Ensightplus Privacy Policy

Effective Date: June 1, 2025

1. Introduction

ensightplus ("we," "our," or "us") is a web-based software-as-a-service (SaaS) platform offering advanced drone image processing, 3D modeling, and geospatial visualization tools. We are committed to protecting your privacy and ensuring the responsible handling of your personal and geospatial data. This Privacy Policy describes how we collect, use, store, disclose, and protect your information when you use our platform, website, or associated services (collectively, the "Services").

We understand the importance of data protection and have implemented a comprehensive privacy framework in accordance with global data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and India’s Digital Personal Data Protection Act (DPDP Act).

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy and agree to its terms. If you do not agree, please do not use the Services.

2. Scope and Applicability

This Privacy Policy applies to all users of the ensightplus Services, including:
  • Individuals who visit our website or access our platform,

  • Account Management:

  • Users who register accounts and use our geospatial processing features,

  • Clients integrating with our APIs or SDKs,

  • Stakeholders engaging with our customer support,

  • Contractors, consultants, and service providers who interact with the platform.
This Policy governs data collection and use across all channels, including:
  • Web browser sessions,

  • Account Management:

  • API requests and integrations,

  • Uploaded content and files,

  • Customer support communications,

  • Marketing and outreach.
This Privacy Policy does not apply to third-party websites, software, or services that may be linked to or integrated with ensightplus unless otherwise stated. We are not responsible for the privacy practices of those third parties.

3. Information We Collect

We collect a wide range of information to ensure we can provide, maintain, and improve our Services. This includes the following categories:

A. Information You Provide Voluntarily

  • Account Information: When you sign up, we collect your name, email address, password (encrypted), organization, and contact number.

  • Payment Details: We collect billing information such as name, address, tax ID (if applicable), and invoice history. Payment card information is handled securely by third-party processors like Razorpay; we do not store full card data.

  • Uploaded Content: You may upload drone imagery, GCPs, metadata, map annotations, and other geospatial datasets for processing.

  • Support Inquiries: Emails, chats, or form submissions may include your name, contact details, project details, and the nature of your request.

  • Survey Responses: When you participate in feedback, research, or promotional activities.

Information Collected Automatically

  • Device & Technical Data: IP address, device type, browser type, operating system, screen resolution, language preferences.

  • Usage Information: Log files, clickstream data, feature usage, heatmaps, session durations, errors.

  • Cookies & Similar Technologies: Session cookies, persistent cookies, and tracking pixels to identify repeat visits, store preferences, and analyze usage trends.

Inferred and Derived Data

  • User segmentation (e.g., first-time vs. returning users),

  • Behavior predictions (e.g., likelihood of churn or upgrade),

  • Feature affinity and interest categories.

We combine these categories where relevant to improve personalization, ensure service reliability, and support user experience optimization.

4. Legal Bases for Processing

EnsightPlus processes personal and project-related data in accordance with lawful bases defined under applicable data protection laws. These include:

Consent

Where we rely on your explicit consent, such as subscribing to marketing emails, providing optional feedback, or sharing content publicly, we will present you with clear choices to opt in and opt out. You may withdraw consent at any time without affecting the legality of prior processing.

Contractual Necessity

We process your information to fulfill our obligations under a contract, such as creating and managing your account, billing, and delivering the services you have subscribed to.

Legal Obligation

We may retain or disclose information where we are legally required to do so—for instance, for tax record-keeping, compliance with governmental inquiries, or defending legal claims.

Legitimate Interests

We use certain data to maintain platform security, prevent fraud, improve our services, and analyze usage trends. This processing is performed in a manner that does not override your fundamental rights and freedoms.

Vital Interests or Public Interest

In rare circumstances, we may process data to protect your vital interests or where required for a task carried out in the public interest. For example, in emergencies or legal investigations.

5. How We Use Your Information

We use your information for the following purposes:

Service Delivery

We use your uploaded content, settings, and user behavior data to generate maps, models, and visualizations as part of our core offering. This includes storing intermediate and final outputs, supporting downloads, and facilitating real-time previews.

Account Management

We use your contact and organizational details to manage logins, user sessions, permissions, billing profiles, and workspaces. Notifications related to account status, security, or service changes are also sent.

Billing and Transactions

Payment information is processed through our PCI-compliant partners. We retain transaction records and metadata (not full card data) to track subscriptions, renewals, refunds, and chargebacks.

Customer Support

Support tickets, chat logs, and help requests are reviewed by our trained staff to troubleshoot issues and deliver tailored assistance. We may use anonymized insights from tickets to improve documentation.

Platform Optimization

We use anonymized usage data to prioritize development, resolve bugs, reduce processing times, and adapt our interfaces to user preferences.

Security and Abuse Prevention

We monitor login behavior, IP geolocation, unusual activity, and failed login attempts to detect potential security threats and enforce platform integrity.

Marketing and Engagement

With your consent, we may use your data to send newsletters, tips, feature updates, promotions, or invitations to beta features. You may opt out at any time.

Legal and Regulatory Compliance

We may use your data to comply with audits, legal disclosures, financial reporting, or dispute resolution.

6. Cookies and Tracking Technologies

EnsightPlus uses cookies, pixel tags, and similar tracking technologies for functionality, analytics, and marketing. These are categorized as:

Strictly Necessary Cookies

These cookies are essential for platform security, session persistence, and login management. Disabling them may make the platform unusable.

Functional Cookies

These remember your preferences, such as default map layers, last-used tools, or chosen language.

Performance Cookies

Used to collect anonymized statistics on platform responsiveness, server latency, and navigation flows. This allows us to monitor uptime, optimize backend code, and improve scalability.

Analytics and Attribution Cookies

Third-party services like Google Analytics help us analyze traffic trends, user journeys, and the effectiveness of onboarding or help documentation.

Marketing Cookies (with Consent)

We use optional cookies to assess the performance of marketing campaigns and deliver personalized content (e.g., email recommendations). These are used only if you opt in.

Cookie Management Options

You can manage cookies via:

  • Our cookie consent banner,

  • Browser settings (clear cookies, block trackers),

  • Opt-out mechanisms for analytics or advertising (e.g., Google Ads Settings).

Changes to cookies are honored as soon as technically feasible.

Data Sharing and Disclosure

We share personal data with third parties only when necessary and in compliance with this Policy:

Service Providers

We engage third-party processors for hosting (e.g., AWS, Azure), billing (e.g., Razorpay), analytics (e.g., Google), and support infrastructure (e.g., help desk platforms). These vendors are bound by contracts to handle your data only for the agreed purposes.

7. Legal and Regulatory Requests

We may disclose information to courts, regulators, or government agencies when required by law, subpoena, or valid legal process. Where possible, we notify affected users unless prohibited by law.

Business Transfers

In the case of a merger, acquisition, sale, or restructuring, your data may be transferred to the successor entity. The successor must uphold privacy standards equivalent to this Policy.

Protection of Rights and Safety

We may disclose data to investigate, prevent, or respond to security breaches, intellectual property infringement, fraud, or violations of the Terms of Service.

Aggregated and De-Identified Data

We may publish usage trends, research findings, or platform performance metrics that are anonymized and cannot be linked back to individual users.

With Your Consent

In all other cases, your data will be shared only if you provide clear, informed consent.

8. Data Transfers Across Borders

ensightplus operates globally, which may involve the transfer of your data across national borders. We ensure that any transfer of personal data to countries outside your own complies with applicable data protection laws.

Geographic Storage Locations

We store and process data on servers located in India, the European Union (EU), and other regions as required by performance, compliance, and redundancy needs. The choice of region may be based on your location, legal obligations, or technical availability.

International Data Transfers

If your data is transferred outside your jurisdiction (e.g., from the EU to India or the US), we implement appropriate safeguards such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission,

  • Binding corporate rules (BCRs) adopted by vendors,

  • Data localization when required by national regulations.

We assess the privacy laws of destination countries and ensure service providers meet minimum compliance requirements before transfers are authorized.

Consent and Transparency

By using our services, you consent to the transfer of your data outside your country of residence, subject to the terms of this Privacy Policy and applicable laws.

9. Data Security Measures

We are committed to protecting the confidentiality, integrity, and availability of your information. To that end, ensightplus implements multi-layered security practices.

Technical Safeguards

  • Data Encryption: All communications are encrypted using TLS 1.2/1.3. Stored files and metadata are encrypted using AES-256.

  • Access Control : Role-based access control (RBAC) ensures staff can only access data necessary to their duties.

  • Two-Factor Authentication (2FA) :Enforced for administrative access to internal systems.

  • Anomaly Detection :Real-time monitoring flags suspicious login behavior, file uploads, or API activity.

Organizational Measures
  • Privacy and Security Training :All personnel undergo onboarding and annual data protection training.

  • Vendor Risk Assessment : Before onboarding third-party processors, we conduct due diligence regarding their security and privacy standards.

  • Breach Response Policy :We have an incident response plan with defined roles, escalation procedures, and regulatory notification timelines.

Physical Security

Our cloud infrastructure partners (e.g., AWS, Azure) maintain ISO 27001, SOC 2, and other certifications. Facilities include biometric access control, surveillance, and climate redundancy.

10. Data Retention

We retain your data only for as long as it is necessary for the purposes outlined in this Policy or as required by applicable law.

Retention Periods

Data Type

Retention Period

Account Information

While account is active + 60 days

Uploaded Content

Until manually deleted or 60 days post-deactivation

Payment Records

Minimum 7 years (for tax/legal)

Support Tickets & Chat Logs 2 years

2 years

Audit Logs

12 months

Marketing Preferences

Until opt-out or account closure

Data Deletion Requests

You may request deletion of your account and associated content. We will complete this request within 30 days unless legal obligations prevent immediate deletion (e.g., accounting records).

11. Your Rights and Choices

Depending on your location and applicable law (e.g., GDPR, CCPA, DPDP), you may have rights regarding your personal data:

Right to Access

You have the right to request a copy of the data we hold about you and receive it in a structured, machine-readable format.

Right to Rectification

If your data is inaccurate or incomplete, you have the right to request corrections.

Right to Erasure ("Right to be Forgotten")

You can request deletion of your data when:

  • The data is no longer necessary,

  • You withdraw consent,

  • You object to processing and there are no overriding grounds,

  • Processing was unlawful.

Right to Restrict Processing

You may ask us to temporarily suspend processing in specific scenarios, such as when the accuracy of your data is contested.

Right to Data Portability

You may request to transfer your data to another controller or service provider. prohibited by law.

Right to Object

You can object to processing based on legitimate interests or direct marketing. We will honor objections unless we demonstrate compelling legal grounds.

Right to Withdraw Consent

Where processing is based on consent, you may withdraw it at any time without affecting prior processing.

Right to Lodge a Complaint

You may file a complaint with your data protection authority if you believe your rights have been violated.

How to Exercise Your Rights

To exercise any of the above rights, please email: support@ensightplus.com. We may verify your identity before acting on your request.

12. Children’s Privacy

ensightplus does not knowingly collect or process personal data from individuals under the age of 18. Our Services are not designed for or directed at children.

Parental Consent

If we discover that a minor has submitted personal information without verifiable parental consent, we will promptly delete such data.

Reporting

If you believe that we have collected information from a child, please contact us at support@ensightplus.com so we can take appropriate action.

13. Third-Party Services and Integrations

Our Services may contain integrations or links to third-party platforms (e.g., Razorpay, Google Maps, GIS platforms, cloud drives).

Data Shared with Third Parties

We may share the following with third-party services based on user actions:

  • Transaction data with payment processors,

  • Geolocation or metadata for map rendering,

  • OAuth login data when using third-party authentication.

Third-Party Policies

Each third-party service has its own privacy practices. We encourage users to review their terms and policies before authorizing any integration.

Limitation of Liability

ensightplus is not responsible for the privacy or security of third-party services outside our control.

14. Automated Decision-Making

ensightplus does not currently rely on automated decision-making that has legal or significant effects on individuals.

Minimal Profiling

We may use limited behavioral data to:

  • Recommend features,

  • Suggest help articles,

  • Tailor onboarding steps.

No Solely Automated Legal Decisions

Any major decision (e.g., account termination, subscription adjustments) involves human review.

Future Disclosure

If we adopt AI-based systems that impact user rights, we will update this Policy and provide opt-out options as required by law. control.

15. Accountability and Governance

We maintain internal accountability to ensure compliance with privacy laws and industry standards.

Data Protection Officer (DPO)

We have appointed a DPO responsible for overseeing data protection strategy and ensuring compliance with applicable laws.

Policy Review

This Privacy Policy is reviewed annually or when laws change.

Internal Controls
  • Access management protocols,

  • Vendor due diligence,

  • Incident logging and audit trails,

  • Staff confidentiality agreements.

16. Updates to This Policy

We may amend this Privacy Policy from time to time.

Notification of Changes

We will notify users of material updates via email or in-app messages. The most current version will always be available on our website.

Effective Date

Changes take effect on the date specified at the top of the document. Continued use of the Services after changes implies acceptance.

17. Contact Us

If you have questions, requests, or concerns regarding this Privacy Policy or your data, you can contact us using the following details:
  • Email: support@ensight.plus

  • Address:New Delhi, India

  • Office Hours : Monday–Friday, 9:00 AM – 6:00 PM IST

Terms of Service

Effective Date: April 30, 2025

1. Introduction and Acceptance

These Terms of Service ("Terms") constitute a binding legal agreement between the user ("you" or "your") and ensightplus ("ensightplus," "we," "us," or "our"). These Terms govern your access to and use of the ensightplus platform, website, products, and services (collectively, the "Services"). By registering an account, using any portion of the Services, or clicking an acceptance checkbox, you agree to be bound by these Terms. If you do not agree, you must not access or use the Services.

2. Account Registration and Eligibility

To access and use most features of ensightplus, you must create an account. By registering, you represent and warrant that:

  • You are at least 18 years old or have reached the legal age of majority in your jurisdiction;

  • All information you provide during registration and thereafter is accurate, complete, and up to date;

  • You will promptly update your account information to keep it accurate and complete;

  • You are legally authorized to use our Services under all applicable laws and regulations.

  • You are responsible for maintaining the confidentiality of your login credentials and for all activities conducted through your account. You must notify us immediately if you become aware of any unauthorized use of your account.

3. User Responsibilities and Acceptable Use

You agree to use the Services solely for lawful purposes and in compliance with these Terms. You agree that you will not:
  • Upload any content that you do not own or for which you lack the necessary rights orpermissions;

  • Use the platform to engage in any illegal, abusive, fraudulent, or harmful activities;

  • Attempt to gain unauthorized access to any part of the platform, accounts, systems, or networks;

  • Distribute or transmit malware, viruses, or any other harmful code;

  • Reverse-engineer, decompile, disassemble, or otherwise attempt to derive the source code of the platform;

  • Interfere with or disrupt the integrity or performance of the platform or its servers.

Any violation of these obligations may result in suspension or termination of your account and access to the Services.

4. Description of Services

ensightplus is a cloud-based Software as a Service (SaaS) platform designed to facilitate the upload and processing of drone imagery. Our Services enable users to generate outputs such as:

  • Orthophotos;

  • Digital Surface Models (DSMs);

  • Digital Terrain Models (DTMs);

  • Plant health indices;

  • 3D textured models.

Key features include:

  • Uploading of raw drone imagery and Ground Control Points (GCPs);

  • Automated photogrammetric processing pipelines;

  • Visualization, annotation, and export tools for maps and models;

  • Application Programming Interface (API) integrations where applicable.

We reserve the right to modify, enhance, or discontinue features of the Services at any time without prior notice.

5. User Content and Ownership

You retain full ownership and all intellectual property rights in the content you upload (“User Content”). By uploading User Content to ensightplus, you grant us a limited, non-exclusive, royalty-free license to use, host, store, reproduce, process, and display your User Content solely for the purpose of providing the Services.
We treat your User Content as confidential and will not access, use, or disclose it beyond what is necessary to deliver the Services, except as required by law or with your explicit consent.

6. License and Usage Rights

Subject to your compliance with these Terms, ensightplus grants you a non-exclusive, non- transferable, revocable license to access and use the Services solely for your internal business or personal purposes.
You may not sublicense, resell, or redistribute the Services or any part thereof without our prior written authorization.

7. Platform Modifications and Availability

We reserve the right to modify, enhance, suspend, or discontinue any part of the Services at any time. While we strive to maintain platform uptime, we make no guarantee of uninterrupted service and are not liable for downtime or disruptions.
We may occasionally perform maintenance or deploy updates that may temporarily impact availability.

8. Payment Terms and Subscription Plans

Some Services require payment via a subscription model or usage-based pricing. Pricing, billing intervals, and payment terms will be displayed during account registration or purchase. All fees are payable in advance and are non-refundable unless stated otherwise.
By subscribing, you authorize recurring billing unless canceled in advance. We use third- party payment processors (e.g., Razorpay), and you agree to their terms when making payments.

9. Refunds and Cancellations

You may cancel a paid plan anytime through your dashboard. Cancellations take effect at the end of the billing cycle. Refunds are only issued in the event of:
  • Platform malfunction rendering core services unusable;

  • Double billing or billing errors;

  • Legal obligations requiring refund.
We do not refund for unused credits or trial expirations unless otherwise required by law.

10. Termination and Suspension

You may close your account at any time. We reserve the right to suspend or terminate accounts that:
  • Violate these Terms;

  • Are inactive for extended periods;

  • Pose a security risk;

  • Fail to make payment after reminders.
Upon termination, we may delete or anonymize your data, unless we are legally required to retain it.

11. Intellectual Property Rights

All content, features, algorithms, and designs of ensightplus (excluding User Content) are the intellectual property of ensightplus or its licensors. You may not copy, reproduce, distribute, or create derivative works of the platform content without permission.
ensightplus™, our logos, and related marks are our trademarks.

12. Third-Party Services

We may integrate third-party services such as Razorpay or GIS tools. Your use of these services is governed by their own terms and privacy policies. We are not liable for third-party platforms’ availability or behavior.

13. Disclaimers and Warranties

We provide the Services on an "AS IS" and "AS AVAILABLE" basis. We disclaim all warranties, express or implied, including:
  • Merchantability or fitness for a particular purpose;

  • That Services will be error-free or uninterrupted;

  • That outputs will meet your specific needs.
Use the Services at your own risk. You are responsible for verifying results before using them professionally.

14. Limitation of Liability

To the extent permitted by law, ensightplus is not liable for:
  • Indirect, incidental, or consequential damages;

  • Loss of profits, data, or business;

  • Damages arising from use or inability to use the Services.
Our total liability will not exceed the amount you paid in the 6 months prior to the claim.

15. Indemnification

You agree to indemnify, defend, and hold harmless ensightplus and its officers, employees, and partners from any claims, liabilities, damages, and expenses (including legal fees) arising out of your:
  • Breach of these Terms;

  • Use of the Services in violation of law or third-party rights;

  • Uploaded content that violates IP or privacy rights..

16. Governing Law and Jurisdiction

These Terms are governed by the laws of India. You agree that courts located in New Delhi have exclusive jurisdiction over disputes. If you are a consumer in another jurisdiction, you may retain applicable consumer rights.

17. Dispute Resolution

We encourage you to contact us at support@ensightplus to resolve disputes informally. If unresolved within 30 days, disputes shall be subject to arbitration or court resolution in New Delhi, as applicable.
Urgent equitable relief (e.g., to prevent data breach or misuse) may be sought in any competent jurisdiction.

18. Modifications to the Terms

We may modify these Terms periodically. Major changes will be communicated via email or platform notifications. Continued use after changes means acceptance. You are responsible for reviewing updates regularly.

19. Miscellaneous Provisions

  • Entire Agreement: These Terms constitute the full agreement between you and ensightplus.

  • Severability: If any clause is found invalid, the remainder remains enforceable.

  • No Waiver: Our failure to enforce any provision does not waive our rights.

  • Force Majeure: We are not liable for events beyond our control.

  • Assignment: You may not transfer your rights under these Terms without consent. We may assign rights without restriction.

20. Contact Information

If you have questions or concerns regarding these Terms, please contact us:
  • Email: support@ensight.plus
  • Address: New Delhi, India