PRIVACY POLICY 

Last Updated: 26.02.2026 

Effective Date: 26.02.2026 

Kronicle Research Private Limited ("Company", "we", "us", or "our") respects your right to privacy and is committed to protecting personal data in accordance with the Digital Personal Data Protection Act, 2023 ("DPDP Act"), applicable Indian laws, and internationally recognised privacy principles. 

This Privacy Policy explains how we collect, use, disclose, store, and safeguard personal data when you access or use our websites, applications, APIs, and legal technology services (collectively, the "Services"), and how you may exercise your rights. 

1. Applicability of this Privacy Policy 

This Privacy Policy applies where the Company acts as a Data Fiduciary / Data Controller, including personal data collected through: 

• Our websites and marketing pages; 
• Account registration and administration; 
• Sales, support, and communications; 
• Events, surveys, and business interactions. 

The Services are offered to organizations ("Customers") under separate contractual arrangements such as platform agreements, evaluation agreements, or terms of service ("Customer Agreements"). 

Customer Data and Content (including documents, inputs, and outputs processed within the Services) are processed by the Company solely as a Data Processor on behalf of Customers and are governed exclusively by the applicable Customer Agreement and Data Processing Addendum. This Privacy Policy does not apply to such Customer Data or Content. 

2. Definitions 

• Personal Data: Any data about an identifiable individual. 
• Data Principal: The individual to whom Personal Data relates. 
• Data Fiduciary: The entity determining the purpose and means of processing (the Company). 
• Data Processor: Any person processing Personal Data on behalf of the Company. 
• Residual Information: Aggregated, anonymised, or de-identified data that cannot reasonably identify an individual. 

3. Personal Data We Collect 

(A) Information You Provide Directly 

• Full name 
• Professional email address 
• Phone number 
• Organization and designation 
• Account credentials 
• Billing and invoicing details 
• Communications and support queries 

(B) Payment Information 

Payments are processed through authorised payment partners such as Razorpay. The Company does not store full card or banking credentials. Payment data is processed in accordance with applicable RBI regulations and the payment partner’s privacy practices. 

(C) Information Collected Automatically 

• IP address 
• Device identifiers 
• Browser type and operating system 
• Log files and access timestamps 
• Usage metrics and feature interaction data 
• Cookies and similar tracking technologies 

Cookies are used to operate, analyse, and improve the Services. For more details, please refer to our Cookie Policy. 

(D) Information from Third Parties 

We may receive Personal Data from trusted third parties such as: 

• Security and fraud-prevention partners; 
• Marketing and analytics vendors; 
• Event organisers and professional networks. 

4. Purposes of Processing 

We process Personal Data only for lawful and specified purposes, including: 

• Providing, operating, and maintaining the Services; 
• Account creation, authentication, and administration; 
• Billing, invoicing, and payment processing; 
• Customer support and issue resolution; 
• Service improvement, analytics, and research; 
• Personalising user experience; 
• Marketing communications (where permitted); 
• Fraud prevention and security monitoring; 
• Compliance with legal, regulatory, and contractual obligations. 

Where required, processing is carried out based on consent, contractual necessity, legal obligation, or legitimate interests in accordance with applicable law. 

5. Consent and Withdrawal 

By accessing or using the Services, you provide free, specific, informed, and unambiguous consent to the processing of your Personal Data for the purposes described in this Privacy Policy. 

You may withdraw consent at any time by: 

• Writing to us at support@lexops.co; or 
• Using available account controls or unsubscribe mechanisms. 

Withdrawal of consent will not affect processing already undertaken but may limit our ability to provide certain Services. 

6. Data Sharing and Disclosure 

We share Personal Data only to the extent necessary and for lawful purposes, including with: 

(A) Service Providers and Subprocessors 

Third-party vendors who support our operations, such as: 

• Cloud infrastructure providers; 
• Payment processors; 
• Analytics and monitoring services; 
• Customer support platforms. 

All such providers are contractually bound to: 

• Process data solely on our instructions; 
• Maintain confidentiality; 
• Implement reasonable security safeguards; 
• Comply with applicable data protection laws. 

(B) Legal and Regulatory Authorities 

We may disclose Personal Data where required by law, court order, or regulatory request, or to protect legal rights, prevent fraud, or ensure platform security. 

(C) Corporate Transactions 

In the event of a merger, acquisition, restructuring, or sale of assets, Personal Data may be disclosed as part of due diligence and transferred to a successor entity, subject to appropriate safeguards. 

(D) Residual and De-Identified Information 

We may use Residual Information for analytics, research, service improvement, reporting, and business operations. Such data is not considered Personal Data under applicable law. 

7. Data Security 

We implement commercially reasonable technical and organisational measures to protect Personal Data, including: 

• Role-based access controls; 
• Encryption of sensitive data; 
• Secure hosting environments; 
• Regular security reviews and audits. 

While we take data security seriously, no system can be guaranteed to be completely secure. 

8. International Data Transfers 

Personal Data may be processed or stored outside India, including in jurisdictions with different data protection laws. Where required, we implement appropriate safeguards such as contractual protections, adequacy mechanisms, or other lawful transfer bases to ensure an adequate level of protection. 

9. Data Retention 

We retain Personal Data only for as long as necessary to: 

• Fulfil the purposes outlined in this Privacy Policy; 
• Comply with legal, regulatory, and contractual obligations; 
• Resolve disputes and enforce agreements. 

When no longer required, Personal Data is securely deleted or irreversibly anonymised. 

10. Minors’ Data 

The Services are intended for professional use only and are not directed at minors. We do not knowingly collect Personal Data from individuals under 18 years of age. 

11. Your Rights 

Subject to applicable law, you may have the right to: 

• Access and review your Personal Data; 
• Request correction or erasure; 
• Withdraw consent; 
• Object to certain processing; 
• Lodge a complaint with a competent data protection authority. 

Requests may be submitted to support@lexops.co. 

12. Updates to this Privacy Policy 

We may update this Privacy Policy from time to time. Material changes will be communicated through the Services or by other appropriate means. Continued use of the Services constitutes acceptance of the updated Privacy Policy. 

13. How to Contact Us 

Kronicle Research Private Limited 

D-77, Defence Colony 

New Delhi – 110024, India 

Email: support@lexops.co