Privacy Policy

1. Introduction

Welcome to Mahakalp ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our semantic code intelligence platform and services.

By using Mahakalp, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

When you register for an account, we collect:

• Name and email address
• GitHub account information (if you connect via OAuth)
• Payment information (processed securely through Razorpay)
• Company name and billing details (for paid plans)

2.2 Code Repository Information

When you connect repositories to Mahakalp, we collect and process:

• Repository URLs and metadata
• Source code content for indexing and semantic analysis
• Search queries and usage patterns
• Repository statistics (lines of code, file counts, etc.)

2.3 Usage Information

We automatically collect:

• Log data (IP address, browser type, pages visited)
• Device information and operating system
• Search queries and results
• Feature usage statistics
• Performance and error logs

3. How We Use Your Information

We use your information to:

• Provide Services: Process and analyze your code repositories, deliver search results, and maintain platform functionality
• Billing: Process payments, manage subscriptions, and send invoices
• Communication: Send service updates, security alerts, and support responses
• Improvement: Analyze usage patterns to improve our algorithms and features
• Security: Detect and prevent fraud, abuse, and security threats
• Compliance: Meet legal and regulatory obligations

4. Data Storage and Security

4.1 Storage Location

Your data is stored securely using industry-standard cloud infrastructure providers. Repository code is stored in isolated, encrypted environments with access restricted to your account only.

4.2 Security Measures

• End-to-end encryption for data in transit (TLS/SSL)
• Encryption at rest for sensitive data
• Regular security audits and penetration testing
• Role-based access controls
• Multi-factor authentication support
• Regular backups and disaster recovery procedures

5. Data Sharing and Disclosure

We do NOT sell your personal information. We may share data with:

5.1 Service Providers

• Razorpay: Payment processing (PCI-DSS compliant)
• Supabase: Database and authentication services
• GitHub: Repository access (with your explicit permission)
• Cloud providers: Infrastructure and hosting

5.2 Legal Requirements

We may disclose information if required by:

• Valid legal process or government request
• Protection of our rights, property, or safety
• Investigation of fraud or security issues
• Compliance with Indian laws and regulations

6. Your Rights and Choices

You have the right to:

• Access: Request a copy of your personal data
• Correction: Update or correct your information
• Deletion: Request deletion of your account and data
• Export: Download your data in portable format
• Opt-out: Unsubscribe from marketing communications
• Portability: Transfer your data to another service

To exercise these rights, contact us at privacy@mahakalp.dev

7. Data Retention

We retain your information for as long as:

• Your account is active
• Required to provide services
• Necessary for legal, regulatory, or business purposes

After account deletion, we permanently remove your personal data within 30 days, except where retention is required by law.

8. Cookies and Tracking

We use cookies and similar technologies for:

• Essential cookies: Authentication and security
• Analytics cookies: Usage patterns and performance
• Preference cookies: Remember your settings

You can control cookie preferences through your browser settings. Note that disabling essential cookies may affect platform functionality.

9. Third-Party Links

Our platform may contain links to third-party services (GitHub, documentation sites, etc.). We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies.

10. Children's Privacy

Mahakalp is not intended for users under 18 years of age. We do not knowingly collect information from children. If you believe we have collected data from a minor, please contact us immediately.

11. International Users

If you are accessing Mahakalp from outside India, please note that your information may be transferred to, stored, and processed in India. By using our services, you consent to this transfer.

12. Compliance with Indian Laws

We comply with applicable Indian privacy laws, including:

• Information Technology Act, 2000
• Information Technology (Reasonable Security Practices) Rules, 2011
• Payment and Settlement Systems Act, 2007

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Email notification to your registered address
• Prominent notice on our platform
• Updating the "Last Updated" date at the top

Continued use of Mahakalp after changes indicates acceptance of the updated policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us: