Privacy Policy
for StrideShip
Last Updated: April 7, 2026
1. Introduction
StrideShip ("we," "our," or "us"), operated by Gaarth Godbole and Siddhant Vaidya, is a logistics automation infrastructure provider based in Mumbai, India. We are committed to protecting the integrity and confidentiality of the trade data processed through our platform. This Privacy Policy outlines how we handle data as a Data Fiduciary (for your account info) and a Data Processor (for the logistics documents you automate).
2. Information We Collect
We distinguish between the information required to manage our relationship with you and the data you provide for automation.
✦ Account & Contact Information
Name, professional email address (e.g., Gmail/Outlook), phone number, and company designation.
✦ Operational Trade Data (The "Automation Input")
When using our services, you may provide unstructured data in the form of PDF invoices, Excel packing lists, and email text. This data often contains third-party information such as consignee details, HSN codes, and commercial values.
✦ System Metadata
IP addresses, logs of successful extractions, and error reports required for system maintenance and security.
3. Purpose of Processing (The "Why")
We process information strictly for the following purposes:
- ✓
Extraction & Normalization: To convert unstructured logistics documents into structured, ERP-ready data.
- ✓
Compliance Validation: To cross-reference data against government prerequisites (e.g., BIS, LMPC, HSN) as requested by the user.
- ✓
The "Review-Only" Workflow: To present extracted data back to the user for final audit and submission to their internal systems.
- ✓
Zero-Training Guarantee: StrideShip does NOT use your proprietary trade data, pricing, or client lists to train our internal AI models. Your data is used solely to fulfill your specific automation request.
4. Legal Basis for Processing
Under the DPDP Act 2023 (India), we process data based on:
✦ Contractual Necessity
Processing is required to perform the services outlined in your Pilot or Service Agreement.
✦ Consented Use
Explicit authorization provided when you connect your data sources (Gmail/Excel) to our Logic Layer.
5. Data Retention & Deletion
Unlike general AI apps, StrideShip follows an Ephemeral Processing Model:
✦ Automation Data
Once a document is processed and successfully ingested into your ERP or downloaded, the source data is flagged for deletion. We do not maintain a permanent archive of your commercial invoices.
✦ Account Data
Retained as long as your account is active or as required by Indian tax and corporate laws.
6. Data Security
Given our infrastructure (Local Hosting + Cloudflare Tunnels), we implement:
✦ Encryption in Transit
All data moving between your systems and our server is encrypted via SSL/TLS.
✦ Data Isolation
Each client’s data is processed in a strictly isolated environment (Docker containers) to ensure no cross-contamination of trade secrets.
✦ Local Sovereignty
As we are India-based, your data processing remains within the jurisdiction of Indian law.
7. Third-Party Disclosures
We do not sell, rent, or trade your data. Disclosure only occurs with:
✦ Your Internal Systems
Pushing data to your specified ERP (e.g., Softlink, SAP, etc.).
✦ Infrastructure Providers
Specialized hosting (e.g., Heroku for front-end) or security services (e.g., Cloudflare) that assist in delivering the service.
8. Your Rights (DPDP Act Compliance)
As a "Data Principal" under Indian law, you have the right to:
✦ Access & Review
Request a summary of the data we have processed for you.
✦ Correction & Erasure
Request the update or permanent deletion of your data from our system logs.
✦ Grievance Redressal
If you have concerns, you may contact our designated Grievance Officer.
9. Contact Information
For any privacy-related inquiries or to exercise your data rights, please contact: