Privacy Policy

Introduction

01 Who We Are

Zeroleap Technologies Private Limited (“Zeroleap”, “we”, “our”, or “us”) operates a 100% owned electric vehicle (EV) fleet with dedicated charging infrastructure and a centralized Fleet Network Operations Centre (NOC), built specifically for corporate employee transportation across India.

Our services include end-to-end EV-based employee transport solutions for enterprise clients, enabling them to reduce Scope 3 emissions with auditable, real-time ESG data. We are reachable at zeroleap.in.

This Privacy Policy applies to all users of our website (zeroleap.in), corporate clients, their employees using our transport services, and any individuals who interact with us via digital or physical channels.

02 Information We Collect

We collect personal data necessary to deliver safe, efficient, and auditable EV transport services. This includes:

Category	Examples	Source


Location Data	Pickup/drop coordinates, route history	Fleet NOC system, mobile app
Trip Data	Journey logs, timestamps, distance, vehicle ID	Fleet telematics system
Corporate Data	Company name, department, shift timings	Client onboarding
Usage Data	Website visits, pages viewed, IP address, browser type	Automatically via cookies/logs
Communication Data	Emails, support queries, feedback	Direct communication

We do not collect sensitive personal data such as financial account credentials, Aadhaar numbers, biometrics, or health data unless expressly required and consented to for a specific purpose.

03 How We Use Your Information

Your data is used solely for legitimate operational and business purposes:

Transport Operations: Planning routes, dispatching vehicles, tracking trips in real time via our Fleet NOC.
ESG Reporting: Generating auditable CO₂ abatement reports and Scope 3 emission reduction data for our corporate clients — derived from actual km driven, not estimates.
Safety & Compliance: Monitoring driver performance, ensuring on-time pickups/drops, and maintaining safety standards.
Client Communication: Sending trip notifications, service updates, and operational alerts to employees and HR/admin contacts.
Account Management: Onboarding corporate clients, managing employee rosters, and billing.
Service Improvement: Analysing fleet performance data to improve uptime, efficiency, and sustainability outcomes.
Legal Obligations: Complying with applicable Indian laws, regulations, and court orders.
Website Analytics: Understanding visitor behaviour to improve our website experience.

We do not sell, rent, or trade your personal data to any third party for their marketing purposes.

04 Legal Basis for Processing

We process your personal data under the following legal bases as recognised under the Digital Personal Data Protection (DPDP) Act, 2023 and the Information Technology Act, 2000:

Consent: Where you or your employer has provided explicit consent for us to process your data.
Contractual Necessity: Processing required to fulfil our service agreements with corporate clients.
Legitimate Interests: For fleet safety monitoring, service quality improvement, and ESG reporting.
Legal Compliance: Where processing is necessary to meet our obligations under applicable law.

05 Sharing Your Information

We share personal data only in the following circumstances:

Corporate Clients: Trip data and employee transport records are shared as part of the contracted service.
Service Partners: Technology providers, cloud hosting services, and analytics platforms — bound by strict data processing agreements.
Regulatory Authorities: When required by law, court order, or government directive.
Business Transfers: In the event of a merger, acquisition, or asset sale, data may be transferred to the successor entity with prior notice.

All third parties are contractually obligated to maintain appropriate data protection standards consistent with this Policy and applicable law.

06 Data Retention

We retain your personal data only for as long as necessary for the purposes described in this Policy, or as required by law:

Data Type	Retention Period
Trip & location logs	3 years (for ESG audit purposes)
Employee contact data	Duration of client contract
Corporate client data	As shared by client
Website usage/analytics data	12 months
Communication records	2 years

After the applicable retention period, data is securely deleted or anonymised.

07 Your Rights

Under the DPDP Act 2023 and applicable Indian law, you have the following rights regarding your personal data:

Right to Access: Request a copy of the personal data we hold about you.
Right to Correction: Request correction of inaccurate or incomplete data.
Right to Erasure: Request deletion of your data, subject to legal retention requirements.
Right to Grievance Redressal: Lodge a complaint with our Grievance Officer (see Section 13).
Right to Withdraw Consent: Withdraw consent at any time where processing is consent-based (note: this may affect our ability to deliver services).
Right to Nominate: Nominate another person to exercise your rights in the event of death or incapacity.

To exercise any of these rights, write to us at info@zeroleap.in. We will respond within 30 days of receiving your request.

08 Data Security

We implement industry-standard technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. These include:

Encrypted data transmission (TLS/HTTPS) for all web and API communications.
Role-based access controls limiting data access to authorised personnel only.
Secure cloud infrastructure with regular security audits.
Centralised Fleet NOC with monitored access to telematics data.
Data processing agreements with all third-party vendors.

In the event of a data breach that is likely to result in harm, we will notify affected individuals and the relevant authority in accordance with the DPDP Act 2023.

09 Cookies & Tracking

Our website (zeroleap.in) uses cookies and similar technologies to enhance your experience and understand how visitors interact with our site.

Cookie Type	Purpose
Essential Cookies	Necessary for website functionality; cannot be disabled.
Analytics Cookies	Help us understand page visits and user behaviour (e.g., Google Analytics).
Preference Cookies	Remember your settings and preferences.

You can control or disable non-essential cookies through your browser settings. Note that disabling cookies may affect website functionality.

10 Third-Party Links

Our website may contain links to third-party websites, partner pages, or social media platforms. We are not responsible for the privacy practices of those websites. We encourage you to review their privacy policies before sharing any personal information.

11 Children’s Privacy

Our services are designed exclusively for corporate clients and their adult employees. We do not knowingly collect personal data from individuals under the age of 18. If you believe we have inadvertently collected such data, please contact us immediately and we will delete it promptly.

12 Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or data practices. When we do, we will:

Update the “Effective Date” at the top of this page.
Notify corporate clients via email for material changes.
Post a notice on zeroleap.in for general updates.

We encourage you to review this Policy periodically. Continued use of our services after changes constitutes acceptance of the revised Policy.

Grievance Officer

In accordance with the Information Technology Act, 2000 and the DPDP Act, 2023, to address privacy-related concerns, please contact:

Zeroleap Technologies Private Limited
📧 info@zeroleap.in

⏱ Response within 30 days of receipt of complaint

📬 Contact Us

For any questions, data requests, or concerns about this Privacy Policy, reach out to us:

🌐 Website: zeroleap.in

📧 Email: info@zeroleap.in

🏢 Zeroleap Technologies Private Limited