Privacy Policy

How Plint Protects Your Privacy

Effective: May 27, 2025  ·  Last updated: May 27, 2026

1

Overview

Plint Technologies ("Plint", "we", "our", or "us") operates https://app.plint.space, an AI-powered interior design platform. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and the rights you have over it.

We are committed to compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act) and the Digital Personal Data Protection Rules, 2025 (India).

By using Plint you agree to the collection and use of information as described in this policy. If you do not agree, please discontinue use of the service.

2

Data We Collect

We apply the principle of data minimisation — we only collect what is necessary to deliver and improve the service.

Account & Identity Information

  • ·Full name and email address (provided at sign-up)
  • ·Profile picture (if you sign in with Google)
  • ·Account preferences and settings

Usage & Interaction Data

  • ·Interior design prompts you provide
  • ·Images you upload for AI processing
  • ·AI-generated outputs and revision history
  • ·Feature interactions and session activity
  • ·Credit balance and transaction history

Technical & Device Data

  • ·IP address and approximate geographic location (country/city)
  • ·Browser type, operating system, and device type
  • ·Pages visited within Plint and referring URL
  • ·Error logs and performance telemetry

Payment Data

  • ·Billing name and address (collected and processed by our payment partners)
  • ·Last four digits of payment instrument for receipt reference (we never store full card or account numbers)

Communications

  • ·Support messages you send us
  • ·Feedback or survey responses
What we do NOT collect: We do not collect sensitive personal data such as caste, religion, health records, biometric identifiers, or financial account credentials. We do not collect data from children under 18 without verifiable parental consent.
3

How We Use Your Data

Provide the ServiceAuthenticate your account, process AI generation requests, and deliver design outputs.
Manage Billing & CreditsProcess payments, allocate credits, and send purchase receipts.
Improve the PlatformAnalyse aggregated, anonymised usage trends to enhance AI quality, UX, and new features.
CommunicationsSend transactional emails (verification, password reset, purchase receipts) and, with your consent, product updates.
Safety & Fraud PreventionDetect abuse, enforce our Terms of Service, and protect user accounts.
Legal ObligationsComply with applicable Indian law and respond to lawful government requests.
AI Training: We do not use your uploaded images or design prompts to train our AI models without your explicit, separate opt-in consent. You can manage this preference in Account Settings.
4

Sharing Your Data

We do not sell your personal data. We share data only in the following circumstances:

Service ProvidersWe engage trusted third-party service providers for infrastructure, payments, and analytics. All such providers are bound by contractual obligations to process data only as directed by us and to maintain appropriate security measures.
Legal & Regulatory AuthoritiesWhen required by a court order, government directive, or applicable Indian law (IT Act 2000, DPDP Act 2023, etc.).
Business TransfersIf Plint is acquired or merged, your data may transfer to the successor entity under the same or stricter privacy protections, with prior notice to you.
5

Data Retention

We retain personal data only as long as necessary for the purposes described in this policy or as required by law:

Account data: Duration of your account + 90 days after deletion
Design outputs & uploaded images: Until you delete them, or 12 months after account closure
Payment records: 7 years (as required under Indian tax and accounting law)
Server / error logs: 90 days rolling window
Marketing preferences: Until you withdraw consent

You can request deletion of your account and associated data at any time via Account Settings or by emailing support@plint.space.

6

Security Safeguards

We implement industry-standard technical and organisational measures to protect your data, including:

Encryption in Transit

All data transmitted between your browser and our servers is encrypted.

Encryption at Rest

Stored data is encrypted using industry-standard algorithms.

Access Controls

Strict role-based access controls ensure staff access only the data they need.

Minimal Privilege

Internal systems follow least-privilege principles.

Regular Security Reviews

Periodic audits and vulnerability assessments.

Breach Notification

We will notify affected users and the Data Protection Board of India promptly in the event of a breach, as required by the DPDP Act.

No system is 100% secure. If you discover a security vulnerability, please contact us immediately at support@plint.space.

7

Your Rights

Under the Digital Personal Data Protection Act, 2023, you have the following rights as a Data Principal:

Right to Access: Obtain a summary of the personal data we hold about you and how it is being processed.
Right to Correction: Request correction of inaccurate or incomplete personal data.
Right to Erasure: Request deletion of your personal data, subject to legal retention obligations.
Right to Nominate: Nominate another individual to exercise these rights on your behalf in the event of death or incapacity.
Right to Withdraw Consent: Withdraw consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
Right to Grievance Redressal: Lodge a complaint with our Grievance Officer. If unsatisfied, escalate to the Data Protection Board of India.
To exercise any of these rights, email support@plint.space with the subject "Data Rights Request". We will respond within 30 days of receipt.
8

Cookies, Tracking & Our Cookie Policy

A cookie is a small text file placed on your device by a website. The table below describes every category of cookie or tracking technology Plint uses.

CategoryPurposePersonal data?Consent needed?
Authentication sessionStores your encrypted session token so you remain logged in between page loads. Scoped to app.plint.space only. Expires on sign-out or after a period of inactivity.Yes — encrypted session token onlyStrictly necessary — exempt from consent
Usage analyticsAggregated, anonymised page-view and event data to help us understand how the service is used. Our analytics tool is privacy-first and does not set any cookies and does not fingerprint your device. All data is aggregated server-side before it is recorded — no individual user is ever tracked.No — cookieless, no PIINot required — no personal data processed
Why there is no cookie consent banner on Plint: Plint only places strictly necessary authentication cookies on your device — which are exempt from consent requirements under the Digital Personal Data Protection Act, 2023 because they are essential to deliver the service you explicitly request. Our usage analytics tool sets no cookies and processes no personal data, so no consent is needed for it either. Because no non-essential cookies exist, displaying a consent banner would be misleading. This is intentional and compliant with applicable Indian data protection law.

What we do not use: We do not use advertising cookies, cross-site tracking pixels, social media trackers, behavioural profiling cookies, or any third-party marketing cookies.

Blocking session cookies: You may configure your browser to block all cookies, but doing so will prevent you from signing in and using the service.

Future changes: If we ever introduce non-essential cookies — for example, optional personalisation features — we will update this policy and obtain your prior consent before placing such cookies.

9

Children's Privacy

Plint is not directed to individuals under the age of 18 years. We do not knowingly collect personal data from minors. In compliance with the DPDP Act, processing of personal data of children requires verifiable parental consent. If you believe we have inadvertently collected data from a minor, please contact us immediately at support@plint.space and we will promptly delete such data.

10

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. When we make material changes, we will notify you by email (to the address associated with your account) and by posting the updated policy on this page with a revised "Last updated" date. Your continued use of Plint after the effective date constitutes acceptance of the updated policy.

11

Contact & Grievance Redressal

For any privacy-related questions, requests, or grievances — including those under the Digital Personal Data Protection Act, 2023 — please contact our Grievance Officer:

Role:Grievance Officer
Organisation:Plint Technologies
Response time:Within 30 days of receipt

If you are not satisfied with our response, you may escalate your complaint to the Data Protection Board of India once it becomes operational.

© 2026 Plint. All rights reserved.