Privacy Policy

At Naviqate, your privacy is our top priority. This Privacy Policy explains how we collect, use, and protect your information when you use our services.

Effective Date: 22 Oct, 2025

Last Updated: 22 Oct, 2025

This Privacy Policy (“Policy”) describes the practices of The Q Company, operating the application Naviqate (“App,” “we,” “our,” “us”), with respect to the collection, use, disclosure, retention, and protection of personal information of individuals (“users,” “you,” “your”) who access or use the App. By using Naviqate, you acknowledge and consent to the practices described herein. If you do not agree with this Policy, you must discontinue use of the App immediately.

Information We Collect

We may collect and process the following categories of personal information:

1.1 Personal Identifiable Information (PII):
  • Full name (first, middle, last)
  • Email address
  • Date of Birth
  • Profile photograph
1.2 Device and Technical Information:
  • IP address, device identifiers, operating system, device model
  • Access logs, API request logs
1.3 Location and Sensor Data (not stored):
  • GPS signals, QR code scans, accelerometer and magnetometer readings used for real-time navigation. These are processed transiently and not retained.
1.4 Payment Information:
  • We do not collect or store payment details directly. Payments are handled by trusted third-party providers under their own privacy policies.
1.5 Other Information:
  • Communications sent to us (support requests, complaints).
  • Business partner subscription details.

Legal Basis for Processing (GDPR Compliance)

We process personal data under the following lawful bases:

  • Performance of Contract: To provide navigation and account services.
  • Consent: For marketing emails and promotional communications.
  • Legitimate Interests: For security, service improvement, and usage analytics.
  • Legal Obligation: To comply with applicable laws, law enforcement requests, or court orders.

Use of Information

We use personal data for the following purposes:

  • Account creation, authentication, and authorization.
  • Provision and improvement of indoor navigation services.
  • Sending verification emails, transactional notifications, and service-related updates.
  • Sending promotional and marketing communications (subject to opt-out).
  • Maintaining logs for auditing, fraud prevention, and network security.
  • Complying with legal obligations and enforcement of agreements.

Data Retention

  • Account-related personal information is retained indefinitely, unless deletion is required by law or regulatory order.
  • Runtime navigation data (GPS, QR scans, sensor readings) is not stored.
  • User account deletion results in deactivation, but personal information may be retained in archival systems for compliance, fraud prevention, and security.

Data Sharing and Transfers

We do not sell, rent, or trade personal information. We may share information with:

  • Cloud Hosting Providers: AWS (Mumbai servers), MongoDB Atlas.
  • Payment Providers: Trusted third-party processors.
  • Government and Law Enforcement Authorities: Where disclosure is legally required.

Data may be transferred internationally. In such cases, safeguards (such as standard contractual clauses, encryption, and compliance with applicable transfer mechanisms) are applied.

Data Security

We implement industry-standard measures to safeguard data, including:

  • Encryption of passwords and sensitive data.
  • Secure transmission via HTTPS/TLS.
  • Access control and role-based restrictions.
  • Regular monitoring of cloud infrastructure.

However, no system is fully secure, and we disclaim liability for breaches beyond reasonable control.

User Rights

Depending on jurisdiction, users may have rights including:

  • Access: Obtain a copy of personal data we hold.
  • Correction: Rectify inaccurate or incomplete data.
  • Deletion: Request deletion of account (with retention exceptions).
  • Restriction: Request restriction of processing.
  • Objection: Opt out of marketing communications.
  • Portability: Request transfer of data in machine-readable format (where legally required).

To exercise rights, contact support@naviqate.app. We may require identity verification.

Children's Privacy

  • Naviqate is not intended for children under 16 years of age.
  • We do not knowingly collect data from children under 16 without parental/guardian consent.
  • If we learn that personal data of a minor has been collected without consent, we will delete it.

International Compliance

This Policy is designed to comply with:

  • India Digital Personal Data Protection Act (DPDP Act 2023)
  • European Union General Data Protection Regulation (GDPR)
  • California Consumer Privacy Act (CCPA)
  • Children's Online Privacy Protection Act (COPPA, US)

Governing Law

This Policy shall be governed by the laws of India, State of Maharashtra, without regard to conflict-of-law rules.

Changes to this Policy

We may amend this Policy from time to time. Updates will be posted in the App with a revised “Last Updated” date. Continued use constitutes acceptance of modifications.

Contact Information

For privacy inquiries, contact:

support@naviqate.app
+91-9422660627