Privacy Policy

Effective: July 2, 2026

Tracetex 360 Innovations (OPC) PVT LTD ("Tracetex," "we," "us") is committed to protecting data for our B2B SaaS customers and end consumers. This Privacy Policy (effective July 2, 2026) describes how Tracetex collects, uses, stores, and shares information across our platform (web, mobile apps, APIs) and features (Trace Basic/Growth/Enterprise subscriptions, QR/NFC product scans, Digital Product Passports, analytics, AI tools, etc.). By using Tracetex services, you consent to the data practices described herein.

Data Controller/Processor: Tracetex (India) is the Data Fiduciary (controller) for data collected in providing our platform. Customers may also act as Controllers of their own data (as described below).

1. Information We Collect

2. How We Use Your Data

3. Subscription Plans Data Handling

Tracetex offers three subscription levels, with data practices scaled to match:

At all levels, we limit data use to what is necessary for the subscribed features.

4. Digital Product Passports (DPP)

Each product registered in Tracetex can have a unique Digital Product Passport containing product identity, manufacturing data, material and sustainability info, certifications, lifecycle history (e.g. factory, transport, retail), and end-of-life guidance. Only data explicitly provided by your brand or authorized supply-chain partners appears in the DPP. Consumers scanning QR/NFC access this data to verify authenticity and learn the product journey. Tracetex does not independently verify third-party data unless through certified integrations.

5. Cookies and Tracking

Tracetex and its service providers use cookies and similar technologies to provide core functionality and analytics:

Users can manage cookie preferences via a consent banner or browser settings. Disabling certain cookies may limit platform functionality. (See our Cookie Policy for further details.)

GDPR Note: Per EU law, we rely on user consent for non-essential cookies and provide clear opt-in/opt-out. GDPR recitals define consent as “freely given, specific, informed, and unambiguous” by clear action.

6. Legal Bases for Processing

7. Data Sharing and Transfer

8. Data Security

We maintain a robust information security program aligned with industry standards (ISO 27001, SOC 2). Controls include:

Despite strong measures, no system is infallible. We continuously update our controls based on emerging threats.

9. Data Retention

We retain personal and business data only as long as necessary:

10. Data Subject Rights

Tracetex users (Data Principals) have rights under applicable laws:

Requests should be made via support@tracetexi.in. We will respond in accordance with applicable deadlines (e.g. GDPR: one month; DPDP: within a month as per rules).

11. Children’s Data

Tracetex services are intended for business use. We do not knowingly process data of children under age 16 (or as defined by local law). If we learn we have collected a child’s data in violation, we will delete it.

12. Third-Party Services

Our platform may integrate with third-party systems (payment gateways, ERP/PLM connectors, analytics tools, email/SMS services, etc.). Each third party has its own privacy practices. We do not control their policies, so please review their terms. We only share data with them under contract and lawful basis.

13. AI & Automated Analytics

We may use AI/ML analytics to derive insights (e.g. detecting anomalies in supply chains, generating sustainability scores). AI outputs are probabilistic and meant to assist, not replace human judgment. We recommend users review AI-generated insights before making critical decisions. (See our AI Usage & Responsible AI Policy for further details.)

14. Data Breach Notification

In the event of a security breach affecting personal data:

15. Play Store/App Store Compliance

Our mobile apps (if any) have privacy disclosures in line with Google/Apple requirements. We provide clear justifications for any sensitive permissions. For example, as per Google Play policy, camera and location are considered sensitive data, so we only request the camera to scan product QR/NFC codes and location (if at all) is used only for aggregated analytics. (See our Google Play & App Store Privacy Disclosure for details on each permission.)

16. Changes to Policy

We may update this Privacy Policy for legal or operational reasons. Changes will be posted on our site with an updated “Last Updated” date. Continued use after changes means acceptance. Please review this page periodically.

17. Governing Law

This policy is governed by Indian law. Any disputes (e.g. under DPDP) shall be subject to courts in West Bengal, India. EU users’ rights are preserved (GDPR, etc.), and the policy will be interpreted to comply with local laws where required.

18. Contact Information

Tracetex 360 Innovations (OPC) PVT LTD – Data Protection Officer (DPO)
Email: support@tracetexi.in (for privacy inquiries)
Address: Durgapur, West Bengal, India

By using Tracetex, you agree to this Privacy Policy. If you do not agree, please discontinue use.

← Back to home