BHARATEMART – PRIVACY POLICY

Effective Date: 11-02-2026
Last Updated: 11-02-2026

This Privacy Policy (“Policy”) explains how Tripta Technologies Private Limited, a company incorporated under the Companies Act, 2013, having its registered office at 1st Floor, 925/1, Faiz Road, Karol Bagh, New Delhi – 110005 ("TTPL," "we," "us," or “our”), collects, uses, stores, shares, and protects information of users ("User," "you," or “your”) who access or use the BharateMart website and mobile application (collectively, the “Platform”).

BharateMart operates a B2B wholesale commercial marketplace enabling business users to discover, transact, and avail services from registered sellers.

Tripta Technologies Private Limited acts as a “data fiduciary" under the Digital Personal Data Protection Act, 2023, in respect of personal data processed through the Platform.

CLICK-WRAP CONSENT

By clicking “I Agree," registering, logging in, or using the Platform, you:

• confirm that you are legally competent to contract;
• consent to the collection, use, storage, and sharing of your information as described in this Policy; and
• agree that this policy forms a legally binding electronic record under the Information Technology Act, 2000.

If you do not agree, please do not use the Platform.

1. SCOPE & APPLICABILITY

This Policy applies to:

• business users, proprietors, partners, directors, and authorised representatives;
• information collected online through the Platform; and
• communications and services linked to the Platform.

Capitalized terms not defined here shall have the meaning assigned to them in the Buyer's Agreement.

2. INFORMATION WE COLLECT

We collect information strictly necessary to operate a secure and compliant B2B marketplace.

A. Information You Provide

• Business & Registration Data:
  Name, business name, address, email, mobile number, GSTIN, PAN, business category, user credentials.
• Account & Transaction Data:
  Billing details, delivery addresses, order records, and payment references (processed via authorized payment gateways).
• Communications:
  Queries, complaints, feedback, call recordings, emails, chats.

B. Information Collected Automatically

• Device & Usage Data:
  IP address, browser type, operating system, device identifiers.
• Log & Activity Data:
  Login timestamps, crash logs, page visits, interaction patterns.
• Cookies & Similar Technologies:
  Used to improve functionality, analytics, and security (see Section 7).

C. Sensitive Personal Data

Where required by law, limited sensitive data (such as bank account references) is processed only through compliant third-party payment service providers. TTPL does not store card details, CVV, or OTPs.

3. PURPOSE OF COLLECTION

Your information is used to:

• create and manage user accounts;
• verify identity and business credentials;
• facilitate B2B transactions and logistics;
• provide customer support and dispute resolution;
• comply with tax, legal, and regulatory obligations;
• prevent fraud, abuse, and unauthorised access;
• improve platform performance, security, and user experience;
• Send service-related communications and transactional alerts.

Marketing communications are sent only where legally permitted and can be opted out. Processing is undertaken based on your consent and/or for legitimate uses as permitted under Section 7 of the Digital Personal Data Protection Act, 2023, including compliance with legal obligations and performance of the Buyer's Agreement.

4. DISCLOSURE & SHARING OF INFORMATION

We share information strictly on a need-to-know basis, including with:

1. Service Providers
   (IT services, logistics partners, payment gateways, verification agencies) under confidentiality obligations.
2. Affiliates & Group Companies
   For operational and compliance purposes.
3. Legal & Regulatory Authorities
   Where required under law, court orders, or government directions.
4. Business Transfers
   In the event of a merger, acquisition, restructuring, or sale of assets.

We do not sell personal data.

5. USER OBLIGATIONS FOR THIRD-PARTY DATA

If you provide information relating to another person (employee, agent, or authorized signatory), you confirm that:

• you have lawful authority to share such data, and
• You have informed them of this policy.

TTPL shall not be responsible for unauthorized sharing by users.

6. USER RIGHTS

Subject to applicable law, you may:

·         Right to grievance redressal—Requests may be made to the Grievance Officer (see Section 12).

·         Right to withdraw consent

·         Right to nominate

·         Right to correction & erasure

·         Right to approach Data Protection Board of India

7. COOKIES & TRACKING TECHNOLOGIES

We use:

• Essential cookies – platform functionality & security
• Analytics cookies – performance measurement
• Preference cookies – user settings
• Marketing cookies – only where permitted

You may manage cookies via browser settings. Disabling cookies may limit platform functionality.

8. DATA RETENTION

Information is retained:

• for as long as required to provide services;
• to comply with legal, tax, and regulatory obligations;
• for dispute resolution and fraud prevention.

Business records may be retained for a minimum of 3 years or longer where required by law. Aggregated or anonymized data may be retained indefinitely.

9. DATA SECURITY

We implement reasonable technical, administrative, and physical safeguards, including:

• encrypted servers located in India;
• access controls and monitoring;
• secure APIs and firewalls.

No internet transmission is 100% secure. Users share information at their own risk.

TTPL will never ask for passwords, OTPs, or sensitive banking details via call, email, or SMS.

10. MINORS

The platform is intended only for persons 18 years or older. We do not knowingly collect data of minors.

11. CHANGES TO THIS POLICY

We may update this Policy from time to time. The revised version will be posted on the platform and shall become effective immediately. Continued use constitutes acceptance.

12. GRIEVANCE OFFICER (IT RULES COMPLIANCE)

In accordance with the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021:

Grievance Officer:
Tripta Technologies Private Limited
Address: 1st Floor, 925/1, Faiz Road, Karol Bagh, New Delhi – 110005
Email: grievanceofficer@triptatechnologies.com
Working Hours: Monday – Saturday, 10:00 AM – 7:00 PM

Queries will be acknowledged and resolved within timelines prescribed by law.

13. CUSTOMER SUPPORT

Email: care@bharatemart.com
 Support: “Call Us” / Callback option available on the Platform

14.  CROSS-BORDER DATA TRANSFER

Personal data may be processed outside India subject to applicable law and government notifications issued under the Digital Personal Data Protection Act, 2023.

15. LOCATION DATA

A. COLLECTION OF LOCATION INFORMATION

We may collect and process location-related information when you access or use the Platform, including:

• approximate location derived from IP address;
• precise GPS-based location (only where you grant device permission);
• delivery address and registered business location;
• Real-time location data shared for logistics coordination and order fulfillment.

Precise GPS location is collected strictly on the basis of your explicit, device-level consent.
You may withdraw such permission at any time through your device settings.

B. PURPOSE OF LOCATION PROCESSING

Location data is processed for:

• verifying service availability in your region;
• enabling order delivery and logistics tracking;
• fraud prevention and risk monitoring;
• improving user experience and regional customisation;
• resolving disputes relating to delivery and service performance.

Location information shall not be used for unrelated profiling or intrusive tracking.

C. USER CONTROL & WITHDRAWAL OF CONSENT

You retain full control over location permissions and may

• disable location access through device settings;
• withdraw consent for precise location tracking at any time;
• request deletion of stored location records (subject to legal retention requirements).

Withdrawal of consent may affect certain Platform features such as real-time tracking and location-based services.

D. RETENTION OF LOCATION DATA

Location data is retained only for as long as necessary for operational, legal, fraud prevention, or dispute resolution purposes and thereafter securely deleted or anonymized.

By clicking “I Agree," you confirm that you have read, understood, and accepted this Privacy Policy.