Privacy Policy

PRIVACY POLICY
Last Updated: [June 04, 2026]
Potoos Technologies LLP (“Potoos”, “Platform”, “we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal and technical data when you visit our website (potoos.in) or use our mobile applications and infrastructure services.
By accessing or using the Platform, you consent to the data practices described in this policy.
1. THE DATA WE COLLECT
To provide you with secure cloud infrastructure and research aggregation, we collect the following categories of information:
  • A. Identity & Onboarding Data: Full name, email address, phone number, and physical address collected during subscription setup.
  • B. Financial Tracking Data: Transaction IDs, GST details, billing history, and payment gateway logs. Potoos does not store raw credit card numbers or banking passwords; all payments are handled securely by PCI-DSS compliant third-party payment gateways.
  • C. Technical Broker Connection Metrics (Tier 2): Broker account client IDs, encrypted API tokens, daily 2FA generation timestamps, and dedicated static IP routing footprints. Potoos never collects, sees, or stores your master broker trading passwords.
  • D. Usage & Analytics Logs: Time-stamped data recording when you view a specific Tier 1 research report and when you manually click to execute an order payload via your cloud droplet.
2. HOW WE USE YOUR INFORMATION
We process your data strictly to maintain infrastructure security and fulfill regulatory audit protocols:
  • To allocate, configure, and maintain your isolated cloud droplet instance and assigned static IP address.
  • To route your manually approved trading payloads safely from your dashboard to your stockbroker's API gateway.
  • To generate mandatory time-stamped compliance audit logs required by SEBI, BASL, or stock exchanges during routine inspections.
  • To process billing, prevent platform-wide fraud, and secure your execution streams against unauthorized access.
3. THE SECURITY OF YOUR BROKER CREDENTIALS & API KEYS
Because Potoos manages an execution layer, your technical data security is our highest priority:
  • Encryption Standards: All API keys, session tokens, and connection configurations are encrypted both in transit (using TLS 1.3) and at rest (using AES-256 bit encryption) within your isolated droplet framework.
  • No Capital Access: Potoos operates strictly as a technology delivery route. Our software stack is technically incapable of initiating unauthorized fund withdrawals, asset transfers, or off-market share pooling. Your capital remains exclusively inside your regulated broker trading account.
  • Daily Token Expiry: All connected broker API tokens are programmed to expire automatically every 24 hours. The platform forces a hard session wipe overnight, requiring you to manually re-authenticate via a secure Two-Factor Authentication (2FA) prompt every morning.
5. DATA RETENTION AND DELETION
  • Active Subscriptions: We retain your profile and technical data as long as your Potoos subscription is active.
  • Account Termination: Upon account closure, all associated cloud instances, virtual droplets, and custom static IP mappings are permanently wiped from our server clusters within seventy-two (72) hours.
  • Statutory Backups: Basic billing invoices, tax records, and automated compliance logs proving historical click-wrap manual verifications are retained for a minimum period of eight (8) years to comply with Indian corporate and taxation laws.
6. NO SCRAPING OR DATA HARVESTING
All content inside the Tier 1 library remains the protected intellectual property of the originating RAs. Users are strictly prohibited from utilizing automated data-harvesting software, scrapers, or extraction extensions to collect or redistribute this content. Potoos utilizes advanced firewall tracking to detect automated scraping and will immediately terminate offending accounts without refunds.
7. CHANGES TO THIS PRIVACY POLICY
Potoos reserves the right to modify this Privacy Policy at any time to reflect changing technical infrastructure rules or updated SEBI mandates. We will notify you of any material changes by posting the updated policy on our website footer with a revised "Last Updated" date.
8. GRIEVANCE REDRESSAL OFFICER
In compliance with the Information Technology Act, 2000, and the Digital Personal Data Protection (DPDP) Act, if you have any questions, concerns, or data erasure requests regarding this policy, please contact our designated data officer:
Attn: Privacy & Compliance Team
Potoos Technologies LLP
Registered Office: 2, Anjugam Street, New Perungalathur, Chennai - 600063., Tamil Nadu, India.
Email: geetha@potoos.in or sujay@potoos.in