing questions via AI | 7 days (session history), then deleted |
| Payment Evidence | Screenshots you upload to report disputes | Investigating payment discrepancy reports | 2 years from date of upload |
| Consent Record | Consent timestamp, IP address, policy version | Demonstrating compliance with DPDP Act | Duration of membership + 3 years |
We process your personal data only for the following purposes:
We will not use your data for advertising, profiling, or sell it to any third party.
We share your data with the following processors, strictly for the stated purpose:
| Processor | Data Shared | Purpose | Agreement |
|---|---|---|---|
| Razorpay Payments Pvt. Ltd. | Name, amount, phone | Processing in-app UPI / card payments | Razorpay DPA signed |
| Amazon Web Services (AWS) | Phone number (Cognito), device token (SNS), chat queries (Bedrock) | Authentication, push notifications, AI assistant | AWS Customer Agreement (covers DPA) |
| Society Committee | Name, unit number, bill and payment status | Society administration and financial management | Covered by society membership terms |
| Government Portals | PAN, TAN, GSTIN (society-level) | Statutory TDS and GST filing | Statutory obligation |
All AWS data is processed within India (ap-south-1 Mumbai region). No personal data is transferred outside India.
You may withdraw your consent at any time by:
Note: Withdrawing consent will deactivate your account. Financial records required under Indian tax law (GST Act, Income Tax Act) will be retained for the legally mandated period regardless of consent withdrawal.
| Data Category | Retention Period | Reason |
|---|---|---|
| Financial records (bills, payments, receipts) | 7 years | GST Act & Income Tax Act |
| Payment screenshots / dispute evidence | 2 years | Dispute resolution |
| Member profile (name, phone, unit) | Active + 1 year | Service delivery |
| Push notification device tokens | Until logout/uninstall | Notification delivery |
| AI chat session history | 7 days | Session continuity |
| Consent records | Membership + 3 years | DPDP compliance |
This is Data Collection & Consent Policy v1.0, effective April 2026.
If we make material changes to this policy, we will notify you via the app and update the version number. Your continued use after notification constitutes acceptance.