logo

Privacy Policy

Last Updated: April 11, 2026

Aeroyantra Technologies Private Limited ("Aeroyantra," "we," "our," or "us"), a company incorporated under the laws of India with its registered office at E-49/5, First Floor, Okhla Industrial Area Phase-2, New Delhi, India 110020, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (www.aeroyantra.com), use our cloud-based drone mapping platform (app.aeroyantra.com), or engage with any of our services (collectively, the "Services").

By accessing or using our Services, you consent to the data practices described in this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our Services.

1. Information We Collect

1.1 Personal Information You Provide

  • Account Registration: Full name, email address, phone number, company name, job title/role, industry, and country
  • Billing & Payment: Billing address, payment card details (processed securely via third-party payment gateways such as Razorpay and PayPal — we do not store full card numbers on our servers), GST/tax identification numbers, and purchase history
  • Communications: Email correspondence, support tickets, contact form submissions, demo booking requests, and feedback you provide
  • Organization Data: Organization name, size, team member details, and role assignments when using our multi-tenant features

1.2 Survey & Project Data

  • Drone-captured imagery (photographs, video)
  • LiDAR point cloud data
  • GPS/GNSS coordinates and ground control points (GCPs)
  • Orthomosaics, digital surface models (DSM), digital terrain models (DTM), and other processed outputs
  • Site metadata including site names, locations, and survey parameters

1.3 Automatically Collected Information

  • Device Information: IP address, browser type and version, operating system, device identifiers, screen resolution
  • Usage Data: Pages visited, features used, click patterns, session duration, referral URLs, and interaction timestamps
  • Cookies & Tracking Technologies: We use cookies, web beacons, and similar technologies as described in our Cookies Policy
  • Analytics: Data collected via analytics and performance monitoring tools for user experience improvement

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 Service Delivery

  • Create and manage your account
  • Process, store, and deliver your drone survey data and photogrammetry/LiDAR outputs
  • Provide customer support and respond to inquiries
  • Process payments, issue invoices, and manage subscriptions
  • Enable collaboration features (site sharing, team management, organization access)

2.2 Communication

  • Transactional Emails: Account verification, password resets, payment confirmations, processing status notifications, and security alerts
  • Service Updates: Important notices about changes to our Services, maintenance schedules, and feature releases
  • Marketing Communications: Product updates, newsletters, promotional offers, and educational content (only with your explicit opt-in consent; you may unsubscribe at any time)

2.3 Improvement & Analytics

  • Analyze usage patterns to improve platform performance and user experience
  • Conduct research and development for new features
  • Monitor and prevent fraud, abuse, and security threats
  • Generate aggregated, anonymized analytics and reports

2.4 Legal Compliance

  • Comply with applicable laws, regulations, and legal processes
  • Enforce our Terms of Service and other agreements
  • Protect the rights, property, and safety of Aeroyantra, our users, and the public

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, we process your personal data based on the following legal grounds:

  • Consent: For marketing communications and optional cookies/analytics
  • Contractual Necessity: To provide the Services you have subscribed to
  • Legitimate Interests: To improve our Services, prevent fraud, and ensure security
  • Legal Obligation: To comply with applicable laws and regulations

4. Data Sharing & Disclosure

We do not sell, rent, or trade your personal information. We may share your data with:

  • Payment Processors: Razorpay, PayPal, and other payment gateways for processing transactions securely. These processors are PCI-DSS compliant and handle your payment data according to their own privacy policies
  • Cloud Infrastructure Providers: Trusted, industry-certified cloud service providers for hosting, data storage, processing, and email delivery
  • Analytics Providers: Analytics and performance monitoring tools for website and platform usage insights (data is anonymized/aggregated)
  • Authentication Providers: Google OAuth for social sign-in functionality
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your data may be transferred as part of the transaction
  • Legal Requirements: When required by law, court order, or governmental authority, or to protect our rights and the safety of our users
  • With Your Consent: When you explicitly authorize sharing (e.g., sharing sites publicly or with specific team members)

5. Data Security

We implement industry-standard security measures to protect your data:

  • Encryption: All data in transit is encrypted using TLS 1.2+ (HTTPS). Data at rest is encrypted using AES-256 encryption
  • Access Controls: Role-based access controls, multi-factor authentication, and session management with automatic timeouts
  • Infrastructure: Hosted on industry-certified, secure cloud infrastructure with regular security patches and monitoring
  • Payment Security: Payment data is processed by PCI-DSS Level 1 compliant payment processors. We never store full credit/debit card numbers on our servers
  • Session Management: Secure session tokens, device tracking, and ability to terminate sessions remotely
  • Regular Audits: Periodic security assessments and vulnerability scanning

While we strive to protect your personal data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security but are committed to promptly notifying affected users in the event of a data breach.

6. Data Retention

  • Account Data: Retained for the duration of your active account and for up to 90 days after account deletion to allow for recovery
  • Survey & Project Data: Stored according to your subscription plan. Default retention is 2 months for Basic/Professional plans after survey completion, with extended retention available on Enterprise plans
  • Payment Records: Retained for 7 years as required by Indian tax and financial regulations
  • Communication Records: Support tickets and correspondence retained for 3 years for quality and dispute resolution purposes
  • Analytics Data: Anonymized analytics data may be retained indefinitely for trend analysis
  • Email Marketing Data: Your email preferences and consent records are retained until you withdraw consent or delete your account

You may request early deletion of your data at any time, subject to legal retention requirements.

7. Email Communications & Anti-Spam Policy

We are committed to responsible email communication practices and comply with applicable anti-spam laws including CAN-SPAM Act, GDPR, and India's Information Technology Act.

7.1 Types of Emails We Send

  • Transactional Emails: Account verification, password reset, payment receipts, processing notifications, security alerts, and session activity notices. These are essential for service operation and cannot be unsubscribed from while maintaining an active account
  • Service Notifications: Platform updates, maintenance windows, data processing completion alerts, and survey result availability
  • Marketing Emails: Product announcements, feature updates, newsletters, tips and tutorials, and promotional offers. Sent only with your explicit opt-in consent

7.2 Your Email Preferences

  • You can unsubscribe from marketing emails at any time using the "Unsubscribe" link in every marketing email
  • You can manage your email notification preferences from your account dashboard settings
  • Unsubscribe requests are honored within 48 hours

7.3 Complaint Handling

If you believe you have received unsolicited email from us, please contact us at privacy@aeroyantra.com. We take all spam complaints seriously and will investigate and resolve them promptly. We maintain a suppression list of users who have opted out, and we never re-add unsubscribed addresses.

8. International Data Transfers

Your data is primarily processed and stored on servers located in India. Depending on service requirements, your data may also transit through or be stored in data centers in other regions. When we transfer data internationally, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by relevant authorities
  • Data processing agreements with all third-party service providers
  • Compliance with applicable cross-border data transfer regulations

9. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Right to Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete personal data
  • Right to Erasure: Request deletion of your personal data (subject to legal retention obligations)
  • Right to Restrict Processing: Request that we limit how we use your data
  • Right to Data Portability: Request your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact our Data Protection Officer at dpo@aeroyantra.com. We will respond to your request within 30 days.

If you are located in the EEA, you also have the right to lodge a complaint with your local data protection authority.

10. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected data from a child under 18, we will take steps to delete such information promptly. If you believe we have collected information from a minor, please contact us immediately at privacy@aeroyantra.com.

11. Third-Party Links

Our Services may contain links to third-party websites, plugins, or services (e.g., Google Maps, Mapbox, social media platforms). We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party services you access through our platform.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes:

  • We will post the updated policy on this page with a revised "Last Updated" date
  • We will notify registered users via email for significant changes
  • We may display a prominent notice on our platform

Your continued use of our Services after any changes constitutes acceptance of the updated Privacy Policy.

13. Grievance Officer

In accordance with the Information Technology Act, 2000 and the rules made thereunder, the name and contact details of the Grievance Officer are as follows:

Grievance Officer / Data Protection Officer

Aeroyantra Technologies Private Limited

E-49/5, First Floor, Okhla Industrial Area Phase-2

New Delhi, India 110020

Email: dpo@aeroyantra.com

General Inquiries: privacy@aeroyantra.com

Phone: +91 6362146920

We aim to resolve all complaints and grievances within 30 days of receipt.