Legal // Privacy

Privacy Policy.

This Privacy Policy governs how Rethela Technology Private Limited ("AdMesh") collects, processes, stores, and protects your personal data. We are committed to full compliance with the Digital Personal Data Protection (DPDP) Act, 2023 of India.

Last Updated: May 17, 2026|Effective: May 17, 2026|Jurisdiction: India

1. Overview

Rethela Technology Private Limited ("AdMesh", "we", "our", "us") operates the AdMesh platform — a verified physical retail advertising network. We act as a Data Fiduciary as defined under the Digital Personal Data Protection Act, 2023 (DPDP Act).

This policy applies to all individuals who interact with our platform, including brand partners, store owners (Carriers), visitors to our website, and users of our dashboard applications.

By using our services, you acknowledge that you have read, understood, and consented to the practices described in this policy. If you do not agree, please discontinue use of our services.

2. Data We Collect

We collect personal data only to the extent necessary to deliver our services. Under the DPDP Act, we practise data minimisation — collecting only what is required for a specific, stated purpose.

2.1 Account & Identity Data

  • Full name
  • Email address
  • Company name and designation
  • Phone number
  • GST / MSME registration number (Carrier accounts)

2.2 Campaign & Business Data

  • Campaign briefs, target geographies, and creative assets uploaded to the platform
  • Billing and invoicing information
  • Campaign performance data and analytics

2.3 Location & Operational Data

  • GPS coordinates of registered store nodes (Carrier accounts)
  • Photographic proof-of-display images captured by ground agents
  • Timestamp and device metadata associated with proof uploads

2.4 Technical & Usage Data

  • IP address, browser type, device identifiers
  • Pages visited, session duration, clickstream data
  • Error logs and diagnostic data for service improvement

2.5 Communication Data

  • Emails or messages sent to our support team
  • Form submissions (pilot requests, carrier registrations)
  • Survey responses or feedback provided voluntarily

3. How We Use Your Data

We use collected data strictly for the purposes disclosed at the time of collection. We do not use your personal data for purposes beyond those explicitly stated, consistent with the purpose limitation principle of the DPDP Act.

To create and manage your AdMesh account
To process campaign orders, manage billing, and issue invoices
To verify and activate Carrier (store) nodes via GPS tagging and photo verification
To communicate campaign updates, performance reports, and account notifications
To send product updates, new features, or promotional communications (with your explicit consent, which can be withdrawn at any time)
To comply with legal obligations under applicable Indian law
To detect, prevent, and address fraud, security incidents, or misuse of our platform
To improve our services through aggregated, anonymised analytics

5. Your Rights as a Data Principal

Under the DPDP Act, 2023, you (the Data Principal) have the following rights, which we are legally obligated to honour:

Right to Access

Request a summary of personal data we hold about you and how it is being processed.

Right to Correction

Request correction of inaccurate, incomplete, or outdated personal data.

Right to Erasure

Request deletion of your personal data, subject to legal retention obligations.

Right to Grievance Redressal

File a complaint with our Grievance Officer and receive a response within 48 hours.

Right to Withdraw Consent

Withdraw previously given consent for any processing activity at any time.

Right to Nominate

Nominate another individual to exercise your rights in the event of your death or incapacity.

To exercise any of these rights, email us at legal@admesh.co.in. We will respond within 30 days, as required by the DPDP Act.

6. Data Sharing & Disclosure

We do not sell, rent, or trade your personal data. We may share data only in the following limited circumstances:

Service Providers: We share data with trusted third-party processors (cloud hosting, payment gateways, analytics) who are contractually bound to handle data only under our instructions and in compliance with applicable law.
Legal & Regulatory Compliance: We may disclose data to government authorities, courts, or regulators when required by law, including responding to valid legal process.
Business Transfers: In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the successor entity, subject to the same privacy protections.
Aggregated Analytics: We may share anonymised, aggregated data with partners or publish it publicly. This data cannot be used to identify any individual.

Cross-border transfers: Where data is transferred outside India, we ensure appropriate safeguards are in place as per Section 16 of the DPDP Act and applicable rules notified by the Central Government.

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. In general:

Account data is retained for the duration of your active account plus 3 years after account closure.
Campaign and proof-of-display data is retained for 5 years for audit and legal compliance purposes.
Technical logs and usage data are retained for 12 months.
Financial and billing records are retained for 7 years as required under the Income Tax Act, 1961 and GST laws.

Upon expiry of the retention period, data is securely deleted or anonymised in accordance with our data lifecycle management procedures.

8. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. These include:

AES-256 encryption at rest for all personal data stored on our servers
TLS 1.3 encryption in transit for all data communications
Role-based access controls restricting data access to authorised personnel only
Regular security audits and vulnerability assessments
Cryptographic blockchain sealing of proof-of-display records
Multi-factor authentication for platform administrator accounts

In the event of a personal data breach, we will notify affected Data Principals and the Data Protection Board of India as required under the DPDP Act.

9. Cookies & Tracking

We use cookies and similar tracking technologies to operate our platform and improve your experience. Cookie categories:

Strictly Necessary: Required for the platform to function (session authentication, security). Cannot be disabled.
Analytics: Help us understand how the platform is used. Anonymised data only. Can be disabled.
Preference: Remember your settings and preferences across sessions. Can be disabled.

You may manage cookie preferences through your browser settings at any time.

10. Children's Privacy

Our services are not directed to children under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately at legal@admesh.co.in and we will promptly delete such data as required under Section 9 of the DPDP Act.

11. Grievance Redressal

As required by the DPDP Act, we have designated a Grievance Officer to address any complaints or concerns regarding your personal data.

Grievance Officer Details

Organisation: Rethela Technology Private Limited

Platform: AdMesh

Email: legal@admesh.co.in

General Enquiries: hello@admesh.co.in

Response Time: We will acknowledge complaints within 48 hours and resolve within 30 days.

If your complaint is not resolved to your satisfaction, you may approach the Data Protection Board of India as constituted under the DPDP Act, 2023.

12. Policy Updates

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email (to your registered address) and post a prominent notice on our platform at least 14 days before the changes take effect.

Continued use of our services after the effective date of the revised policy constitutes your acceptance of the updated terms.

Questions about your data or this policy?

legal@admesh.co.in Terms of Service