Privacy Policy

Dream Hives Pvt Ltd · Last updated: May 2026

This Privacy Policy describes how Dream Hives Pvt Ltd ("helDit", "we", "us") collects, uses, and protects information when you use our website at heldit.in and our revenue recovery services (collectively, the "Service").

By using helDit, you agree to the collection and use of information as described in this policy.

1. Information We Collect

Information you provide directly:

• Business name, city, and Google Maps link when you run a QuickScan
• Email address and WhatsApp number when you subscribe
• Business services, pricing, and hours you provide during onboarding
• Payment information processed securely through Razorpay — we do not store card details

Information collected automatically:

• Your business's publicly available Google Maps listing data (name, rating, review count, photos, hours)
• WhatsApp messages sent to and from your business number, processed to generate AI replies
• Missed call logs from your Exotel virtual number
• Customer feedback submitted via helDit QR codes
• Website usage data via Google Analytics (pages visited, time on site, device type)

2. How We Use Your Information

• To provide the helDit Service — answering customer enquiries, recovering missed calls, managing reviews, sending re-engagement messages
• To generate your QuickScan revenue leak report
• To process your subscription payment via Razorpay
• To send you service emails — activation confirmation, invoices, onboarding instructions
• To improve our AI response quality and service performance
• To comply with legal obligations under Indian law

We do not use your data for advertising. We do not sell your data to third parties. We do not share your data with anyone except the service providers listed below who are necessary to deliver the Service.

3. Third-Party Services We Use

• Meta (WhatsApp Cloud API) — processes WhatsApp messages sent to and from your business number
• Anthropic (Claude AI) — generates AI replies to customer messages based on your business data
• Exotel — handles missed call detection and routing for your virtual number
• Razorpay — processes subscription payments securely
• Supabase — stores your business data and conversation logs on encrypted servers
• Google — Maps and Places API for business data lookup; Analytics for website usage
• Brevo — sends transactional emails (invoices, activation, onboarding)
• Fast2SMS — sends SMS fallback messages when WhatsApp is unavailable
• Vercel — hosts the helDit application

Each of these providers has their own privacy policy and data processing terms.

4. Customer Data (Your Customers' Information)

When your customers message your business through helDit, their phone numbers and messages are processed to generate AI replies on your behalf. This data is:

• Used solely to provide the helDit Service to your business
• Never sold or shared with other businesses
• Retained for service quality and analytics purposes
• Accessible to you as the business owner through your helDit account

As the business owner, you are responsible for ensuring your customers are aware that their messages may be handled by an automated system.

5. Data Storage and Security

Your data is stored on Supabase servers in the Asia-South region (Mumbai). We use industry-standard encryption for data in transit (HTTPS/TLS) and at rest. Access to your data is restricted to authorised Dream Hives personnel and the service providers listed above.

While we take reasonable security measures, no system is 100% secure. If you become aware of any security issue, please contact us immediately at help@heldit.in.

6. Data Retention

• Active subscriber data is retained for the duration of your subscription
• After cancellation, your data is retained for 90 days, then deleted
• Invoice records are retained for 7 years as required by Indian tax law (GST compliance)
• QuickScan results from non-subscribers are retained for 30 days, then deleted

7. Your Rights

You have the right to:

• Access the personal data we hold about you and your business
• Request correction of inaccurate data
• Request deletion of your data (subject to legal retention requirements)
• Opt out of non-essential communications
• Port your data to another service

To exercise any of these rights, email us at help@heldit.in with the subject line "Data Request".

8. Cookies

heldit.in uses Google Analytics cookies to understand website usage. These cookies do not identify you personally. You can disable cookies in your browser settings. We do not use advertising cookies or tracking pixels.

9. WhatsApp Messaging Compliance

helDit operates on Meta's WhatsApp Cloud API. All messages sent through helDit comply with WhatsApp's Business Policy and Commerce Policy. Customers can opt out of automated messages at any time by replying STOP. We honour all opt-out requests within 24 hours.

10. Children's Privacy

helDit is a business tool intended for adults. We do not knowingly collect data from anyone under the age of 18.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by email to active subscribers. Continued use of the Service after changes constitutes acceptance of the updated policy.

12. Governing Law

This Privacy Policy is governed by the laws of India, including the Information Technology Act 2000 and applicable rules thereunder. Any disputes will be subject to the jurisdiction of courts in Dibrugarh, Assam.