1. Introduction

At Tryzent Technologies Private Limited ("Tryzent", "we", "us", or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, store, and safeguard your information when you use our AI agents marketplace platform ("Platform") available at https://agents.tryzent.com and related services.

This Privacy Policy applies to all users of our Platform and should be read in conjunction with our Terms and Conditions.

1.1 Our Commitment

We are committed to:

• Transparency in our data practices
• Protecting your personal information with appropriate security measures
• Respecting your privacy rights and choices
• Complying with applicable data protection laws, including the Digital Personal Data Protection Act (DPDP), 2023
• Processing your data fairly and lawfully

1.2 Consent

By accessing or using our Platform, you acknowledge that you have read, understood, and agree to the collection, use, and disclosure of your information as described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our Platform.

2. Information We Collect

We collect various types of information to provide, maintain, and improve our services. The information we collect falls into the following categories:

2.1 Personal Information You Provide

Account Information: When you create an account, we collect:

• Full name
• Email address
• Phone number (if provided)
• Password (encrypted and hashed)
• Account creation date
• Profile information and preferences

Payment and Billing Information: When you purchase credits, we collect and store:

• Razorpay transaction ID
• Payment status and timestamp
• Invoice details (billing name, address, GST number if provided)
• Purchase history and credits transaction records

Note: We do not store your complete credit card numbers, debit card numbers, CVV codes, or banking passwords. All sensitive payment data is securely processed and stored by our payment gateway provider, Razorpay, in compliance with PCI DSS standards.

Communication Information: When you contact us, we collect:

• Email correspondence and support tickets
• Customer service chat logs
• Feedback and survey responses
• Any information you choose to provide in communications

2.2 Usage and Interaction Data

AI Agent Interaction Data: When you use AI agents on our Platform, we collect and store:

• Conversation histories (your inputs and AI agent outputs)
• AI agent responses and generated content
• Timestamps of interactions
• Which AI agents you access and use
• Frequency and duration of agent usage
• Credit consumption patterns

Platform Usage Data: We automatically collect information about how you use our Platform:

• Pages and features accessed
• Time spent on different sections
• Click patterns and navigation paths
• Search queries within the Platform
• Feature usage statistics
• Session duration and frequency

2.3 Technical and Device Information

We automatically collect technical information, including:

• IP address and geolocation data (city/country level)
• Device type, model, and operating system
• Browser type, version, and language settings
• Screen resolution and device identifiers
• Referral URLs and exit pages
• Date and time of access
• Network and connection information

2.4 Cookies and Tracking Technologies

We may use cookies and similar tracking technologies to enhance your experience. Currently, we use:

Essential Cookies:

• Session management and authentication
• Security and fraud prevention
• Platform functionality

Analytics Cookies:

We use Google Analytics to understand how users interact with our Platform. Google Analytics collects information such as:

• Pages visited and time spent
• User flow and behavior patterns
• Traffic sources and demographics
• Device and browser information

You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

Future Use of Cookies:

We may introduce additional cookies for analytics, personalization, or marketing purposes in the future. We will update this Privacy Policy and notify users before implementing such changes.

Cookie Control:

You can control and manage cookies through your browser settings. However, disabling certain cookies may affect the functionality of our Platform.

2.5 Information from Third Parties

We may receive information about you from third-party services:

• Authentication providers (if you use social login in the future)
• Payment gateway (Razorpay) regarding transaction status
• Analytics providers
• Public databases and information sources

3. How We Use Your Information

We use the collected information for the following legitimate purposes:

3.1 Service Provision and Management

• Create, maintain, and manage your user account
• Process credit purchases and manage your credit balance
• Enable access to AI agents and marketplace features
• Deliver AI agent responses and services
• Store conversation histories for your reference
• Generate and send invoices and transaction confirmations

3.2 Platform Improvement and Development

• Analyze usage patterns to improve user experience
• Develop new features and functionality
• Optimize AI agent performance and accuracy
• Conduct internal research and analytics
• Test and troubleshoot technical issues
• Improve Platform security and performance

Note: We may use aggregated and anonymized conversation data to improve our Platform, but we do not share individual user conversations or personal data with third parties for this purpose.

3.3 Communication

• Send transactional emails (account creation, password reset, purchase confirmation)
• Provide customer support and respond to inquiries
• Send important service updates and security notifications
• Notify you of changes to our Terms or Privacy Policy
• Send promotional and marketing communications (with your consent, if implemented in the future)

3.4 Security and Compliance

• Detect, prevent, and address fraud, abuse, and security issues
• Verify user identity and prevent unauthorized access
• Enforce our Terms and Conditions
• Comply with legal obligations and regulatory requirements
• Protect our rights, property, and safety, and that of our users
• Respond to legal requests and prevent illegal activities

3.5 Analytics and Business Operations

• Understand user demographics and preferences
• Monitor Platform performance and uptime
• Generate business reports and analytics
• Manage billing and accounting operations
• Conduct market research and competitive analysis

4. Information Sharing and Disclosure

We respect your privacy and do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:

4.1 Third-Party Service Providers

We share information with trusted third-party service providers who assist in operating our Platform and providing services. These providers are contractually obligated to protect your data and use it only for the purposes we specify.

Payment Processing:

• Razorpay: Processes payments securely. Subject to Razorpay's Privacy Policy
• We share necessary billing information for transaction processing

AI Service Providers:

• OpenAI: Provides AI language models for certain agents. Subject to OpenAI's Privacy Policy
• Perplexity AI: Provides AI research and search capabilities. Subject to Perplexity's Privacy Policy
• Future AI Providers: We may integrate additional AI providers as we expand our marketplace
• User prompts and conversations are shared with these providers only through their standard API usage as necessary to generate responses
• We use standard API terms and do not engage in separate data sharing arrangements

Infrastructure and Hosting:

• Amazon Web Services (AWS): Hosts our Platform and stores data in Indian data centers (Mumbai and other Indian regions)
• Subject to AWS Privacy Policy

Analytics:

• Google Analytics: Analyzes Platform usage and user behavior
• Subject to Google Privacy Policy

4.2 Legal Requirements and Protection

We may disclose your information when required or permitted by law:

• To comply with legal processes, court orders, or government requests
• To enforce our Terms and Conditions and other agreements
• To protect against legal liability or potential fraud
• To investigate and prevent security threats, illegal activities, or violations of our policies
• To protect the rights, property, and safety of Tryzent, our users, or the public
• In connection with a merger, acquisition, bankruptcy, or sale of assets (with notice to affected users)

4.3 With Your Consent

We may share your information with third parties when you explicitly consent to such sharing, such as:

• When you authorize integration with third-party applications
• When you participate in co-branded offerings or partnerships
• When you explicitly request us to share information

4.4 Aggregated and Anonymized Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you, for purposes such as:

• Industry research and reports
• Platform performance benchmarks
• Marketing and business development
• Public communications about our services

5. Data Storage, Security, and Retention

5.1 Data Storage Location

Your data is stored on secure servers provided by Amazon Web Services (AWS) located in Indian data centers (Mumbai region and other Indian availability zones). This ensures:

• Compliance with Indian data localization requirements
• Faster access and better performance for Indian users
• Data sovereignty and regulatory compliance

5.2 Security Measures

We implement industry-standard technical and organizational security measures to protect your information:

Technical Security:

• Encryption of data in transit using TLS/SSL protocols
• Encryption of sensitive data at rest
• Secure authentication mechanisms and password hashing
• Regular security audits and vulnerability assessments
• Firewall protection and intrusion detection systems
• Secure API communications with third-party services
• Regular security patches and updates

Organizational Security:

• Access controls with role-based permissions
• Employee training on data protection and security best practices
• Confidentiality agreements with all personnel
• Regular security policy reviews and updates
• Incident response and disaster recovery procedures
• Backup and redundancy systems

Payment Security:

• PCI DSS compliant payment processing through Razorpay
• No storage of complete card numbers or CVV codes on our servers
• Tokenization of payment information

5.3 Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Account Data:

• Retained for the duration of your active account
• After account deletion request, personal data is deleted within 2-4 weeks
• Some data may be retained for legal, accounting, or security purposes

Transaction Records:

• Invoice and payment data retained for 7 years for tax and accounting compliance
• Transaction IDs and purchase history retained for fraud prevention and financial auditing

Conversation Data:

• Conversation histories retained while your account is active
• Deleted upon account deletion request within 2-4 weeks
• Anonymized data may be retained for platform improvement

Technical Logs:

• Security and access logs retained for 90 days for security monitoring
• Aggregated analytics data retained indefinitely in anonymized form

Legal Retention:

Certain data may be retained longer when required by:

• Tax laws and regulations (typically 7 years)
• Legal proceedings or investigations
• Contractual obligations
• Legitimate business purposes (fraud prevention, dispute resolution)

5.4 Data Deletion

Upon account deletion or data deletion request:

• Personal identifiable information is permanently deleted within 2-4 weeks
• Anonymized or aggregated data may be retained for analytics
• Backup systems are purged during regular backup cycles (typically within 90 days)
• Some information may be retained if required by law or for legitimate business purposes

6. Your Rights and Choices

Under applicable data protection laws, including the Digital Personal Data Protection Act (DPDP), 2023, you have certain rights regarding your personal information:

6.1 Right to Access

You have the right to request access to the personal information we hold about you. You can:

• View your account information in your account dashboard
• Request a copy of your data by contacting us at contact@tryzent.com

6.2 Right to Correction

You have the right to request correction of inaccurate or incomplete personal information. You can:

• Update your account information directly in your account settings
• Request corrections by contacting us at contact@tryzent.com

6.3 Right to Deletion (Right to be Forgotten)

You have the right to request deletion of your personal information, subject to legal and contractual obligations. To request deletion:

• Contact us at contact@tryzent.com with your account details
• We will process your request within 2-4 weeks
• Some data may be retained as required by law

6.4 Right to Data Portability

You have the right to request your data in a structured, commonly used, and machine-readable format. Contact us at contact@tryzent.com to request data export.

6.5 Right to Withdraw Consent

Where we process your data based on consent, you have the right to withdraw that consent at any time. However, this will not affect the lawfulness of processing based on consent before withdrawal.

6.6 Right to Object

You have the right to object to certain types of processing, including:

• Processing for marketing purposes
• Processing based on legitimate interests

6.7 Right to Restrict Processing

You have the right to request restriction of processing in certain circumstances, such as when you contest the accuracy of data.

6.8 Right to Nomination

Under DPDP Act 2023, you have the right to nominate another individual who may exercise your rights in the event of your death or incapacity.

6.9 Right to Grievance Redressal

You have the right to file complaints regarding data processing:

• Contact our Grievance Officer at contact@tryzent.com
• We will acknowledge your complaint within 72 hours
• We will resolve complaints within a reasonable timeframe (typically within 30 days)

6.10 How to Exercise Your Rights

To exercise any of these rights:

1. Send an email to contact@tryzent.com with the subject line "Data Rights Request"
2. Include your registered email address and specific request
3. We may request additional information to verify your identity
4. We will respond to your request within the timeframe required by applicable law (typically 2-4 weeks)

Important Note:

• Some requests may affect your ability to use our Platform
• We may refuse requests that are manifestly unfounded, excessive, or would compromise others' privacy
• Certain data may be retained as required by law even after deletion requests

7. AI and Machine Learning

7.1 AI Processing

Our Platform uses artificial intelligence and machine learning technologies to provide AI agent services. Here's how we handle AI-related data:

Data Used for AI Services:

• Your prompts and queries are sent to AI service providers (OpenAI, Perplexity AI) to generate responses
• Conversation context may be sent to maintain coherent multi-turn conversations
• AI providers process this data according to their respective privacy policies and API terms

Data Used for Platform Improvement:

• We may analyze aggregated and anonymized conversation data to improve AI agent performance
• We do not use your personal conversations to train third-party AI models without appropriate safeguards
• Individual user conversations are not shared with third parties for training purposes

Data Protection in AI Processing:

• We implement privacy-preserving techniques when analyzing data
• Personal identifiers are removed before data analysis for platform improvement
• We comply with AI provider terms regarding data usage and retention

7.2 User Control Over AI Data

You maintain control over your AI interaction data:

• You can view your conversation history in your account
• You can request deletion of your conversation data
• You can choose to opt out of data usage for platform improvement by contacting us

7.3 AI Limitations and Accuracy

Please note:

• AI-generated content may contain inaccuracies or errors
• We do not guarantee the accuracy, completeness, or reliability of AI outputs
• You should verify AI-generated information before relying on it
• AI agents may exhibit biases present in training data

8. International Data Transfers

8.1 Primary Data Location

Your data is primarily stored and processed in India on AWS servers located in Indian regions (Mumbai and other Indian availability zones).

8.2 Third-Party Service Transfers

Some of our third-party service providers may be located outside India, including:

• OpenAI (United States)
• Perplexity AI (United States)
• Google Analytics (United States)

When we transfer data internationally, we ensure appropriate safeguards are in place:

• Standard Contractual Clauses (SCCs) approved by regulatory authorities
• Adequacy decisions where applicable
• Compliance with service provider privacy policies and security standards
• Contractual commitments to protect your data

8.3 Legal Basis for Transfers

International transfers are conducted based on:

• Your consent to use our Platform
• Necessity for contract performance (providing AI agent services)
• Legitimate interests in operating and improving our Platform
• Compliance with legal obligations

9. Children's Privacy

9.1 Age Restriction

Our Platform is not intended for, and we do not knowingly collect personal information from, individuals under the age of 18 years. By using our Platform, you represent that you are at least 18 years old.

9.2 Parental Notice

If you are a parent or guardian and believe that your child under 18 has provided us with personal information without your consent, please contact us immediately at contact@tryzent.com.

9.3 Immediate Action

If we become aware that we have collected personal information from anyone under 18 years of age without verified parental consent, we will:

• Immediately suspend the account
• Delete the information as soon as reasonably possible
• Take steps to prevent future unauthorized access

10. Marketing and Communications

10.1 Transactional Communications

We send essential transactional emails that are necessary for Platform operation:

• Account creation and verification emails
• Password reset and security notifications
• Credit purchase confirmations and invoices
• Service updates and security alerts
• Important changes to Terms or Privacy Policy

You cannot opt out of transactional emails as they are necessary for the Platform's functionality and your account security.

10.2 Marketing Communications (Future)

We do not currently send marketing emails, newsletters, or promotional content. If we introduce marketing communications in the future:

• We will obtain your explicit consent before sending marketing emails
• You will have the option to opt out of marketing communications
• Opt-out links will be provided in every marketing email
• Your opt-out preferences will be honored promptly (within 10 business days)

10.3 Communication Preferences

You can manage certain communication preferences:

• Update your email preferences in account settings
• Contact us at contact@tryzent.com to update preferences
• Unsubscribe from marketing emails (when implemented) using provided links

11. Third-Party Links and Services

11.1 External Links

Our Platform may contain links to third-party websites, services, or applications that are not operated by us. This Privacy Policy does not apply to third-party services.

We are not responsible for:

• Privacy practices of third-party websites
• Content or functionality of external links
• Data collection by third-party services

11.2 Third-Party Integrations

If you use third-party integrations or services through our Platform:

• Your use is governed by the third party's privacy policy and terms
• We are not responsible for third-party data practices
• We recommend reviewing third-party privacy policies before use

11.3 AI Service Provider Policies

When using AI agents, your data is processed by third-party AI providers. Review their privacy policies:

• OpenAI Privacy Policy
• Perplexity Privacy Policy
• Razorpay Privacy Policy
• Google Privacy Policy

12. Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets:

• Your information may be transferred as part of that transaction
• We will provide notice before your information is transferred and becomes subject to a different privacy policy
• You will have the opportunity to delete your account before the transfer
• The acquiring entity will be required to honor this Privacy Policy or obtain your consent for changes

13. Updates to Privacy Policy

13.1 Right to Modify

We reserve the right to update or modify this Privacy Policy at any time to reflect changes in:

• Our data practices
• Legal or regulatory requirements
• Platform features and functionality
• Business operations

13.2 Notification of Changes

We will notify you of material changes to this Privacy Policy through:

• Email notification to your registered email address (for significant changes)
• Prominent notice on our Platform
• In-app notifications (when applicable)
• Update to the "Last updated" date at the top of this policy

13.3 Effective Date

Changes become effective:

• Immediately for minor clarifications or non-material changes
• 30 days after notification for material changes
• As specified in the notification for significant changes affecting your rights

13.4 Acceptance

Your continued use of the Platform after changes become effective constitutes your acceptance of the revised Privacy Policy. If you do not agree with the changes:

• You may discontinue use of the Platform
• You may request account deletion before changes take effect
• You may exercise your data rights as outlined in Section 6

13.5 Review Responsibility

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

14. Compliance and Regulatory Information

14.1 DPDP Act 2023 Compliance

We are committed to complying with the Digital Personal Data Protection Act (DPDP), 2023, and related rules and regulations as they come into effect. We will:

• Implement required technical and organizational measures
• Appoint a Data Protection Officer if required
• Register with the Data Protection Board if applicable
• Conduct Data Protection Impact Assessments where necessary
• Update our practices to align with final regulations

14.2 Lawful Basis for Processing

We process your personal data based on the following lawful grounds:

• Consent: For certain optional data processing activities
• Contract Performance: To provide services you've requested
• Legal Obligation: To comply with applicable laws and regulations
• Legitimate Interests: For platform improvement, security, and business operations

14.3 Data Protection Officer

For data protection queries, you may contact:

• Email: contact@tryzent.com
• Subject Line: "Data Protection Query"

We will designate a formal Data Protection Officer as required by applicable regulations.

15. Contact Information and Grievance Redressal

15.1 General Inquiries

If you have any questions, concerns, or comments about this Privacy Policy or our data practices, please contact us:

15.2 Grievance Officer

For grievances related to data processing, privacy concerns, or to exercise your data rights:

Grievance Response Timeline:

• Acknowledgment: Within 72 hours of receiving your complaint
• Resolution: Within 30 days of acknowledgment
• We will keep you informed of the progress of your grievance

15.3 Escalation

If you are not satisfied with our response to your privacy concerns, you have the right to:

• Lodge a complaint with the Data Protection Board of India (once established under DPDP Act 2023)
• Seek legal remedies as provided under applicable laws
• Contact consumer protection authorities

15.4 Information Required for Requests

When contacting us regarding privacy matters, please provide:

• Your full name and registered email address
• Description of your request or concern
• Any relevant reference numbers or transaction IDs
• Preferred method and language for response

We may request additional information to verify your identity before processing certain requests.

16. Definitions

For the purposes of this Privacy Policy:

• "Personal Information" or "Personal Data" means any information relating to an identified or identifiable individual
• "Processing" means any operation performed on personal data, including collection, storage, use, disclosure, or deletion
• "User", "You", or "Your" refers to the individual accessing or using the Platform
• "Platform" refers to the Tryzent AI Agents Marketplace available at https://agents.tryzent.com
• "Services" refers to all features, functionality, and services provided through the Platform
• "Third Party" refers to any entity other than Tryzent and the User
• "Cookies" refers to small data files stored on your device

17. Severability

If any provision of this Privacy Policy is found to be unenforceable or invalid by a court of competent jurisdiction, such provision shall be limited or eliminated to the minimum extent necessary, and the remaining provisions shall remain in full force and effect.

18. Language

This Privacy Policy is executed in English. Any translation provided is for convenience only. In case of any conflict between the English version and a translated version, the English version shall prevail.