Privacy Policy
This page explains what personal data AiGenAgri collects, how we use it, who we share it with, how long we keep it, and your rights.
Last updated: 19 May 2026 · Effective immediately for all users.
Contents
1. Who we are
AiGenAgri is operated by Zianova AiGen Systems Pvt Ltd (“AiGenAgri,” “we,” “us”), an Indian company headquartered in Hyderabad. We provide an AI-driven farm advisory service to farmers, agronomists and farm workers worldwide with deep coverage of Indian agriculture.
Our data controller of record for this service is Zianova AiGen Systems Pvt Ltd. For all privacy-related questions, the contact is support@aigenagri.com.
2. What data we collect
Data you give us directly
- Identity: first and last name, email address, optional mobile number, optional date of birth and gender.
- Location at the country level: country, state / region, district, city, street and postal code. India users additionally pick state from a fixed ISO-3166 sub-list.
- Farm profile: farm name, fields, sensor IDs, crop cycles, planting dates, irrigation source, soil status, registered government schemes (PM-KISAN, PMFBY, KCC, SHC, PMKSY) where applicable.
- Workers and attendance: if you add farm employees, their names, wage rate and attendance status that you record.
- Expenses, harvest records and notes: figures and free-text you enter into the finance / harvest / production modules.
- Photos: GPS-tagged field images you upload through the camera flow.
- Bio and preferences: optional free-text bio, preferred language (one of nine), biometric sign-in toggle.
Data collected automatically
- Authentication metadata: JWT access and refresh tokens, last login timestamp, IP address at login, user-agent string.
- Sensor telemetry: readings sent by any IoT devices you register (soil moisture, temperature, humidity, etc.).
- Mobile device: Expo push notification token, device model, app version, OS version.
- Approximate geolocation: if you grant the mobile app location permission, coordinates are used to fetch hyper-local weather and to geo-tag uploaded photos. The coordinates are stored only with the photo or the weather query in flight; we do not maintain a continuous location trail.
- Usage analytics: anonymous request volume per route, page-load timings, error events. We use Prometheus for backend observability; payloads are aggregated and do not include personal identifiers.
Data we do not collect
- Payment cards, bank details or UPI handles (we never charge users directly).
- Aadhaar, PAN, voter ID or any other government-issued ID number.
- SMS or call logs.
- Contacts (the optional contacts permission is used only to let you pick a worker’s phone number; we do not upload the address book).
3. How we use your data
- Run the service: create your account, authenticate you, display your dashboard, calendar, finance and weather views.
- Personalise advisories: combine your location and crop profile with weather + market signals to generate decision summaries.
- Notify you: rain alerts, sensor warnings, task reminders, sub-admin announcements; we push these via Expo and email via Brevo.
- Support and account safety: investigate abuse, prevent credential stuffing, recover lost accounts.
- Improve the product: aggregate, anonymised usage analytics to find bugs and prioritise features.
- Comply with law: respond to lawful government requests, retain records required by Indian tax / accounting law.
We do not sell your personal data. We do not use your data to train third-party models without your consent.
5. How long we keep it
| Data | Retention |
|---|---|
| Account profile (name, email, phone, address) | Until you delete the account, then a 30-day restore window followed by anonymisation. |
| Farm, field, sensor and crop-cycle records | Until you delete the account, then anonymised after the 30-day window. |
| Uploaded photos | Per the image-lifecycle policy (typically 5 most-recent images per field; older auto-purged). |
| Login events (IP + user-agent + geocoded city) | Up to 12 months for security audit; older rows are aggregated to country-level only. |
| JWT refresh tokens | 30 days, rotated on each use, immediately revoked on logout. |
| Aggregated analytics (no personal identifier) | Indefinite. |
| Tax / accounting records | As required by Indian law (currently 7 years). |
See /delete-account for the exact deletion flow and what happens at each stage.
6. Your rights
If you are in India (DPDP Act, 2023)
- Right to access the personal data we hold about you.
- Right to correction and erasure of inaccurate or unnecessary data.
- Right of grievance redressal — write to our Grievance Officer (details below); we respond within 30 days.
- Right to nominate another individual to exercise your rights in the event of death or incapacity.
If you are in the EU / UK (GDPR)
- Access, rectification, erasure, portability, restriction of processing, objection to processing.
- Right to lodge a complaint with your local supervisory authority (e.g. the ICO in the UK).
How to exercise any right
Email support@aigenagri.com from the address on your account. Tell us which right you’re exercising. We will respond within 30 days. There is no charge.
7. Children
AiGenAgri is intended for users aged 18 and over. We do not knowingly collect personal data from anyone under 18. If you believe a child has registered an account, email us and we will deactivate it.
8. Security
- All traffic is encrypted in transit over TLS 1.2 or 1.3.
- Database connections are TLS-encrypted; image bytes are encrypted at rest in object storage.
- Passwords are hashed with bcrypt (12 rounds). We never store passwords in plaintext.
- The admin console is gated by both Bearer-token auth on the API and an HttpOnly server-side session cookie on the HTML.
- Refresh tokens rotate on every use and are revoked on logout.
- We log every privileged action (admin password reset, sub-admin announcement approval) to an audit table.
No system is perfectly secure. If you suspect a breach, email security@aigenagri.com.
9. International transfers
Our primary servers are hosted in India. Some service providers listed in section 4 may process your data outside India (for example, Expo and the Anthropic API operate in the United States). Where data crosses borders we rely on the standard contractual clauses or equivalent safeguards required by the receiving country’s law.
10. Changes to this policy
We may update this policy from time to time. The “Last updated” date at the top reflects the most recent revision. Material changes (new categories of data, new vendors, change of controller) are notified to active users by email at least 14 days before they take effect.
11. Contact us
Zianova AiGen Systems Pvt Ltd
Hyderabad, Telangana, India
- General support: support@aigenagri.com
- Security reports: security@aigenagri.com
- Grievance Officer (DPDP): grievance@aigenagri.com
AiGenAgri · A product of Zianova AiGen Systems Pvt Ltd · Back to sign in · Delete account