Policy Notice
Privacy Policy Updates
The Privacy Policy and related policies of TapVisit, operated by 98 Parallel Business Solutions LLP, may be updated from time to time.
The version published on this website shall always be the current and legally applicable version.
TOS
Privacy Policy
This Privacy Policy outlines how your information is handled when you interact with our Digital Profile, Digital Store, and NFC-enabled devices. Your data is securely processed, never sold, and used solely to provide and enhance our services in compliance with applicable privacy regulations.
Last updated: 01-02-2026
1. INTRODUCTION AND SCOPE
1.1 Purpose of this Privacy Policy
1.2 Applicability
1.3 Relationship with Terms of Service
2. APPLICABLE DATA PROTECTION LAWS
3. ROLE OF THE COMPANY AND USERS
3.1 Company as Data Fiduciary (Limited)
3.2 Users as Independent Data Fiduciaries
4. PERSONAL DATA COLLECTED
4.1 Account and Registration Data
4.2 Subscription and Billing Data
4.3 User-Provided Content and Profile Data
4.4 Technical and Usage Data
5. PURPOSES OF DATA PROCESSING
6. CONSENT AND LAWFUL BASIS
7. PUBLICLY AVAILABLE USER CONTENT
8. DATA SHARING AND DISCLOSURE
9. DATA STORAGE AND SECURITY
10. DATA RETENTION AND DELETION
11. DATA PRINCIPAL RIGHTS
12. DATA BREACH RESPONSE
13. GRIEVANCE REDRESSAL
14. COOKIES AND TRACKING
15. CHANGES TO THIS PRIVACY POLICY
16. GOVERNING LAW AND JURISDICTION
INTRODUCTION AND SCOPE
1.1 Purpose of this Privacy Policy
This Privacy Policy describes how 98 Parallel Business Solutions LLP collects, uses, stores, processes and discloses personal data in connection with the operation of the TapVisit platform and services.
1.2 Applicability
This Privacy Policy applies to all users of TapVisit, including individual users, business or professional users and minor users permitted to access the platform strictly for educational purposes. By accessing or using TapVisit, the user agrees to the collection and processing of personal data as described herein.
1.3 Relationship with Terms of Service
This Privacy Policy forms an integral part of the Terms of Service. In the event of any conflict or inconsistency between this Privacy Policy and the Terms of Service, the Terms of Service shall prevail to the maximum extent permitted under applicable law.
APPLICABLE DATA PROTECTION LAWS
This Privacy Policy is issued in accordance with and shall be governed by the provisions of the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000, and all rules, regulations, directions and guidelines issued thereunder, as amended from time to time.
Nothing contained in this Privacy Policy shall be construed as imposing any obligation, standard or liability on 98 Parallel Business Solutions LLP beyond those expressly mandated under applicable Indian law.
ROLE OF THE COMPANY AND USERS
3.1 Company as Data Fiduciary (Limited)
98 Parallel Business Solutions LLP acts as a data fiduciary only in respect of limited personal data collected directly for account creation, authentication, subscription management, billing, security, compliance and operation of the TapVisit platform. Such processing is limited to lawful purposes necessary for providing and maintaining the services.
3.2 Users as Independent Data Fiduciaries
Users who upload, display, collect or process personal data of any third party through TapVisit, including through digital profiles or digital stores, act as independent data fiduciaries under applicable law. Such users are solely responsible for ensuring lawful collection, valid consent, notice, accuracy, retention, security and compliance with all obligations under the Digital Personal Data Protection Act, 2023 and other applicable laws. The Company shall not be responsible or liable for any non-compliance by users.
PERSONAL DATA COLLECTED
4.1 Account and Registration Data
Personal data provided by users at the time of account creation or registration, including name, email address, phone number, login credentials and other information required to create and manage a TapVisit account.
4.2 Subscription and Billing Data
Information related to subscriptions, payments and invoicing, including plan details, transaction references, billing address and tax information. Payment card or banking details are processed by authorised third-party payment gateways and are not stored by the Company.
4.3 User-Provided Content and Profile Data
Personal data and other information voluntarily uploaded, displayed or shared by users through digital profiles, digital stores or other features of TapVisit, including contact details, links, images, descriptions and similar content.
4.4 Technical and Usage Data
Technical information automatically generated during use of the platform, including IP address, device information, browser type, operating system, access logs, usage patterns and related diagnostic data.
PURPOSES OF DATA PROCESSING
Personal data is processed for the following purposes:
a. to provide, operate and maintain the TapVisit platform and services;
b. to create and manage user accounts and authenticate access;
c. to manage subscriptions, billing and invoicing;
d. to ensure platform security, prevent fraud and misuse, and enforce terms and policies;
e. to comply with legal, regulatory and contractual obligations; and
f. to improve platform functionality, performance and user experience.
CONSENT AND LAWFUL BASIS
Personal data is processed on the basis of user consent and such other lawful bases as permitted under applicable law, including deemed consent where applicable. By accessing or using TapVisit, the user provides consent to the collection and processing of personal data for the purposes set out in this Privacy Policy.
Where users upload or process personal data of third parties through TapVisit, users represent and warrant that they have obtained all necessary consents or have a lawful basis for such processing in accordance with applicable law.
PUBLICLY AVAILABLE USER CONTENT
User content published on TapVisit, including digital profiles, digital stores, links and related information, may be publicly accessible to third parties through URLs, QR codes, NFC-enabled devices or other means.
Users acknowledge and agree that any personal data or information made publicly available through TapVisit is done at the user’s sole discretion and risk. The Company does not control, restrict or monitor how third parties may access, use, copy or further disseminate such publicly available user content and shall not be liable for any consequences arising therefrom.
DATA SHARING AND DISCLOSURE
Personal data may be shared or disclosed by the Company only in the following circumstances:
a. with third-party service providers engaged for hosting, infrastructure, security, analytics, customer support or operational purposes, subject to appropriate contractual safeguards;
b. to comply with applicable laws, regulations, court orders or directions from competent governmental or regulatory authorities;
c. in connection with any merger, acquisition, restructuring, business transfer or sale of assets involving the Company; or
d. where disclosure is otherwise required or permitted under applicable law.
The Company does not sell personal data to third parties.
DATA STORAGE AND SECURITY
Personal data processed by the Company is stored on servers located in India through third-party cloud infrastructure providers engaged by the Company.
The Company implements reasonable technical and organisational security measures in accordance with industry standards to protect personal data against unauthorised access, disclosure, alteration or destruction. The user acknowledges that no system is completely secure and that the Company does not guarantee absolute security of data, except as required under applicable law.
DATA RETENTION AND DELETION
Personal data is retained for as long as necessary to provide the services, comply with legal obligations, resolve disputes and enforce applicable terms and policies.
Upon deletion or termination of a user account, personal data and user content may be retained for a period of up to thirty (30) days, after which such data may be deleted or anonymised, unless a longer retention period is required or permitted under applicable law.
DATA PRINCIPAL RIGHTS
Data principals may exercise such rights as are expressly provided under applicable law, including the Digital Personal Data Protection Act, 2023, in relation to their personal data processed by the Company.
The exercise of such rights shall be subject to verification of identity, applicable legal limitations, and the Company’s obligations under law. The Company reserves the right to refuse or restrict requests where permitted under applicable law, including where compliance is not required, is disproportionate, or would prejudice legal, security or operational interests.
DATA BREACH RESPONSE
In the event of a personal data breach, the Company shall take reasonable steps to assess and mitigate the impact of such breach in accordance with applicable law.
The Company shall notify the appropriate authority and affected users only where such notification is expressly required under the Digital Personal Data Protection Act, 2023 or other applicable law.
GRIEVANCE REDRESSAL
The Company has established a grievance redressal mechanism in accordance with applicable law. Any person may submit a grievance or complaint relating to the processing of personal data in the manner specified on the TapVisit website.
The name and contact details of the Grievance Officer shall be published on the TapVisit website. Grievances shall be addressed within the timelines prescribed under applicable law. The Company reserves the right to seek additional information and to reject or close grievances that are incomplete, frivolous or not maintainable under applicable law.
COOKIES AND TRACKING
TapVisit may use cookies and similar tracking technologies to enable platform functionality, enhance user experience, analyse usage patterns and improve services.
Users may manage or disable cookies through their browser or device settings. Disabling cookies may affect the availability or functionality of certain features of the platform.
CHANGES TO THIS PRIVACY POLICY
98 Parallel Business Solutions LLP reserves the right to modify, update or revise this Privacy Policy at any time. Any changes shall become effective upon being published on the TapVisit website.
Continued access to or use of TapVisit after the publication of changes shall constitute acceptance of the revised Privacy Policy.
GOVERNING LAW AND JURISDICTION
This Privacy Policy shall be governed by and construed in accordance with the laws of India.
The courts having jurisdiction at Delhi, India, shall have exclusive jurisdiction over any matters arising out of or in connection with this Privacy Policy.
1.1 Purpose of this Privacy Policy
This Privacy Policy describes how 98 Parallel Business Solutions LLP collects, uses, stores, processes and discloses personal data in connection with the operation of the TapVisit platform and services.
1.2 Applicability
This Privacy Policy applies to all users of TapVisit, including individual users, business or professional users and minor users permitted to access the platform strictly for educational purposes. By accessing or using TapVisit, the user agrees to the collection and processing of personal data as described herein.
1.3 Relationship with Terms of Service
This Privacy Policy forms an integral part of the Terms of Service. In the event of any conflict or inconsistency between this Privacy Policy and the Terms of Service, the Terms of Service shall prevail to the maximum extent permitted under applicable law.
APPLICABLE DATA PROTECTION LAWS
This Privacy Policy is issued in accordance with and shall be governed by the provisions of the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000, and all rules, regulations, directions and guidelines issued thereunder, as amended from time to time.
Nothing contained in this Privacy Policy shall be construed as imposing any obligation, standard or liability on 98 Parallel Business Solutions LLP beyond those expressly mandated under applicable Indian law.
ROLE OF THE COMPANY AND USERS
3.1 Company as Data Fiduciary (Limited)
98 Parallel Business Solutions LLP acts as a data fiduciary only in respect of limited personal data collected directly for account creation, authentication, subscription management, billing, security, compliance and operation of the TapVisit platform. Such processing is limited to lawful purposes necessary for providing and maintaining the services.
3.2 Users as Independent Data Fiduciaries
Users who upload, display, collect or process personal data of any third party through TapVisit, including through digital profiles or digital stores, act as independent data fiduciaries under applicable law. Such users are solely responsible for ensuring lawful collection, valid consent, notice, accuracy, retention, security and compliance with all obligations under the Digital Personal Data Protection Act, 2023 and other applicable laws. The Company shall not be responsible or liable for any non-compliance by users.
PERSONAL DATA COLLECTED
4.1 Account and Registration Data
Personal data provided by users at the time of account creation or registration, including name, email address, phone number, login credentials and other information required to create and manage a TapVisit account.
4.2 Subscription and Billing Data
Information related to subscriptions, payments and invoicing, including plan details, transaction references, billing address and tax information. Payment card or banking details are processed by authorised third-party payment gateways and are not stored by the Company.
4.3 User-Provided Content and Profile Data
Personal data and other information voluntarily uploaded, displayed or shared by users through digital profiles, digital stores or other features of TapVisit, including contact details, links, images, descriptions and similar content.
4.4 Technical and Usage Data
Technical information automatically generated during use of the platform, including IP address, device information, browser type, operating system, access logs, usage patterns and related diagnostic data.
PURPOSES OF DATA PROCESSING
Personal data is processed for the following purposes:
a. to provide, operate and maintain the TapVisit platform and services;
b. to create and manage user accounts and authenticate access;
c. to manage subscriptions, billing and invoicing;
d. to ensure platform security, prevent fraud and misuse, and enforce terms and policies;
e. to comply with legal, regulatory and contractual obligations; and
f. to improve platform functionality, performance and user experience.
CONSENT AND LAWFUL BASIS
Personal data is processed on the basis of user consent and such other lawful bases as permitted under applicable law, including deemed consent where applicable. By accessing or using TapVisit, the user provides consent to the collection and processing of personal data for the purposes set out in this Privacy Policy.
Where users upload or process personal data of third parties through TapVisit, users represent and warrant that they have obtained all necessary consents or have a lawful basis for such processing in accordance with applicable law.
PUBLICLY AVAILABLE USER CONTENT
User content published on TapVisit, including digital profiles, digital stores, links and related information, may be publicly accessible to third parties through URLs, QR codes, NFC-enabled devices or other means.
Users acknowledge and agree that any personal data or information made publicly available through TapVisit is done at the user’s sole discretion and risk. The Company does not control, restrict or monitor how third parties may access, use, copy or further disseminate such publicly available user content and shall not be liable for any consequences arising therefrom.
DATA SHARING AND DISCLOSURE
Personal data may be shared or disclosed by the Company only in the following circumstances:
a. with third-party service providers engaged for hosting, infrastructure, security, analytics, customer support or operational purposes, subject to appropriate contractual safeguards;
b. to comply with applicable laws, regulations, court orders or directions from competent governmental or regulatory authorities;
c. in connection with any merger, acquisition, restructuring, business transfer or sale of assets involving the Company; or
d. where disclosure is otherwise required or permitted under applicable law.
The Company does not sell personal data to third parties.
DATA STORAGE AND SECURITY
Personal data processed by the Company is stored on servers located in India through third-party cloud infrastructure providers engaged by the Company.
The Company implements reasonable technical and organisational security measures in accordance with industry standards to protect personal data against unauthorised access, disclosure, alteration or destruction. The user acknowledges that no system is completely secure and that the Company does not guarantee absolute security of data, except as required under applicable law.
DATA RETENTION AND DELETION
Personal data is retained for as long as necessary to provide the services, comply with legal obligations, resolve disputes and enforce applicable terms and policies.
Upon deletion or termination of a user account, personal data and user content may be retained for a period of up to thirty (30) days, after which such data may be deleted or anonymised, unless a longer retention period is required or permitted under applicable law.
DATA PRINCIPAL RIGHTS
Data principals may exercise such rights as are expressly provided under applicable law, including the Digital Personal Data Protection Act, 2023, in relation to their personal data processed by the Company.
The exercise of such rights shall be subject to verification of identity, applicable legal limitations, and the Company’s obligations under law. The Company reserves the right to refuse or restrict requests where permitted under applicable law, including where compliance is not required, is disproportionate, or would prejudice legal, security or operational interests.
DATA BREACH RESPONSE
In the event of a personal data breach, the Company shall take reasonable steps to assess and mitigate the impact of such breach in accordance with applicable law.
The Company shall notify the appropriate authority and affected users only where such notification is expressly required under the Digital Personal Data Protection Act, 2023 or other applicable law.
GRIEVANCE REDRESSAL
The Company has established a grievance redressal mechanism in accordance with applicable law. Any person may submit a grievance or complaint relating to the processing of personal data in the manner specified on the TapVisit website.
The name and contact details of the Grievance Officer shall be published on the TapVisit website. Grievances shall be addressed within the timelines prescribed under applicable law. The Company reserves the right to seek additional information and to reject or close grievances that are incomplete, frivolous or not maintainable under applicable law.
COOKIES AND TRACKING
TapVisit may use cookies and similar tracking technologies to enable platform functionality, enhance user experience, analyse usage patterns and improve services.
Users may manage or disable cookies through their browser or device settings. Disabling cookies may affect the availability or functionality of certain features of the platform.
CHANGES TO THIS PRIVACY POLICY
98 Parallel Business Solutions LLP reserves the right to modify, update or revise this Privacy Policy at any time. Any changes shall become effective upon being published on the TapVisit website.
Continued access to or use of TapVisit after the publication of changes shall constitute acceptance of the revised Privacy Policy.
GOVERNING LAW AND JURISDICTION
This Privacy Policy shall be governed by and construed in accordance with the laws of India.
The courts having jurisdiction at Delhi, India, shall have exclusive jurisdiction over any matters arising out of or in connection with this Privacy Policy.
