Legal

Privacy Policy

Last updated: June 13, 2026

At GK CRM, we take your privacy seriously. This policy explains what data we collect, how we use it, and how we protect it. By using GK CRM, you agree to the practices described here.

1. Information We Collect

Account Information

When you sign up, we collect your name, email address, phone number, and company name. This information is necessary to create and manage your account.

Business Data

We store the data you enter into GK CRM — leads, customers, invoices, employee records, attendance, and other business information. This data belongs to you and is stored securely.

Usage Data

We collect information about how you use GK CRM, including pages visited, features used, and actions taken. This helps us improve the product.

Payment Information

Payments are processed by Razorpay. We do not store your card details. We only receive payment confirmation and transaction IDs.

2. How We Use Your Information

Service Delivery

To provide, maintain, and improve GK CRM services.

Communication

To send you important account notifications, updates, and support messages.

Billing

To process payments and manage subscriptions.

Analytics

To understand usage patterns and improve our product features.

Legal Compliance

To comply with applicable laws and regulations in India.

3. Data Security

Row-Level Security

We use Supabase with Row Level Security (RLS). Your company's data is completely isolated — other companies cannot access your data under any circumstances.

Encryption

All data is encrypted in transit using HTTPS/TLS. Sensitive data is encrypted at rest in our database.

Access Controls

Role-based access ensures that employees only see data they are authorized to view. Admin controls allow you to manage permissions.

4. Data Sharing

We Do Not Sell Your Data

We never sell, rent, or trade your personal information or business data to third parties for marketing purposes.

Service Providers

We share data only with trusted service providers who help us operate GK CRM — including Supabase (database), Razorpay (payments), and Vercel (hosting). These providers are bound by strict data protection agreements.

Legal Requirements

We may disclose data if required by Indian law, court order, or government authority.

5. Data Retention

Active Accounts

We retain your data for as long as your account is active or as needed to provide services.

Account Deletion

When you delete your account, we permanently delete all associated data within 30 days, except where retention is required by law.

6. Your Rights

Access

You can access and export all your data from within GK CRM at any time.

Correction

You can update or correct your personal information from account settings.

Deletion

You can request deletion of your account and all associated data.

Portability

You can export your data in standard formats (CSV, JSON) at any time.

7. Cookies

Essential Cookies

We use cookies only for essential functions — authentication sessions and security. We do not use advertising or tracking cookies.

8. Children's Privacy

Age Restriction

GK CRM is intended for business use and is not directed at children under 18 years of age. We do not knowingly collect data from minors.

9. Changes to This Policy

Updates

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notification. Continued use of GK CRM after changes constitutes acceptance of the updated policy.

10. Contact Us

Privacy Questions

For any privacy-related questions or requests, contact us at: privacy@gkcrm.in or +91 98765 43210. We are based in Hyderabad, Telangana, India.