Sapehive Legal
Sapehive Privacy Policy
Last Updated:
Effective Date:
This Privacy Policy explains how Sapehive collects, uses, stores, shares, and protects Personal Data when people use the Sapehive website, applications, communications, and related marketplace services.
Important Notice
Sapehive is a technology marketplace that helps Clients discover and connect with independent creative professionals, including photographers, videographers, video editors, cameramen, drone operators, wedding creators, and other freelance creative professionals. Unless Sapehive expressly states otherwise for a particular service, Creators operate independently and Sapehive is not a party to the separate creative-services agreement between a Client and a Creator.
Some features described in this Privacy Policy may be introduced in the future. Where a feature is not yet available, the related data processing will begin only when that feature is enabled and used. We may also use different service providers from time to time, but we will process Personal Data in accordance with this Privacy Policy and applicable law.
1. Definitions
For this Privacy Policy:
- “Sapehive,” “we,” “us,” or “our” means the operator of the Sapehive Platform.
- “Platform” means the Sapehive website at https://sapehive.com, related web applications, mobile applications if launched, dashboards, support channels, and other services that link to this Privacy Policy.
- “User” or “you” means any person who visits, registers for, or uses the Platform.
- “Creator” means an independent creative professional or creative business that creates a profile, uploads a portfolio, receives inquiries or Bookings, or provides creative services through or in connection with the Platform.
- “Client” means a person or organisation that searches for, contacts, requests, books, pays, reviews, or receives services from a Creator.
- “Booking” means a request, acceptance, rejection, cancellation, scheduled service, transaction, or related workflow between a Client and a Creator through the Platform.
- “Services” means the technology, discovery, profile, booking, communication, payment, delivery, support, and related marketplace functions provided by Sapehive.
- “Personal Data” means information relating to an identified or identifiable individual. Where applicable law uses terms such as “personal information,” “personal data,” or “digital personal data,” those terms are covered by this definition.
- “Content” means portfolio images, videos, audio, documents, messages, reviews, ratings, comments, profile details, and other material submitted to or processed through the Platform.
- “Processing” means any operation performed on Personal Data, including collection, recording, organisation, storage, use, transmission, disclosure, analysis, correction, deletion, or destruction.
2. Scope and Roles
This Privacy Policy applies when you visit or use the Platform, create a Client or Creator account, upload Content, request or manage a Booking, communicate through enabled Platform features, make or receive a payment, contact support, attend a Sapehive registration or promotional event, or otherwise interact with Sapehive where this Privacy Policy is presented.
For Personal Data used to operate accounts and the Platform, Sapehive generally determines why and how the data is processed and therefore acts as the relevant data fiduciary or controller, as those terms may apply under law. A Creator and a Client may separately decide how to use information they receive from one another for a project. In that situation, they may have their own independent privacy and legal responsibilities. Sapehive is not responsible for a Creator's or Client's independent processing outside the Platform.
This Privacy Policy does not apply to websites, apps, payment pages, cloud drives, social networks, or other services operated independently by third parties, even when they are linked to or integrated with the Platform. Their own privacy policies apply to their processing.
3. Personal Data We Collect
The Personal Data we collect depends on how you use the Platform and which features are enabled.
3.1 Account and Identity Data
- Full name, username, profile photo, and account type.
- Email address, phone number, and verification status.
- Password hash, authentication tokens, one-time password records, and login security information. We do not receive your plain-text password where secure authentication providers are used.
- City, state, country, address where necessary, and preferred service locations.
- Date of birth or age confirmation where required.
- Account settings, language, communication preferences, and consent records.
3.2 Creator Profile and Professional Data
- Skills, service categories, professional biography, experience, equipment information, availability, pricing, service area, and languages.
- Portfolio images, videos, showreels, project descriptions, thumbnails, captions, and links.
- Social-media links, website links, business name, team information, and professional credentials.
- Ratings, reviews, completion history, response information, badges, ranking inputs, and profile performance metrics.
3.3 Verification and Compliance Data
If verification, payouts, safety checks, or legal compliance require it, we may collect identity documents, business-registration details, tax information, bank or payout details, verification photographs, and related records. We will not display such documents publicly unless you intentionally publish information from them. Where verification is performed by a specialised provider, the provider may collect the information directly and return a verification result to us.
3.4 Booking and Service Data
- Booking requests, accepted or rejected requests, dates, times, locations, service categories, project descriptions, budget or price, and special instructions.
- Creator and Client identifiers, booking status, cancellation information, delivery status, and completion confirmations.
- Booking history, invoices, refund requests, complaints, dispute records, and support outcomes.
- Information voluntarily supplied about an event, shoot, wedding, travel plan, editing project, or other requested service.
3.5 Communication and Notification Data
- Emails, support requests, feedback, survey responses, and communications with Sapehive.
- SMS, email, push-notification, and delivery logs, including whether a message was sent, delivered, or failed.
- In-app messages, chat content, call metadata, reports, and communication logs if those features are introduced.
- Records needed to investigate abuse, safety incidents, fraud, non-delivery, or disputes.
3.6 Location and Map Data
- City, district, town, village, pin code, or manually entered search location.
- Approximate location derived from an IP address or device settings.
- Precise GPS coordinates only when you grant device permission and use a feature that requires them.
- Map searches, selected meeting points, route or distance information, and location-sharing records if enabled.
3.7 Payment and Transaction Data
- Transaction amount, currency, payment status, payment method category, transaction identifier, invoice details, and refund status.
- Masked or limited payment details made available by a payment provider.
- Payout details for Creators where necessary, which may be collected directly by a payment or banking partner.
Sapehive does not intend to store complete debit-card or credit-card numbers, card verification values, UPI PINs, net-banking passwords, or other full payment credentials. Such credentials are handled by authorised payment providers through their secure interfaces.
3.8 Uploaded Files and Content
- Portfolio images and videos.
- Raw photographs, raw videos, audio, project files, edited files, documents, and delivery packages.
- Reviews, ratings, comments, reports, and moderation submissions.
- File metadata such as filename, file type, size, upload time, storage location, access permissions, and delivery status.
3.9 Device, Usage, and Technical Data
- IP address, browser type, operating system, device type, language, time zone, and app or browser version.
- Session identifiers, login timestamps, referral pages, pages viewed, searches, clicks, feature usage, and interaction events.
- Cookie identifiers, security events, crash logs, diagnostics, error logs, and performance data.
- Fraud signals, rate-limit events, device or network risk indicators, and suspicious-activity records.
3.10 Data About Other People
A User may upload or submit information about another person, for example an event participant appearing in a photograph, a Client's team member, a Creator's assistant, or a contact person. The User who submits that information is responsible for having a lawful basis and any necessary permission to share it. You should not upload sensitive or unnecessary information about other people.
3.11 Information We Generally Do Not Request
Unless clearly necessary for a specific lawful feature, Sapehive does not ask Users to provide passwords for third-party accounts, full financial credentials, medical records, religious beliefs, political opinions, biometric templates, or other highly sensitive information. Please do not include such information in profiles, public Content, chats, project descriptions, or support messages.
4. How We Collect Personal Data
We may collect Personal Data:
- Directly from you, such as when you register, create a profile, upload Content, make a Booking, communicate, pay, request support, or exercise a privacy right.
- Automatically, through cookies, logs, security tools, analytics technologies, device permissions, and normal operation of the Platform.
- From other Users, such as when a Client books or reviews a Creator, a Creator confirms delivery, or a User reports an issue.
- From service providers, such as authentication, payment, SMS, email, cloud-storage, map, analytics, verification, and fraud-prevention providers.
- From connected services, when you choose to connect or use Google Drive, Google sign-in, social-media links, maps, or another third-party service.
- From public or lawful sources, where necessary for verification, safety, fraud prevention, or compliance.
5. Why We Use Personal Data
We may process Personal Data to:
- Create, verify, secure, maintain, and administer User accounts.
- Display Creator profiles, portfolios, availability, service areas, ratings, and relevant public information.
- Help Clients search for, compare, contact, and request nearby or relevant Creators.
- Send, receive, accept, reject, schedule, manage, complete, and record Bookings.
- Enable communications, notifications, delivery confirmations, and support interactions.
- Process payments, payouts, fees, invoices, cancellations, and refunds through payment partners.
- Store, optimise, transmit, preview, deliver, replace, reorder, and delete permitted files and Content.
- Provide map, distance, nearby-search, and location features with your permission where required.
- Verify Creators or Users and protect the reliability of profiles and transactions.
- Detect, prevent, investigate, and respond to fraud, spam, abuse, impersonation, illegal activity, security incidents, and violations of Platform rules.
- Resolve disputes, enforce agreements, confirm service or file delivery, and maintain evidence of important Platform actions.
- Respond to questions, complaints, legal requests, and privacy-right requests.
- Measure performance, diagnose errors, conduct research, understand feature usage, and improve the Platform.
- Personalise search, recommendations, notifications, and user experience where permitted.
- Send service announcements and, with consent where required, marketing or promotional communications.
- Comply with legal, accounting, tax, regulatory, consumer-protection, and law-enforcement obligations.
- Establish, exercise, or defend legal claims and protect the rights, safety, and property of Users, Sapehive, and others.
We may create aggregated or de-identified information that does not reasonably identify an individual. We may use such information for analytics, planning, security, reporting, and improvement, subject to applicable law.
6. Legal Bases for Processing
The legal basis depends on your location and the processing activity. Under Indian data-protection law, we may process digital Personal Data with your consent or for other uses permitted by applicable law. Where the General Data Protection Regulation or a similar law applies, we may rely on one or more of the following legal bases:
- Contract: processing necessary to provide requested Platform Services, manage an account, facilitate a Booking, or take steps at your request before a contract.
- Consent: processing based on a clear choice, such as optional precise location, certain cookies, marketing messages, or a future feature that requires consent. You may withdraw consent, but withdrawal does not affect processing that was lawful before withdrawal.
- Legitimate interests: operating and improving a secure marketplace, preventing fraud, understanding Platform use, protecting Users, and enforcing rules, where those interests are not overridden by your rights.
- Legal obligation: complying with tax, accounting, payment, regulatory, consumer-protection, court, or lawful government requirements.
- Legal claims and safety: establishing, exercising, or defending claims and protecting vital interests in an emergency where permitted.
Where we ask for Personal Data, you may choose not to provide it. However, some data is necessary to create an account, verify identity, complete a payment, process a Booking, provide support, or use a particular feature. Without it, the relevant feature may not be available.
7. Profiles, Public Content, and Search Visibility
Creator profiles are designed to help Clients discover creative professionals. Information you choose to publish, such as a display name, city, service categories, biography, portfolio, public pricing, availability, social links, ratings, and reviews, may be visible to other Users and visitors. Public profile pages may also be indexed by search engines and may remain in search-engine caches for a period after you edit or delete them.
Do not publish phone numbers, home addresses, identity documents, payment information, private client files, or other sensitive Personal Data in public profile fields or portfolio descriptions. Sapehive may limit, remove, blur, or moderate public Content where necessary for safety, privacy, law, or Platform rules.
Reviews and ratings may be associated with a User's account or Booking. We may publish, moderate, restrict, or remove reviews in accordance with Platform rules, but we do not guarantee that every review will be accurate. Users should not include unnecessary Personal Data about another person in a review.
8. Booking and Communication Data
Sapehive processes Booking requests, booking history, status updates, notifications, delivery confirmations, support records, and related metadata to operate the marketplace. When communications are enabled, we may process messages and communication logs to transmit the communication, maintain conversation history, protect Users, investigate reports, resolve disputes, detect fraud, and comply with law.
The Client and Creator will receive the information reasonably necessary to evaluate and perform a Booking. Before a Booking is accepted, we may limit the information shared to profile, service, price, date, approximate location, and project details. After acceptance, additional contact, schedule, meeting, or location details may be shared where necessary. Users are responsible for using received information only for legitimate Booking-related purposes and in accordance with law.
If voice or video calling is introduced, we may process call connection data, timestamps, duration, participants, and safety reports. Calls will not be recorded unless the Platform clearly informs participants and obtains any consent required by law.
9. Location Services and Maps
Location information helps Users search by city, discover nearby Creators, estimate distance, select service locations, navigate to a meeting point, or use live-location features if introduced. The Platform may use manually entered locations, approximate location, or precise GPS location depending on the feature.
- Precise GPS access is requested through your device or browser and is used only when permission is granted.
- You may deny or disable location permission in device, browser, or app settings. Some nearby-search, route, or live-location functions may then be unavailable.
- GPS and map information may be inaccurate because of device settings, network conditions, satellite availability, third-party map data, or user input.
- Where live-location sharing is introduced, the Platform will provide clear controls and will limit sharing to the relevant participants and time period, subject to the feature design.
- We may use map providers such as Google Maps or Mapbox, which may separately collect technical, map, and location data under their own policies.
Users should not use location features to track, harass, endanger, or monitor another person without lawful authority and permission.
10. Uploads, File Storage, and Delivery
10.1 Portfolio Storage
Creator portfolio images and videos may be stored in cloud object storage and delivered through a content-delivery or media-optimisation service. We may generate thumbnails, previews, resized versions, compressed display copies, or technical metadata to make the Platform load efficiently. Unless clearly stated, optimisation of a website preview does not alter the Creator's separately retained original file.
10.2 Project and Delivery Files
Where enabled, Clients may send raw files to Creators or editors, and Creators may deliver final work to Clients. Files may be transferred through cloud storage, a user-connected Google Drive account, a secure upload link, or another supported provider. The Platform may process file names, sizes, access permissions, transfer status, delivery confirmation, and related logs.
When you choose Google Drive or another connected storage service, you direct Sapehive to facilitate the selected action. The file may then be stored in the connected account and governed by that provider's terms and the account owner's sharing settings. Sapehive cannot delete copies that another User has already downloaded, copied, exported, or saved outside Sapehive-controlled storage.
10.3 Temporary Storage and Upload Processing
Temporary files, incomplete uploads, processing copies, and cached previews may be retained for a limited period needed to complete, retry, secure, or troubleshoot a transfer. They may be deleted automatically after expiration, cancellation, successful processing, or a reasonable inactivity period, depending on the feature configuration.
10.4 File Security and Access
We use reasonable access controls and storage configurations intended to restrict private files to authorised participants and service providers. Certain links may expire or require authentication. Users must keep delivery links, account credentials, and connected-drive permissions secure and must not share private files with unauthorised people.
10.5 File Deletion and Backups
Users may delete eligible Content through available controls or request deletion. Deletion from active systems may not be immediate in encrypted backups, caches, logs, or provider recovery systems. Residual copies are isolated from ordinary use and removed or overwritten according to applicable backup cycles, unless retention is required for security, fraud prevention, disputes, or law. Backup practices may vary by provider and feature.
11. Payments, Payouts, and Refunds
Payments may be processed by a third-party payment gateway such as Razorpay or another authorised provider. The payment provider collects and processes payment credentials through its own secure interface. Sapehive may receive transaction identifiers, payment status, amount, currency, method category, masked details, risk signals, settlement information, and refund status.
We use transaction data to confirm Bookings, calculate applicable fees, provide receipts or invoices, support Creator payouts, process cancellations or refunds, detect fraud, resolve payment disputes, and comply with accounting, tax, and legal duties. A payment provider, bank, card network, UPI participant, or other financial institution may independently process Personal Data under its own policies and legal obligations.
Refund and dispute records may be retained even after account deletion where required to complete the process, prevent abuse, maintain financial records, respond to chargebacks, or comply with law.
13. Third-Party Services
Depending on the enabled features, Sapehive may use the following providers or comparable alternatives. A provider may process data only to the extent needed for its service, subject to its contract, applicable law, and its own responsibilities.
| Service or Provider | How It May Be Used | Data Commonly Involved |
|---|---|---|
| Supabase | Database, authentication, secure application functions, and Platform infrastructure. | Account data, profile data, Booking records, authentication records, and application logs. |
| Cloudflare R2 | Object storage for eligible images, videos, uploads, or delivery files. | Uploaded files, file metadata, access logs, and technical identifiers. |
| ImageKit | Media delivery, image or video optimisation, previews, transformations, and content-delivery functions. | Media files, URLs, transformation requests, device information, and delivery logs. |
| Google Drive and Google APIs | User-directed file selection, upload, transfer, storage, or delivery through a connected Google account. | Selected files, file metadata, account authorisation tokens, and permissions required for the chosen action. |
| Google Maps or Mapbox | Maps, geocoding, nearby discovery, location search, distance, route, or meeting-point features. | Search terms, coordinates, IP address, device data, and map interactions. |
| Razorpay or another payment provider | Payments, payment verification, refunds, settlements, risk checks, and Creator payouts where enabled. | Transaction details, payer or payee details, payment method information, risk information, and compliance data. |
| MSG91 or another SMS provider | OTP verification, Booking alerts, service notifications, and security messages. | Phone number, message content, template identifier, delivery status, and timestamps. |
| Email service provider | Verification emails, Booking updates, receipts, support messages, security notices, and permitted marketing. | Email address, name, message content, delivery events, and engagement data where enabled. |
| Google Analytics or another analytics provider, if enabled | Traffic measurement, feature analytics, diagnostics, and Platform improvement. | Cookie or device identifiers, approximate location, usage events, browser data, and referral information. |
Providers, regions, and technical arrangements may change as the Platform develops. We may replace a provider with another provider performing a similar function. We will not use the name of a provider to suggest that a feature is active when it is not enabled.
Where Google API data is used, Sapehive will limit access and use to the functionality requested by the User and will handle that data in accordance with applicable Google API policies and user permissions. Users may revoke connected-account access through their Google account settings or relevant Platform controls.
15. User-Generated Content and Intellectual Property
Users remain responsible for the Content they upload, publish, send, or deliver, including portfolio images, portfolio videos, raw files, final files, reviews, ratings, comments, and documents. You must have all rights, licences, permissions, and consents necessary to submit the Content and to permit its intended processing through the Platform.
Creators generally retain ownership of their portfolio and creative Content unless they separately agree otherwise with a Client or another rights holder. A Client's right to use delivered work depends on the agreement between the Client and Creator, including any licence, copyright assignment, usage limitation, model release, music licence, or payment condition. Sapehive does not determine ownership between Users merely by hosting or transmitting the Content.
To operate the Platform, Sapehive must technically host, copy, transmit, display, resize, format, preview, moderate, and make available Content according to the User's settings and requested feature. This technical processing does not transfer ownership to Sapehive. Additional content-use terms may be stated in Sapehive's Terms of Service.
Users must not upload Content that infringes copyright, privacy, publicity, confidentiality, contractual, or other rights; contains unlawful material; exposes private client information; or includes a person who has not been lawfully photographed, recorded, or featured. We may remove or restrict Content and preserve evidence when responding to a valid complaint, legal request, safety concern, or rule violation.
16. AI and Automated Features
Sapehive may in the future introduce features such as creator recommendations, search ranking, portfolio assistance, content moderation, fraud detection, spam filtering, quality or trust signals, and customer-support automation. If introduced, these systems may analyse profile data, location relevance, availability, pricing, ratings, Booking history, response behaviour, technical signals, reports, and Content characteristics.
We will seek to use data that is relevant and proportionate to the feature, apply reasonable safeguards, and provide notice or controls where required. Automated indicators may support human review but may not always be accurate. Users may contact us to challenge a material decision, request review, correct inaccurate data, or exercise applicable rights.
Sapehive will not use solely automated decision-making that produces legal or similarly significant effects on a person without a lawful basis and appropriate safeguards where applicable law restricts such processing. We will update this Privacy Policy or provide feature-specific notices before introducing materially different AI processing.
17. Data Retention
We retain Personal Data only for as long as reasonably necessary for the purposes described in this Privacy Policy, including providing Services, maintaining security, resolving disputes, enforcing agreements, meeting legal obligations, and exercising or defending claims. Retention depends on the data type, sensitivity, risk, feature, account status, and legal requirements.
| Data Category | General Retention Approach |
|---|---|
| Account and profile data | Generally retained while the account is active and for a reasonable period after closure to complete deletion, handle reactivation, prevent abuse, or meet legal requirements. |
| Public portfolio Content | Generally retained until the Creator deletes it, closes the account, or it is removed under Platform rules, subject to backups, caches, disputes, and legal preservation. |
| Bookings and communications | Retained for the period reasonably needed to operate the Booking, support Users, resolve disputes, maintain transaction history, protect safety, and comply with law. |
| Payments, payouts, invoices, and refunds | Retained for applicable accounting, tax, financial, anti-fraud, chargeback, and legal periods. |
| Uploaded project and delivery files | Retained according to the selected storage or delivery feature, User deletion, project status, storage limits, expiry rules, and dispute needs. Connected-drive copies are controlled by the relevant account owner. |
| Security, fraud, and technical logs | Retained for a limited period based on security risk, investigation needs, system integrity, and legal requirements; longer where linked to an incident or claim. |
| Consent and privacy-request records | Retained as necessary to demonstrate choices, respond to requests, and comply with accountability obligations. |
When Personal Data is no longer needed, we delete it, anonymise it, or isolate it from active use, unless continued retention is required or permitted by law. Aggregated or de-identified information may be retained where it no longer identifies an individual.
18. Account Deletion
18.1 How to Request Deletion
You may request account deletion through an account-deletion setting when available or by emailing support@sapehive.com from the email address associated with the account. We may need to verify your identity and may ask you to resolve an open Booking, payment, payout, refund, complaint, or dispute before deletion can be completed.
18.2 What Is Removed or Disabled
Subject to verification and lawful exceptions, deletion generally disables account access and removes or de-identifies active profile details, public portfolio Content, preferences, optional marketing subscriptions, and other data that is no longer needed. Public pages may take time to disappear from caches and search results.
18.3 What May Be Retained
We may retain limited information where necessary for legal obligations, tax and accounting, payment records, fraud and abuse prevention, security, dispute resolution, chargebacks, insurance, enforcement, or legal claims. We may also retain records of the deletion request and data needed to prevent a banned or fraudulent account from immediately re-registering.
18.4 Files and Copies Outside Sapehive
Account deletion does not remove files or messages that another User lawfully downloaded, copied, received, or stored outside Sapehive. It also does not automatically delete files from a connected Google Drive or other third-party account; the relevant account owner must manage those copies and permissions through that service.
18.5 Backups
Deleted data may remain temporarily in protected backups or recovery systems until overwritten under normal cycles. Backup copies are not used for ordinary business purposes and may be retained longer when required to investigate an incident or comply with law.
19. Your Privacy Rights
Depending on your location and applicable law, you may have some or all of the following rights. These rights are subject to legal conditions, exceptions, verification, and the rights of other people.
- Access: request information about the Personal Data we process and obtain a copy where required.
- Correction: correct inaccurate or misleading Personal Data and complete incomplete information.
- Erasure or deletion: request deletion of Personal Data that is no longer required or is otherwise eligible for deletion.
- Data download or portability: receive certain data in a commonly used format where feasible and legally required.
- Consent withdrawal: withdraw consent for future processing where consent is the legal basis.
- Restriction or objection: request restriction of processing or object to certain processing where applicable, including some direct marketing and legitimate-interest processing.
- Cookie management: manage optional cookies and similar technologies through available controls.
- Account closure: close your account and request deletion as described above.
- Grievance redressal: raise a complaint with Sapehive and, where applicable, an authorised data-protection or consumer authority.
- Nomination: where provided by applicable Indian law and supported by required procedures, nominate another individual to exercise specified rights in the event of death or incapacity.
- Automated-decision safeguards: request information, human review, or challenge certain significant automated decisions where applicable.
To exercise a right, email support@sapehive.com and describe your request. We may ask for information reasonably necessary to verify your identity, authority, account, and request. An authorised representative may submit a request where legally permitted, but we may require proof of authority and direct verification with the User.
We will respond within the time required by applicable law. We may refuse or limit a request where it is fraudulent, manifestly unfounded, excessive, technically impossible, conflicts with another person's rights, or is subject to a legal exception. If we refuse, we will provide an explanation where required. We will not discriminate against a User for exercising a lawful privacy right.
You may unsubscribe from marketing emails using the link in the message and may request marketing SMS opt-out through the provided mechanism. You may still receive important account, security, Booking, payment, or legal messages.
20. Security
Sapehive uses reasonable administrative, technical, and organisational measures designed to protect Personal Data against unauthorised access, alteration, disclosure, loss, misuse, or destruction. Depending on the system and feature, these measures may include:
- Encryption in transit and encryption at rest where supported and appropriate.
- Secure authentication, password hashing, session controls, OTP verification, and account-recovery protections.
- Role-based or least-privilege access controls for private data and files.
- Database and storage access policies, private buckets, expiring links, and environment-secret management.
- Logging, monitoring, rate limiting, validation, fraud detection, and incident investigation.
- Software updates, vulnerability remediation, secure development practices, and provider security reviews appropriate to Sapehive's stage and risk.
- Backups and recovery measures where implemented and appropriate.
- Confidentiality and data-protection obligations for personnel and service providers with access.
No online service, transmission method, or storage system can be guaranteed to be completely secure. Users must protect their passwords, OTPs, devices, private links, and connected accounts; use accurate contact information; log out from shared devices; and promptly notify Sapehive of suspected unauthorised access.
If a Personal Data breach occurs, Sapehive will investigate and take reasonable steps to contain and remediate it. We will notify affected Users and relevant authorities where and within the time required by applicable law.
21. Children's Privacy
The general Sapehive marketplace is intended for individuals who are at least 18 years old and legally able to enter into the relevant transactions. A person under 18 must not create an independent transactional account, offer services, make a Booking, or submit payment or payout information unless Sapehive has introduced a specific feature that lawfully supports minors and the account is created or managed with verified consent and supervision of a parent or lawful guardian.
We do not knowingly collect Personal Data from a child in a manner prohibited by applicable law. If you believe a child has provided Personal Data without appropriate authorisation, contact support@sapehive.com. We may verify the report, restrict the account, seek valid parental or guardian consent where legally permitted, or delete the data.
If a youth or student Creator programme is introduced, Sapehive will provide additional notice, age checks, parental or guardian consent procedures, safety controls, and restrictions before processing children's Personal Data. We will not knowingly use children's Personal Data for tracking, behavioural monitoring, targeted advertising, or processing likely to cause harm where prohibited by law.
22. International Users and Data Transfers
Sapehive is based in India and its Services are primarily designed for the Indian market. If you access the Platform from another country, your Personal Data may be processed in India and in other countries where Sapehive's service providers operate. Those countries may have data-protection laws different from the laws of your location.
Where cross-border-transfer restrictions apply, we will use a permitted transfer mechanism or safeguard, such as contractual protections, provider commitments, consent where appropriate, or another mechanism recognised by applicable law. Transfers from India will be subject to any restrictions or conditions issued under applicable Indian law. Where the GDPR applies, we may use adequacy decisions, standard contractual clauses, or another lawful transfer mechanism as appropriate.
By using an optional connected service or directing a file to another User or country, you may also initiate a transfer outside your jurisdiction. You should consider whether the recipient and chosen service are appropriate for the information being shared.
23. External Links and Third-Party Services
Profiles and Platform pages may contain links to Creator websites, social-media accounts, payment pages, maps, cloud drives, or other third-party services. Sapehive does not control those services and is not responsible for their privacy, security, content, or practices. Review the third party's terms and privacy policy before providing information or granting account permissions.
24. Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes in the Platform, technology, providers, business operations, legal requirements, or privacy practices. The “Last Updated” date will show when the latest version was issued. For material changes, we may provide additional notice through the Platform, email, account notification, or another reasonable method before the change takes effect where required.
Your continued use of the Platform after an update takes effect does not replace any consent required by law. Where new consent is required, we will request it separately.
25. Contact and Grievance Redressal
For privacy questions, account-deletion requests, rights requests, security reports, or grievances, contact:
Sapehive Privacy and Grievance Team
Email: support@sapehive.com
Website: https://sapehive.com
Please include the email address or phone number linked to your account, a clear description of the issue, and any relevant Booking or transaction reference. Do not send passwords, OTPs, full card details, UPI PINs, or unnecessary identity documents by ordinary email.
We will acknowledge and address grievances in accordance with applicable law and our internal procedures. If you remain dissatisfied, you may have the right to approach the Data Protection Board of India, a consumer authority, a court, or another competent supervisory authority, subject to applicable procedures and jurisdiction.