India data residency
Customer data is stored and processed in Indian data centres. Backups remain in India unless customers explicitly opt in to cross-border movement.
India data residency, consent management, audit log, abuse prevention, and DPDP-aware data handling — the controls procurement teams and DPOs ask about.
Customer data is stored and processed in Indian data centres. Backups remain in India unless customers explicitly opt in to cross-border movement.
Recipients can opt out of marketing categories. Consent is tracked per template category and stored alongside delivery records.
We process customer data only for the purposes communicated to the data principal and respect retention & erasure requests under the Digital Personal Data Protection framework.
Template changes, campaigns, key issuance, wallet movements, and admin actions are all logged with exportable trails.
Rate limits, account suspension, template review, and reporting tools prevent spam and abusive sender behaviour.
We maintain a current list of sub-processors and notify enterprise customers of changes. List available on request.
Anyone whose data we process can request access, correction, erasure, or restriction. Requests should be sent to privacy@tody.in. We respond within statutory timelines.
Architecture, data flow, sub-processors, and security questionnaire response available under NDA.