Summerhill Technologies Pvt. Ltd. Privacy Policy
Effective: January 28, 2026
Top Floor, P K Apartments, Dyerton Estate, Khalini, Shimla, HP 171002
info@summerhilltechnologies.com
1. Introduction
This Policy explains how we process Digital Personal Data (“Personal Data”: any data identifying individuals digitally) via summerhilltechnologies.com (Site), SaaS (Last Mile Delivery, Warehouse Solutions), BPO, and apps (“Services”). We prioritize data minimization, purpose limitation, and security.
2. Personal Data We Collect
We collect only necessary data:
| Category | Examples | How is the data collected |
|---|---|---|
| Account/Identity | Name, email, phone, company. | Signup/Order Forms. |
| Customer Data | Shipment details, orders, contacts (your end-customers). | SaaS uploads, BPO calls. |
| Technical | IP, browser, usage logs, cookies. | Auto via Site/apps. |
| Payment | Card (tokenized), billing. | Via Razorpay. |
| Communications | Queries, feedback. | Email/support. |
No sensitive data unless required (e.g., health in pharma delivery, with consent).
3. How We Use Personal Data
Purposes (with legal basis):
- Service delivery (contract necessity: SaaS access, BPO queries).
- Billing/support (legitimate interests).
- Marketing (opt-in consent).
- Compliance/security (legal obligation).
Data minimized; not used beyond stated purposes.
4. Sharing and Disclosure
- Internal: HR, support teams (Shimla).
- Subprocessors: Razorpay (payments), AWS India (hosting), analytics (Google Analytics—EU SCCs if applicable).
- Legal: Law enforcement/DPDP Board requests.
No sales/sharing for unrelated purposes. International: To 5+ countries under DPDP rules (adequacy/contracts).
5. Consent and Your DPDP Rights
- Consent: Free, specific, informed, unconditional. Manage via dashboard (Site login).
- Rights: Access, correct, erase, withdraw, portability, nominate. Requests to info@summerhilltechnologies.com (<30 days).
- Withdraw: Immediate cessation of consent-based processing.
- Children (<18): Verifiable guardian consent required.
- Grievance: Data Protection Officer (DPO): info@summerhilltechnologies.com. Escalate to the DPDP Board.
7. Detailed Retention and Cookies
Retention Periods
Personal Data and Customer Data are retained only as long as necessary to fulfill purposes outlined.
| Data Type | Retention Period | Rationale |
|---|---|---|
| Account/Identity | Duration of subscription + 7 years post-termination | Contract performance, audits, tax laws under Income Tax Act, 1961 |
| Customer Data | Active subscription + 5 years (or legal minimum) | Business records (Companies Act), dispute resolution |
| Technical Logs | 90 days | Security monitoring, fraud prevention |
| Payment Data | Duration of transaction + 7 years | PCI-DSS compliance, GST records |
10. Contact Information
Privacy / Data Protection Officer (DPO)
Name: Manish Sharma
Email: privacy@summerhilltechnologies.com
Address:
Privacy Officer, Summerhill Technologies Pvt. Ltd., Top Floor, P K Apartments, Dyerton Estate, Khalini, Shimla, Himachal Pradesh 171002, India
RESPONSE TIMES:
- Rights requests: Within 30 days (extendable to 90 days with notice).
- Consent withdrawal: Immediate processing; confirmation within 7 days.
- General inquiries: Within 15 days.
© 2026 Summerhill Technologies Pvt. Ltd. All rights reserved. Compliant with Digital Personal Data Protection (DPDP) Act 2023.
See also Terms & Conditions.