Privacy Policy

1. Who We Are

Socei is a society management platform for Indian co-operative housing societies, operated by SOCEI, a proprietorship of Preeti Singhal, registered under the Maharashtra Shops & Establishments (Regulation of Employment and Conditions of Service) Act, 2018 (Reg. No. 2631000321226274) at Sr No-13/B,1/2/3, Wadgaonsheri, Sophoronia, Wadgaonsheri, Pune, Maharashtra 411014. We provide billing, payment collection, compliance filing and mobile app services to housing societies and their members.

2. Information We Collect

We collect information necessary to provide our services:

• Society information: society name, address, registration number, unit details
• Member information: name, mobile number, flat/unit number, email address
• Financial data: billing records, payment history, bank account details for UPI
• Compliance data: PAN, TAN, GSTIN numbers for TDS/GST filing on behalf of the society
• Usage data: app interactions, login timestamps, device identifiers for security
• Complaint photographs (optional): if you attach a photograph when raising a complaint or work-order, the image is uploaded to AWS S3 (Mumbai region) and visible only to the society's committee and authorised maintenance staff. You can choose not to attach any photograph.
• Biometric authentication signal (opt-in): if you enable app-lock under Profile → Security, the mobile app prompts for Face ID, Touch ID, or your device's fingerprint to unlock. Committee members are also prompted for biometric confirmation on high-value approvals. iOS and Android never share the raw biometric data with the app — we only receive a success/failure signal from the operating system. We do not store biometric templates.
• Crash and performance diagnostics: when the mobile app crashes or hits an unhandled error, anonymised diagnostic data (stack trace, app version, OS version, anonymous device identifier) is sent to Sentry, our crash-reporting processor, so we can fix bugs. We do not attach screenshots, user-typed content, or PII to crash reports.

We do not collect: passwords (authentication is OTP-only), precise GPS location, contacts, calendar data, or data from other apps on your device. We do not use advertising SDKs and we do not profile your in-app behaviour for marketing purposes.

3. How We Use Your Information

• Generate and send billing statements and receipts to members
• Process UPI and online payment collections
• Prepare and file selected TDS and GST workflows with government portals where configured
• Send payment reminders and society notifications via app and email
• Provide the mobile app experience for members and permitted staff role modes
• Improve platform reliability and performance

4. Data Security

We implement industry-standard security measures to protect your data:

• All data is encrypted in transit (TLS 1.2+) and at rest (AES-256)
• Authentication via AWS Cognito with OTP-based login — no passwords stored
• Access to financial data is role-restricted (member, committee, accountant, admin)
• Servers are hosted on AWS Mumbai region (ap-south-1) within India
• Regular automated backups with point-in-time recovery
• No financial credentials (bank passwords, UPI PINs) are ever stored by us

5. Data Sharing

We do not sell your personal data. We share data only where required:

• Government portals: TRACES, GST portal — for statutory filing on behalf of the society
• Payment processors: Razorpay — for processing online payments (subject to their privacy policy)
• AWS: Cloud hosting infrastructure within India
• Sentry (Functional Software, Inc.): Mobile-app crash reports — stack trace, app version, OS version, anonymous device identifier only. No screenshots, no user-typed content, no PII. You can disable crash reporting at any time by withdrawing your DPDP consent in the app.
• Society committee: Member billing and payment status visible to authorised committee members

6. Data Retention

Financial and compliance records are retained for 8 years as required under Indian tax laws. Member profile data is retained while your society account is active. You may request deletion of non-statutory personal data by contacting us.

7. Your Rights (DPDP Act, 2023)

As a data principal under the Digital Personal Data Protection Act, 2023, you have the following rights:

• Right to Access: Request a summary of your personal data we hold and the processing activities
• Right to Correction: Request correction of inaccurate or incomplete personal data
• Right to Erasure: Request deletion of personal data that is no longer necessary for the purpose it was collected (subject to statutory retention obligations)
• Right to Grievance Redressal: Lodge a complaint with our Grievance Officer; we will respond within 30 days
• Right to Nominate: Nominate another individual to exercise your rights in the event of your death or incapacity
• Right to Withdraw Consent: Withdraw your consent at any time. Note that withdrawal may affect your ability to use the platform

To exercise any of these rights, email: grievance@socei.in

8. Grievance Officer

In accordance with the DPDP Act, 2023, we have appointed a Grievance Officer:

Email: grievance@socei.in
Response time: Within 30 days of receiving the complaint

For general queries: hello@socei.in

9. Changes to this Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify members through the app and update the "Last updated" date above. Continued use of our services after notification constitutes acceptance of the revised policy.