← Back to HomeTerms of Use

Privacy Policy

Last Updated: 15-Dec-2025

ApexNeural Private Limited (“ApexNeural”, “we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy describes how we collect, use, store, share, and protect your information in accordance with the Digital Personal Data Protection Act, 2023 (DPDP Act), the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (SPDI Rules), and other applicable laws.

This Privacy Policy applies to your use of this website, its related domains, subdomains, product-specific websites, mobile applications, APIs, dashboards, and any related services operated by ApexNeural (collectively, the “Platform” or “Services”).

This website and all related product websites, domains, and subdomains are owned and operated by ApexNeural Private Limited, unless explicitly stated otherwise.

1. Personal Data We Collect

1.1 Data Provided by You

When you use our Platform, you may voluntarily provide:

  • Full name, email address, phone number, and company name
  • Login or account registration details
  • Billing and payment information (if you purchase paid plans)
  • Files, text, source code, documents, datasets, repository links, and other content submitted to run analysis and/or E2E testing workflows (“User Content”)

1.2 Data Collected Automatically

We automatically collect:

  • IP address, device and browser type, operating system
  • Usage metrics such as pages visited, actions performed, features used, and session duration
  • Diagnostic and security logs (for example, error logs and audit logs)

1.3 Data Generated by the Services

When you run workflows, the Platform may generate and store:

  • Workflow configuration choices (for example, analysis, E2E testing, or combined workflows)
  • Status and progress information for your project workflows
  • Reports and artifacts produced by the Platform (for example, test reports and analysis reports)

1.4 Definition of Personal Data

“Personal data” means any data relating to an identifiable individual. It does not include anonymized or aggregated data that cannot identify you.

1.5 How Our Website Collects, Uses, Stores, and Protects Personal Data

The Platform is primarily used to manage E2E testing and code-analysis workflows for software projects. In practice, this means we collect and use personal data in the following ways:

  • Account creation and login: When you register or log in, we process your account details to create and maintain your account, authenticate you, and provide access to the Platform.
  • Authentication tokens on your device: For web sessions, the Platform stores authentication tokens on your device (for example, in browser localStorage) so that API requests can be authorized. Logging out clears these tokens from the browser.
  • Project uploads and inputs: If you upload a ZIP file or provide a Git repository URL, we process that information to ingest your project, run requested workflows, and generate results (reports and artifacts). This data may include source code and configuration files contained in your project.
  • Workflow execution and reporting: We process project data to run workflows, display status, and allow you to preview/download reports and artifacts.
  • Communications and support: If you contact us (including via email) or submit support requests, we will use your contact details and message content to respond and provide support.
  • Newsletter: If you subscribe to updates, we will use your email address to send Platform news and product updates. You can unsubscribe by following the instructions in the email or by contacting us.
  • Storage and retention: Personal data and project-related data are stored on our servers and may be backed up for availability and disaster recovery. We retain data only for as long as reasonably necessary for the purposes described in this Policy, unless a longer retention period is required by law.
  • Security: We use reasonable administrative, technical, and organizational safeguards to protect personal data, including access controls, logging/monitoring, and encryption in transit (TLS/SSL). Where applicable, we also use encryption at rest and least-privilege access to stored data.

You should avoid uploading personal data of third parties unless you have a lawful basis (including consent where required). You are responsible for ensuring that the content you submit complies with applicable laws.

2. Lawful Basis for Processing

Under the Digital Personal Data Protection Act, 2023 (DPDP Act) and other applicable laws, we process personal data based on one or more of the following lawful grounds:

  • your consent;
  • performance of a contract or provision of requested Services;
  • legitimate business purposes, including security, analytics, service improvement, fraud prevention, and internal operations; and
  • compliance with legal or regulatory obligations.

3. User Responsibility for Uploaded Content

You are responsible for ensuring that any User Content, including documents, images, datasets, or files uploaded to the Platform:

  • does not infringe the privacy or rights of others,
  • does not contain personal data of any individual without lawful authorization or consent.

Uploading sensitive or illegal content is strictly prohibited.

4. How We Use Your Data

We use personal data to:

  • Provide, operate, maintain and improve our Services
  • Authenticate users and secure accounts
  • Process project uploads/inputs and generate workflow outputs (reports and artifacts)
  • Manage payments, billing, and account services (if applicable)
  • Communicate with you (support, alerts, service updates, newsletters if you opt-in)
  • Monitor usage patterns and enhance platform performance
  • Detect, prevent, and mitigate fraud, abuse, or security threats
  • Comply with applicable laws, legal requests, or regulatory requirements

5. Use of Data for Automated Analysis / AI Features

The Platform provides automated code analysis and E2E testing workflows. To deliver these features, we process your project inputs (for example, ZIP uploads or Git URLs) and generate outputs such as reports, recommendations, and test results.

If the Platform includes AI-assisted features, we use your inputs and interaction data to provide the requested functionality, improve reliability, and prevent abuse. We may use aggregated or anonymized data that cannot reasonably identify you for analytics and product improvement.

If we introduce model-training use of User Content beyond what is necessary to provide the Services, we will provide appropriate notice and any choices required by applicable law.

6. Automated Decision-Making & Disclaimer

Our automated systems may generate recommendations, reports, or insights based on your inputs. No legally significant decisions are made solely through automated processing. Outputs should not be treated as professional advice without independent human review.

7. Sharing & Disclosure of Personal Data

We do not sell personal data. We share data only with:

  • Cloud hosting providers and data processors (with equivalent or higher protection obligations)
  • Payment processors and fraud prevention partners (if you purchase paid plans)
  • Professional advisors, attorneys, auditors, or insurers where necessary
  • Governmental or regulatory authorities if legally required
  • Third parties in case of merger, acquisition, or business transfer (data will continue under this Policy)

All third-party processors act only under our instructions and legal agreements.

We may also share anonymized or aggregated data that does not identify individuals for research, analytics, business insights, or product improvement purposes.

8. International Transfers

Your data is primarily stored and processed in India. If transferred outside India, we ensure adequate safeguards consistent with DPDP Act standards and applicable international requirements.

9. Data Security

We implement industry-standard organizational and technical controls, which may include:

  • Encryption in transit (TLS/SSL)
  • Encryption at rest (where applicable)
  • Access control and authentication procedures
  • Logging, monitoring, and incident response processes
  • Secure development and vulnerability management practices

However, no electronic transmission or storage method is 100% secure.

10. Cookies & Tracking Technologies

The Platform primarily uses browser storage (for example, localStorage) to store session tokens for authentication. We do not use advertising cookies. If we implement optional analytics cookies or other non-essential tracking technologies, we will provide appropriate notice and choices as required by applicable law.

11. Data Retention

We retain personal data for as long as reasonably necessary to fulfill the purposes described in this Policy, including operational, security, compliance, and legal purposes. Retention periods may vary depending on account status, the type of data, and legal requirements.

CategoryRetention Duration
Account dataUntil account deletion + up to 180 days (as needed for backups, security, and compliance)
Billing & tax recordsUp to 8 years (where legally required)
Project inputs/outputs and reportsUntil deleted by you (where functionality exists) or as reasonably necessary to provide Services
Logs & analyticsTypically up to 12 months (unless longer retention is required for security/legal reasons)
Legal disputes/complianceAs required for protection or claims

Anonymized or aggregated data that cannot reasonably identify an individual may be retained indefinitely.

12. Your Rights Under DPDP Act

You have the right to:

  • Access your personal data
  • Request corrections or updating of inaccurate data
  • Withdraw consent (where processing is consent-based)
  • Request deletion (subject to legal exceptions)
  • Nominate a person to exercise rights on your behalf in case of death/incapacity
  • File a complaint with the Data Protection Board of India

To exercise rights, email: info@apexneural.com
Subject: “DPDP Rights Request”

13. Personal Data Breach Notification

In case of a personal data breach affecting your rights, we will notify: (i) you (where required by law), and (ii) the Data Protection Board of India, in accordance with legal obligations.

14. Children’s Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect data from children. If inadvertently collected, we will delete it upon request.

15. Grievance Officer

Name: S.B.Rao
Designation: Grievance Officer
Email: grievance@apexneural.com
Phone: +91-98499 49597
Address:
ApexNeural Private Limited,
5th Floor, Shantha Sriram Building, PRS Towers,
Gachibowli, K.V. Rangareddy,
Telangana, India – 500032

  • We will acknowledge grievances within 7 days
  • We will aim to resolve them within 30 days

16. Updates to This Policy

We may update this Privacy Policy periodically. If material changes are made, we will notify you via email or a prominent notice on the Platform. Continued use of the applicable Website or Services after such updates constitutes acceptance of the revised Privacy Policy.

17. Contact Us

For privacy questions or concerns: info@apexneural.com
Registered Address:
ApexNeural Private Limited
5th Floor, Shantha Sriram Building, PRS Towers,
Gachibowli, K.V. Rangareddy,
Telangana, India – 500032
CIN: U62013TS2024PTC189416