Your Privacy Matters

Privacy Policy

Our Privacy Promise

• We never sell your data
• We never share with advertisers
• Your conversations are encrypted
• You own and control your data
• We comply with DPDP Act 2023

1. Introduction

MannSetu ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mental health AI platform. We are fully compliant with the Digital Personal Data Protection Act, 2023 (DPDP Act).

2. Information We Collect

2.1 Information You Provide

•Account information (name, email, phone)
•Profile information (age, gender, preferences)
•Conversation data with Mithra AI
•Mood tracking and wellness data
•Voice recordings (if you use voice features)

2.2 Automatically Collected Information

•Device information (type, OS, browser)
•Usage data (features used, session duration)
•Technical data (IP address, cookies)
•Analytics data (anonymized usage patterns)

2.3 Sensitive Personal Data

Under DPDP Act 2023, mental health data is considered sensitive. We collect and process this data only with your explicit consent and for the specific purpose of providing mental wellness support.

3. How We Use Your Information

Primary Purposes

Provide AI-powered mental wellness support
Personalize your experience and recommendations
Track your progress and wellness journey
Improve our AI models and services
Ensure platform security and safety

With Your Consent

Send wellness tips and educational content
Notify you of new features
Research and analytics (anonymized)

4. How We Protect Your Data

Technical Safeguards

• End-to-end encryption (AES-256)
• Secure servers in India (Mumbai, Bangalore)
• Regular security audits and penetration testing
• Multi-factor authentication
• Automated threat detection

Organizational Safeguards

• Strict access controls (need-to-know basis)
• Employee confidentiality agreements
• Regular privacy training
• Data minimization practices
• Incident response protocols

5. Data Sharing and Disclosure

We do NOT sell your data. We may share your data only in these limited circumstances:

With Your Consent

We will ask for your explicit permission before sharing data with third parties.

Service Providers

Trusted partners who help us operate our platform (e.g., cloud hosting, analytics). They are bound by strict confidentiality agreements.

Legal Requirements

When required by Indian law or to protect safety (e.g., credible suicide threat).

Business Transfers

In case of merger/acquisition, your data rights will be preserved.

6. Your Rights Under DPDP Act 2023

You have the following rights over your data:

Right to Access

Request a copy of all your data we hold

Right to Correction

Update or correct your personal information

Right to Erasure

Request deletion of your data (with some legal exceptions)

Right to Data Portability

Export your data in a machine-readable format

Right to Grievance Redressal

File a complaint with our Data Protection Officer

Right to Nominate

Nominate someone to exercise your rights in case of death/incapacity

To exercise these rights, contact us at privacy@mannsetu.com or use the settings in your account.

7. Data Retention

We retain your data only as long as necessary:

• Active account data: Until you delete your account
• Conversation history: 90 days (unless you choose to keep longer)
• Anonymized analytics: Indefinitely (no personal identifiers)
• Legal/compliance data: As required by law (typically 3-7 years)

When you delete your account, we permanently erase your personal data within 30 days, except where we must retain it for legal compliance.

8. Children's Privacy

MannSetu is designed for users 18 years and older. We do not knowingly collect data from children under 18 without verifiable parental consent. If we discover we have collected data from a child under 18 without proper consent, we will delete it immediately.

Parents/guardians can contact us at privacy@mannsetu.com to request deletion of their child's data.

13. Contact Us

For privacy-related questions, concerns, or to exercise your rights:

Data Protection Officer

Email: privacy@mannsetu.com

Address:
MannSetu Ahmedabad, Gujarat India - 380015

We will respond to your requests within 30 days as required by DPDP Act 2023.

12. Changes to Privacy Policy

We may update this policy to reflect changes in our practices or legal requirements. We will notify you of significant changes via:

• Email notification (to registered email)
• In-app notification
• Prominent notice on our website

Continued use of MannSetu after changes constitutes acceptance of the updated policy.

I Understand - Get Started View Terms of Service

Your Privacy Matters

Privacy Policy

Our Privacy Promise

• We never sell your data
• We never share with advertisers
• Your conversations are encrypted
• You own and control your data
• We comply with DPDP Act 2023

1. Introduction

2. Information We Collect

2.1 Information You Provide

•Account information (name, email, phone)
•Profile information (age, gender, preferences)
•Conversation data with Mithra AI
•Mood tracking and wellness data
•Voice recordings (if you use voice features)

2.2 Automatically Collected Information

•Device information (type, OS, browser)
•Usage data (features used, session duration)
•Technical data (IP address, cookies)
•Analytics data (anonymized usage patterns)

2.3 Sensitive Personal Data

Under DPDP Act 2023, mental health data is considered sensitive. We collect and process this data only with your explicit consent and for the specific purpose of providing mental wellness support.

3. How We Use Your Information

Primary Purposes

Provide AI-powered mental wellness support
Personalize your experience and recommendations
Track your progress and wellness journey
Improve our AI models and services
Ensure platform security and safety

With Your Consent

Send wellness tips and educational content
Notify you of new features
Research and analytics (anonymized)

4. How We Protect Your Data

Technical Safeguards

• End-to-end encryption (AES-256)
• Secure servers in India (Mumbai, Bangalore)
• Regular security audits and penetration testing
• Multi-factor authentication
• Automated threat detection

Organizational Safeguards

• Strict access controls (need-to-know basis)
• Employee confidentiality agreements
• Regular privacy training
• Data minimization practices
• Incident response protocols

5. Data Sharing and Disclosure

We do NOT sell your data. We may share your data only in these limited circumstances:

With Your Consent

We will ask for your explicit permission before sharing data with third parties.

Service Providers

Trusted partners who help us operate our platform (e.g., cloud hosting, analytics). They are bound by strict confidentiality agreements.

Legal Requirements

When required by Indian law or to protect safety (e.g., credible suicide threat).

Business Transfers

In case of merger/acquisition, your data rights will be preserved.

6. Your Rights Under DPDP Act 2023

You have the following rights over your data:

Right to Access

Request a copy of all your data we hold

Right to Correction

Update or correct your personal information

Right to Erasure

Request deletion of your data (with some legal exceptions)

Right to Data Portability

Export your data in a machine-readable format

Right to Grievance Redressal

File a complaint with our Data Protection Officer

Right to Nominate

Nominate someone to exercise your rights in case of death/incapacity

To exercise these rights, contact us at privacy@mannsetu.com or use the settings in your account.

7. Data Retention

We retain your data only as long as necessary:

• Active account data: Until you delete your account
• Conversation history: 90 days (unless you choose to keep longer)
• Anonymized analytics: Indefinitely (no personal identifiers)
• Legal/compliance data: As required by law (typically 3-7 years)

When you delete your account, we permanently erase your personal data within 30 days, except where we must retain it for legal compliance.

8. Children's Privacy

Parents/guardians can contact us at privacy@mannsetu.com to request deletion of their child's data.

13. Contact Us

For privacy-related questions, concerns, or to exercise your rights:

Data Protection Officer

Email: privacy@mannsetu.com

Address:
MannSetu Ahmedabad, Gujarat India - 380015

We will respond to your requests within 30 days as required by DPDP Act 2023.

12. Changes to Privacy Policy

We may update this policy to reflect changes in our practices or legal requirements. We will notify you of significant changes via:

• Email notification (to registered email)
• In-app notification
• Prominent notice on our website

Continued use of MannSetu after changes constitutes acceptance of the updated policy.

I Understand - Get Started View Terms of Service