Aiva – Delivery Agent Privacy Policy

Last updated: July 2025 ·

1. Introduction & Applicability

Welcome to the Aiva Agents App. This Privacy Policy describes how Aiva Private Limited (“Aiva,” “We,” “Our,” or “Platform”) collects, uses, stores, and shares the personal and operational information of individuals appointed by a registered Partner Store as a Partner Delivery Agent (PDA) ("You" or "Your") when you use the Aiva Agents App (the PDA App) to fulfill orders and return requests.

Important Note: The creation, management, and termination of your account are handled entirely by the Partner Store owner who employs or contracts you. Aiva is a technology provider, and your relationship is solely with the Partner Store.

By logging into and using the Aiva Agents App, you agree to the practices described in this Privacy Policy. This policy is designed to comply with applicable Indian laws, including the Digital Personal Data Protection Act (DPDP), 2023.

This policy applies specifically to all individuals using the Aiva Agents App to process deliveries and returns for an Aiva Partner Store.

2. Information We Collect from Partner Delivery Agents (PDAs)

We collect the following categories of data related to your PDA account and activity:

A. Registration & Contact Data (Provided by Partner)

This information is provided and managed by the Partner Store owner:

  • Basic PII: Your Name, Mobile Number, and unique Username.
  • Security Data: Your Hashed Password (Aiva does not store or access your plain-text password).

B. Operational Data (Generated via App Use)

  • Transaction Logs: Details of orders and return requests assigned to you, including item lists, Order IDs, and timestamps.
  • Delivery Status Updates: Records of actions taken on the app (e.g., "Out for Delivery," "Delivered," "Rejected").
  • Proof of Rejection Media: Images or videos uploaded by you to substantiate the rejection of an order or return request.
  • Customer Interaction Logs: Records of your usage of the in-app navigation button (which opens third-party map applications) and interaction with customer contact details.

C. Device & Technical Data

  • Aiva Agents App Usage: App version, device ID, IP address, and technical logs (for security and troubleshooting).
  • Geo-location Data (Optional): Limited, non-real-time location data may be collected at the time of order status updates (e.g., "Delivered") to verify successful completion within the delivery zone.

Note on Sensitive Data: Aiva does not collect your personal financial data (Bank A/C, PAN, GSTIN) through the PDA App, as your payment and employment relationship is directly with the Partner Store.

3. How We Use Your PDA Information

We use your information solely for the purposes necessary to facilitate logistics and report back to the Partner Store:

A. To Enable Logistics & Order Fulfillment

  • To authenticate your login credentials (username and hashed password).
  • To display assigned Order and Return Request details in your dashboard.
  • To record and confirm successful delivery or valid rejection status to the Customer and the Partner Store.

B. To Maintain Platform Integrity

  • To verify and audit delivery/rejection logs for platform safety and dispute resolution.
  • To investigate instances of fraud, non-compliance, or misuse of customer data.

C. For Product Improvement

  • To analyze app usage patterns and technical logs to improve the stability and performance of the Aiva Agents App.

We do not use your personal information for targeted advertising or share it for marketing purposes.

4. Customer Personal Data Access & Handling

As a PDA, you are granted temporary and limited access to Customer Personal Data (PII) for delivery purposes only:

  • Customer PII Accessed: Name, Delivery Address, and Mobile Number.
  • Purpose Limitation: This PII must be used strictly and exclusively for fulfilling the specific assigned Order or Return Request (e.g., navigating to the location or contacting the customer regarding the delivery).
  • No Retention: You must not record, store, or retain this Customer PII outside of the Aiva Agents App after the delivery or return request is completed or rejected.
  • Liability: Any misuse, unauthorized retention, or sharing of Customer PII by you constitutes a violation of this policy and the Aiva-Partner Agreement, for which the Partner Store is liable.

5. App Permissions & Device Access

To function correctly, the Aiva Agents App may request permission to access the following:

Mandatory Permissions:

  • Camera & Gallery: To capture and upload proof images/videos required for rejected deliveries/returns.
  • Location Access (When App is Active): Used solely to facilitate navigation via third-party maps (like Google Maps) and to verify location at the point of status updates ("Delivered").

Optional Permissions:

  • Push Notifications: To receive real-time alerts for new orders assigned by the Partner Store.

Restricting mandatory permissions will prevent the PDA App from operating correctly and fulfilling assigned orders.

6. Data Sharing with Third Parties

We share your PDA data only when necessary for platform operation or as required by law:

A. Partner Store Owner

  • Your Name, Username, Mobile Number, and all Operational Data (Order Logs, Status Updates, Proof Media) are shared directly with the Partner Store owner who created and manages your account.

B. Third-Party Service Providers

  • Mapping Services: When you click the navigation button, the relevant Customer Address is temporarily shared with Google Maps or Apple Maps (or similar providers) to generate directions.
  • Technical Providers: Anonymized usage data may be shared with analytics providers to diagnose technical issues.
  • Data may be shared with government authorities, courts, or law enforcement in response to a lawful request or as required by Indian law.

7. Data Retention & Account Management

Your PDA account and associated data are controlled by the Partner Store owner.

  • Retention: We retain your operational data (logs, status updates, rejection proofs) for as long as is necessary to comply with legal record-keeping requirements and to support the Partner Store’s records, even after the account is deactivated.
  • Account Deletion/Deactivation: Your account can only be deactivated or deleted by the Partner Store owner. If your relationship with the Partner Store ends, you must inform them to promptly deactivate your access.
  • Data Subject Requests: Any request related to your personal data (access, correction, or erasure) must be submitted via Aiva, but Aiva will typically require verification and authorization from the managing Partner Store before acting, as they are your employer/contracting party.

8. Data Security Measures

We implement commercially reasonable security measures to protect your data, including:

  • Hashing: Your account password is cryptographically hashed for secure storage.
  • Access Control: Access to the Aiva Agents App requires a unique username and password.
  • Secure Infrastructure: We use secure cloud infrastructure with appropriate security safeguards.

You are responsible for maintaining the confidentiality of your login credentials and must notify the Partner Store owner immediately in case of suspected security breach or unauthorized access.

9. Changes to This Privacy Policy

We may update or amend this Privacy Policy from time to time. When we do, we will:

  • Post the revised version online and within the Aiva Agents App.
  • The "Last Updated" date at the top of the policy will reflect the latest revision.

Your continued use of the Aiva Agents App after any changes constitutes acceptance of the new terms.

10. Contact Us (Grievance Redressal)

If you have any questions or complaints regarding this Privacy Policy or your personal data, you can contact us at:

Company Name: Aiva Private Limited

Registered Address: Plot No. 287-A, Goyal Homes, G-2, Sec-B, Shahpura, Bhopal, Madhya Pradesh 462016

Support Email: info@thegoaiva.com

Support Timing: Monday to Saturday, 10:00 AM – 6:00 PM IST (excluding public holidays)