Privacy policy
Last updated: October 15, 2025
This Privacy Policy ("Policy") describes how Cointab Software Private Limited ("Cointab", "we", "our", or "us") collects, uses, discloses, and protects personal information in connection with your access to and use of Everdone (the "Service").
By using Everdone, you agree to this Policy. If you do not agree, please do not use the Service.
1. Information we collect
We collect information necessary to operate, secure, and improve the Service. This may include:
a. Account information
When you create an account, we collect details such as your name, email address, and authentication credentials. If you connect third-party accounts (e.g., code repositories or integrations), we may collect limited identifiers or access tokens necessary to enable those connections.
b. Usage data
We collect data about how you interact with the Service, such as task execution logs, document generation activity, and system performance metrics. This helps us understand usage patterns, improve reliability, and enhance user experience.
c. Payment and billing information
If you purchase credits or use paid features, we collect information about wallet balances, transaction history, and payment confirmations. Payments are processed securely through third-party payment service providers — we do not store full payment instrument details (such as card numbers or bank credentials).
d. Support and communication data
If you contact us for support or feedback, we collect any information you voluntarily provide, including contact details and correspondence content.
e. System and diagnostic data
We may collect limited technical information automatically (e.g., browser type, IP address, device configuration, and session identifiers) to maintain security, detect abuse, and troubleshoot issues.
2. How we use your information
We use collected information solely for legitimate business and operational purposes, including to:
Operate and maintain the Service
Authenticate users and manage accounts
Process tasks, generate documentation, and deliver requested outputs
Provide billing, transaction, and support services
Monitor system performance, reliability, and security
Prevent, detect, and investigate fraud or misuse
Develop and improve our products and features over time.
We do not use customer data for advertising or profiling unrelated to service improvement.
3. Data sharing and disclosure
We do not sell or rent your personal data to third parties.
We only share information in the following circumstances:
Service Providers: With trusted infrastructure, analytics, and payment partners who assist in operating and maintaining the Service, bound by confidentiality and data protection obligations.
Legal Compliance: When required by law, legal process, or governmental request.
Business Transfers: In the event of a merger, acquisition, or sale of assets, where customer data may be transferred as part of the transaction, subject to this Policy's protections.
With Your Consent: When you explicitly authorize sharing (e.g., when publishing documentation publicly or inviting collaborators).
4. Cookies and tracking technologies
We use minimal tracking technologies to ensure functionality and improve performance.
Some analytics may rely on cookies or local storage for session management and aggregate usage analysis.
We do not use third-party advertising, behavioral tracking, or cross-site cookies.
You can control or disable cookies through your browser settings; however, certain features of the Service may not function properly without them.
5. Data retention
We retain personal and operational data only for as long as necessary to fulfill the purposes described in this Policy or as required by law.
User-generated content and documents remain accessible while your account is active.
Transactional and audit records may be retained for compliance and fraud prevention.
You may request deletion of your account and associated data at any time; we will honor such requests in accordance with applicable laws.
6. Your rights and choices
Depending on your jurisdiction, you may have the following rights regarding your personal data:
Access: Request a copy of the personal data we hold about you.
Correction: Request correction of inaccurate or incomplete data.
Deletion: Request deletion of your personal data, subject to legal obligations.
Portability: Request a copy of your data in a portable format.
Objection or Restriction: Object to or request limitation on certain processing activities.
To exercise these rights, contact us at [email protected]. We may require verification of your identity before processing your request.
7. Data security
We implement appropriate technical and organizational measures to protect your data from unauthorized access, loss, misuse, or alteration, including:
Encryption of data in transit and at rest
Access controls and authentication safeguards
Segregation of environments and least-privilege access principles
Continuous monitoring for anomalies or breaches
While we take reasonable precautions, no system is completely secure. You acknowledge that data transmission over the internet involves inherent risks.
8. International data transfers
Everdone is a global service. Your data may be stored or processed on servers located in jurisdictions other than your country of residence.
Where required, we ensure that such transfers comply with applicable data protection laws through standard contractual clauses or equivalent safeguards.
9. Changes to this policy
We may update this Policy periodically to reflect new services, operational practices, or legal requirements. The updated version will be posted on this page with a revised effective date.
If material changes occur, we will provide reasonable notice (e.g., via email or in-app message). Continued use of Everdone after such updates constitutes your acceptance of the revised Policy.
10. Data processing addendum (DPA)
This section applies where Cointab processes personal data on behalf of the Customer in connection with the use of the Service. It is intended to satisfy the requirements of global privacy laws.
10.1 Roles of the parties
For the purposes of applicable data protection laws:
The Customer acts as the Data Controller (or equivalent term under local law)
Cointab acts as the Data Processor, processing data solely on behalf of and under the documented instructions of the Customer.
10.2 Scope and purpose of processing
Cointab shall process personal data only:
To operate, maintain, and improve the Service
To provide customer support, troubleshooting, and security monitoring
To comply with legal obligations or enforce rights under the Terms of Service.
10.3 Sub-processors
Cointab may engage trusted third-party sub-processors to provide hosting, analytics, communication, or payment services.
Each sub-processor shall be bound by written agreements requiring data protection standards no less stringent than those in this Policy. A current list of sub-processors may be made available upon written request.
10.4 Data transfers
Where personal data is transferred outside the European Economic Area, the United Kingdom, or other regions with data transfer restrictions, Cointab ensures that appropriate safeguards are in place — including the use of Standard Contractual Clauses or other lawful transfer mechanisms.
10.5 Security measures
Cointab implements appropriate technical and organizational measures to protect personal data, including encryption, pseudonymization, access controls, and incident response protocols. Details of such measures may be provided upon reasonable request, subject to confidentiality.
10.6 Data subject requests
Cointab shall, to the extent legally permitted, assist the Customer in responding to requests from data subjects exercising their rights under applicable law (including access, correction, or deletion requests).
10.7 Data breach notification
In the event of a confirmed personal data breach, Cointab shall notify the Customer without undue delay, providing sufficient information to enable the Customer to meet its legal obligations.
10.8 Data deletion or return
Upon termination or expiry of the Customer's account, Cointab shall delete or return personal data (at the Customer's choice), unless retention is required by law or necessary for legitimate business purposes (such as audit or dispute resolution).
10.9 Audit rights
Upon written request and with reasonable notice, the Customer may review relevant documentation or reports demonstrating Cointab's compliance with data protection obligations. Formal audits shall be limited to once per year and coordinated to minimize disruption.
10.10 Compliance with laws
Each party agrees to comply with all applicable data protection and privacy laws. In the event of a conflict between this Policy and mandatory legal requirements, such legal requirements shall prevail.
10.11 Data controller contact for EU/EEA and UK Users
For users located in the European Union (EU), European Economic Area (EEA), or the United Kingdom (UK), Cointab remains the primary data controller responsible for your personal data when it determines the purposes and means of processing.
If you are based in the EU/EEA or UK and wish to contact us regarding data protection matters, you may reach us at:
Data Protection Officer (DPO)
Cointab Software Private Limited
Email: [email protected]
Address: 704, Palm Spring Centre, Link Road, Malad West, Mumbai, India
11. Contact information
For privacy inquiries, requests, or complaints, please contact:
Email: [email protected]
Address: 704, Palm Spring Centre, Link Road, Malad West, Mumbai, India
You may also refer to our Terms of Service for additional legal terms governing use of the Service.
We respect your privacy and are committed to transparency, security, and user control. This policy will evolve as we grow — always with your trust in mind.