complifile
Sign up free →

Privacy Policy

Last updated: March 2026 · Applies to all Complifile users

1. What We Collect

DataWhy We Collect It
Name, email, phoneAccount creation & communication
GSTIN, entity type, company nameAuto-generate compliance calendar
Documents you uploadSecure vault storage & CA review
Payment info (via Razorpay)Subscription billing — we never store card details
Usage data & logsPlatform improvement & security

2. How We Use Your Data

  • To provide and improve the Complifile service
  • To send compliance deadline reminders (email and WhatsApp, if enabled)
  • To allow your linked CA to access your compliance data
  • To process payments for paid subscriptions
  • To respond to support queries
  • To comply with legal obligations under Indian law

3. Who We Share Data With

We do not sell your data. We share it only with:

  • Your CA — only if you have explicitly linked them on the Platform
  • Razorpay — for payment processing (governed by Razorpay's Privacy Policy)
  • WhatsApp Business API — to send reminders, only if you opt in
  • Supabase — our database and storage provider (data stored in India)
  • Law enforcement — only if required by a valid legal order

4. Data Storage & Security

  • All data is stored on servers located in India
  • Documents are encrypted at rest using AES-256 and in transit using TLS 1.3
  • Access to your data within our team is restricted on a need-to-know basis
  • We perform regular security reviews and vulnerability assessments

5. Your Rights

Under applicable Indian law, you have the right to:

  • Access — request a copy of all data we hold about you
  • Correction — ask us to correct inaccurate data
  • Deletion — request deletion of your account and data (within 30 days)
  • Portability — receive your data in a machine-readable format
  • Opt-out — unsubscribe from marketing emails at any time

To exercise any of these rights, email support@complifile.in.

6. Cookies

Complifile uses only essential cookies necessary for authentication and session management. We do not use advertising or tracking cookies.

7. Data Retention

We retain your data for as long as your account is active. If you delete your account, all personal data will be removed within 30 days, except where retention is required by law (e.g., financial records under the Companies Act or GST rules).

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or in-app notice at least 14 days before they take effect.

9. Contact

Complifile — Privacy Team

Email: support@complifile.in