Privacy Policy

2.1 Personal Information: • Name, email address, phone number • Company name and job title • Account credentials (securely encrypted) 2.2 IoT & Device Data: • Device identifiers (IMEI, serial number, MAC address) • GPS location, speed, routes • Sensor data (temperature, humidity, fuel, voltage, CAN data) • Device logs, diagnostics, timestamps 2.3 DriverPro Mobile Application: • Location Information: The application collects the user's device location at the time of attendance marking to verify physical presence at designated plant or work locations. Location data is collected only when required for attendance verification and operational purposes. • Camera and Photo Information: The application uses the device camera to capture selfie photographs during attendance marking. Photographs are stored and associated with attendance records for verification, audit, and compliance purposes. • Device Information: We may collect limited device-related information such as: Device model, Operating system version, Application version, Device identifiers required for application security and troubleshooting Collected information is used for: • Employee authentication and login • Attendance verification • Location-based attendance validation • Selfie-based attendance verification • Vehicle request submission and approval workflows • Operational monitoring and reporting • Technical support and troubleshooting 2.4 Technical & Usage Data: • IP address, browser type, OS • Application usage logs • Cookies and tracking identifiers 2.5 Customer Support Data: • Emails, calls, tickets, and troubleshooting records

We process data to: • Provide and maintain our Services • Monitor device health and analytics • Deliver dashboards, alerts, and reports • Improve product features • Ensure security and fraud prevention • Comply with legal obligations

• Contractual necessity • Legitimate business interests • User consent

We do not sell personal data. We may share data with: • Cloud providers • Analytics and monitoring providers • Government authorities if legally required All partners are bound by confidentiality and data protection obligations.

• Data is retained only as long as necessary for business or legal purposes. • Upon termination, data may be deleted or anonymized unless retention is legally required.

• Encryption in transit and at rest • Role-based access control • Secure APIs and firewalls • Regular audits and monitoring

We use cookies for: • Authentication • Performance analytics • User experience improvement You may manage cookies via browser settings.

GDPR Rights (EU Users): • Access, rectification, erasure • Restriction and objection • Data portability • Withdraw consent India (IT Act): • Right to review, correct, or withdraw consent for SPDI CCPA (California): • Right to know • Right to delete • Right to opt-out of sale (we do not sell data) • Non-discrimination Requests: privacy@headmanlabs.com

IoT devices may collect data automatically without direct UI interaction. Customers deploying devices are responsible for informing end users and obtaining lawful consent.

Data may be processed outside India or the EU. Appropriate safeguards are implemented.

Our Services are not intended for children under 13.

We may update this policy periodically. Updates will be posted on this page.