What personal information does Medha Cloud collect?

We collect contact information (name, email, phone), account information (username, billing details), service data (usage, configurations), and technical data (IP address, browser type). Customer data you upload remains your property.

How does Medha Cloud protect my data?

We implement industry-standard security including TLS/SSL encryption in transit, AES-256 encryption at rest, multi-factor authentication, role-based access controls, and SOC 2/ISO 27001 certified data centers with 24/7 monitoring.

Is Medha Cloud GDPR compliant?

Yes, we comply with GDPR and India's Digital Personal Data Protection Act, 2023. We use Standard Contractual Clauses for international transfers and provide you with rights to access, correct, delete, and port your data.

How long does Medha Cloud retain my data?

Active account data is retained while your account is active. After account closure, data is retained for 90 days. Financial records are retained for 7 years per India Income Tax Act. Anonymized logs are kept for 12 months.

Does Medha Cloud sell personal information?

No, we do not sell your personal information. We only share data with trusted service providers under strict confidentiality agreements, when required by law, or with your explicit consent.

Privacy Policy

Last Updated: January 15, 2025

Medhacloud is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data.

Medhacloud Solutions Private Limited ("Medhacloud," "we," "our," or "us") operates cloud hosting, managed services, and IT consulting services. This Privacy Policy applies to all data collected through our website, services, and customer interactions.

1. Information We Collect

1.1 Personal Information

We collect personal information that you provide directly to us, including:

•Contact Information: Name, email address, phone number, company name, job title
•Account Information: Username, password, billing address, payment information
•Service Data: Information about your use of our services, support tickets, service configurations
•Communication Data: Records of your communications with us (emails, chat, phone calls)

1.2 Automatically Collected Information

When you access our services, we automatically collect:

•Technical Data: IP address, browser type, operating system, device information
•Usage Data: Pages visited, time spent, clicks, referral sources, access times
•Service Logs: Server logs, error reports, performance metrics, security events
•Cookies: Session cookies, preference cookies, analytics cookies

1.3 Customer Data

Important: Data you upload, store, or process using our services ("Customer Data") remains your property. We act as a data processor and only access Customer Data as necessary to provide services, prevent security incidents, or comply with legal obligations.

2. How We Use Your Information

We use collected information for the following purposes:

✓Service Delivery: Provision, maintain, and improve our cloud hosting and managed services
✓Account Management: Create and manage your account, process payments, send invoices
✓Customer Support: Respond to inquiries, troubleshoot issues, provide technical assistance
✓Security & Fraud Prevention: Detect, prevent, and investigate security threats, fraud, or unauthorized access
✓Communications: Send service notifications, security alerts, billing updates, and marketing communications (with consent)
✓Analytics & Improvement: Analyze usage patterns to improve our services, develop new features
✓Legal Compliance: Comply with applicable laws, regulations, legal processes, or enforceable governmental requests

3. Data Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Service Providers

We engage trusted third-party service providers (cloud infrastructure providers, payment processors, analytics services) who process data on our behalf under strict confidentiality agreements.

3.2 Legal Requirements

We may disclose information if required by law, court order, government investigation, or to protect our rights, property, or safety, or that of others.

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections.

3.4 With Your Consent

We may share your information with third parties when you explicitly consent to such sharing.

4. Data Security

We implement industry-standard security measures to protect your information:

🔒Encryption: Data in transit (TLS/SSL) and at rest (AES-256)
🔒Access Controls: Role-based access, multi-factor authentication, least privilege principle
🔒Infrastructure Security: Firewalls, intrusion detection, DDoS protection, regular security audits
🔒Data Centers: SOC 2, ISO 27001 certified facilities with 24/7 monitoring
🔒Employee Training: Regular security awareness training and background checks

Disclaimer: While we implement robust security measures, no system is 100% secure. You are responsible for maintaining the security of your account credentials and notifying us immediately of any unauthorized access.

5. Data Retention

We retain your information for as long as necessary to provide services and comply with legal obligations:

• Active Accounts: Data retained while account is active
• Closed Accounts: Data retained for 90 days after account closure (backups may persist longer)
• Legal Requirements: Financial records retained for 7 years (India Income Tax Act)
• Logs & Analytics: Anonymized logs retained for 12 months for security and performance analysis

6. Your Rights

Under applicable data protection laws, you have the following rights:

✓

Access:

Request a copy of your personal information

✓

Correction:

Update or correct inaccurate information

✓

Deletion:

Request deletion of your personal information (subject to legal retention requirements)

✓

Portability:

Receive your data in a structured, machine-readable format

✓

Opt-Out:

Unsubscribe from marketing communications

To exercise these rights, contact us at privacy@medhacloud.com or call +91 93536 44646

7. International Data Transfers

Medhacloud operates data centers in India and partners with global cloud providers (AWS, Azure, Google Cloud). Your data may be transferred to, stored, or processed in locations outside India. When transferring data internationally, we ensure:

• Compliance with Indian data protection laws (Digital Personal Data Protection Act, 2023)
• Standard Contractual Clauses (SCCs) with international partners
• Adequate safeguards equivalent to those provided under Indian law
• Customer choice of data residency (India, USA, EU, Singapore, etc.)

8. Cookies & Tracking Technologies

We use cookies and similar tracking technologies:

Essential Cookies:

Required for authentication, security, and core functionality

Performance Cookies:

Analytics and usage statistics (Google Analytics, Mixpanel)

Functional Cookies:

Remember preferences and settings

Marketing Cookies:

Track conversions and ad performance (with your consent)

You can manage cookie preferences through your browser settings. Disabling cookies may affect service functionality.

9. Children's Privacy

Our services are intended for businesses and individuals aged 18 and older. We do not knowingly collect personal information from children under 18. If you believe we have collected information from a child, please contact us immediately at privacy@medhacloud.com.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending email notifications to registered users
• Displaying a prominent notice in your account dashboard

Your continued use of our services after policy changes constitutes acceptance of the updated terms.

Contact Us

Questions about privacy? We're here to help.

India Headquarters (Governing Jurisdiction)

Medhacloud Solutions Private Limited
Bengaluru, Karnataka, India
Email: privacy@medhacloud.com
Phone: +91 93536 44646

USA Office

Medhacloud Inc.
United States
Email: usa@medhacloud.com
Phone: Available upon request

Data Protection Officer: For data protection inquiries, email dpo@medhacloud.com

Governing Law: This Privacy Policy is governed by the laws of India. Jurisdiction: Courts of Bengaluru, Karnataka, India.