Effective Date: 26th August 2025\nLast Updated: 26th August 2025\n\nTable of Contents\n1. Scope and Applicability\n2. Definitions\n3. Information We Collect\n4. How We Collect Personal Data\n5. How We Use Your Personal Data\n6. Legal Grounds for Processing (Lawful Bases)\n7. Purposes for Processing Personal Data\n8. User-Generated Content & Intellectual Property Rights\n9. Sharing and Disclosure of Personal Data\n10. Cross Border Data Transfers\n11. Data Retention and Deletion\n12. Data Security Measures\n13. Your Rights and Choices\n14. Consent Management & Preferences\n15. Grievance Redressal & Data Protection Officer\n16. Children's Privacy\n17. Third Party Websites and Services\n18. Policy Updates and Notification Procedure\n19. Governing Law & Dispute Resolution\n20. Security Incidents and Breach Notification\n21. Contact Us\n22. Annex A – List of Core Sub Processors and Service Providers\n\n1. Scope and Applicability\nThis Privacy Policy ("Policy") describes how Fractal Vision LLP ("we", "us", or "our") collects, uses, shares, and safeguards personal data when you ("user", "you", or "your") interact with the CrewCaller India mobile application, web platform, and related services (collectively, the "Platform" or "Services").\nThe Platform is intended only for users who are at least 18 years of age. We do not knowingly collect or process personal data from minors. If you are under 18, you must not access or use the Platform.\nThis Policy is published in compliance with the provisions of the Information Technology Act, 2000, the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and is further aligned with the principles of the Digital Personal Data Protection Act, 2023, as applicable in the Republic of India.\nFurthermore, while the Digital Personal Data Protection Act, 2023 ("DPDP Act") has been enacted by the Government of India, its enforcement is subject to the notification of subordinate rules and official implementation timelines. In anticipation of its commencement, we have proactively aligned the core principles of this Policy with the standards set out under the DPDP Act, to ensure transparency, accountability, and a user-centric approach to the processing of personal data.\nThis Policy applies exclusively to data principals who are residents of India and to personal data collected, processed, or stored within the territory of India. In the event that the Platform is accessed from outside India, such access shall be deemed voluntary, and the user acknowledges and agrees that their personal data shall be governed solely in accordance with Indian law and this Policy.\nAny dispute arising out of or in connection with this Policy or your use of the Platform shall be resolved in accordance with Indian law and by the competent courts in India.\nBy accessing or using the Platform, you expressly consent to the collection, processing, and retention of your personal data in accordance with this Policy and applicable Indian law. If you do not agree with the terms of this Policy, you must immediately discontinue use of the Platform.\n\n2. Definitions\nApplicable Law: Refers to all statutes, regulations, rules, notifications, and other legal instruments in force in the Republic of India, including but not limited to the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021, and the Digital Personal Data Protection Act, 2023 (to the extent notified and enforced).\nPersonal Data: Any data about an individual who is identifiable by or in relation to such data, whether directly or indirectly.\nSensitive Personal Data or Information (SPDI): Includes passwords, financial information (such as bank account or credit card details), health information, biometric data, sexual orientation, and any other information categorized as 'sensitive' under the applicable rules framed under the Information Technology Act, 2000.\nAnonymized Data: Any data that has been processed in such a manner that it no longer identifies or relates to any individual and cannot be re-identified using reasonable means.\nProcessing: Any operation or set of operations performed on Personal Data, whether by automated means or otherwise, including but not limited to collection, recording, organization, structuring, storage, alteration, retrieval, use, disclosure by transmission, dissemination, alignment, combination, restriction, erasure, or destruction.\nEligibility & Age Restriction: CrewCaller India is intended only for users who are at least 18 years old. By registering, accessing, or using the Platform, you represent and warrant that you are 18 years of age or older. We do not knowingly collect or process personal data from anyone under 18 years of age. If you are under 18, you must not attempt to register, access, or use the Platform.\nData Fiduciary: An entity or individual who determines the purpose and means of Processing Personal Data. For the purposes of this Policy, this refers to Fractal Vision LLP.\nData Principal: The individual to whom the Personal Data relates. In the context of this Policy, 'you' or 'user' refers to the Data Principal.\nData Processor / Service Provider / Sub-Processor: Any person, organization, or third-party vendor who Processes Personal Data on behalf of the Data Fiduciary.\nConsent: A freely given, specific, informed, and unambiguous indication of the Data Principal's agreement to the Processing of their Personal Data, by a clear affirmative action. Silence or pre-ticked boxes shall not constitute valid consent.\nThird Party: Any person or entity other than the Data Principal, the Data Fiduciary, or a Data Processor authorized to Process Personal Data on behalf of the Data Fiduciary.\nUser Generated Content (UGC): Any content submitted, uploaded, posted, or otherwise made available by a user on the Platform, including but not limited to images, videos, bios, comments, messages, or portfolio material.\nChild / Minor: An individual who has not completed eighteen (18) years of age in accordance with the provisions of the Digital Personal Data Protection Act, 2023. Children/minors are not permitted to register for or use the Platform.\nGrievance Officer: The person designated by Fractal Vision LLP to address complaints and redress grievances related to the collection or Processing of Personal Data.\nPlatform: Refers collectively to the CrewCaller India mobile application, website, and all related digital properties, interfaces, and services offered by Fractal Vision LLP.\n\n3. Information We Collect\nWe collect the following categories of Personal Data when you access or use CrewCaller India:\n1. Identity Data: Full name, user name, profile photograph, date of birth, government ID (where required for verification).\n2. Contact Data: Email address, mobile number, postal address.\n3. Professional Data: Job title, employer or business name, industry, skills, education, certifications, professional links.\n4. User Generated Content (UGC) & Media Data: Photos, videos, audio clips, captions, comments, hashtags, and image metadata (e.g., EXIF, geotags) that you choose to upload. This may require access to your device's camera, microphone, and media storage, based on your permission.\n5. Usage & Log Data: In-app interactions, session duration, clicks, search queries, likes, follows, connection requests, referral source, and general analytics data.\n6. Location Data: Precise GPS location (if you grant permission) or approximate location inferred from your IP address or network.\n7. Marketing & Communications Data: Your preferences regarding push notifications, newsletters, product updates, in-app promotions, and feedback surveys.\n8. Authentication Data: If you use social logins (e.g., Google Sign-In), we may access your basic profile information as authorized by you.\n9. Support or Correspondence Data: Information you provide when contacting support, reporting issues, or submitting feedback, including messages, screenshots, or contact details.\n10. Inferred or Profile Data: Insights generated from your activity on the Platform, such as usage preferences, suggested matches, or recommended profiles.\n11. Data from Minors: Crew Caller India is an age-restricted platform for users 18 years and above. We do not knowingly collect, use, or process any personal data from individuals under 18 years of age. If such data is inadvertently collected, it will be deleted promptly upon discovery or notification.\n\nWhile we primarily store and process your personal data in India, certain technical operations may require limited transfer of your data outside India, as described in our "Cross-Border Data Transfers" section of this Privacy Policy. All such transfers are conducted in compliance with Indian law and with appropriate safeguards.\nWe do not intentionally collect Sensitive Personal Data (such as health data, biometric data, or passwords) unless explicitly required for a specific service and consented to (e.g., your profile photo containing facial features). Any such collection will be done transparently and in accordance with Applicable Law.\n\n4. How We Collect Personal Data\nWe collect Personal Data using the following methods:\n1. Direct from You: When you register an account, complete your profile, upload content (e.g., photos, videos), submit job applications, contact customer support, or participate in feedback forms or surveys.\n2. Automated Technologies: When you use the Platform, we may automatically collect certain information via cookies, SDKs, pixel tags, crash analytics, device fingerprinting, and log files to improve functionality and ensure security.\n3. Device Permissions: Subject to your consent, we may request access to your device's camera, microphone, media files, location services, or contacts — for example, to upload a profile video, geotag a job post, or connect with known professionals.\n4. Third-Party Integrations: We may receive limited information when you choose to sign in via third-party login providers (e.g., Google & Email) We may also collect publicly available professional data from external sources (e.g., company websites, portfolios) or verification databases (e.g., government registries). Additionally, third-party analytics, ad platforms, or crash-reporting tools may collect technical data on our behalf.\n5. Other Users: Your data may be shared by other users — for instance, if they tag you in content, refer you to a job, or invite you to join the Platform.\n6. Public Sources and Verification Databases: We may collect Personal Data from publicly accessible and lawful sources such as public professional profiles, company websites, government registries, social media platforms, online directories, or press mentions. This may be done to enrich user profiles, validate identity or credentials, or ensure the accuracy of job- or project-related information.\n7. Users under 18 Prohibited: CrewCaller India does not knowingly seek or obtain personal information from users under 18 years of age. We do not process personal data from anyone identified as under 18; any such data will be permanently removed as soon as we become aware of it. If you believe that a minor has registered for the Platform or provided personal information in violation of this policy, please contact us immediately at Connect@crewcallerindia.in so we can investigate and delete such data.\n\nWe ensure that all data is collected in accordance with Applicable Law and only for the purposes disclosed in this Policy. Wherever consent is required, we obtain it explicitly at the point of collection.\n\n5. How We Use Your Personal Data\nWe use the Personal Data we collect for the following purposes, in compliance with applicable laws and aligned with the principles of necessity, transparency, and purpose limitation:\n5.1. Applicability to Adult Users: The uses described in this section apply only to users who are 18 years of age or older. CrewCaller India does not knowingly process personal data from minors; any such data will be deleted upon discovery.\n5.2. Account Creation and Profile Management: To register and authenticate your account, allow profile setup and editing, verify your identity (where required), and manage account-related settings and preferences.\n5.3. Professional Networking and Discoverability: To enable interactions between users such as connection requests, profile viewing, messaging, following, job discovery, or being discovered by potential collaborators or recruiters on the Platform.\n5.4. User-Generated Content (UGC) Publication: To host, display, and share the content you upload — such as photos, videos, bios, reels, or other creative work — with other users or publicly, based on your profile visibility settings.\n5.5. Communications and Notifications: To send essential communications such as OTPs, account alerts, updates on job activity, feature changes, and customer service responses via email, SMS, or in-app messaging.\n5.6. Marketing and Promotional Messaging: To send optional promotional communications, newsletters, feature updates, events, and survey invitations, subject to your communication preferences and applicable consent.\n5.7. Platform Personalization and Recommendations: To tailor your experience by suggesting relevant jobs, professionals, content, or opportunities based on your profile data, activity history, and preferences.\n5.8. Analytics, Diagnostics, and App Improvement: To monitor usage patterns, analyze trends, resolve bugs or crashes, conduct diagnostics, and improve the performance, layout, and usability of the Platform.\n5.9. Security and Fraud Prevention: To detect and prevent fraudulent or unauthorized activity, abusive behaviour, policy violations, or misuse of the Platform, and to ensure overall security and integrity.\n5.10. Verification and Accuracy Checks: To validate professional information, credentials, or identity, where applicable, using publicly available sources such as professional profiles, company websites, or government registries.\n5.11. Grievance Handling and Legal Compliance: To address user complaints, enforce platform policies, respond to lawful requests or legal obligations, and comply with applicable data protection and intermediary laws in India.\n5.12. Lawful Basis for Processing: Our processing of Personal Data is based on one or more of the following legal grounds: • Your explicit consent, where required; • The performance of a contract with you (e.g., to provide access to the Platform); • Our legitimate interests, provided such processing does not override your fundamental rights; • Compliance with legal obligations under applicable Indian law. • Legitimate interests include preventing fraud, securing our network, improving our services, and promoting a safe, professional community for all users.\n5.13. Customer Support and Feedback Management: To respond to your inquiries, troubleshoot issues, resolve disputes, and process feedback or suggestions submitted by you.\n5.14. Product Development (Internal Use): We may use anonymized or aggregated data internally to analyze usage trends, develop new features, or improve existing Platform functionality. This data cannot be used to identify you individually.\n5.15. Anonymized and Aggregated Use for Product Development: We may use de-identified, aggregated data internally to analyze usage patterns, evaluate user behaviour, test new features, or improve our services. This data does not identify you personally.\n5.16. Push Notifications: To send you real-time push notifications related to your account activity, job status, messages, or other user interactions, in accordance with your device and in-app notification settings.\n\n6. Legal Grounds for Processing (Lawful Bases)\nWe process your Personal Data under the following legal bases, in accordance with the Digital Personal Data Protection Act, 2023 ("DPDP Act"):\n6.1. Consent: Where required, we obtain your freely given, specific, informed, and unambiguous consent through clear affirmative actions (e.g., tapping "Agree" or enabling permissions). You may withdraw your consent at any time, without affecting the lawfulness of processing carried out before such withdrawal.\n6.2. Legitimate Use: We may process Personal Data without explicit consent if it is necessary for: Providing or improving the core functionality of the CrewCaller India Platform; Ensuring information security, fraud prevention, or user safety; Compliance with any legal or regulatory requirement or to enforce our Terms of Use; Performing functions related to the public interest or legal claims, where permitted.\n6.3. Legal Obligation: When required by applicable laws, rules, court orders, or regulatory directives, we may process or disclose your Personal Data accordingly.\n6.4. Employment-Related Purpose: Where applicable, we may process data of our internal employees, interns, or contractors solely for human resource, administration, or contractual purposes.\n\n7. Purposes for Processing Personal Data\nWe process your Personal Data in a manner that is lawful, fair, and transparent, and only for the purposes that are specified below. Each purpose is tied to a corresponding lawful basis under the Digital Personal Data Protection Act, 2023 (DPDP Act) and other applicable Indian laws and standards.\n[See original mobile policy for tabular layout; wording preserved across sections above and below.]\n\n8. User Generated Content & Intellectual Property Rights\n(Sections 8.1 through 8.8 preserved verbatim from the provided policy including ownership, license, visibility, responsibilities, takedown, anonymized use, user obligations, and grievance redressal details.)\n\n9. Sharing and Disclosure of Personal Data\n(Sections 9.1 through 9.9 preserved verbatim covering processors, transfers, legal requests, consent-based sharing, affiliates, cross-border safeguards, internal access, emergency disclosures, and no sale of data.)\n\n10. Cross-Border Data Transfers\n(Sections 10.1 through 10.3 and additional bullets preserved verbatim, describing adequacy, contractual safeguards, explicit consent, technical measures, and future restrictions compliance.)\n\n11. Data Retention and Deletion\n(Standard retention periods table and sections 11.1 to 11.5 preserved verbatim, including account deletion process, backups and residual data, anonymised data handling, and legal bases.)\n\n12. Data Security Measures\n(Sections 12.1 Technical, 12.2 Organizational, 12.3 Localization, and 12.4 Compliance frameworks preserved verbatim.)\n\n13. Your Rights and Choices\n(Sections 13.1 through 13.4 preserved verbatim with rights list, exercise methods, timelines, and exceptions.)\n\n14. Consent Management & Preferences\n(Sections 14.1 through 14.5 preserved verbatim on collection, dashboard, logging, exceptions, and consequences.)\n\n15. Grievance Redressal & Data Protection Officer\n(Sections 15.1 through 15.5 preserved verbatim including officer details, DPO conditions, appeal rights, nomination rights, and minors' data handling.)\n\n16. Children's Privacy\n(Sections 16.1 through 16.5 preserved verbatim including prohibitions, corrective steps, exceptions with parental consent, safeguards, and contact details.)\n\n17. Third Party Websites and Services\n(Sections 17.1 and 17.2 preserved verbatim including important notes and exclusion of liability.)\n\n18. Policy Updates and Notification Procedure\n(Sections 18.1 through 18.6 preserved verbatim including right to revise, material changes notices, user acceptance, retroactive changes, record of revisions, and grievance.)\n\n19. Governing Law & Dispute Resolution\n(Sections 19.1 through 19.5 preserved verbatim including jurisdiction, informal resolution, arbitration, class action waiver, injunctive relief.)\n\n20. Security Incidents and Breach Notification\n(Text preserved verbatim including 72-hour notification commitment and CERT-In guidance.)\n\n21. Contact Us\n(Organisation details and service hours preserved verbatim.)\n\n22. Annex A – List of Core Sub-Processors and Service Providers\n(Providers list preserved verbatim with categories, vendors, locations, and purposes.)\n\nThis Privacy Policy was last updated on ${new Date().toLocaleDateString("en-IN")}
This Privacy Policy was last updated on 26th August 2025