Regulatory Standard
DPDP 2023 Compliant

Privacy
Policy

Effective Date 03 JUNE 2026
Document ID #MRTH-PP-2026-01
Authority Level BUREAU / CORE

Introduction

Mereth Platforms Private Limited ("Mereth", "we", "us", or "our") operates the website mereth.io and provides regulatory intelligence services. We take the privacy of our users, customers, and partners with surgical precision.

This Privacy Policy describes how we collect, use, and protect your personal data when you interact with our platform or services. This document has been structured to meet the requirements of the Digital Personal Data Protection Act (DPDP), 2023 and other applicable Indian regulations.

Provision 1.0

Data Collection

We only collect data that is strictly necessary for providing our regulatory intelligence layer. We do not engage in "surveillance capitalism" or indiscriminate data harvesting.

Direct Interactions

Information provided when joining the waitlist or requesting a design partnership:

Full Name Identity Data
Business Email Address Contact Data
Organization Name Employment Data
Regulatory Focus Areas Service Preference

Automated Technical Data

To ensure the security and stability of our infrastructure, we automatically collect:

$ tail -f mereth-access.log
# [INFRA-SEC] Monitoring ingress metadata...
200 OK — IP: 104.28.XX.XX
200 OK — UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7)
# Retention: T+90D
Provision 2.0

Purpose of Processing

We process your personal data under the lawful basis of Contractual Necessity and Legitimate Interest. Specific purposes include:

Platform Access

Managing your waitlist status and design partnership onboarding.

Service Alerts

Delivering critical regulatory change alerts relevant to your organization.

Security

Detecting and preventing unauthorized access or infrastructure abuse.

Platform Growth

Aggregated usage analysis to improve our interpretation engine.

Provision 3.0

Data Retention

In alignment with DPDP Section 9, we do not store personal data for longer than is necessary for the specified purpose.

  • Waitlist Data:

    Retained for the duration of the beta program or until you request removal.

  • Usage Logs:

    Rotated and purged every 90 days, or anonymized for long-term trending.

  • Legal Compliance:

    Certain data may be retained for 7 years as required by Indian financial and tax laws.

Provision 4.0

Data Principal Rights

As a Data Principal under the DPDP Act, you have specific rights that Mereth is engineered to respect from day one.

Right to Access and Summary

SEC 11

You may request a summary of the personal data we process and the processing activities undertaken.

Right to Erasure

SEC 12

You may request the deletion of your personal data when it is no longer necessary for the purpose for which it was collected.

Right to Grievance Redressal

SEC 13

You have the right to have readily available means of grievance redressal in respect of any act or omission of the Data Fiduciary.

Provision 5.0

Contact & Grievance

If you have any questions about this policy or wish to exercise your rights, please contact our Grievance Officer:

Grievance Officer

Privacy Desk — Mereth Platforms

Electronic Mail

privacy@mereth.io

Address

12th Floor, Regulatory Hub,
Sector 5, Bengaluru, KA 560001, India