This Privacy Policy explains how Saasspot Technologies Pvt. Ltd. (“we,” “us,” “our,” or “Amplispot”) collects, uses, stores, and protects the personal data of individuals (“Data Principals” or “you”) who use our website (www.amplispot.com) and mobile application (collectively, the “Application”).
This policy is drafted in compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act) and the DPDP Rules, 2025, as applicable, along with the Information Technology Act, 2000 and its associated rules, which remain in force during the phased implementation of the DPDP Act.
This document can be printed for reference using the print command in the settings of any browser.
1. Data Fiduciary (Owner and Data Controller)
Name: Saasspot Technologies Pvt. Ltd.
Address: 800 A, Vindhya Commercial Complex, CBD Belapur, Opposite SBI Bank, Plot No. 1, Navi Mumbai 400614, Maharashtra, India
Contact Email:
Grievance Officer: You may contact our designated Grievance Officer at for any concerns regarding the processing of your personal data or to exercise your rights under applicable law.
2. Personal Data We Collect
We collect the following categories of personal data:
Identity Data: First name, last name
Contact Data: Email address
Usage Data: IP addresses, browser type, operating system, pages visited, time spent on pages, referring URLs, device information, and other diagnostic data collected automatically when you use the Application
Mobile Application-Specific Data:
Photos: If you choose to personalize content within the mobile application, you may grant access to your device photos. You control which photos are shared and can revoke access at any time through your device settings.
Contact List: If you use our email marketing features, you may grant access to your device contact list to select recipients for campaigns. This access is subject to your explicit consent and can be managed through your device privacy settings.
Unless stated otherwise, all data requested by the Application is mandatory. Failure to provide mandatory data may prevent us from delivering our services. Where certain data is marked optional, you may choose not to provide it without affecting service availability.
3. Purpose of Processing
We process your personal data for the following specific purposes:
To provide, maintain, and improve the Application and its services
To manage your account and provide customer support
To enable platform services, hosting, and access to third-party accounts (such as Facebook)
To facilitate email marketing campaigns using your contact list (with your consent)
To personalize content and user experience
To analyze usage patterns and improve our services through aggregated insights
To comply with legal obligations and respond to lawful requests from authorities
To protect our rights, interests, and property, and to detect fraudulent or malicious activity
4. Legal Basis for Processing
Under the DPDP Act, 2023, we process your personal data on the following legal grounds:
Consent: Where you have given free, specific, informed, and unambiguous consent for one or more specific purposes. You may withdraw consent at any time by contacting us at .
Legitimate Uses (Section 7, DPDP Act): Where you have voluntarily provided your personal data for a specified purpose and have not indicated that you do not consent; for compliance with any law or court order; or for responding to medical emergencies.
Contractual Necessity: Where processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.
5. Cookies and Tracking Technologies
The Application uses cookies and similar tracking technologies to enhance your experience. The types of cookies we use include:
Essential Cookies: Required for the Application to function properly (e.g., session management, authentication).
Analytics Cookies: Help us understand how users interact with the Application so we can improve it.
Marketing Cookies: Used to deliver relevant advertisements and track campaign performance.
You can manage cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of the Application.
6. Third-Party Service Providers
We may share your personal data with the following categories of third-party service providers who assist us in operating the Application:
Hosting and Infrastructure: Cloud hosting providers for storing and serving the Application
Analytics: Services that help us analyze usage patterns and improve performance
Communication: Email delivery and notification services
These third parties are contractually bound to process your data only for the purposes specified by us and in accordance with applicable data protection laws. An updated list of specific service providers may be requested by contacting us at .
7. Facebook Permissions
The Application may request the following permissions when connecting with your Facebook account (provided by Meta Platforms, Inc.):
Basic Information: User ID, name, profile picture, gender, and locale
Business Management API: Read and write access for business management
Email Access: Access to your contact email and primary email address
Insights: Read access to analytics data for pages, applications, and domains you own, used to help design better content for your online presence
Page Management: Ability to retrieve access tokens for pages and applications you administer
Publish as Page: Ability to post, comment, and like as any of the pages you manage
For more information about these permissions, refer to the Facebook permissions documentation and Meta’s privacy policy.
8. Data Storage and Security
Your personal data is processed at our operating offices and at the locations of our third-party service providers. We implement appropriate technical and organizational security measures to prevent unauthorized access, disclosure, modification, or destruction of your data, including:
Encryption of personal data in transit and at rest
Access controls and regular reviews of access logs
Regular data backups to ensure continuity of processing
Contractual obligations on third-party processors to safeguard your data
9. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected. Specifically:
Account Data: Retained for the duration of your account and for up to 90 days after account deletion, unless a longer retention period is required by law.
Contractual Data: Retained until the contract between you and us has been fully performed, plus any period required for legal compliance.
Usage and Analytics Data: Retained for up to 24 months from the date of collection, after which it is anonymized or deleted.
Legal Obligation Data: Retained as long as required under applicable law or court order.
Once the retention period expires, personal data is securely deleted or anonymized. After deletion, the rights of access, erasure, rectification, and data portability can no longer be enforced.
10. Data Transfers
Depending on the location of our service providers, your data may be transferred to and processed in countries outside India. We ensure that any such transfers comply with the provisions of the DPDP Act, 2023, and that your data is not transferred to any country restricted by notification of the Central Government. We take reasonable steps to ensure that your personal data remains protected in accordance with this Privacy Policy.
11. Your Rights
Under the DPDP Act, 2023, you have the following rights as a Data Principal:
Right to Access: You have the right to obtain a summary of the personal data being processed and the processing activities undertaken.
Right to Correction and Erasure: You have the right to request correction of inaccurate or misleading personal data, completion of incomplete data, updating of outdated data, and erasure of personal data that is no longer necessary for the purpose for which it was collected.
Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time. Withdrawal of consent will not affect the lawfulness of processing carried out before the withdrawal.
Right to Grievance Redressal: You have the right to a readily available means of grievance redressal regarding any action or inaction of the Data Fiduciary regarding your personal data.
Right to Nominate: You have the right to nominate an individual who may exercise your rights in the event of your death or incapacity.
To exercise any of these rights, please contact us at . We will respond to your request free of charge and within a reasonable timeframe, not exceeding one month.
12. Your Duties
Under the DPDP Act, 2023, Data Principals also have certain duties:
You must not provide false or misleading personal data or suppress material information when providing consent.
You must not file frivolous or false complaints with the Data Protection Board of India.
You are responsible for any third-party personal data you share through the Application and must confirm that you have the third party’s consent to provide their data to us.
13. Data Breach Notification
In the event of a personal data breach that affects your data, we will:
Notify the Data Protection Board of India as required under the DPDP Act, 2023 and applicable rules.
Notify affected Data Principals of the breach, describing the nature of the breach, the personal data affected, and the measures taken or proposed to be taken to address the breach.
Take immediate steps to contain the breach, mitigate any potential harm, and prevent recurrence.
14. “Do Not Track” Requests
This Application does not currently support “Do Not Track” browser signals. To determine whether any third-party services used by the Application honor such requests, please refer to their respective privacy policies.
15. Legal Action and Disclosure
Your personal data may be used for legal purposes in court or in the stages leading to possible legal action arising from improper use of the Application or related services. You acknowledge that we may be required to disclose personal data upon lawful request of public authorities or pursuant to a court order.
16. System Logs and Maintenance
For operation and maintenance purposes, the Application and any third-party services may collect system logs that record interactions with the Application, including IP addresses and other diagnostic data.
17. Changes to This Privacy Policy
We reserve the right to update this Privacy Policy at any time. We will notify users of any material changes by posting the updated policy on this page and, where feasible, by sending a notice via email or through the Application. We encourage you to review this page periodically.
If changes affect processing activities based on your consent, we will obtain fresh consent from you as required under applicable law.
18. Contact Us
For any questions about this Privacy Policy, to exercise your rights, or to raise a grievance, please contact us:
Saasspot Technologies Pvt. Ltd.
800 A, Vindhya Commercial Complex, CBD Belapur
Opposite SBI Bank, Plot No. 1
Navi Mumbai 400614, Maharashtra, India
Email:
19. Definitions and Legal References
Personal Data: Any data about an individual who is identifiable by or in relation to such data.
Digital Personal Data: Personal data in digital form.
Data Principal: The individual to whom the personal data relates.
Data Fiduciary: Any person, company, or entity that alone or jointly determines the purpose and means of processing personal data.
Data Processor: Any person or entity that processes personal data on behalf of the Data Fiduciary.
Usage Data: Information collected automatically through the Application, including IP addresses, browser characteristics, pages visited, time spent, and device information.
Application: The website (www.amplispot.com) and mobile application operated by Saasspot Technologies Pvt. Ltd.
Service: The services provided by the Application as described in the applicable terms of service.
Applicable Laws:
Digital Personal Data Protection Act, 2023 (DPDP Act)
Digital Personal Data Protection Rules, 2025 (DPDP Rules)
Information Technology Act, 2000 and associated rules (during phased transition)
This privacy policy relates solely to the Application, unless stated otherwise within this document.
