Testily Privacy Policy

1. Scope of This Privacy Policy

This Privacy Policy applies to information we collect:

• Through our websites, portals, applications, and product interfaces;
• In email, text, and other electronic communications between you and us;
• Automatically when you use or interact with our Services;
• Through APIs, integrations, workflows, and third-party services connected to our Services.

This Privacy Policy does not apply to:

• Third-party websites, products, or services that are not controlled by Tudip and do not link to this Privacy Policy;
• Information processed by our customers where they act as independent controllers of data uploaded into Testily.AI, except as required by law or contract.

2. Children’s Privacy

Our Services are not intended for children under the age of 18. We do not knowingly collect personal information from children under 18.

If you believe that we may have collected personal information from a child under 18, please contact us at the contact details provided below so that we may take appropriate action.

3. Information We Collect

We may collect the following categories of information:

3.1 Information You Provide Directly

This may include:

• Name;
• Email address;
• Company name;
• Job title;
• Phone number;
• Postal address;
• Account credentials;
• Support requests and communications;
• Files, documents, and content you upload to the Services, such as requirements documents, BRDs, FRDs, test plans, UI/UX artifacts, execution data, and reports.

3.2 Information Collected Automatically

When you use our Services, we may automatically collect:

• IP address;
• Browser type and version;
• Operating system;
• Device information;
• Usage logs;
• Clickstream and navigation data;
• Session information;
• Diagnostic and performance data;
• Cookies and similar tracking data.

3.3 Information from Third Parties

We may receive information from:

• Identity providers and SSO services;
• Business partners;
• Integration platforms;
• Analytics providers;
• Customer-authorized third-party systems connected to the Services.

4. How We Collect Information

We collect information:

• Directly from you when you register, submit forms, contact us, request demos, or use the Services;
• Automatically through cookies, logs, analytics, telemetry, and similar technologies;
• Through integrations and connected systems used with the Services;
• From third parties where permitted by law and contract.

5. Cookies and Similar Technologies

We may use cookies, web beacons, and similar technologies to:

• Operate and secure our Services;
• Remember preferences;
• Improve website and product performance;
• Understand user behavior and usage trends;
• Provide a better and more personalized experience.

You may manage cookies through your browser settings. Please note that disabling cookies may affect the functionality of some parts of the Services.

6. How We Use Information

We may use the information we collect to:

• Provide, operate, and maintain the Services;
• Authenticate users and manage access;
• Process uploaded content and generate outputs;
• Support AI-driven test generation, execution, reporting, and workflow orchestration;
• Respond to inquiries, requests, and support tickets;
• Send administrative communications and service updates;
• Improve product functionality, reliability, and performance;
• Monitor and protect the security and integrity of the Services;
• Detect, investigate, and respond to incidents, misuse, or unauthorized access;
• Comply with legal, contractual, regulatory, and audit obligations;
• Support sales, onboarding, and customer relationship management activities, where permitted.

7. Legal Bases for Processing

Where required by applicable law, we process personal information on one or more of the following bases:

• Consent
• Contractual Necessity
• Legal Obligation
• Legitimate Interests

Where we rely on legitimate interests, we take steps to ensure that our interests do not override your rights and freedoms.

8. Customer Data Processed Through Testily.AI

Testily.AI is a B2B SaaS platform. In many cases, Tudip processes information on behalf of its customers in accordance with applicable contracts.

Customers may upload business and workflow-related content into the platform, including test artifacts, requirements, execution logs, and related documentation. In such cases:

• The customer is responsible for ensuring it has the rights to provide such data;
• Tudip processes such data in accordance with customer instructions, contractual obligations, and applicable law;
• Access, retention, and deletion of customer data may be governed by customer configuration and agreement terms.

9. How Long We Retain Information

We retain personal information only for as long as necessary for the purposes described in this Privacy Policy, including to:

• Provide the Services;
• Fulfill contractual obligations;
• Comply with legal and regulatory requirements;
• Resolve disputes;
• Enforce agreements;
• Support audit, security, and business continuity needs.

Retention periods may vary depending on the nature of the data, the applicable agreement, product configuration, and legal requirements.

Where applicable, data may be archived, anonymized, or deleted at the end of the retention period or upon validated offboarding or decommissioning requests.

10. How We Share Information

We may disclose information:

• To our affiliates and subsidiaries;
• To contractors, processors, service providers, and cloud hosting partners that support our business and Services;
• To integration partners and connected systems, where authorized;
• In connection with a merger, acquisition, restructuring, financing, sale of assets, or similar transaction;
• To comply with court orders, legal obligations, or lawful requests from public authorities;
• To protect the rights, safety, and property of Tudip, our customers, our users, or others;
• With your consent or at your direction.

We may also disclose aggregated or de-identified information without restriction.

11. International Data Transfers

Your information may be transferred to, processed in, or accessed from jurisdictions outside your own, including by our service providers and affiliates.

Where required by law, we implement appropriate safeguards for international data transfers, including contractual safeguards and organizational, technical, and administrative protections.

For customers with region-specific or in-country hosting requirements, data residency can be addressed through agreed deployment and architectural models where supported.

12. Data Security

We implement reasonable technical, organizational, and administrative safeguards designed to protect information from accidental loss and unauthorized access, use, alteration, and disclosure.

Security measures may include:

• Encryption in transit and at rest;
• Role-based access control;
• Secure authentication and identity management;
• Logging and monitoring;
• Network segmentation and controlled access paths;
• Vulnerability scanning and patching;
• Backup and recovery controls;
• Cloud infrastructure security controls.

No method of transmission over the internet or method of storage is completely secure. Accordingly, while we strive to protect your information, we cannot guarantee absolute security.

13. Logging, Monitoring, and Audit Data

We may collect and retain application, access, audit, diagnostic, and security logs related to the use of the Services.

These logs may be used for:

• Troubleshooting and support;
• Security monitoring;
• Incident response;
• Performance analysis;
• Compliance and audit purposes.

Retention periods for logs may be governed by standard policy, contractual terms, or customer requirements.

14. Offboarding, Archival, Sanitization, and Deletion

Upon validated customer offboarding or decommissioning, Tudip may support:

• Archival of designated customer data;
• Export of customer-owned outputs or artifacts;
• Sanitization and deletion of data;
• Access revocation;
• Environment deprovisioning and clean uninstall procedures, where applicable.

Such actions are performed in accordance with technical feasibility, contractual commitments, legal obligations, and defined retention practices.

15. Your Privacy Rights

Depending on your location and applicable law, you may have rights including:

• The right to access your personal information;
• The right to correct inaccurate or incomplete information;
• The right to request deletion;
• The right to restrict processing;
• The right to object to certain processing;
• The right to data portability;
• The right to withdraw consent where processing is based on consent;
• The right to lodge a complaint with a supervisory authority.

To exercise your rights, please contact us using the details in the “Contact Us” section below. We may need to verify your identity before acting on your request.

Some rights may be subject to limitations based on applicable law, contract, or our role as a processor/service provider.

16. Marketing and Communication Preferences

You may opt out of receiving promotional communications from us by following the unsubscribe instructions in such communications or by contacting us directly.

Please note that you may still receive non-promotional communications related to your account, transactions, service updates, security notices, or support matters.

17. Third-Party Links and Services

Our Services may contain links to third-party websites, services, or applications. We are not responsible for the privacy practices of such third parties.

We encourage you to review the privacy policies of any third-party services you access.

18. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated version on the relevant website or service and update the Effective Date / Last Updated date above.

Your continued use of the Services after such updates are posted constitutes your acceptance of the revised Privacy Policy.

19. Contact Us

If you have any questions, requests, or concerns regarding this Privacy Policy or how we process personal information, please reach out to us at:

Contact Us & info@tudip.com

Plot No. 11/2, Phase 3, Hinjawadi Rajiv Gandhi Infotech Park, Hinjawadi, Pune, Man, Maharashtra 411057

20. Governing Entity

This Privacy Policy is issued by:

Tudip Technologies Pvt. Ltd.

Testily.AI

Plot No. 11/2, Phase 3, Hinjawadi Rajiv Gandhi Infotech Park, Hinjawadi, Pune, Man, Maharashtra 411057