Privacy Policy

We collect the following types of data:

• Account information: name, workshop name, email, phone number, password (hashed).
• Workshop data: job cards, customer details you enter (name, phone, vehicle), invoices, staff records, service catalog.
• Usage data: device type, app version, logs, feature usage (used to improve the Service).
• Billing data: payment status and transaction IDs. Card/UPI details are handled by our payment gateway and are not stored by NexOTO.

We use your data to:

• Provide, operate, and improve the Service
• Generate invoices and reports on your behalf
• Send transactional messages (login OTPs, receipts, updates)
• Respond to support requests
• Detect and prevent fraud or misuse
• Comply with legal obligations

You act as the data controller (or "Data Fiduciary") for the customer details you enter into NexOTO. You are responsible for informing your customers about this and for obtaining their consent where required. NexOTO acts as the data processor and handles this data only on your instructions.

We do not sell your data. We share it only with:

• Service providers that help us run NexOTO (e.g., hosting, analytics, payment gateway, WhatsApp Business API) under strict confidentiality.
• Legal authorities when required by law, court order, or to protect rights and safety.
• Acquirers in connection with a merger, sale, or re-organisation (you will be notified).

NexOTO sends automated WhatsApp notifications (e.g., "Car Ready") using WhatsApp Business APIs on your behalf. Message content and phone numbers are processed for delivery only. You and your customers remain subject to WhatsApp's own privacy terms.

We retain your data for as long as your account is active. After account closure, data is retained for up to 30 days for recovery and then permanently deleted, unless a longer retention is required by law (e.g., tax records).

Subject to applicable law, you may:

• Access and correct your personal data
• Request deletion of your data
• Withdraw consent (where processing is based on consent)
• Nominate a person to exercise rights on your behalf
• Lodge a grievance with our Grievance Officer (details in Section 11)

Requests can be sent to support@nexoto.in. We will respond within 30 days.

We use industry-standard security practices, including encryption in transit (HTTPS), hashed passwords, role-based access, and regular backups. No system is 100% secure — we encourage you to use a strong password and keep your devices safe.

Our website uses essential cookies for login and session management, and analytics cookies (e.g., PostHog) to understand product usage. You can disable cookies in your browser; some features may not work correctly.

The Service is not intended for users under 18. We do not knowingly collect data from minors. If you believe a minor has shared data with us, please contact us to remove it.

Pursuant to the Information Technology Act, 2000 and the DPDP Act, you may contact our Grievance Officer for any concerns:

Grievance Officer, NexOTO
Email: support@nexoto.in
WhatsApp: +91 87269 56200
Response time: within 30 days of receiving a written complaint.

We may update this Policy from time to time. We will post the latest version on this page with an updated "Last updated" date and, for material changes, notify you via email or in-app message.

Email: support@nexoto.in
WhatsApp: +91 87269 56200