Home About Us Products Contact Us Request Demo

Privacy Policy

Last Updated: June 16, 2026

Pravartana Global Ventures LLP ("Pravartana", "we", "us", or "our") values the privacy of our enterprise customers and their respective users. This Privacy Policy details how we collect, store, secure, process, and encrypt organizational data when you deploy our software-as-a-service platforms, specifically DocuTrust and HealthCraft HMS.

1. Data Collection & Isolation

We build multi-tenant SaaS platforms where data isolation is enforced at the database level. We collect:

  • Administrative Accounts Info: Names, emails, and credentials of staff members administering the systems.
  • Patient & Member Files: Uploaded medical histories, registration details, or KYC files (PAN, Aadhaar) strictly in service to our business customers.
  • System Access Logs: Audit logs containing user actions, session durations, and IP address mappings for compliance monitoring.

2. Data Residency & Residency Limits

In accordance with central banking policies (RBI directives) and regional cooperative act guidelines, all database stores, file attachments, and metadata originating from Indian cooperatives are hosted exclusively within AWS cloud data centers located in India (Mumbai Region). No client document records leave local borders.

3. Data Encryption Core

Data security is embedded in our development workflow.

  • In Transit: All communications between user browsers and system backends are encrypted using TLS 1.3 cryptographic parameters.
  • At Rest: Patient files, KYC proofs, and document database archives are encrypted using AES-256 block-cipher standards.

4. Role-Based Disclosures

Pravartana does not sell, lease, or distribute customer data. Data access is restricted based on client-defined Role-Based Access Control (RBAC). Pravartana support staff can access databases only during troubleshoot sessions with explicit written permission from organization administrators.

5. Compliance and Government Disclosures

We comply with the Indian Information Technology Act, 2000 (and subsequent amendments). Under regulatory pressure (court order or statutory compliance check), we may share logs with law enforcement officers, keeping our enterprise customers fully updated of such requirements wherever legally permissible.

6. Updates to This Policy

We may update this policy periodically to align with cloud infrastructure changes or state act revisions. Please review this page regularly for disclosures. For queries, contact us at: aniruddha@pravartna.com.