Privacy Policy

Last updated: 24 May 2026

This Privacy Policy describes how MDSR Magesh ("we", "us", "our") collects, uses, and shares information when you visit mdsrmagesh.com and book a consulting session through mdsrmagesh.com/go.

1. Information we collect

1.1 Information you provide

• Phone number — required for OTP verification, booking identification, and session contact.
• Name and email — collected during first-time setup to send booking confirmations and meeting links.
• Business name, type, and Google Maps URL — optional, helps us tailor the consulting session to your business context.
• Problem statement — optional context you share about what you want to solve.
• Payment information — processed directly by Razorpay. We do not store your card or UPI details on our servers; we only receive a payment confirmation token.

1.2 Information collected automatically

• Basic web logs (IP address, browser, timestamps) for security and abuse prevention.
• Authentication tokens from Firebase (Google) to prove your phone is verified.

2. How we use your information

• Process and confirm your booking.
• Send booking confirmations, meeting links, and session reminders via email and Telegram.
• Reach you on WhatsApp or phone if there is an issue with your scheduled session.
• Improve our services and prepare for your specific consulting session.
• Comply with legal requirements and prevent fraud.

3. Third parties we share data with

• Razorpay — payment processing. Razorpay receives the booking amount, your name, email, and phone number to process the transaction. See Razorpay Privacy Policy.
• Firebase / Google — phone OTP verification. Your phone number is verified by Google. See Google Privacy Policy.
• Google Calendar — when you book, a calendar event is created on the MDSR Magesh calendar and an invite is sent to your email.
• Resend — sends transactional emails (booking confirmations).

We do not sell, rent, or trade your personal information.

4. Data retention

We retain booking and client records for as long as required for tax, accounting, and dispute resolution purposes — generally seven (7) years as per Indian record-keeping norms. You may request deletion of your profile by contacting us; we will anonymise your records while preserving the minimum information required by law.

5. Security

We use HTTPS in transit, secure cookies for admin access, and Razorpay's PCI-DSS-compliant infrastructure for payment data. No internet system is perfectly secure, but we apply reasonable safeguards proportionate to the sensitivity of the data we hold.

6. Your rights

You may at any time request to:

• See what data we hold about you.
• Correct inaccurate data.
• Have your data deleted (subject to legal retention).
• Withdraw consent for non-essential communications.

Reach us via the contact details below to exercise any of these rights.

7. Cookies

We use minimal cookies — primarily a session cookie for admin staff and an invisible reCAPTCHA cookie set by Firebase during phone verification. We do not run third-party advertising trackers.

8. Children

The service is intended for business owners aged 18+ and not directed at children. We do not knowingly collect data from minors.

9. Changes to this policy

We may update this policy from time to time. The "Last updated" date at the top of the page reflects the current version.

10. Contact us