Dociphi is committed to protecting the privacy and security of your personal data or Personally
aware of how & why we use such personal data or PII, and the rights you have regarding your personal
data or PII. This policy describes how Dociphi process your personal data or PII that you share with us to
This policy applies to all current and former data subjects of Dociphi using this application. This policy
does not form part of any contract to provide services. We may update this policy at any time,
subsequent to which you may be made aware of the change as soon as possible.
Though the General Data Protection Regulation (GDPR) has been considered as the baseline for this
policy, data protection and privacy legislations of other jurisdictions that are largely applicable to
Dociphi have also been taken into consideration.
In this policy, personal data / PII refers to any information, whether recorded in a material form or not,
from which the identity of an individual is apparent or can be reasonably and directly ascertained by
the entity holding the information, or when put together with other information would directly and
certainly identify an individual.
Dociphi may collect/process the following categories of personal data / PII but not limited to:
Dociphi collects personal data / PII about data subjects through the application and the files uploaded
on the application directly from you.
Dociphi may collect additional personal data / PII, if required, throughout the period you use the
Dociphi is an AI-enabled Intelligent document processing platform which allows the user to perform
end to end document management. Your personal data / PII may therefore be processed for the
Your personal data / PII will be processed only for the purposes explained above in this policy. If we
need to use your personal data / PII for an unrelated purpose, we will notify you and explain the lawful
basis which allows us to do so before processing for the new purpose (unless we are required by law to
refrain from sharing the information with you).
Your information will be accessed by authorized personnel only. The access for these personnel will be
restricted and they will access it only for performance of their roles, in a manner consistent with this
We shall only transfer personal data to, or allow access by, third parties when it is assured that the
information shall be processed legitimately and protected appropriately by the recipient. Where third
party processing takes place, we shall first identify if, under applicable law, the third party is considered
a data controller, or a data processor of the personal data being transferred.
We require all third parties to respect the security of your personal data and to treat it in accordance
with the law. We do not allow our third-party service providers to use your personal data for their own
purposes and only permit them to process your personal data for specified purposes and in accordance
with our instructions.
Your information may be transferred to, and maintained on computers located outside of your state,
province, country or other governmental jurisdiction where the data protection laws may differ from
those in your jurisdiction.
We take steps to ensure that the recipients of the personal data / PII act in accordance with applicable
law and provide an adequate level of protection, including appropriate technical and organizational
security measures. We ensure this through safeguards such as signing inter- service agreements and
data processing agreements.
We do not sell your personal data / PII for monetary consideration.
We have put in place appropriate security measures to prevent your personal data from being
accidentally lost, used, altered, disclosed or accessed in an unauthorized way. We also limit access to
your personal data to those employees, agents, contractors and third parties who have a justified
business need to know. They will process your personal data on our specific instructions and are subject
to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you
and any applicable regulator of a breach where we are legally required to do so.
We will only retain your personal data for as long as reasonably necessary to fulfill the purposes we
collected it. We may retain your personal data for a longer period in the event of a complaint or if we
reasonably believe there is a prospect of litigation in respect to our relationship with you.
To determine the appropriate retention period for personal data, we consider the contractual terms,
amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorized use or
disclosure of your personal data, the purposes for which we process your personal data and whether we
can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting
or other requirements.
In some circumstances we will anonymise your personal data (so that it can no longer be associated
with you) for research or statistical purposes, in which case we may use this information indefinitely
without further notice to you.
If you have any questions about this policy or how we handle your personal data or PII, please contact
It is important that the personal data or PII we hold about you is accurate and current. Please keep us
informed if your personal data or PII changes during your working relationship with us.
You have the following rights with respect to your personal data / PII in certain circumstances:
You may request to exercise any of these rights through the Data Privacy Officer at Privacy@quantiphi.com.