COMPLIANCE CERTIFIED

Privacy Policy

GDPR CompliantEUIT Act 2000 CompliantIndiaCCPA CompliantCaliforniaSPDI Rules 2011India

Effective Date:

01-Jan-2023

Last Updated:

26-Dec-2025

Headman Labs Pvt Ltd ("we", "our", or "us") respects your privacy and is committed to protecting personal data. This Privacy Policy explains how we collect, use, disclose, store, and safeguard information when you access our website, software platforms, mobile applications, cloud services, and IoT/telematics solutions (collectively, the "Services").

Contact Information

Email:privacy@headmanlabs.com

Website:https://headmanlabs.com

1. Company Information

Legal Name

Headman Labs Pvt Ltd

Website

https://headmanlabs.com

Registered Office

B-513/A, THE LANDMARK, Gandhinagar, Gujarat, India, 382421

privacy@headmanlabs.com

Jurisdiction

Courts of Gandhinagar, Gujarat, India

2. Information We Collect

2.1 Personal Information: • Name, email address, phone number • Company name and job title • Account credentials (securely encrypted) 2.2 IoT & Device Data: • Device identifiers (IMEI, serial number, MAC address) • GPS location, speed, routes • Sensor data (temperature, humidity, fuel, voltage, CAN data) • Device logs, diagnostics, timestamps 2.3 Technical & Usage Data: • IP address, browser type, OS • Application usage logs • Cookies and tracking identifiers 2.4 Customer Support Data: • Emails, calls, tickets, and troubleshooting records

3. Purpose of Data Processing

We process data to: • Provide and maintain our Services • Monitor device health and analytics • Deliver dashboards, alerts, and reports • Improve product features • Ensure security and fraud prevention • Comply with legal obligations

4. Legal Basis for Processing (GDPR)

• Contractual necessity • Legitimate business interests • User consent

5. Data Sharing & Disclosure

We do not sell personal data. We may share data with: • Cloud providers • Analytics and monitoring providers • Government authorities if legally required All partners are bound by confidentiality and data protection obligations.

6. Data Retention

• Data is retained only as long as necessary for business or legal purposes. • Upon termination, data may be deleted or anonymized unless retention is legally required.

7. Security Measures

• Encryption in transit and at rest • Role-based access control • Secure APIs and firewalls • Regular audits and monitoring

8. Cookies Policy

We use cookies for: • Authentication • Performance analytics • User experience improvement You may manage cookies via browser settings.

9. User Rights

GDPR Rights (EU Users): • Access, rectification, erasure • Restriction and objection • Data portability • Withdraw consent India (IT Act): • Right to review, correct, or withdraw consent for SPDI CCPA (California): • Right to know • Right to delete • Right to opt-out of sale (we do not sell data) • Non-discrimination Requests: privacy@headmanlabs.com

10. IoT-Specific Disclosure

IoT devices may collect data automatically without direct UI interaction. Customers deploying devices are responsible for informing end users and obtaining lawful consent.

11. International Data Transfers

Data may be processed outside India or the EU. Appropriate safeguards are implemented.

12. Children's Privacy

Our Services are not intended for children under 13.

13. Policy Updates

We may update this policy periodically. Updates will be posted on this page.