Legal

Privacy Policy

Effective Date: May 30, 2026 | Last Updated: May 30, 2026

1. Introduction

Welcome to Grozio, a multi-vendor grocery, food, and delivery platform operated by Grozio Technologies, registered in India with its registered address at Tuni S.Annavaram, Andhra Pradesh, India ('Company', 'we', 'us', or 'our').

This Privacy Policy describes how Grozio Technologies collects, uses, shares, stores, and protects your personal data when you use the Grozio mobile application ('App'), website at https://grozio.store, and all related services (collectively referred to as the 'Platform'). Grozio never sells users’ personal data to advertisers or unrelated third parties.

By downloading, installing, or using the Grozio App, you acknowledge that you have read, understood, and agreed to this Privacy Policy. If you do not agree, please do not use our Platform. This document is published in compliance with:

  • The Information Technology Act, 2000 and the Information Technology (Amendment) Act, 2008
  • The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
  • The Digital Personal Data Protection (DPDP) Act, 2023
  • The Consumer Protection (E-Commerce) Rules, 2020
  • Google Play Store Developer Program Policies

2. Who This Policy Applies To

This Privacy Policy applies to all users of the Grozio Platform, including:

  • Customers — individuals who browse, order, and receive deliveries through Grozio
  • Sellers / Vendors / Restaurants — businesses or individuals who list products or food items on the Grozio Platform
  • Delivery Partners — individuals who accept and fulfil delivery assignments through the Grozio Partner App
  • Visitors — individuals who visit our website or interact with our content without creating an account

3. Information We Collect

3.1 Information You Provide Directly

When you register, create a profile, place an order, or contact our support team, we collect:

  • Full Name
  • Email Address
  • Mobile Phone Number
  • Profile Photograph
  • Home and Delivery Addresses (including saved addresses)
  • Identity Documents & Verification (for Sellers: GST Certificate; for Delivery Partners: Aadhaar, driving license, and real-time selfies for security checks)
  • Bank Account and UPI Details (for Delivery Partners and Sellers — for payout purposes only, not stored for customers)
  • Support tickets, messages, ratings, and reviews submitted on the Platform

3.2 Information Collected Automatically

When you use the Grozio App, we automatically collect:

  • Device Information: device model, operating system version, unique device identifiers (Android ID, IMEI where permitted), screen resolution
  • Network Information: IP address, mobile network carrier, Wi-Fi connection status
  • App Usage Data: pages visited, features used, time spent, crash logs
  • Firebase Cloud Messaging (FCM) Push Tokens for sending push notifications
  • Sentry crash and performance monitoring data
  • Firebase Analytics data for understanding user behavior and improving the Platform

3.3 Location Data

Grozio collects precise GPS location data from your device for the following purposes:

  • To show nearby restaurants, grocery stores, and meat vendors relevant to your location
  • To determine whether Grozio services are available in your area (serviceability checks)
  • To calculate accurate delivery distances and estimated delivery times
  • To enable real-time order tracking for customers and delivery partners
  • To auto-fill your delivery address for convenience

Location is collected in the foreground when the App is active and, for Delivery Partners, via continuous foreground tracking while an active delivery assignment is in progress. You may revoke location permissions via your device settings, but doing so may limit core App functionality.

Continuous location tracking via a persistent foreground service is initiated only for users registered as Delivery Partners and is used exclusively during active delivery assignments for live order tracking, navigation, and delivery operations.

Grozio does not collect or track location data when the app is fully closed or not in use, except for Delivery Partners during active delivery assignments where continuous foreground location access is required for live order tracking and navigation.

3.4 Payment and Transaction Data

Grozio does not store your credit card, debit card, or full UPI credentials on our servers. All payment processing is handled securely by Razorpay, our certified Payment Card Industry Data Security Standard (PCI-DSS) compliant payment gateway. We retain only:

  • Razorpay transaction reference IDs
  • Payment status (success / failure / pending)
  • Order amount, GST components, platform fees, and delivery charges
  • Refund initiation records and statuses

3.5 Order and Activity Data

  • Order history: items ordered, quantities, vendor details, timestamps
  • Loyalty points earned, redeemed, and balance
  • Coupon codes applied at checkout
  • Ratings and reviews submitted for vendors and delivery partners
  • Support ticket history and resolution status

4. How We Use Your Information

We use the information we collect for the following purposes:

4.1 To Provide and Operate the Platform

  • Creating and managing your Grozio account
  • Processing, confirming, and fulfilling your orders
  • Connecting you with the right vendors and delivery partners
  • Enabling live order tracking via WebSocket-powered real-time updates
  • Calculating delivery charges, platform fees, and GST
  • Managing your loyalty points and wallet balance

4.2 To Communicate With You

  • Sending order confirmation, dispatch, and delivery notifications via push notification and SMS
  • Sending OTP for account login and verification
  • Responding to your support tickets and queries
  • Sending promotional offers, discount coupons, and product updates (with your consent)
  • Promotional notifications and marketing communications are sent only with user consent where required under applicable law.

4.3 To Improve Our Services

  • Analyzing app usage patterns to enhance user experience
  • Conducting A/B testing of new features
  • Monitoring app performance and crash resolution via Sentry
  • Training internal tools and recommendation engines to suggest relevant products

4.4 For Safety and Legal Compliance

  • Verifying the identity of Sellers and Delivery Partners to maintain platform integrity
  • Detecting, investigating, and preventing fraud, abuse, or violations of our Terms & Conditions
  • Complying with applicable Indian laws, court orders, and government directives
  • Maintaining transaction records as required under Indian tax and accounting regulations

5. How We Share Your Information

Grozio does not sell, rent, or trade your personal data. We share data only under the following limited circumstances:

5.1 With Vendors and Restaurants

To enable order fulfillment, we share the following customer data with the relevant vendor:

  • Customer name and phone number
  • Order details (items, quantities, special instructions)
  • Delivery address (for vendor-packed orders)

5.2 With Delivery Partners

To enable order pickup and delivery, we share:

  • Customer name and phone number
  • Precise delivery address and location pin
  • Order package description (weight, item type)

5.3 With Third-Party Service Providers

We work with the following trusted third-party service providers who process your data on our behalf under strict data processing agreements:

Service ProviderPurposeData Shared
RazorpayPayment processingOrder amount, contact info (for payment receipt)
Google Maps / Places APIDelivery routing & address autocompleteLocation coordinates
Firebase (Google)Authentication, push notifications, analyticsPhone number, FCM token, usage events
CloudinaryMedia storage (profile photos, product images)Images uploaded by users
SentryApp crash monitoring & performanceDevice info, anonymized error context
MongoDB AtlasPrimary database hostingAll structured user and order data

All third-party service providers are contractually obligated to protect user data and process it only for authorized business purposes.

5.4 Legal Disclosures

We may disclose your information if required by law, court order, subpoena, or government authority, or if we believe disclosure is necessary to:

  • Comply with applicable Indian laws and regulations
  • Protect the rights, property, or safety of Grozio, its users, or the public
  • Prevent fraud, abuse, or illegal activity on the Platform

6. Data Storage and Security

We take your data security seriously and implement industry-standard technical and organizational measures including:

  • All data is encrypted in transit using HTTPS/TLS 1.2+ protocols
  • Passwords and sensitive credentials are hashed using bcrypt
  • MongoDB Atlas provides encrypted storage at rest with AES-256 encryption
  • Cloudinary provides secure, access-controlled media storage
  • Firebase services comply with Google's enterprise-grade security standards
  • Razorpay is PCI-DSS Level 1 certified — the highest level of payment security
  • Access to production databases is restricted to authorized personnel only via role-based access controls
  • Sentry anonymizes sensitive data before logging errors

Despite our best efforts, no system is 100% secure. In the event of a data breach that materially affects your personal data, we will notify affected users in accordance with applicable Indian law.

7. Data Retention

We retain your personal data for as long as necessary to provide our services and comply with legal obligations:

Data TypeRetention Period
Account information (name, email, phone)Until account deletion + 30 days
Order and transaction history7 years (Indian tax law compliance)
Location data90 days rolling window
Support ticket data2 years from ticket closure
Analytics & crash logs12 months
Seller/Partner KYC documents5 years from last active date
Loyalty points history3 years from last transaction

8. Your Rights Under the DPDP Act 2023

As a Data Principal under the Digital Personal Data Protection Act, 2023, you have the following rights:

8.1 Right to Access

Most privacy controls, account settings, and data management options are available directly within the Grozio App. You have the right to request a summary of the personal data we hold about you and the purposes for which it has been processed. Users may also request a copy/summary of their personal data by contacting grozioofficial@gmail.com.

8.2 Right to Correction

You can update your personal data (name, phone, address, profile photo) directly in the App under Profile Settings at any time.

8.3 Right to Erasure

You may request deletion of your account and associated personal data by:

  • Using the in-app account deletion flow under Profile > Settings > Delete Account
  • Visiting https://grozio.store/delete-account.html
  • Emailing grozioofficial@gmail.com with your registered phone number

Upon successful account deletion request, personal data will be removed from our active systems within 30 days unless retention is legally required under applicable laws.

Please note: Transaction records required for tax compliance (7 years) and legally mandated KYC documents will be retained as required by law even after account deletion.

8.4 Right to Withdraw Consent

You may withdraw consent for marketing communications by opting out of push notifications in your device settings or contacting our support team.

8.5 Right to Grievance Redressal

If you have a complaint about how your data is processed, you may contact our designated Data Grievance Officer:

  • Name: Datta Kalyan
  • Email: grozioofficial@gmail.com

We will acknowledge your complaint within 72 hours and resolve it within 30 days.

9. Children's Privacy

Grozio is intended for users who are 18 years of age or older. We do not knowingly collect personal data from minors under 18 years of age. If we become aware that we have collected data from a minor, we will delete such data immediately. If you believe your child has used our Platform, please contact us at grozioofficial@gmail.com.

10. Cookies and Tracking Technologies

The Grozio mobile App does not use browser cookies. However, our website (https://grozio.store) and web-based panels may use:

  • Session cookies for maintaining your login state
  • Firebase Analytics for understanding user behavior on the web
  • Google Maps API cookies for map rendering

You may control cookie preferences through your browser settings.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our services, legal requirements, or business practices. When we make material changes, we will:

  • Display an in-app notification to all active users
  • Update the 'Last Updated' date at the top of this document
  • Send an email notification to registered email addresses where applicable

Your continued use of the Grozio Platform after the updated Privacy Policy takes effect constitutes your acceptance of the new terms.

12. Contact Us

Data Grievance Officer — Grozio Technologies
Email: grozioofficial@gmail.com
Website: https://grozio.store
Address: Tuni S.Annavaram, Andhra Pradesh, India
Response Time: Within 72 hours of receiving your request