PodstackBack to Home

Privacy Policy

Last Updated: January 31, 2026Effective Date: January 31, 2026

1. Introduction

Welcome to Podstack ("we," "our," or "us"). We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website podstack.ai and use our GPU cloud computing services (collectively, the "Services").

This Privacy Policy is designed to comply with:

  • General Data Protection Regulation (GDPR) – European Union
  • Digital Personal Data Protection Act, 2023 (DPDP) – India
  • ePrivacy Directive – European Union
  • Information Technology Act, 2000 – India

By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

2. Data Controller

For the purposes of the GDPR and DPDP, the data controller responsible for your personal data is:

Razordynamics Private Limited (operating as Podstack)

Address: 11th Floor, Prestige Tech Park, Platina 2, Outer Ring Rd, Kadubeesanahalli, Bengaluru, Karnataka India- 560087
Email: privacy@podstack.ai
Data Protection Officer: dpo@podstack.ai

For users in the European Economic Area (EEA), we act as the data controller for personal data we collect through our Services. For users in India, we act as the Data Fiduciary under the DPDP Act.

3. Information We Collect

3.1 Information You Provide Directly

  • Account Information: Name, email address, phone number, password, and organization name when you register for an account.
  • Billing Information: Payment card details, billing address, GST/VAT identification numbers, and transaction history.
  • Communications: Information you provide when contacting our support team, including chat logs and email correspondence.
  • User Content: Data, files, code, models, and other content you upload, store, or process using our Services.
  • Feedback: Surveys, reviews, and feedback you voluntarily submit.

3.2 Information Collected Automatically

  • Device Information: IP address, browser type, operating system, device identifiers, and hardware configuration.
  • Usage Data: Pages visited, features used, click patterns, session duration, and interaction with our Services.
  • Log Data: Server logs, error reports, and system activity logs.
  • Location Data: Approximate geographic location based on IP address.
  • Cookies and Similar Technologies: Information collected through cookies, web beacons, and similar tracking technologies (see Section 10).

3.3 Information from Third Parties

  • Authentication Providers: If you sign in using Google, GitHub, or other OAuth providers, we receive your basic profile information.
  • Payment Processors: Transaction confirmations and fraud prevention data from payment service providers.
  • Business Partners: Information from referral partners and resellers.

4. How We Use Your Information

We use the information we collect for the following purposes:

4.1 Service Delivery

  • Provide, maintain, and improve our GPU cloud computing services
  • Process your transactions and manage your account
  • Allocate computing resources and manage infrastructure
  • Provide technical support and respond to inquiries

4.2 Communication

  • Send service-related notifications (usage alerts, billing updates, security notices)
  • Respond to your comments, questions, and support requests
  • Send marketing communications (with your consent)

4.3 Analytics and Improvement

  • Analyze usage patterns to improve our Services
  • Develop new features and functionality
  • Conduct research and analysis

4.4 Security and Compliance

  • Detect, prevent, and address technical issues, fraud, and security threats
  • Enforce our Terms of Service and acceptable use policies
  • Comply with legal obligations and respond to lawful requests

5. Legal Basis for Processing (GDPR)

Under the GDPR, we process your personal data based on the following legal grounds:

Legal BasisProcessing Activities
Contract Performance
Art. 6(1)(b) GDPR		Account creation, service delivery, billing, technical support
Consent
Art. 6(1)(a) GDPR		Marketing communications, non-essential cookies, analytics
Legitimate Interests
Art. 6(1)(f) GDPR		Fraud prevention, security monitoring, service improvement, business analytics
Legal Obligation
Art. 6(1)(c) GDPR		Tax compliance, responding to legal requests, data retention requirements

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

Data CategoryRetention Period
Account InformationDuration of account + 3 years after deletion
Billing & Transaction Records7 years (tax/legal compliance)
User Content & DataUntil you delete it or account termination + 30 days
Usage Logs90 days (rolling)
Support Communications3 years from resolution
Marketing Consent RecordsUntil withdrawal + 3 years (proof of consent)
Cookie Consent Records7 years (GDPR compliance audit trail)

7. Your Rights Under GDPR

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have the following rights under the GDPR:

Right of Access (Art. 15)

Request a copy of the personal data we hold about you.

Right to Rectification (Art. 16)

Request correction of inaccurate or incomplete personal data.

Right to Erasure (Art. 17)

Request deletion of your personal data ("Right to be Forgotten").

Right to Restriction (Art. 18)

Request restriction of processing of your personal data.

Right to Data Portability (Art. 20)

Receive your data in a structured, machine-readable format.

Right to Object (Art. 21)

Object to processing based on legitimate interests or for direct marketing.

Rights Related to Automated Decision-Making (Art. 22)

Not be subject to decisions based solely on automated processing.

Right to Withdraw Consent (Art. 7)

Withdraw consent at any time where processing is based on consent.

To exercise these rights, please contact us at privacy@podstack.ai. We will respond to your request within 30 days. You also have the right to lodge a complaint with your local Data Protection Authority.

8. Your Rights Under DPDP (India)

If you are located in India, you have the following rights under the Digital Personal Data Protection Act, 2023:

Right to Access Information

Obtain a summary of your personal data and processing activities.

Right to Correction and Erasure

Request correction of inaccurate data and erasure of data no longer necessary.

Right to Grievance Redressal

Have your grievances addressed by our designated Grievance Officer.

Right to Nominate

Nominate another person to exercise your rights in case of death or incapacity.

Grievance Officer (India)

Name: Grievance Officer, Podstack
Email: grievance@podstack.ai
Response Time: Within 30 days of receipt of complaint

You may also file a complaint with the Data Protection Board of India if you believe your rights have been violated.

9. International Data Transfers

Your personal data may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

9.1 Transfers from the EEA/UK

When we transfer personal data from the EEA or UK to countries not deemed adequate by the European Commission, we use:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Binding Corporate Rules where applicable
  • Adequacy decisions for countries recognized as providing adequate protection

9.2 Transfers from India

Cross-border transfers of personal data from India are conducted in compliance with the DPDP Act and any rules notified by the Central Government regarding permitted jurisdictions.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your activity on our Services.

10.1 Types of Cookies We Use

CategoryPurposeConsent Required
EssentialAuthentication, security, basic functionalityNo (strictly necessary)
AnalyticsUsage statistics, performance monitoringYes
MarketingAdvertising, retargeting, conversion trackingYes
PersonalizationUser preferences, customized experienceYes

10.2 Managing Cookies

You can manage your cookie preferences through:

  • Our cookie consent banner (displayed on first visit)
  • The "Cookie Settings" link in our website footer
  • Your browser settings (note: disabling cookies may affect functionality)

11. Third-Party Services

We use the following categories of third-party service providers:

CategoryPurpose
Cloud Infrastructure ProvidersHosting and compute resources
Payment Processors (Razorpay)Secure payment processing
Analytics Services (Google Analytics)Website analytics and performance
Communication ToolsEmail delivery, chat support
Authentication ProvidersOAuth login (Google, GitHub)

These third parties process data on our behalf and are bound by data processing agreements that ensure appropriate protection of your personal data.

12. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption: TLS 1.3 for data in transit; AES-256 for data at rest
  • Access Controls: Role-based access, multi-factor authentication
  • Infrastructure Security: Firewalls, intrusion detection, regular security audits
  • Data Isolation: Logical separation of customer data
  • Monitoring: 24/7 security monitoring and incident response
  • Employee Training: Regular security and privacy awareness training

While we strive to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

13. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at privacy@podstack.ai, and we will take steps to delete such information.

Under the DPDP Act (India), processing of children's data requires verifiable parental consent. We do not process children's data.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes:

  • We will update the "Last Updated" date at the top of this policy
  • We will notify you via email or prominent notice on our website
  • For material changes affecting your rights, we may request renewed consent

We encourage you to review this Privacy Policy periodically for the latest information on our privacy practices.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

General Privacy Inquiries

Email: privacy@podstack.ai

Data Protection Officer (GDPR)

Email: dpo@podstack.ai

Grievance Officer (India DPDP)

Email: grievance@podstack.ai

Data Subject Requests

Email: dsr@podstack.ai
Response Time: Within 30 days

EU Representative: For users in the European Union, you may also contact our EU representative at eu-rep@podstack.ai