ELSA Privacy Policy

Last Updated: 08-06-2026

1. Introduction

This Privacy Policy describes how OPTANIUM IT Services Pvt. Ltd. (“OPTANIUM”, “we”, “us”, or “our”) collects, processes, stores, and protects personal data when users access and use the ELSA application (“App”).

The App is designed to structure, manage, and process data entered, photographed, scanned, or uploaded by users. Such data may include master data and transactional data required for the efficient execution of business processes within an organization.

By using the App, users acknowledge the processing of personal data as described in this Privacy Policy.


2. Data Controller

Data Controller:

OPTANIUM IT Services Pvt. Ltd.
11, Rajiv Gandhi Salai
Chennai 600097
India

Telephone: +91 96001 26648
Website: https://optanium.in

Managing Director: Marcel Nebel
CIN: U72900TN2014PTC094834
GSTIN: 33AABCO9740K1Z8

For questions regarding this Privacy Policy or the processing of personal data, please contact us via the website contact form or the contact details above.


3. Categories of Data Processed

The App may process the following categories of data:

3.1 Master Data

Master data may include:

  • Employee information (e.g., name, email address, telephone extension)
  • Organizational information (e.g., departments, responsibilities, reporting structures)
  • Stakeholder information (e.g., customers, suppliers, investors, business partners)

3.2 Transactional Data

Transactional data may include:

  • Quotations and proposals
  • Contracts and agreements
  • Service tickets and support requests
  • Delivery notes
  • Invoices
  • Purchase orders
  • Project-related information
  • Other business process documents

3.3 User Preferences

The App may store user-specific settings and preferences, including:

  • Display settings
  • Language settings
  • Notification preferences
  • Other configuration options selected by the user

3.4 Uploaded Content

Users may upload, photograph, scan, or manually enter data and documents. Such content is processed solely for the purpose of providing the functionality of the App.


4. Purpose of Processing

Personal data is processed exclusively for the following purposes:

  • Provision and operation of the App
  • Management and optimization of business processes
  • Document management and workflow processing
  • Customer relationship management (CRM)
  • Enterprise resource planning (ERP)
  • Contract and service management
  • Digital signature processes
  • User authentication and access management
  • Technical support and troubleshooting
  • Compliance with legal obligations

5. Legal Basis for Processing

Where applicable under the General Data Protection Regulation (GDPR), the UK GDPR, or other applicable privacy laws, processing is based on one or more of the following legal grounds:

  • Performance of a contract or pre-contractual measures
  • Compliance with legal obligations
  • Legitimate business interests in operating, securing, and improving the App
  • User consent, where consent is required by law

6. Data Transfers and Recipients

Data is transferred to third parties only when necessary to provide the functionality of the App or to fulfill contractual and legal obligations.

Examples include:

  • Sending invoices when the App is used as an ERP system
  • Sending quotations when the App is used as a CRM system
  • Sending digitally signed documents when the App is used as an electronic signature platform
  • Email delivery providers
  • Cloud hosting and infrastructure providers
  • Payment service providers
  • Legal, tax, regulatory, or governmental authorities where required by law

All service providers are required to process personal data in accordance with applicable privacy and security requirements.


7. Data Storage and Retention

Data is transmitted using SSL/TLS encryption to servers operated by OPTANIUM IT Services Pvt. Ltd. or authorized service providers.

Personal data is retained only for as long as necessary:

  • To provide the requested services
  • To fulfill contractual obligations
  • To comply with statutory retention requirements
  • To establish, exercise, or defend legal claims

After expiration of applicable retention periods and legal proof obligations, personal data will be securely deleted or anonymized.


8. International Data Transfers

Personal data may be processed and stored in India, the European Union, or other jurisdictions where OPTANIUM or its service providers operate.

Where personal data originating from the European Economic Area (EEA), the United Kingdom, or Switzerland is transferred outside those jurisdictions, appropriate safeguards will be implemented as required by applicable law, including Standard Contractual Clauses or equivalent legal mechanisms where necessary.


9. Data Security

We implement appropriate technical and organizational measures to protect personal data against:

  • Unauthorized access
  • Accidental loss
  • Destruction
  • Alteration
  • Disclosure
  • Misuse

Security measures include:

  • SSL/TLS encryption
  • Access controls and authentication mechanisms
  • Role-based permissions
  • Security monitoring and logging
  • Regular software updates and security reviews

10. User Rights

Subject to applicable law, users may have the right to:

  • Access their personal data
  • Correct inaccurate or incomplete data
  • Request deletion of personal data
  • Restrict processing
  • Object to processing
  • Request portability of their personal data
  • Withdraw consent where processing is based on consent
  • Lodge a complaint with a competent supervisory authority

Requests may be submitted through the contact information provided in this Privacy Policy.


11. Compliance with Indian Data Protection Laws

OPTANIUM IT Services Pvt. Ltd. processes personal data in accordance with applicable Indian laws, including the Digital Personal Data Protection Act, 2023 (DPDP Act), and any related regulations.

Users may contact OPTANIUM to:

  • Obtain information regarding the processing of their personal data
  • Request correction or updating of personal data
  • Request deletion of personal data, subject to legal obligations
  • Withdraw consent where applicable
  • Submit complaints regarding data processing practices

OPTANIUM will respond to such requests in accordance with applicable legal requirements.


12. Advertising

The App is completely free of advertising.

Personal data is not used for advertising purposes, behavioral profiling, marketing by third parties, or the sale of personal information.


13. Cookies and Tracking Technologies

The App does not use personal data for advertising tracking.

Any cookies, local storage mechanisms, or similar technologies used by the App are limited to:

  • Authentication
  • Security
  • User preferences
  • Session management
  • Technical operation of the App

14. Children’s Privacy

The App is intended for business and organizational use and is not directed to children under the age of 18.

We do not knowingly collect personal data from children.


15. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect legal, operational, or technical developments.

The latest version will always be made available within the App or on the applicable website.


16. Contact

OPTANIUM IT Services Pvt. Ltd.
11, Rajiv Gandhi Salai
Chennai 600097
India

Telephone: +91 96001 26648
Website: https://optanium.in

Managing Director: Marcel Nebel
CIN: U72900TN2014PTC094834
GSTIN: 33AABCO9740K1Z8