Tax Cresta Logo Tax Cresta Legal Policy

Terms & Conditions

Last updated: June 25, 2026

**Tax Cresta** (**Tax Cresta Group**, a complete tax Consultancy Service provider Firm) ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application ("App") and related services (collectively, the "Services"). By accessing or using the Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the Services. --- ## 1. Information We Collect ### 1.1 Personal Information You Provide When you register for an account or use our Services, we may collect the following personal information: - **Identity Information:** Full name, PAN (Permanent Account Number), Aadhaar number. - **Contact Information:** Phone number, email address. - **Financial Information:** Income details, tax filing data, bank account details, and payment information as required for service delivery. - **Documents:** Tax returns, financial statements, identity proofs, address proofs, and other documents you upload for our professional services. - **Authentication Data:** Firebase authentication tokens, Google account identifiers (when using Google Sign-In). ### 1.2 Information Collected Automatically When you use the App, we may automatically collect: - **Device Information:** Device type, operating system version, unique device identifiers. - **Usage Data:** App usage patterns, feature interactions, timestamps of access. - **Log Data:** Error logs, crash reports, and diagnostic data for service improvement. - **Network Information:** IP address, mobile network information. ### 1.3 Information from Third Parties - **Google Sign-In:** If you choose to sign in with Google, we receive your name, email address, and profile identifier from Google. - **Payment Processors:** Transaction confirmations and payment status from Razorpay or other payment service providers. --- ## 2. How We Use Your Information We use the collected information for the following purposes: - **Service Delivery:** To provide taxation, compliance, audit, and financial consultancy services as requested by you. - **Account Management:** To create and manage your user account, authenticate your identity, and maintain your profile. - **Communication:** To send you service updates, request status notifications, payment confirmations, and respond to your inquiries. - **Document Processing:** To review, process, and store documents required for the professional services you have requested. - **Payment Processing:** To process payments for our services through secure payment gateways. - **Service Improvement:** To analyze usage patterns and improve our App functionality and user experience. - **Legal Compliance:** To comply with applicable laws, regulations, and professional standards governing chartered accountancy practice in India. - **Security:** To detect, prevent, and address fraud, unauthorized access, and other security concerns. --- ## 3. Data Storage and Security ### 3.1 Storage Your data is stored on secure cloud servers. Documents and files are stored using industry-standard cloud storage services with encryption at rest and in transit. ### 3.2 Security Measures We implement appropriate technical and organizational measures to protect your personal information, including: - **Encryption:** All data transmitted between the App and our servers is encrypted using TLS/SSL protocols. - **Access Controls:** Role-based access controls restrict data access to authorized personnel only. - **Secure Authentication:** We use Firebase Authentication and JWT (JSON Web Tokens) for secure session management. - **Sensitive Data Handling:** PAN and Aadhaar numbers are stored securely and displayed in masked format within the App. - **Rate Limiting:** API rate limiting is implemented to prevent abuse and unauthorized access attempts. ### 3.3 Data Breach Notification In the event of a data breach that affects your personal information, we will notify you and the relevant authorities as required by applicable law within 72 hours of becoming aware of the breach. --- ## 4. Sharing of Information We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances: - **Service Providers:** With trusted third-party service providers who assist us in operating the App (e.g., cloud hosting, payment processing, push notification services), subject to confidentiality obligations. - **Professional Obligations:** With government authorities and regulatory bodies as required for tax filing, compliance, and audit purposes on your behalf and with your authorization. - **Legal Requirements:** When required by law, court order, or governmental regulation, or to protect our rights, privacy, safety, or property. - **Consent:** With your explicit consent for any other purpose not described in this Policy. --- ## 5. Your Rights Under applicable Indian data protection laws, including the Digital Personal Data Protection Act, 2023 (DPDP Act), you have the following rights: - **Right to Access:** You may request access to the personal data we hold about you. - **Right to Correction:** You may request correction of inaccurate or incomplete personal data through the App's profile editing feature. - **Right to Erasure:** You may request deletion of your personal data, subject to our legal obligations to retain certain records. - **Right to Withdraw Consent:** You may withdraw your consent for data processing at any time by contacting us. Withdrawal of consent will not affect the lawfulness of processing conducted prior to withdrawal. - **Right to Grievance Redressal:** You may raise a grievance regarding the processing of your personal data by contacting our Grievance Officer. To exercise any of these rights, please contact us using the details provided in Section 9. --- ## 6. Data Retention We retain your personal information for as long as: - Your account remains active with us. - It is necessary to provide you with our Services. - It is required for compliance with legal, accounting, or regulatory obligations (typically 8 years for financial and tax records as per Indian tax laws). - It is necessary for the establishment, exercise, or defense of legal claims. Upon account deletion or at the end of the retention period, your personal data will be securely deleted or anonymized. --- ## 7. Children's Privacy Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18 without parental consent, we will take steps to delete such information promptly. --- ## 8. Changes to This Privacy Policy We may update this Privacy Policy from time to time. We will notify you of any material changes by: - Posting the updated Privacy Policy within the App. - Updating the "Last updated" date at the top of this document. - Sending a push notification for significant changes. Your continued use of the Services after any changes constitutes acceptance of the updated Privacy Policy. --- ## 9. Contact Us If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: **Tax Cresta** A Tax Consultancy Services Provider Firm - **Email:** support@taxcresta.com - **Phone:** +91 9828124951 **Grievance Officer:** - **Name:** Mahendra Singh - **Email:** support@taxcresta.com --- ## 10. Governing Law This Privacy Policy is governed by and construed in accordance with the laws of India. Any disputes arising under or in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the courts in Chirawa (Rajasthan) only.