Privacy Policy

We collect the following categories of information:

• Account information — your name, email address, and business name when you register. If you sign in with Google, we receive your Google account name and email via OAuth.
• Business credentials — API tokens and access keys for third-party services you connect (Shopify, WhatsApp via Meta, Instagram via Meta). All credentials are stored encrypted at rest using AES-256 encryption.
• Payment information — subscription and payment transactions are processed by Razorpay. We do not store your card number, CVV, or banking details. We only retain your Razorpay order ID, payment status, and the plan/credits purchased.
• Conversation data — customer messages sent to and from your connected channels (WhatsApp, Instagram, email) are processed by AutoCare on your behalf to generate AI responses. This data is associated with your brand account.
• Usage data — standard server logs including IP addresses, browser type, and pages visited, used for platform stability and security.

• To provide and operate the AutoCare platform — routing customer messages, generating AI responses, and delivering them through connected channels.
• To process payments and manage your subscription and credit balance.
• To connect and authenticate third-party services (Shopify, WhatsApp, Instagram) on your behalf using the credentials you provide.
• To send transactional emails such as payment confirmations and service alerts.
• To improve our platform through aggregated, anonymised usage analysis.

We take security seriously and implement the following measures:

• All third-party API credentials are encrypted using AES-256 before storage.
• Data is hosted on Amazon Web Services (AWS) infrastructure with access controls and audit logging.
• Communication between your browser and our servers is encrypted via HTTPS/TLS.
• We restrict internal access to customer data on a need-to-know basis.

No method of transmission over the internet is 100% secure. We cannot guarantee absolute security but are committed to industry-standard protections.

AutoCare integrates with the following third-party services. Each has their own privacy policy:

• Razorpay — payment processing. See razorpay.com/privacy.
• Google — authentication via Google OAuth. See policies.google.com/privacy.
• Shopify — ecommerce platform integration. See shopify.com/legal/privacy.
• Meta (WhatsApp / Instagram) — messaging channel integration. See facebook.com/privacy/policy.
• OpenAI — AI model used to generate customer responses. See openai.com/privacy.

• Account data, settings, and conversation history are retained for the duration of your active subscription.
• Upon account closure or subscription cancellation, data is deleted within 30 days.
• Payment records may be retained for up to 7 years as required by applicable Indian financial regulations.

You may request access to, correction of, or deletion of your personal data at any time by contacting us. We will respond within 30 days.

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a notice on the platform. Continued use of AutoCare after changes constitutes acceptance of the updated policy.

For privacy-related questions or requests, contact us at support@autocare.in.