policy Legal Document

Privacy Policy & Industrial Integrity

Bharat Enterprises is committed to safeguarding the data of every industrial partner, supplier, and customer we serve. This policy outlines how we collect, use, and protect your information.

Last Updated: May 19, 2025  •  Effective: May 19, 2025

01

Information Collection

We collect only the data necessary to facilitate industrial transactions, logistics, and regulatory compliance under applicable Indian law.

receipt_long

Transactional Metadata

Order references, invoice data, buyer/seller identifiers, material categories, quantities, and payment confirmation records.

local_shipping

Logistics Tracking

Pickup/delivery addresses, vehicle registration data, driver identifiers, and timestamped GPS waypoints for compliance auditing.

sensors

Automated Telemetry

Device identifiers, IP addresses, browser fingerprints, and session tokens collected via server logs and analytics infrastructure.

02

Data Usage

info

6.0% Transparency Commitment

We share no more than 6% of anonymised aggregate market data with verified industry partners for research purposes. No personal identifiers are included.

storefront

Marketplace Optimization

Transaction data is used to improve pricing accuracy, material matching algorithms, and inventory forecasting for our industrial marketplace.

verified_user

Identity Verification

KYC data including GSTIN, PAN, and business registration details are verified against government databases to prevent fraud and ensure GST compliance.

account_balance

Regulatory Compliance

We retain transaction records for a minimum of 7 years as required under the GST Act, 2017 and the Companies Act, 2013.

03

Data Security

We implement enterprise-grade security measures to protect all personal and transactional data against unauthorised access, disclosure, or misuse.

lock

AES-256 Encryption

All data at rest is encrypted using AES-256. Data in transit is protected by TLS 1.3. Payment information is tokenised and never stored on our servers.

data_center

Tier-4 Data Centre

Our infrastructure is hosted in ISO 27001-certified Tier-4 data centres with 99.995% uptime SLA, biometric access control, and redundant power systems.

shield_with_heart

Access Control

Role-based access control (RBAC) ensures only authorised personnel can access sensitive data. All access is logged and audited quarterly.

manage_search

Breach Response

In the event of a data breach, affected parties will be notified within 72 hours as per CERT-In guidelines and applicable Indian data protection law.

04

Contact & Questions

For any privacy-related queries, data access requests, or complaints, please contact our Data Protection Officer.

mail
schedule

Response Time

Within 30 days

gavel

Jurisdiction

Republic of India

contact_support Contact Our Team