Privacy Policy

Stepin ("we", "us", or "our") respects your privacy and is committed to protecting your personal data.

This Privacy Policy explains how we collect, use, process, store, and safeguard personal data when you use:

• www.stepin.live
• Mobile applications
• Related services

(collectively, the "Platform").
By using Stepin, you consent to the practices described in this Policy.

1. OUR ROLE

Under the Digital Personal Data Protection Act, 2023:

• Stepin acts as a Data Fiduciary.
• Users are Data Principals.

2. USERS COVERED

This Policy applies strictly to users operating within India:

• Property Owners / Managers
• Tenants / Occupants
• Guest Users

3. PERSONAL DATA WE COLLECT

a) Identity Information

• Name
• Phone number
• Email address
• Date of Birth (DOB)
• Profile photo

b) Property & Occupancy Data

• Residency status
• Property association
• Property photos
• Move-in / move-out status
• Issue reports

c) Communication Data

• Messages exchanged on platform
• Support inquiries

d) Documents (Optional)

Users may upload rental agreements and address proof. Stored only with user consent.

e) Technical Data

• IP address
• Device type
• Usage activity
• Location signals (approximate)
• Contacts access (used solely for tenant invitations; contact lists are not stored on our servers)

f) Analytics

We use Firebase Analytics for anonymous app usage tracking to improve our services. No personal data is shared with advertisers.

4. PURPOSE OF DATA PROCESSING

We process personal data for:

• Account creation
• Tenant-owner coordination
• Occupancy management
• Issue resolution
• Push notifications (used for payment reminders, invites, and issue updates)
• Platform safety
• Regulatory compliance

Future purposes may include: Rental payments, Fraud prevention, and Trust & verification systems.

5. LEGAL BASIS FOR PROCESSING

We process data based on:

• User consent
• Platform necessity
• Legal obligations

By creating an account, uploading documents, or using platform services, you provide explicit consent. You may withdraw consent anytime.

6. DATA SHARING

We do not sell personal data.

We may share limited data:

• Between Owners and Tenants
• With infrastructure providers
• With compliance authorities

7. DOCUMENT STORAGE

Uploaded documents are voluntary, securely stored, and used only for platform functionality.
Stepin does not verify authenticity unless stated. Deletion requests may be made.

8. DATA RETENTION

We retain data only during your active account lifecycle or as required by law. Data may be deleted upon account closure or consent withdrawal, subject to regulatory obligations.

9. SECURITY PRACTICES

Stepin follows:

• IT Security Rules 2011
• DPDP Act safeguards

While we implement reasonable protections, no system is completely secure.

10. USER RIGHTS

Under the DPDP Act, users may:

• Access data
• Correct inaccuracies
• Profile Discoverability: Users can control their visibility to owners via phone number search.
• Account deletion: All personal data can be permanently deleted directly from the "Account Details" section within the app.
• Withdraw consent

11. CHILDREN'S DATA

Stepin does not knowingly collect data from individuals below 18 years.

12. THIRD-PARTY SERVICES

Future integrations (e.g., payments) may involve third-party processors. Separate policies may apply.

13. POLICY UPDATES

We may update this Policy periodically. Continued use implies acceptance.

14. CONTACT

For privacy queries, contact us at: hello@stepin.live