Data Protection Notice

Privacy Policy & Notice

Drafted in compliance with the Digital Personal Data Protection (DPDP) Act, 2023 of India.

Last Updated: June 17, 2026

1. Introduction

Welcome to Cessmatic ("we", "us", or "our"), an online business platform operated as a business unit of Hoog Software Private Limited. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy outlines how we collect, process, use, store, and safeguard your digital personal data in accordance with the Digital Personal Data Protection (DPDP) Act, 2023 of India.

By using our website, submitting callback requests, or purchasing our services, you (the "Data Principal") explicitly consent to the processing of your personal data as described in this policy.

2. Consent & Data Processing Notice

Under the DPDP Act 2023, your consent is the primary basis for processing your data. We ensure that your consent is:

  • Free: You are under no obligation to provide your data.
  • Specific: We only collect data required for the specific services you choose.
  • Informed: This policy informs you of the nature, scope, and purpose of processing.
  • Unconditional: Consent is not bundled with unrelated services.
  • Ambiguous-free: Indicated by your clear affirmative action (e.g., ticking consent boxes, submitting forms).

You have the right to withdraw your consent at any time. Withdrawal of consent will not affect the lawfulness of processing done prior to the withdrawal.

3. Personal Data We Collect

We only collect personal data that you voluntarily provide to us when using our platform. This includes:

Data Category Specific Items Collected Purpose of Collection
Identity Information Full Name, Director ID (DIN), PAN card details, Aadhaar number. For registering companies, filing GST/ITR, and complying with MCA requirements.
Contact Information Email address, phone number, registered office address. For communication, callback enquiries, and updates on compliance status.
Business & Financial Details Business name, GSTIN, bank statements, transaction details. To perform corporate audits, monthly filings, and wallet transaction logs.
Document Uploads Scanned PDFs, JPG images, ZIP archives of identity and address proofs. Shared securely with assigned employees to submit applications to government portals.

4. How We Use and Process Your Data

Your personal data is processed solely for the following specified, lawful purposes:

  1. To contact you and provide consultations based on your callback requests.
  2. To incorporate companies, register trademarks, file tax returns, and apply for government licenses on your behalf.
  3. To manage your secure prepaid wallet balance, process refunds, and maintain transaction logs.
  4. To enable assigned employees to communicate with you and manage your compliance files securely.

We do not sell, rent, or trade your personal data to any third-party marketing companies.

5. Rights of the Data Principal

Under the DPDP Act 2023, you possess the following rights regarding your personal data:

  • Right to Access: You can request a summary of the personal data we hold about you and the processing activities performed on it.
  • Right to Correction & Completion: You can request the correction of inaccurate data or completion of incomplete personal data.
  • Right to Erasure (Right to be Forgotten): You can request the deletion of your personal data when it is no longer necessary for the purpose it was collected, subject to statutory retention guidelines.
  • Right to Grievance Redressal: You have the right to register a grievance with us regarding data processing, and escalate it to the Data Protection Board of India if unresolved.

6. Data Retention & Erasure

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy or to comply with statutory legal requirements (such as auditing and tax records). Once the purpose is achieved, or upon a valid erasure request, we securely delete or anonymize your personal data from our active systems and local JSON/SQL databases.

7. Security Measures

We implement stringent technical and organizational security measures to protect your data, including:

  • 256-bit SSL encryption for all data transmissions.
  • Restricted employee access control (only authorized, assigned employees can view your documents).
  • Regular database audits and secure hosting environments.

8. Grievance Redressal & Contact

If you have any questions, wish to withdraw your consent, exercise your rights, or file a complaint regarding your personal data, please contact our designated Data Protection Officer (DPO):

Attention: Data Protection Officer (Grievance Officer)
Company: Hoog Software Private Limited
Email: support@cessmatic.in
Address: Plot No. 9 & 10, Second Floor, C-1 Block, Rama Park, Uttam Nagar, New Delhi - 110059 (Near Dwarka Mor Metro Station)
CIN: U74999DL2019PTC348331
Response Time: We will address your grievances within 7 working days.