Data Policy

Last Updated: November 03, 2025

1. Overview

This Data Policy describes how LEXORA REVA Network collects, processes, stores, and protects data in accordance with applicable data protection laws, including the Information Technology Act, 2000, and the Personal Data Protection Bill of India.

2. Data Collection Principles

We adhere to the following principles when collecting data:

  • Lawfulness and Transparency: Data is collected lawfully and with full transparency
  • Purpose Limitation: Data is collected for specific, explicit purposes
  • Data Minimization: Only necessary data is collected
  • Accuracy: We maintain accurate and up-to-date records
  • Storage Limitation: Data is retained only as long as necessary
  • Integrity and Confidentiality: Appropriate security measures are implemented

3. Types of Data We Process

3.1 User Data
  • Registration and profile information
  • Communication preferences
  • Transaction history
  • Interaction with platform features
3.2 Verification Data
  • Professional licenses and certifications
  • Government-issued identification
  • Business registration documents
  • Background check information
3.3 Technical Data
  • Log files and analytics
  • Device and browser information
  • IP addresses and location data
  • Cookies and tracking data
3.4 Communication Data
  • Messages sent through the platform
  • Email communications
  • Support ticket information
  • Feedback and survey responses

4. Legal Basis for Processing

We process your data based on the following legal grounds:

  • Consent: You have given explicit consent for processing
  • Contract: Processing is necessary for service delivery
  • Legal Obligation: Required to comply with laws
  • Legitimate Interests: For fraud prevention and platform security

5. Data Storage and Security

5.1 Storage Infrastructure
  • Data is stored on secure servers with industry-standard encryption
  • Regular backups are maintained for data recovery
  • Access to data is restricted and monitored
5.2 Security Measures
  • SSL/TLS encryption for data in transit
  • AES-256 encryption for data at rest
  • Multi-factor authentication for sensitive operations
  • Regular security audits and penetration testing
  • Employee training on data protection
  • Incident response and disaster recovery plans

6. Data Access and Control

You have the right to:

  • Access: View all personal data we hold about you
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data (subject to legal requirements)
  • Restriction: Limit how we process your data
  • Portability: Receive your data in a structured format
  • Objection: Object to processing for certain purposes

7. Data Sharing and Third Parties

7.1 Service Providers

We share data with trusted third-party service providers who assist us in:

  • Cloud hosting and infrastructure
  • Payment processing
  • Analytics and performance monitoring
  • Customer support tools
  • Marketing and communication platforms
7.2 Data Processing Agreements

All third parties are bound by strict data processing agreements that ensure:

  • Confidentiality obligations
  • Security standards compliance
  • Limited data use for specified purposes
  • Data deletion upon termination

8. Data Retention Policy

Data Type Retention Period Reason
User Account Data Duration of account + 3 years Legal compliance and dispute resolution
Transaction Records 7 years Financial and tax regulations
Communication Logs 2 years Customer support and quality assurance
Analytics Data 26 months Platform improvement and optimization
Marketing Data Until consent withdrawal User preference

9. Cross-Border Data Transfers

If data is transferred outside India, we ensure:

  • Adequate level of data protection in the recipient country
  • Standard contractual clauses are in place
  • Appropriate safeguards for data security
  • Compliance with Indian data protection laws

10. Data Breach Notification

In the event of a data breach, we will:

  • Notify affected users within 72 hours
  • Inform relevant regulatory authorities
  • Provide details of the breach and impact
  • Outline remedial actions taken
  • Offer support and guidance to affected users

11. Children's Data

We do not knowingly collect data from individuals under 18. If we discover such data has been collected, we will immediately delete it and notify the relevant parties.

12. Compliance and Audits

We maintain compliance through:

  • Regular internal audits
  • Third-party security assessments
  • Employee training programs
  • Data protection impact assessments
  • Continuous monitoring of data practices

13. Updates to This Policy

We may update this Data Policy to reflect changes in our practices or legal requirements. Material changes will be communicated through email or platform notifications.

14. Contact Information

For data-related inquiries or to exercise your rights, contact our Data Protection Officer:

Email: dpo@lexorareva.com
Phone: +91 80 1234 5678
Address: 123 Real Estate Plaza, Business District, Bengaluru, Karnataka 560001, India

We are committed to responsible data management and protecting your information at every step.
Back to Home