This Privacy Policy ('Policy') describes how FRIQUICK INFOTECH PRIVATE LIMITED ('we', 'us', 'our', or 'Company'), a company incorporated under the Companies Act, 2013, having its registered office at ErandawanePrabhat Road, Galli No 12 S No. 8385/2, Deccan Gymkhana, Pune City, Pune- 411004, Maharashtra, collects, uses, discloses, and protects personal information of users ('you', 'your', or 'User') who access or use our website https://friquick.com, mobile applications, and related services (collectively, the 'Platform'). This Policy is published in accordance with the provisions of the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023 ('DPDP Act').
WHEREAS, the Company operates a digital platform providing recipe search, AI-powered voice cooking assistance, and access to a comprehensive aggregated recipe databaseto Users across India;
WHEREAS, in the course of providing services through the Platform, the Company collects, processes, stores, and transfers certain personal information and sensitive personal data of Users;
WHEREAS, the Company is committed to protecting the privacy and security of User information and ensuring compliance with applicable data protection laws in India;
WHEREAS, the Company recognizes the importance of transparency in data processing practices and seeks to inform Users about how their personal information is handled;
WHEREAS, this Policy sets forth the principles, practices, and procedures governing the collection, use, disclosure, retention, and protection of personal information;
NOW, THEREFORE, by accessing or using the Platform, you acknowledge that you have read, understood, and agree to be bound by the terms of this Privacy Policy.
In this Policy, unless the context otherwise requires, the following terms shall have the meanings assigned to them below:
means any information relating to an identified or identifiable natural person ('Data Principal'), including but not limited to name, email address, telephone number, postal address, date of birth, gender, financial information, payment details, government-issued identification numbers, biometric data, IP address, device information, location data, browsing history, and any other information that can be used to identify an individual directly or indirectly.
means personal information consisting of passwords, financial information such as bank account or credit card or debit card or other payment instrument details, physical, physiological and mental health condition, sexual orientation, medical records and history, biometric information, and any other information as may be classified as sensitive under applicable law.
means the individual to whom the personal information relates, being the User of the Platform.
means the Company, which alone or in conjunction with others determines the purpose and means of processing personal information.
means any person who processes personal information on behalf of the Data Fiduciary, including third-party service providers, vendors, and contractors.
means any operation or set of operations performed on personal information, whether or not by automated means, including collection, recording, organization, structuring, storage, adaptation, retrieval, use, disclosure, dissemination, erasure, or destruction.
means any freely given, specific, informed, and unambiguous indication of the Data Principal's wishes by which they, through a clear affirmative action, signify agreement to the processing of personal information relating to them.
means any person other than the Data Principal, the Data Fiduciary, the Data Processor, and persons authorized by the Data Fiduciary or Data Processor to process personal information.
means small text files stored on a User's device that enable the Platform to recognize the User's device and collect information about the User's browsing activities.
The Company collects various categories of personal information from Users through different means when they access or use the Platform. The types of information collected include:
When you register an account, make a purchase, subscribe to our services, contact customer support, or otherwise interact with the Platform, you may provide:
Account Information: Name, email address, phone number, username, password, date of birth, gender, and profile photograph.
Contact Information: Billing address, shipping address, and alternative contact details.
Payment Information: Credit card, debit card, UPI ID, net banking details, and other payment instrument information processed through secure payment gateways.
Identity Verification Information: Government-issued identification documents such as Aadhaar, PAN, passport, driving license, or voter ID as may be required for KYC compliance.
Communication Data: Information contained in communications you send to us, including customer service inquiries, feedback, reviews, ratings, and survey responses.
When you access or use the Platform, we automatically collect certain information through cookies, web beacons, and similar technologies:
Device Information: Device type, operating system, browser type and version, unique device identifiers, mobile network information, and device settings.
Usage Information: Pages visited, features used, time spent on pages, links clicked, search queries, referring/exit pages, date and time stamps, and clickstream data.
Location Information: IP address, GPS coordinates, Wi-Fi access points, and cell tower information to determine your approximate geographic location.
Cookies and Tracking Technologies: Session cookies, persistent cookies, web beacons, pixel tags, and similar technologies to enhance user experience and analyze Platform usage.
We may receive information about you from third-party sources, including:
Social Media Platforms: If you choose to link your account with social media platforms (Facebook, Google, Twitter, etc.), we may receive profile information, email address, friends list, and other information made available by those platforms.
Business Partners and Affiliates: Information from our business partners, affiliates, marketing partners, and service providers who assist us in delivering services.
Publicly Available Sources: Information from public databases, government records, and other publicly accessible sources.
We collect sensitive personal data only with your explicit consent and for specific lawful purposes, including financial information for payment processing, health information if you use health-related services, and biometric data for authentication purposes where applicable. Such data is subject to heightened security measures and restricted processing.
The Company processes personal information for the following purposes and on the following legal bases:
To provide, maintain, and improve the Platform and services; process transactions and fulfill orders; create and manage user accounts; authenticate users and prevent fraud; provide customer support and respond to inquiries; send transactional communications including order confirmations, shipping notifications, and account updates; and perform our contractual obligations to you.
To personalize your experience on the Platform; recommend products, services, and content based on your preferences and browsing history; remember your preferences and settings; analyze usage patterns to improve Platform functionality; and conduct research and development for new features and services.
To send promotional communications, newsletters, and marketing materials about our products, services, offers, and events (with your consent); conduct surveys, contests, and promotional campaigns; analyze the effectiveness of marketing campaigns; and provide targeted advertising based on your interests and behavior.
To comply with applicable laws, regulations, and legal processes; respond to lawful requests from government authorities, law enforcement, and regulatory bodies; enforce our Terms of Service and other agreements; protect our rights, property, and safety and those of our users and third parties; prevent, detect, and investigate fraud, security breaches, and illegal activities; and resolve disputes and enforce our legal rights.
To conduct business analytics and generate insights about Platform usage; monitor and analyze trends, usage patterns, and user demographics; perform accounting, auditing, and financial reporting; manage business operations and internal administration; and facilitate corporate transactions such as mergers, acquisitions, or asset sales.
We process personal information based on our legitimate interests in operating and improving our business, provided such interests are not overridden by your fundamental rights and freedoms. These legitimate interests include fraud prevention, network and information security, direct marketing to existing customers, and improving our services.
The Company may disclose or share personal information with third parties in the following circumstances:
We engage third-party service providers to perform functions on our behalf, including payment processing, order fulfillment, logistics and delivery, cloud hosting and storage, customer support, marketing and advertising, analytics and data analysis, IT services and security, and professional services (legal, accounting, auditing). These service providers have access to personal information only to perform specific tasks on our behalf and are obligated to protect the information and use it only for authorized purposes under written agreements.
We may share information with our business partners, affiliates, subsidiaries, and related entities for purposes consistent with this Policy, including joint marketing initiatives, co-branded services, and integrated service offerings. Such sharing is subject to confidentiality obligations and data protection requirements.
We may disclose personal information to government authorities, law enforcement agencies, regulatory bodies, courts, and other public authorities when required by law, legal process, or governmental request; to comply with statutory obligations under Indian law including tax, KYC, and anti-money laundering requirements; to protect our legal rights and interests; to prevent or investigate fraud, security threats, or illegal activities; and to protect the safety and security of users and the public.
In the event of a merger, acquisition, reorganization, asset sale, bankruptcy, or other corporate transaction, personal information may be transferred to the successor entity or acquiring party. We will notify you of any such change in ownership or control of your personal information and provide you with choices regarding your information.
We may share personal information with third parties when you have provided explicit consent for such sharing, including sharing with social media platforms when you choose to connect your account, sharing with third-party applications or services you authorize, and sharing for specific purposes you have approved.
The Company may transfer personal information to countries outside India for processing and storage. Such transfers are conducted in accordance with applicable data protection laws.
When we transfer personal information outside India, we ensure appropriate safeguards are in place, including standard contractual clauses approved by the Data Protection Board of India, adequacy decisions recognizing equivalent data protection standards in the destination country, binding corporate rules for intra-group transfers, and your explicit consent for specific transfers where required by law.
We comply with data localization requirements under Indian law, including storing at least one serving copy of personal information within India as required by the DPDP Act, maintaining sensitive personal data within India unless explicit consent is obtained for overseas transfer, and ensuring critical personal data is processed only within India as may be notified by the Government.
When we engage data processors located outside India, we ensure they provide adequate levels of data protection through contractual obligations, implement appropriate technical and organizational security measures, and comply with Indian data protection laws and this Policy.
The Company implements comprehensive technical, physical, and organizational security measures to protect personal information from unauthorized access, disclosure, alteration, and destruction.
We employ industry-standard security technologies and procedures, including encryption of data in transit using TLS/SSL protocols and data at rest using AES-256 or equivalent encryption; secure authentication mechanisms including multi-factor authentication; firewalls, intrusion detection and prevention systems; regular security assessments, vulnerability scanning, and penetration testing; secure software development practices and code reviews; and access controls and role-based permissions limiting access to personal information.
We maintain organizational safeguards including comprehensive information security policies and procedures; employee training on data protection and security best practices; confidentiality agreements with employees and contractors; background verification of personnel with access to personal information; incident response and breach notification procedures; regular security audits and compliance assessments; and designation of a Data Protection Officer or Grievance Officer as required by law.
Our data centers and facilities implement physical security controls including restricted access to server rooms and data centers; surveillance systems and security personnel; environmental controls for fire suppression and climate control; and secure disposal procedures for hardware containing personal information.
While we implement robust security measures, no system is completely secure. You are responsible for maintaining the confidentiality of your account credentials, using strong and unique passwords, enabling two-factor authentication where available, promptly notifying us of any unauthorized access or security breach, and taking reasonable precautions when accessing the Platform on shared or public devices.
The Company retains personal information only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations.
Upon expiry of the retention period or upon your request for deletion (subject to legal exceptions), we will securely delete or anonymize personal information by overwriting data using secure deletion methods, destroying physical records containing personal information, anonymizing data such that it can no longer identify you, and removing personal information from active systems and backups within a reasonable timeframe.
We may retain personal information beyond standard retention periods when required by law, regulation, or legal process; necessary for pending or anticipated litigation, investigation, or dispute; required to protect our legal rights and interests; or necessary to comply with audit, accounting, or regulatory requirements.
Under the DPDP Act, 2023 and other applicable data protection laws, you have the following rights with respect to your personal information:
You have the right to obtain confirmation of whether we are processing your personal information and to access such information, including the categories of personal information processed, purposes of processing, recipients or categories of recipients, retention periods, and sources from which information was obtained.
You have the right to correct inaccurate or incomplete personal information. You may update your account information directly through the Platform or by contacting us at support@friquick.com.
You have the right to request deletion of your personal information, subject to legal exceptions where we are required to retain information for compliance, legal claims, or legitimate business purposes. We will respond to deletion requests within 30 days.
You have the right to receive your personal information in a structured, commonly used, and machine-readable format and to transmit such information to another data fiduciary where technically feasible.
Where processing is based on your consent, you have the right to withdraw consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before withdrawal. You may withdraw consent for marketing communications by clicking the unsubscribe link in emails or adjusting your account preferences.
You have the right to lodge a complaint with our Grievance Officer regarding any privacy concerns or violations. The Grievance Officer's contact details are provided in Clause 15 below. You also have the right to file a complaint with the Data Protection Board of India.
You have the right to nominate another individual who may exercise your rights under the DPDP Act in the event of your death or incapacity.
To exercise any of these rights, please contact us at support@friquick.com or through the contact details provided in Clause 15. We will respond to your request within 30 days and may require verification of your identity before processing your request.
The Platform uses cookies and similar tracking technologies to enhance user experience, analyze usage patterns, and deliver personalized content and advertising.
We use the following categories of cookies: Essential Cookies that are necessary for the Platform to function and cannot be disabled; Performance Cookies that collect information about how you use the Platform to improve functionality; Functional Cookies that remember your preferences and settings; Targeting/Advertising Cookies that deliver relevant advertisements based on your interests; and Analytics Cookies that help us understand user behavior and Platform performance.
We may allow third-party service providers to place cookies on your device for analytics (Google Analytics, Adobe Analytics), advertising (Google Ads, Facebook Pixel), social media integration (Facebook, Twitter, LinkedIn), and payment processing. These third parties have their own privacy policies governing their use of information.
You can manage your cookie preferences through your browser settings by blocking all cookies, deleting existing cookies, or receiving notifications when cookies are set. You may also use our cookie consent management tool available on the Platform. Please note that disabling certain cookies may affect Platform functionality and your user experience.
Some browsers transmit 'Do Not Track' signals. Currently, there is no industry standard for responding to such signals. We do not currently respond to Do Not Track signals, but we provide you with choices regarding collection and use of your information as described in this Policy.
The Platform is not intended for use by individuals under the age of 18 years. We do not knowingly collect personal information from children.
By using the Platform, you represent and warrant that you are at least 18 years of age. If you are under 18 years, you may use the Platform only with the involvement and consent of a parent or legal guardian.
Where we process personal information of individuals under 18 years, we obtain verifiable parental consent as required by the DPDP Act. Parents or guardians may exercise rights on behalf of children, including accessing, correcting, or deleting their child's information.
If we become aware that we have inadvertently collected personal information from a child without appropriate parental consent, we will take steps to delete such information promptly. If you believe we have collected information from a child, please contact us immediately at support@friquick.com.
The Platform may contain links to third-party websites, applications, or services that are not operated or controlled by us.
We are not responsible for the privacy practices, content, or security of third-party websites or services. This Policy does not apply to information collected by third parties. We encourage you to review the privacy policies of any third-party sites or services before providing personal information.
The Platform may include social media features and widgets (such as Facebook 'Like' button, Twitter 'Tweet' button) that are hosted by third parties. Your interactions with these features are governed by the privacy policies of the companies providing them.
Payment processing is handled by third-party payment gateways and processors. We do not store complete credit card or debit card information on our servers. Payment information is transmitted directly to payment processors who are PCI-DSS compliant and maintain their own privacy policies.
In the event of a personal data breach that is likely to cause harm to Data Principals, we will comply with breach notification requirements under applicable law.
We will notify the Data Protection Board of India of any personal data breach within 72 hours of becoming aware of the breach, providing details of the nature of the breach, categories and approximate number of affected Data Principals, likely consequences, and measures taken or proposed to address the breach.
Where a breach is likely to result in high risk to your rights and freedoms, we will notify you without undue delay, providing information about the nature of the breach, contact details of our Data Protection Officer or Grievance Officer, likely consequences of the breach, and measures taken or recommended to mitigate potential adverse effects.
Upon detecting a breach, we will take immediate steps to contain and remediate the breach, conduct a thorough investigation to determine the cause and scope, implement additional security measures to prevent recurrence, and cooperate with regulatory authorities and law enforcement as required.
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations.
We will notify you of material changes to this Policy by posting the updated Policy on the Platform with a revised 'Last Updated' date, sending an email notification to your registered email address, displaying a prominent notice on the Platform, or through other appropriate means. For significant changes that materially affect your rights, we may seek your renewed consent.
Your continued use of the Platform after the effective date of the updated Policy constitutes your acceptance of the changes. If you do not agree to the updated Policy, you should discontinue use of the Platform and may request deletion of your account and personal information.
We maintain a version history of this Policy. Previous versions are available upon request by contacting us at support@friquick.com.
By accessing or using the Platform, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.
Your consent to this Policy is voluntary and freely given. You have the right to withdraw consent at any time, subject to legal and contractual restrictions. Withdrawal of consent may affect your ability to use certain features or services on the Platform.
For certain processing activities, we may seek your specific, explicit consent through separate consent mechanisms, including consent for processing sensitive personal data, consent for marketing communications, consent for sharing information with third parties for their marketing purposes, and consent for cross-border data transfers.
We maintain records of consents obtained, including the date, time, method of consent, and specific purposes for which consent was given. You may request a copy of your consent records by contacting us.
For any questions, concerns, or complaints regarding this Privacy Policy or our data practices, please contact our Grievance Officer:
The Grievance Officer will acknowledge receipt of your complaint within 48 hours and resolve the complaint within 30 days from the date of receipt.
For general privacy-related inquiries, you may contact us at:
If you are not satisfied with our response to your complaint, you have the right to lodge a complaint with the Data Protection Board of India established under the DPDP Act, 2023. Details of the Data Protection Board will be available at www.dpb.gov.in once operational.
This Privacy Policy shall be governed by and construed in accordance with the laws of India, including the Information Technology Act, 2000, the Digital Personal Data Protection Act, 2023, and other applicable data protection laws and regulations.
Subject to the dispute resolution provisions in Clause 15, any disputes arising out of or in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the courts at Pune, India.
We are committed to complying with all applicable Indian laws and regulations governing data protection, privacy, and information security, including but not limited to the DPDP Act, 2023, IT Act, 2000, IT Rules, 2011, and sector-specific regulations.
This Privacy Policy is effective as of 10th April 2026 and was last updated on 10th April 2026.