This Privacy Policy describes how Dreamoraa ("Dreamoraa", "we", "us", or "our") collects, uses, discloses, and safeguards your information when you use the Dreamoraa mobile application, vendor application, or website (collectively, the "Platform"). By using the Platform, you agree to the practices described in this Policy.
In short: We collect the minimum information required to let you book services and products on Dreamoraa, connect you with verified vendors, process payments securely, and keep your account safe. We do not sell your personal data.
1. Information We Collect
1.1 Information you provide
- Account information: Name, phone number, email address, password, profile photo (optional).
- Verification data: One-time passwords (OTP) sent via SMS for phone verification.
- Service information: Home or delivery address, service preferences, booking details, notes for vendors.
- Payment information: Processed via our PCI-compliant payment partners. We do not store full card numbers or CVV on our servers.
- Vendor information (if you register as a vendor): Business name, GST number (if applicable), KYC documents, service category, pricing, bank details for payouts.
- Communication: Messages you send to vendors, customer support tickets, and feedback or ratings you submit.
1.2 Information collected automatically
- Device information: Device model, operating system, unique device identifiers, mobile network, and crash logs.
- Usage data: Pages viewed, features used, time spent, search queries, and interaction patterns.
- Location data: With your permission, we access precise or approximate location to show nearby services and vendors. You can disable this in your device settings at any time.
- Cookies and similar technologies: On our website we use cookies to keep you signed in and remember preferences.
1.3 Information from third parties
- If you sign in using Google, we receive your name, email, and profile picture from Google.
- Payment status and transaction identifiers from payment gateways.
2. How We Use Your Information
- To create and manage your account and authenticate you via OTP.
- To match you with vendors and fulfill bookings, quotes, orders, and service requests.
- To process payments, refunds, and vendor payouts.
- To send booking confirmations, service updates, and important account notifications via SMS, push notification, or email.
- To respond to your support requests and resolve disputes.
- To improve the Platform — analyze usage, fix bugs, and build new features.
- To detect, prevent, and investigate fraud, abuse, or violations of our Terms of Service.
- To comply with legal obligations and respond to lawful requests from authorities.
3. Legal Basis for Processing
We process your personal data on the basis of: (a) your consent; (b) performance of a contract to provide the services you requested; (c) our legitimate interests in operating and securing the Platform; and (d) compliance with legal obligations under applicable laws, including the Digital Personal Data Protection Act, 2023 (India) and the Information Technology Act, 2000.
4. How We Share Your Information
We share information only where necessary to operate the Platform:
| Recipient | Purpose |
|---|---|
| Vendors you book | Your name, phone number, service address, and booking details so they can deliver the service. |
| Payment gateway (e.g., Razorpay) | To process payments, refunds, and payouts securely. |
| SMS provider (e.g., Twilio) | To deliver OTPs and booking notifications to your phone. |
| Cloud hosting & analytics | To operate the Platform infrastructure and understand aggregate usage. |
| Legal & regulatory authorities | When required by law, court order, or to protect rights, safety, and property. |
| Corporate transactions | In the event of a merger, acquisition, or sale of assets, with notice to you. |
We do not sell your personal data to advertisers or data brokers.
5. Data Retention
We retain your information for as long as your account is active or as needed to provide the Platform. When you delete your account, we delete or anonymize your personal data within a reasonable period, except where we are required to retain it for legal, tax, accounting, or fraud-prevention purposes (typically up to 7 years for financial records).
6. Data Security
We implement industry-standard technical and organizational safeguards to protect your data, including encryption of data in transit (HTTPS/TLS), hashing of passwords, access controls, secure payment handling via PCI-DSS compliant gateways, and regular security reviews. However, no system is perfectly secure. If we become aware of a security incident affecting your personal data, we will notify you and relevant authorities as required by law.
7. Your Rights
Subject to applicable law, you have the right to:
- Access the personal data we hold about you.
- Correct inaccurate or incomplete data directly in-app or by contacting us.
- Delete your account and personal data.
- Withdraw consent for optional processing (e.g., location, marketing notifications) at any time.
- Object to certain processing, including direct marketing.
- Port your data to another service in a machine-readable format.
- File a grievance with our Grievance Officer (see Section 13) or with the relevant data protection authority.
To exercise these rights, go to Settings → Privacy in the app or email us at rajdave710@gmail.com. We will respond within 30 days.
8. Permissions We Request
The Dreamoraa app may request the following device permissions:
- Location: To show nearby services and auto-fill service addresses. Optional; can be revoked in device settings.
- Camera / Photos: To upload a profile picture, product photo (for vendors), or add images to service requests.
- Notifications: To send booking updates and important alerts.
- Phone / SMS (Android): For automatic OTP verification on supported devices. We never read messages other than the OTP.
- Internet: Required for all Platform functionality.
9. Children's Privacy
The Platform is intended for users aged 18 and above. We do not knowingly collect personal data from anyone under 18. If you believe a minor has provided us information, please contact us and we will delete it.
10. International Data Transfers
Your data is primarily stored on servers located in India. Where any service provider processes data outside India, we ensure equivalent protections through contractual safeguards.
11. Third-Party Links and Services
The Platform may link to third-party websites or services (e.g., vendor websites, payment gateways). Their privacy practices are governed by their own policies, and we are not responsible for them.
12. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be notified to you in-app or by email at least 7 days before they take effect. The "Last updated" date at the top always reflects the most recent version.
13. Grievance Officer & Contact
In accordance with the Information Technology Act, 2000 and the DPDP Act, 2023, you may contact our Grievance Officer for any privacy-related concerns:
Grievance Officer
Dreamoraa
Email: rajdave710@gmail.com
Response time: within 30 days of receipt
For all other questions about this Privacy Policy or our data practices, write to us at rajdave710@gmail.com.