At ResourcePlan Solution Private Limited, protecting your personal data is our priority.
Whether you use the 1tap.video platform (the "Platform") as our client (the "Client"), we may collect personal data about you as part of managing our contractual relationship. This policy informs you how we process your personal data in compliance with applicable data protection laws, including Regulation (EU) 2016/679 of 27 April 2016 (General Data Protection Regulation or GDPR), India's Digital Personal Data Protection Act, 2023, and relevant federal and state privacy laws in the United States, such as the California Consumer Privacy Act (CCPA), as applicable (together, the "Applicable Regulations").
The data controller is ResourcePlan Solution Private Limited, an Indian private limited company with its head office at 45-46, Shiv Marg, Guru Jhambeshwar Nagar A, Block E, Vaishali Nagar, Jaipur, Rajasthan 302021 when you browse our Platform or use an account on the Platform as our Client.
"Personal data" means any information that identifies an individual, directly or indirectly. We may collect:
• Identification data (e.g. full name, email addresses)
• Professional data (e.g. company name, position/function, company size, website, logo)
• Order data
• Login data (e.g. logs, IP address)
• If you sign in with a third-party service (Google, Microsoft, etc.), we collect the name and email shared by that service. We never receive your third-party password.
• Browsing data (pages viewed, date/time, browser, OS, user ID)
• Location data
• Call recordings / metadata with our customer-care service
• Economic / financial data (bank details, credit-card data)
• Any other information you voluntarily provide in a contact request.
Where certain data are mandatory, we will tell you at the point of collection.
The table below summarises how we use your data, on what legal basis, and for how long we keep it:
| Purpose | Legal basis | Retention period |
|---|---|---|
| Provide Platform services (account access) | Contract performance / pre-contractual measures | For the lifetime of the account (logs 10 weeks). Inactive accounts are deleted after 2 years if not reactivated. Archived 5 years for evidence. |
| Contract / order / invoice & customer-relationship management | Contract performance | Throughout the business relationship; archived 5 years (transactions) or 10 years (contract documents). Credit-card data stored by our payment provider; CVV2 never stored. |
| Service improvement (incl. call recording) | Legitimate interest | Recordings 6 months; analysis 1 year; other personal data 6 months. |
| Collect product / service opinions | Legitimate interest | 2 years from publication. |
| Build customer & prospect database | Legitimate interest | Customers: duration of relationship. Prospects: 3 years from last contact. |
| Newsletters & direct marketing | Legitimate interest (loyalty / marketing) | 3 years from last contact. |
| Cold calling | Legitimate interest | 3 years from last contact (after checking BLOCTEL-type opt-out list). |
| Respond to information requests | Legitimate interest | 3 years from last contact. |
| Compliance with legal / regulatory obligations | Legal obligation | Invoices 10 years; transactions (non-bank) 5 years; contracts 10 years. |
| Audience analytics & cookie-based improvement | Consent | 25 months. |
| Handling data-subject rights requests | Legitimate interest | Proof of ID kept only for verification then deleted. |
Your personal data may be shared with:
• Our internal staff (on a need-to-know basis)
• Our processors, including AI service providers, hosting, newsletter and email services, analytics, secure-payment provider, invoicing and cookie-management tools
• Public or private bodies where we are legally obliged to do so
We host data on AWS servers located in the US and EU. Where our processors transfer data outside the US and EU, we ensure appropriate safeguards, such as:
• Transfer to countries recognised by the European Commission as providing adequate protection (GDPR Art. 45); or
• Standard Contractual Clauses, Binding Corporate Rules, approved certification, or other safeguards under GDPR Art. 46; or
• Another lawful derogation under GDPR Chapter V.
You may exercise the following rights at any time, subject to the conditions and scope set out in the applicable data protection laws, including the GDPR (EU), the Digital Personal Data Protection Act, 2023 (India), and relevant U.S. privacy regulations such as the CCPA:
• Right to be informed
• Right of access
• Right to rectification
• Right to restriction of processing
• Right to erasure / "right to be forgotten"
• Right to lodge a complaint with the competent supervisory authority
• Right to define post-mortem instructions for retention, deletion, communication of your data
• Right to withdraw consent at any time – without affecting prior processing
• Right to data portability
• Right to object to processing
To exercise your rights, contact us using the details in Section 8. We may request proof of identity.
For details on how we use cookies, please read our Cookies Policy.
Email: magic@1tap.video
Address: 45-46, Shiv Marg, Guru Jhambeshwar Nagar A, Block E, Vaishali Nagar, Jaipur, Rajasthan 302021
We may update this privacy policy at any time to reflect regulatory, case-law, editorial or technical changes. The new version will apply from its entry-into-force date. Please consult this page regularly for the latest version. We will notify you of any significant changes.