Privacy Policy

We collect information you provide directly to us when you create an account, connect your Shopify store, or contact us for support. This includes:

Account Information: Name, email address, password, and profile details.

Store Information: Your Shopify store URL, store category, and product catalog data (fetched via Shopify API to power Krato Bot's AI).

Usage Data: Pages visited, features used, conversation logs between your customers and Krato Bot, and analytics data generated from those conversations.

Payment Information: Billing details processed securely through our payment provider (Razorpay). We do not store raw card data on our servers.

Customer Conversation Data: Messages exchanged between your store visitors and Krato Bot, customer queries, and purchase intent signals.

We use the information we collect to:

• Provide, operate, and improve Krato Bot and the MahanX platform
• Personalise the AI experience for your store and customers
• Process transactions and send related information
• Send technical notices, updates, security alerts, and support messages
• Respond to comments, questions, and requests
• Generate analytics and insight reports for you
• Monitor and analyse trends, usage, and activities to improve our services
• Detect, investigate, and prevent fraudulent transactions and other illegal activities

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following limited circumstances:

Service Providers: We work with third-party companies that perform services on our behalf (e.g., cloud hosting, payment processing, analytics). These providers are bound by confidentiality obligations.

Shopify Integration: Data shared with your Shopify store is governed by your Shopify merchant agreement. We only access data necessary to power Krato Bot.

Legal Requirements: We may disclose information if required to do so by law or if we believe disclosure is necessary to protect our rights or comply with a legal process.

Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

Your data is stored on secure servers located in India and governed by Indian data protection laws. We implement industry-standard security measures including:

• TLS/SSL encryption for all data in transit
• AES-256 encryption for data at rest
• Regular security audits and vulnerability assessments
• Access controls limiting who can view your data internally

While we take reasonable precautions, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

We retain your account information for as long as your account is active or as needed to provide our services. If you close your account, we will delete your personal data within 30 days, except where:

• We are required to retain it by law
• It is necessary for legitimate business purposes (e.g., resolving disputes)
• Conversation analytics data that has been anonymised and aggregated (we may retain this indefinitely)

You may request deletion of your data at any time by contacting us at hello@mahanx.in.

We use cookies and similar tracking technologies to track activity on our platform and hold certain information. Cookies are files with a small amount of data placed on your browser.

We use:

• Essential cookies — Required for the platform to function
• Analytics cookies — Help us understand how our platform is used (Google Analytics)
• Preference cookies — Remember your settings and preferences

You can instruct your browser to refuse all cookies. See our Cookie Policy for full details.

You have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request that we correct inaccurate or incomplete data
• Deletion: Request deletion of your personal data (subject to legal obligations)
• Portability: Request a machine-readable copy of your data
• Objection: Object to how we use your data for marketing or profiling purposes
• Restriction: Request that we restrict processing of your data

To exercise any of these rights, contact us at hello@mahanx.in. We will respond within 30 days.

MahanX is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information.

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For significant changes, we will send you an email notification.

Your continued use of the platform after changes are posted constitutes your acceptance of the updated policy.

If you have any questions about this Privacy Policy or our data practices, please contact us:

MahanX Technologies

Email: hello@mahanx.in

Website: mahanx.in

We aim to respond to all privacy-related inquiries within 2 business days.