privacy policy

privacy policy

Introduction

INAARA Credence Private Limited (referred to as “INAARA Credence”, “our”, “us”, or “we”) is committed to protecting the privacy of the personal information of our current, former, and potential users of our Service, PsychDesk (referred to as “you” and “your”). PsychDesk is a practice management and electronic health record (EHR) platform designed to support mental health professionals in India.

This Privacy Policy outlines how we collect, use, hold, disclose, and otherwise process your personal information in compliance with applicable Indian laws, including the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Mental Healthcare Act, 2017. It also provides details on how to contact us for questions, updates, access to your personal information, or to lodge a complaint.

If we are unable to collect sufficient personal information, we may not be able to provide you with the full benefits of the Service.

By providing us with your personal information—whether in person, over the phone, by email, via the Service, Website, or otherwise—or by authorizing third parties to share your personal information with us, you are deemed to have read this Privacy Policy and consent to the practices described herein.

Note to PsychDesk Customers and Their Clients


Our customer is the Customer (e.g., mental health professionals, clinics, or practices) that has engaged us to provide the Service.

This Privacy Policy does not apply to personal information we collect about our Customers’ patients and clients (“Clients”) from our Customers. Our handling of such Client personal information is governed by our agreements with the relevant Customer, including our Terms of Service and Data Processing Addendum (DPA), as applicable (our “Agreement”). In case of any conflict between our Agreement and this Privacy Policy, the Agreement prevails. If we receive inquiries or requests from Clients about their personal information provided by our Customer, we will direct those to the relevant Customer.

If you are a Client, we may retain your personal information on behalf of your Customer. For questions about how we process Customer-supplied personal information, we encourage you to contact the relevant Customer. We may forward any direct inquiries from you about your personal information to that Customer.

If you are a Client inputting personal information directly into the Service, we will not access or use that information except for the limited purposes of anonymizing and aggregating it or for internal business purposes outlined below. Once anonymized and aggregated, the data is no longer personal information (i.e., it cannot identify you) and is not regulated by this Privacy Policy.

3. How Is Personal Information Collected?

Where possible, we collect personal information directly from you for our business purposes. However, we may also collect personal information through your use of the Service or from third parties, such as our related entities, service providers, contractors, and agents, in compliance with Indian laws.

4. What Types of Personal Information Do We Collect?

The types of personal information we collect depend on the context. Below are examples, though this list is not exhaustive:

Information You Provide:


Customer Information: We collect your full name, contact details (physical and postal address, email, phone, mobile numbers), login name, and password to create and manage your account.

Professional Information: We collect professional and employment-related details, such as business name, license number, calendar and scheduling information, and other business-related data.

Payment Information: We collect transactional details, such as credit/debit card numbers, tax IDs, and bank details, to process payments for our Services, and insurance information to process payments from Clients.

Communications and Phone Calls: We may collect information from your communications with us, including calls or messages, which may be retained for fraud prevention, internal training, and quality assurance.


Automatically Collected Information:

Device Information: We may collect data about devices used to access the Service, including hardware model, device IP address, operating systems, software, file names, versions, preferred languages, unique device identifiers, and mobile network information.

Location Information: We may collect general or precise location data (e.g., via mobile GPS) when you use certain Service features. You can control or disable location services in your device settings.

Statistical Information: We collect non-personal data about your use of the Website and Service to improve features and user experience, including pages accessed, search terms, links clicked, visit times, browsers, operating systems, IP addresses, and cookies.


Other Information:

We may collect additional personal information as permitted or required by Indian law, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017, or as provided voluntarily by you.

We do not collect ‘Sensitive Personal Data or Information’ (SPDI) as defined under the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (e.g., race, ethnicity, religious beliefs, sexual orientation, political opinions, trade union membership, genetic or biometric data, or criminal convictions) unless voluntarily provided by you and necessary for mental health service delivery in compliance with the Mental Healthcare Act, 2017.

We only collect and process personal information necessary for the effective functioning of the Service and our business.


5. For What Purposes Do We Collect, Hold, Use, and Disclose Personal Information?

We collect, hold, use, and disclose personal information only for the purposes for which it was collected (and related purposes you would reasonably expect), unless required or authorized by Indian law or with your consent. Specific purposes include:


Creating and updating your account;

Verifying your identity;

Corresponding with you regarding the Service;

Operating the Service and our business effectively;

Measuring the effectiveness of the Service and understanding user interactions;

Preventing breaches of our Terms of Service and ensuring Service security;

Conducting investigations and risk assessments related to the Service;

Allowing audits of our business and Service;

Publishing content on our Website;

Ensuring compliance with legal obligations, including the Information Technology Act, 2000, the Mental Healthcare Act, 2017, and other relevant Indian regulations.


We may process your personal information for other disclosed purposes to which you consent, either expressly or by implication.

A list of third-party service providers (Subprocessors) we use is available at: https://www.psychdesk.in/subprocessors

6. Who Has Access to Your Personal Information?

We respect the privacy of your personal information and take reasonable steps to keep it confidential. We may disclose your personal information for the purposes outlined in this Privacy Policy to:


Our employees, officers, contractors, third-party service providers, agents, and partners;

Our related or affiliated companies and their employees, officers, contractors, service providers, and agents;

Our accountants, insurers, lawyers, auditors, and professional advisors;

Third parties you direct or permit us to disclose to (e.g., for your benefit);

Third parties for law enforcement or to prevent serious threats to public safety;

As permitted or required by Indian law, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017.


In the event of a sale of part or all of our business, personal information records may be transferred to the new owner or their related companies.

We take reasonable steps to ensure third parties comply with Indian privacy laws, such as through contractual obligations governing the use of disclosed personal information.

Your provision of personal information to us constitutes consent for disclosure in accordance with this Privacy Policy.

7. Your Rights – Marketing

You will only receive marketing communications from us or third parties if you have consented when providing your contact details or otherwise submitted consent. These may be sent via mail, SMS, email, or other means, in compliance with Indian laws, such as the Information Technology Act, 2000.

You may opt out of marketing communications at any time by contacting us (see clause 15) or using the “unsubscribe” facility in such communications.

8. Advertisers

We do not disclose identifiable information to advertisers or sponsors but may provide anonymized, aggregated data about users. We may use personal information to help advertisers target specific audiences (e.g., mental health professionals in Mumbai), in compliance with Indian laws.

9. Cookies

Our Service and Website use cookies to record preferences and optimize design. Cookies are small data elements stored on your device for record-keeping and customization. We use cookies to generate statistics, measure activity, and improve the Service. Third-party vendors may use cookies to collect data on content viewed and serve ads based on your Service or Website usage.

We use tags, such as container tags (e.g., Google Tag Manager), retargeting tags, and analytics tags, to gain aggregated insights into user behavior and preferences.

By using the Service and Website, you consent to cookies. You may disable cookies in your browser settings, but some features may not function fully without them. We recommend enabling cookies for the best experience.

10. Storage and Security

Personal information within this Privacy Policy’s scope is collected and held by INAARA Credence Private Limited or trusted third parties, such as cloud hosting providers, engaged to store data on our behalf.

We take reasonable steps to protect your personal information from misuse, interference, corruption, loss, or unauthorized access, modification, or disclosure, using physical, electronic, and procedural safeguards. We use cloud storage providers compliant with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Mental Healthcare Act, 2017.

To the extent permitted by law, we exclude liability for any misuse, interference, corruption, loss, or unauthorized access, modification, or disclosure of your personal information.

Keep any passwords or security devices confidential and notify us immediately of any breach to prevent unauthorized disclosure.

We comply with Indian laws, including the Mental Healthcare Act, 2017, for reporting privacy breaches if we become aware of any involving your personal information.

11. Disclosure of Personal Information Offshore

Some third parties to whom we disclose personal information may be located outside India. Our cloud storage providers, websites, and systems may also use servers outside India.

We ensure compliance with the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, for offshore transfers, taking reasonable steps to protect your data.

12. How Long Do We Retain Your Personal Information?

We retain your personal information as long as required for the purposes for which it was collected, considering our need to answer queries, resolve issues, provide improved services, and comply with legal requirements under Indian laws, including the Mental Healthcare Act, 2017.

When no longer required or mandated by law, we destroy, delete, or permanently anonymize it, except for data on off-site servers or electronic backups not readily accessible.

We comply with any minimum or maximum retention periods set by Indian law.

13. Email and Other Electronic Communications

By using the Service and Website, you consent to receiving communications from us or third parties on our behalf via contact details you provided (e.g., email, SMS, phone calls), promoting and marketing our Service.

You can opt out by contacting us (see clause 15) or using the “unsubscribe” facility. We will remove you from marketing lists as soon as reasonably practicable.

14. Your Rights to Access and Correct Personal Information

If your personal information changes or you no longer desire our Services, you may modify or remove it by logging into your Account and updating settings.

You may request confirmation of whether we hold your personal information, request a copy, or ask for corrections by contacting our Privacy Officer (see clause 15). Provide your name, address, and brief details of the information requested to aid our search.

We will provide access unless required or authorized to refuse by Indian law (e.g., if it interferes with others’ privacy, breaches confidentiality, or is not readily retrievable). If refused, we will provide written reasons.

A charge may apply for retrieving and providing your information, and we will advise you of this beforehand.

15. Complaints

We strive to treat your personal information confidentially and in compliance with Indian laws, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017. For questions or complaints about our handling of your personal information, contact our Privacy Officer:

Privacy OfficerINAARA Credence Private Limited[Address: To be provided by INAARA Credence Private Limited]Email: hello@psychdesk.in

If unsatisfied with our response, you may refer your complaint to the applicable regulator. For personal information under the Information Technology Act, 2000, you may contact the Adjudicating Officer appointed under the Act or escalate to the Cyber Appellate Tribunal. We can provide further information on complaint avenues if requested.


16. Links to Other Websites

Our Website may contain links to third-party sites and plugins not under our control. We are not responsible for their content, privacy practices, or terms of use, and make no endorsements, representations, or warranties about their accuracy or thoroughness. Disclosing personal information to third-party sites or plugins is at your own risk.


17. Changes to This Privacy Policy

We reserve the right to amend this Privacy Policy by posting updates on our Website. We will collect, use, hold, and disclose your personal information per the most recent version. Review this policy regularly when visiting our Website.

If you disagree with any aspect of the updated policy, notify us promptly, and you may be required to cease using our Service and Website.

Definitions


Introduction

INAARA Credence Private Limited (referred to as “INAARA Credence”, “our”, “us”, or “we”) is committed to protecting the privacy of the personal information of our current, former, and potential users of our Service, PsychDesk (referred to as “you” and “your”). PsychDesk is a practice management and electronic health record (EHR) platform designed to support mental health professionals in India.

This Privacy Policy outlines how we collect, use, hold, disclose, and otherwise process your personal information in compliance with applicable Indian laws, including the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Mental Healthcare Act, 2017. It also provides details on how to contact us for questions, updates, access to your personal information, or to lodge a complaint.

If we are unable to collect sufficient personal information, we may not be able to provide you with the full benefits of the Service.

By providing us with your personal information—whether in person, over the phone, by email, via the Service, Website, or otherwise—or by authorizing third parties to share your personal information with us, you are deemed to have read this Privacy Policy and consent to the practices described herein.

Note to PsychDesk Customers and Their Clients


Our customer is the Customer (e.g., mental health professionals, clinics, or practices) that has engaged us to provide the Service.

This Privacy Policy does not apply to personal information we collect about our Customers’ patients and clients (“Clients”) from our Customers. Our handling of such Client personal information is governed by our agreements with the relevant Customer, including our Terms of Service and Data Processing Addendum (DPA), as applicable (our “Agreement”). In case of any conflict between our Agreement and this Privacy Policy, the Agreement prevails. If we receive inquiries or requests from Clients about their personal information provided by our Customer, we will direct those to the relevant Customer.

If you are a Client, we may retain your personal information on behalf of your Customer. For questions about how we process Customer-supplied personal information, we encourage you to contact the relevant Customer. We may forward any direct inquiries from you about your personal information to that Customer.

If you are a Client inputting personal information directly into the Service, we will not access or use that information except for the limited purposes of anonymizing and aggregating it or for internal business purposes outlined below. Once anonymized and aggregated, the data is no longer personal information (i.e., it cannot identify you) and is not regulated by this Privacy Policy.

3. How Is Personal Information Collected?

Where possible, we collect personal information directly from you for our business purposes. However, we may also collect personal information through your use of the Service or from third parties, such as our related entities, service providers, contractors, and agents, in compliance with Indian laws.

4. What Types of Personal Information Do We Collect?

The types of personal information we collect depend on the context. Below are examples, though this list is not exhaustive:

Information You Provide:


Customer Information: We collect your full name, contact details (physical and postal address, email, phone, mobile numbers), login name, and password to create and manage your account.

Professional Information: We collect professional and employment-related details, such as business name, license number, calendar and scheduling information, and other business-related data.

Payment Information: We collect transactional details, such as credit/debit card numbers, tax IDs, and bank details, to process payments for our Services, and insurance information to process payments from Clients.

Communications and Phone Calls: We may collect information from your communications with us, including calls or messages, which may be retained for fraud prevention, internal training, and quality assurance.


Automatically Collected Information:

Device Information: We may collect data about devices used to access the Service, including hardware model, device IP address, operating systems, software, file names, versions, preferred languages, unique device identifiers, and mobile network information.

Location Information: We may collect general or precise location data (e.g., via mobile GPS) when you use certain Service features. You can control or disable location services in your device settings.

Statistical Information: We collect non-personal data about your use of the Website and Service to improve features and user experience, including pages accessed, search terms, links clicked, visit times, browsers, operating systems, IP addresses, and cookies.


Other Information:

We may collect additional personal information as permitted or required by Indian law, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017, or as provided voluntarily by you.

We do not collect ‘Sensitive Personal Data or Information’ (SPDI) as defined under the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (e.g., race, ethnicity, religious beliefs, sexual orientation, political opinions, trade union membership, genetic or biometric data, or criminal convictions) unless voluntarily provided by you and necessary for mental health service delivery in compliance with the Mental Healthcare Act, 2017.

We only collect and process personal information necessary for the effective functioning of the Service and our business.


5. For What Purposes Do We Collect, Hold, Use, and Disclose Personal Information?

We collect, hold, use, and disclose personal information only for the purposes for which it was collected (and related purposes you would reasonably expect), unless required or authorized by Indian law or with your consent. Specific purposes include:


Creating and updating your account;

Verifying your identity;

Corresponding with you regarding the Service;

Operating the Service and our business effectively;

Measuring the effectiveness of the Service and understanding user interactions;

Preventing breaches of our Terms of Service and ensuring Service security;

Conducting investigations and risk assessments related to the Service;

Allowing audits of our business and Service;

Publishing content on our Website;

Ensuring compliance with legal obligations, including the Information Technology Act, 2000, the Mental Healthcare Act, 2017, and other relevant Indian regulations.


We may process your personal information for other disclosed purposes to which you consent, either expressly or by implication.

A list of third-party service providers (Subprocessors) we use is available at: https://www.psychdesk.in/subprocessors

6. Who Has Access to Your Personal Information?

We respect the privacy of your personal information and take reasonable steps to keep it confidential. We may disclose your personal information for the purposes outlined in this Privacy Policy to:


Our employees, officers, contractors, third-party service providers, agents, and partners;

Our related or affiliated companies and their employees, officers, contractors, service providers, and agents;

Our accountants, insurers, lawyers, auditors, and professional advisors;

Third parties you direct or permit us to disclose to (e.g., for your benefit);

Third parties for law enforcement or to prevent serious threats to public safety;

As permitted or required by Indian law, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017.


In the event of a sale of part or all of our business, personal information records may be transferred to the new owner or their related companies.

We take reasonable steps to ensure third parties comply with Indian privacy laws, such as through contractual obligations governing the use of disclosed personal information.

Your provision of personal information to us constitutes consent for disclosure in accordance with this Privacy Policy.

7. Your Rights – Marketing

You will only receive marketing communications from us or third parties if you have consented when providing your contact details or otherwise submitted consent. These may be sent via mail, SMS, email, or other means, in compliance with Indian laws, such as the Information Technology Act, 2000.

You may opt out of marketing communications at any time by contacting us (see clause 15) or using the “unsubscribe” facility in such communications.

8. Advertisers

We do not disclose identifiable information to advertisers or sponsors but may provide anonymized, aggregated data about users. We may use personal information to help advertisers target specific audiences (e.g., mental health professionals in Mumbai), in compliance with Indian laws.

9. Cookies

Our Service and Website use cookies to record preferences and optimize design. Cookies are small data elements stored on your device for record-keeping and customization. We use cookies to generate statistics, measure activity, and improve the Service. Third-party vendors may use cookies to collect data on content viewed and serve ads based on your Service or Website usage.

We use tags, such as container tags (e.g., Google Tag Manager), retargeting tags, and analytics tags, to gain aggregated insights into user behavior and preferences.

By using the Service and Website, you consent to cookies. You may disable cookies in your browser settings, but some features may not function fully without them. We recommend enabling cookies for the best experience.

10. Storage and Security

Personal information within this Privacy Policy’s scope is collected and held by INAARA Credence Private Limited or trusted third parties, such as cloud hosting providers, engaged to store data on our behalf.

We take reasonable steps to protect your personal information from misuse, interference, corruption, loss, or unauthorized access, modification, or disclosure, using physical, electronic, and procedural safeguards. We use cloud storage providers compliant with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Mental Healthcare Act, 2017.

To the extent permitted by law, we exclude liability for any misuse, interference, corruption, loss, or unauthorized access, modification, or disclosure of your personal information.

Keep any passwords or security devices confidential and notify us immediately of any breach to prevent unauthorized disclosure.

We comply with Indian laws, including the Mental Healthcare Act, 2017, for reporting privacy breaches if we become aware of any involving your personal information.

11. Disclosure of Personal Information Offshore

Some third parties to whom we disclose personal information may be located outside India. Our cloud storage providers, websites, and systems may also use servers outside India.

We ensure compliance with the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, for offshore transfers, taking reasonable steps to protect your data.

12. How Long Do We Retain Your Personal Information?

We retain your personal information as long as required for the purposes for which it was collected, considering our need to answer queries, resolve issues, provide improved services, and comply with legal requirements under Indian laws, including the Mental Healthcare Act, 2017.

When no longer required or mandated by law, we destroy, delete, or permanently anonymize it, except for data on off-site servers or electronic backups not readily accessible.

We comply with any minimum or maximum retention periods set by Indian law.

13. Email and Other Electronic Communications

By using the Service and Website, you consent to receiving communications from us or third parties on our behalf via contact details you provided (e.g., email, SMS, phone calls), promoting and marketing our Service.

You can opt out by contacting us (see clause 15) or using the “unsubscribe” facility. We will remove you from marketing lists as soon as reasonably practicable.

14. Your Rights to Access and Correct Personal Information

If your personal information changes or you no longer desire our Services, you may modify or remove it by logging into your Account and updating settings.

You may request confirmation of whether we hold your personal information, request a copy, or ask for corrections by contacting our Privacy Officer (see clause 15). Provide your name, address, and brief details of the information requested to aid our search.

We will provide access unless required or authorized to refuse by Indian law (e.g., if it interferes with others’ privacy, breaches confidentiality, or is not readily retrievable). If refused, we will provide written reasons.

A charge may apply for retrieving and providing your information, and we will advise you of this beforehand.

15. Complaints

We strive to treat your personal information confidentially and in compliance with Indian laws, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017. For questions or complaints about our handling of your personal information, contact our Privacy Officer:

Privacy OfficerINAARA Credence Private Limited[Address: To be provided by INAARA Credence Private Limited]Email: hello@psychdesk.in

If unsatisfied with our response, you may refer your complaint to the applicable regulator. For personal information under the Information Technology Act, 2000, you may contact the Adjudicating Officer appointed under the Act or escalate to the Cyber Appellate Tribunal. We can provide further information on complaint avenues if requested.


16. Links to Other Websites

Our Website may contain links to third-party sites and plugins not under our control. We are not responsible for their content, privacy practices, or terms of use, and make no endorsements, representations, or warranties about their accuracy or thoroughness. Disclosing personal information to third-party sites or plugins is at your own risk.


17. Changes to This Privacy Policy

We reserve the right to amend this Privacy Policy by posting updates on our Website. We will collect, use, hold, and disclose your personal information per the most recent version. Review this policy regularly when visiting our Website.

If you disagree with any aspect of the updated policy, notify us promptly, and you may be required to cease using our Service and Website.

Definitions


Introduction

INAARA Credence Private Limited (referred to as “INAARA Credence”, “our”, “us”, or “we”) is committed to protecting the privacy of the personal information of our current, former, and potential users of our Service, PsychDesk (referred to as “you” and “your”). PsychDesk is a practice management and electronic health record (EHR) platform designed to support mental health professionals in India.

This Privacy Policy outlines how we collect, use, hold, disclose, and otherwise process your personal information in compliance with applicable Indian laws, including the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Mental Healthcare Act, 2017. It also provides details on how to contact us for questions, updates, access to your personal information, or to lodge a complaint.

If we are unable to collect sufficient personal information, we may not be able to provide you with the full benefits of the Service.

By providing us with your personal information—whether in person, over the phone, by email, via the Service, Website, or otherwise—or by authorizing third parties to share your personal information with us, you are deemed to have read this Privacy Policy and consent to the practices described herein.

Note to PsychDesk Customers and Their Clients


Our customer is the Customer (e.g., mental health professionals, clinics, or practices) that has engaged us to provide the Service.

This Privacy Policy does not apply to personal information we collect about our Customers’ patients and clients (“Clients”) from our Customers. Our handling of such Client personal information is governed by our agreements with the relevant Customer, including our Terms of Service and Data Processing Addendum (DPA), as applicable (our “Agreement”). In case of any conflict between our Agreement and this Privacy Policy, the Agreement prevails. If we receive inquiries or requests from Clients about their personal information provided by our Customer, we will direct those to the relevant Customer.

If you are a Client, we may retain your personal information on behalf of your Customer. For questions about how we process Customer-supplied personal information, we encourage you to contact the relevant Customer. We may forward any direct inquiries from you about your personal information to that Customer.

If you are a Client inputting personal information directly into the Service, we will not access or use that information except for the limited purposes of anonymizing and aggregating it or for internal business purposes outlined below. Once anonymized and aggregated, the data is no longer personal information (i.e., it cannot identify you) and is not regulated by this Privacy Policy.

3. How Is Personal Information Collected?

Where possible, we collect personal information directly from you for our business purposes. However, we may also collect personal information through your use of the Service or from third parties, such as our related entities, service providers, contractors, and agents, in compliance with Indian laws.

4. What Types of Personal Information Do We Collect?

The types of personal information we collect depend on the context. Below are examples, though this list is not exhaustive:

Information You Provide:


Customer Information: We collect your full name, contact details (physical and postal address, email, phone, mobile numbers), login name, and password to create and manage your account.

Professional Information: We collect professional and employment-related details, such as business name, license number, calendar and scheduling information, and other business-related data.

Payment Information: We collect transactional details, such as credit/debit card numbers, tax IDs, and bank details, to process payments for our Services, and insurance information to process payments from Clients.

Communications and Phone Calls: We may collect information from your communications with us, including calls or messages, which may be retained for fraud prevention, internal training, and quality assurance.


Automatically Collected Information:

Device Information: We may collect data about devices used to access the Service, including hardware model, device IP address, operating systems, software, file names, versions, preferred languages, unique device identifiers, and mobile network information.

Location Information: We may collect general or precise location data (e.g., via mobile GPS) when you use certain Service features. You can control or disable location services in your device settings.

Statistical Information: We collect non-personal data about your use of the Website and Service to improve features and user experience, including pages accessed, search terms, links clicked, visit times, browsers, operating systems, IP addresses, and cookies.


Other Information:

We may collect additional personal information as permitted or required by Indian law, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017, or as provided voluntarily by you.

We do not collect ‘Sensitive Personal Data or Information’ (SPDI) as defined under the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (e.g., race, ethnicity, religious beliefs, sexual orientation, political opinions, trade union membership, genetic or biometric data, or criminal convictions) unless voluntarily provided by you and necessary for mental health service delivery in compliance with the Mental Healthcare Act, 2017.

We only collect and process personal information necessary for the effective functioning of the Service and our business.


5. For What Purposes Do We Collect, Hold, Use, and Disclose Personal Information?

We collect, hold, use, and disclose personal information only for the purposes for which it was collected (and related purposes you would reasonably expect), unless required or authorized by Indian law or with your consent. Specific purposes include:


Creating and updating your account;

Verifying your identity;

Corresponding with you regarding the Service;

Operating the Service and our business effectively;

Measuring the effectiveness of the Service and understanding user interactions;

Preventing breaches of our Terms of Service and ensuring Service security;

Conducting investigations and risk assessments related to the Service;

Allowing audits of our business and Service;

Publishing content on our Website;

Ensuring compliance with legal obligations, including the Information Technology Act, 2000, the Mental Healthcare Act, 2017, and other relevant Indian regulations.


We may process your personal information for other disclosed purposes to which you consent, either expressly or by implication.

A list of third-party service providers (Subprocessors) we use is available at: https://www.psychdesk.in/subprocessors

6. Who Has Access to Your Personal Information?

We respect the privacy of your personal information and take reasonable steps to keep it confidential. We may disclose your personal information for the purposes outlined in this Privacy Policy to:


Our employees, officers, contractors, third-party service providers, agents, and partners;

Our related or affiliated companies and their employees, officers, contractors, service providers, and agents;

Our accountants, insurers, lawyers, auditors, and professional advisors;

Third parties you direct or permit us to disclose to (e.g., for your benefit);

Third parties for law enforcement or to prevent serious threats to public safety;

As permitted or required by Indian law, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017.


In the event of a sale of part or all of our business, personal information records may be transferred to the new owner or their related companies.

We take reasonable steps to ensure third parties comply with Indian privacy laws, such as through contractual obligations governing the use of disclosed personal information.

Your provision of personal information to us constitutes consent for disclosure in accordance with this Privacy Policy.

7. Your Rights – Marketing

You will only receive marketing communications from us or third parties if you have consented when providing your contact details or otherwise submitted consent. These may be sent via mail, SMS, email, or other means, in compliance with Indian laws, such as the Information Technology Act, 2000.

You may opt out of marketing communications at any time by contacting us (see clause 15) or using the “unsubscribe” facility in such communications.

8. Advertisers

We do not disclose identifiable information to advertisers or sponsors but may provide anonymized, aggregated data about users. We may use personal information to help advertisers target specific audiences (e.g., mental health professionals in Mumbai), in compliance with Indian laws.

9. Cookies

Our Service and Website use cookies to record preferences and optimize design. Cookies are small data elements stored on your device for record-keeping and customization. We use cookies to generate statistics, measure activity, and improve the Service. Third-party vendors may use cookies to collect data on content viewed and serve ads based on your Service or Website usage.

We use tags, such as container tags (e.g., Google Tag Manager), retargeting tags, and analytics tags, to gain aggregated insights into user behavior and preferences.

By using the Service and Website, you consent to cookies. You may disable cookies in your browser settings, but some features may not function fully without them. We recommend enabling cookies for the best experience.

10. Storage and Security

Personal information within this Privacy Policy’s scope is collected and held by INAARA Credence Private Limited or trusted third parties, such as cloud hosting providers, engaged to store data on our behalf.

We take reasonable steps to protect your personal information from misuse, interference, corruption, loss, or unauthorized access, modification, or disclosure, using physical, electronic, and procedural safeguards. We use cloud storage providers compliant with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Mental Healthcare Act, 2017.

To the extent permitted by law, we exclude liability for any misuse, interference, corruption, loss, or unauthorized access, modification, or disclosure of your personal information.

Keep any passwords or security devices confidential and notify us immediately of any breach to prevent unauthorized disclosure.

We comply with Indian laws, including the Mental Healthcare Act, 2017, for reporting privacy breaches if we become aware of any involving your personal information.

11. Disclosure of Personal Information Offshore

Some third parties to whom we disclose personal information may be located outside India. Our cloud storage providers, websites, and systems may also use servers outside India.

We ensure compliance with the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, for offshore transfers, taking reasonable steps to protect your data.

12. How Long Do We Retain Your Personal Information?

We retain your personal information as long as required for the purposes for which it was collected, considering our need to answer queries, resolve issues, provide improved services, and comply with legal requirements under Indian laws, including the Mental Healthcare Act, 2017.

When no longer required or mandated by law, we destroy, delete, or permanently anonymize it, except for data on off-site servers or electronic backups not readily accessible.

We comply with any minimum or maximum retention periods set by Indian law.

13. Email and Other Electronic Communications

By using the Service and Website, you consent to receiving communications from us or third parties on our behalf via contact details you provided (e.g., email, SMS, phone calls), promoting and marketing our Service.

You can opt out by contacting us (see clause 15) or using the “unsubscribe” facility. We will remove you from marketing lists as soon as reasonably practicable.

14. Your Rights to Access and Correct Personal Information

If your personal information changes or you no longer desire our Services, you may modify or remove it by logging into your Account and updating settings.

You may request confirmation of whether we hold your personal information, request a copy, or ask for corrections by contacting our Privacy Officer (see clause 15). Provide your name, address, and brief details of the information requested to aid our search.

We will provide access unless required or authorized to refuse by Indian law (e.g., if it interferes with others’ privacy, breaches confidentiality, or is not readily retrievable). If refused, we will provide written reasons.

A charge may apply for retrieving and providing your information, and we will advise you of this beforehand.

15. Complaints

We strive to treat your personal information confidentially and in compliance with Indian laws, including the Information Technology Act, 2000, and the Mental Healthcare Act, 2017. For questions or complaints about our handling of your personal information, contact our Privacy Officer:

Privacy OfficerINAARA Credence Private Limited[Address: To be provided by INAARA Credence Private Limited]Email: hello@psychdesk.in

If unsatisfied with our response, you may refer your complaint to the applicable regulator. For personal information under the Information Technology Act, 2000, you may contact the Adjudicating Officer appointed under the Act or escalate to the Cyber Appellate Tribunal. We can provide further information on complaint avenues if requested.


16. Links to Other Websites

Our Website may contain links to third-party sites and plugins not under our control. We are not responsible for their content, privacy practices, or terms of use, and make no endorsements, representations, or warranties about their accuracy or thoroughness. Disclosing personal information to third-party sites or plugins is at your own risk.


17. Changes to This Privacy Policy

We reserve the right to amend this Privacy Policy by posting updates on our Website. We will collect, use, hold, and disclose your personal information per the most recent version. Review this policy regularly when visiting our Website.

If you disagree with any aspect of the updated policy, notify us promptly, and you may be required to cease using our Service and Website.

Definitions