Skip to content

Legal

Privacy Policy

How GrowQR collects, uses, and protects your personal data, written to comply with India's Digital Personal Data Protection Act, 2023.

Last updated: July 14, 2026Governing law: DPDP Act, 2023 (India)
1

Who we are and scope

GrowQR operates globally, headquartered at 103 Carnegie Center Drive, Princeton, NJ 08540, USA, with an operating office at 4th Floor, Wesource Building, Plot No. 8, Sector 125, Noida, Uttar Pradesh 201313, India. Where you are located in India, or GrowQR offers the Services to you in India, GrowQR acts as a “Data Fiduciary” and you as a “Data Principal” under the Digital Personal Data Protection Act, 2023 (“DPDP Act”), which applies to this processing regardless of where GrowQR’s servers are located, by operation of Section 3(b) of the DPDP Act.

2

Personal data we collect

  • Identity and account data: name, email, phone number, date of birth (for age verification), password, and account preferences.
  • Profile and career data: resumes, work history, education, skills, career preferences, onboarding responses, and publicly available profile information you explicitly ask GrowQR to import (for example, from a connected professional network).
  • Interview and roleplay recordings: audio and video captured during practice sessions with an Agent, which may contain your voice and facial characteristics.
  • Derived and inferred data: your QX-Score, skill-gap analyses, and other outputs GrowQR’s Agents generate from the data above.
  • Agent activity data: records of Autonomous Actions taken on your behalf (for example, job applications submitted or content published), and your authorisation settings for each Agent.
  • Credential data: records underlying any Verified Credential, together with the associated on-chain reference described in Clause 7 of the Terms of Service.
  • Payment data: transaction records; card and bank details are collected and stored directly by our payment processor, not by GrowQR.
  • Usage and device data: session activity, log data, device and browser information, and approximate location, collected automatically through cookies and similar technologies.
  • Organisation User data: where you use the Services on behalf of an enterprise, recruiter, startup, or institute, your business contact details and the searches, shortlists, and communications you conduct through the Services.
3

How and why we use personal data

GrowQR processes Personal Data for the following purposes, on the basis of your consent given at onboarding or at first use of the relevant feature, or another valid ground for processing recognised under the DPDP Act:

  • to create and administer your account and provide the Services you request, including Agent-generated recommendations and AI Output;
  • to calculate your QX-Score and generate Verified Credentials;
  • to enable Autonomous Actions you have specifically authorised (Clause 5 of the Terms of Service);
  • to make your profile discoverable to Organisation Users where you have chosen to make it visible;
  • to facilitate Coach bookings and process related payments;
  • to communicate with you, including service updates and, where you have separately opted in, marketing communications;
  • to maintain security, detect fraud or misuse, and comply with legal obligations;
  • to improve GrowQR’s own proprietary AI systems, using de-identified or aggregated data, unless you opt out (see Clause 6 of the AI Transparency & Responsible Use Policy).

GrowQR does not use your Personal Data to train publicly available third-party foundation AI models.

4

Eligibility and account registration

  • You must be at least eighteen (18) years of age, or the age of majority in your jurisdiction of residence, and possess the legal capacity to contract under Section 11 of the Indian Contract Act, 1872, to register for or use the Services.
  • You represent and warrant that all information you provide during registration and thereafter is true, accurate, current, and complete, and you undertake to promptly update such information if it changes.
  • You are solely responsible for maintaining the confidentiality of your login credentials and for all activities that occur under your account. You must notify GrowQR immediately at support@growqr.ai upon becoming aware of any unauthorised use of your account or breach of security.
  • Accounts are personal and non-transferable. You may not create an account on behalf of another person without authorisation, share your account credentials, or sell, rent, or otherwise transfer your account to any third party.
  • GrowQR reserves the right to refuse registration, or to suspend or terminate an existing account, where it reasonably believes the information provided is false, misleading, or in breach of these Terms, subject to Clause 11 below.
5

How we share personal data

  • Third-Party Providers: GrowQR shares Personal Data with AI, cloud-hosting, analytics, and payment vendors strictly as needed to provide the Services, under contractual terms requiring them to protect the data and use it only for the purposes GrowQR specifies.
  • Organisation Users: Profile data, QX-Scores, and Verified Credentials are shared with an Organisation User only where you have made the relevant element visible or have applied to that Organisation User’s posted opportunity, as described in Clause 3 of the Terms of Service.
  • Coaches: Where you book a session, GrowQR shares the information necessary for that session (such as your name and the topic of the session) with the relevant Coach.
  • Legal and safety disclosures: GrowQR may disclose Personal Data where required by law, court order, or a lawful direction of a government authority, or to protect the rights, safety, or property of GrowQR, its Users, or the public.
  • GrowQR does not sell Personal Data.
6

Cross-border data transfer

Because GrowQR operates internationally, with its headquarters in the United States and infrastructure and Third-Party Providers that may be located in other countries, your Personal Data may be transferred to, stored, and processed in jurisdictions outside India. GrowQR transfers Personal Data outside India only to countries not restricted by the Central Government under the DPDP Act, and requires recipients to apply data-protection standards consistent with the DPDP Act through contractual or comparable safeguards.

7

Data retention and deletion

  • GrowQR retains Personal Data for as long as your account is active and for a reasonable period thereafter to comply with legal obligations, resolve disputes, and enforce agreements, after which it is deleted or anonymised.
  • Interview and roleplay recordings are retained only for the period necessary to deliver feedback and improve the relevant Agent, or such longer period as you elect, and may be deleted by you at any time through account settings.
  • Where Personal Data underlies a Verified Credential anchored to a distributed ledger, GrowQR will delete the off-chain record upon a valid erasure request and, where technically supported, revoke the on-chain reference, subject to the technical limitation described in Clause 7 of the Terms of Service.
8

Your rights as a data principal

Subject to the DPDP Act and its rules, you have the right to:

  • obtain a summary of the Personal Data GrowQR holds about you and the processing activities undertaken;
  • seek correction, completion, updating, and erasure of your Personal Data;
  • withdraw consent at any time, without affecting the lawfulness of processing before withdrawal;
  • nominate another individual to exercise these rights on your behalf in the event of your death or incapacity;
  • obtain an explanation of the principal factors contributing to your QX-Score and dispute an inaccurate factor;
  • lodge a grievance with GrowQR’s Grievance Officer, and thereafter with the Data Protection Board of India.

To exercise these rights, write to support@growqr.ai. GrowQR will respond within the timelines prescribed under the DPDP Act.

9

Security

GrowQR applies administrative, technical, and physical safeguards, including access controls and encryption in transit, to protect Personal Data, consistent with the reasonable security practices contemplated under Section 43A of the Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Sensitive Personal Data or Information) Rules, 2011. No method of transmission or storage is completely secure, and GrowQR cannot guarantee absolute security.

In the event of a Personal Data breach, GrowQR will take remedial measures and provide notifications to the extent and within the timelines required under the DPDP Act.

10

Cookies and similar technologies

GrowQR uses cookies and similar technologies to operate the Services, remember your preferences, and understand usage patterns. You can control cookies through your browser settings; disabling certain cookies may affect the functionality of the Services.

11

Changes to this policy

GrowQR may update this Privacy Policy to reflect technological, legal, or operational changes. Material changes will be notified in-app or by email at least fifteen (15) days before taking effect, except where a shorter period is required by Applicable Law. Continued use of the Services after that date constitutes acceptance of the updated Policy.

12

Contact and grievance redressal

Grievance Officer
GrowQR Private Limited
General Contact
support@growqr.ai
Delhi NCR Office
4th Floor, Wesource Building, Plot No. 8, Sector 125, Noida, Uttar Pradesh 201313
Privacy Policy | GrowQR