Swenid Private Limited
Effective Date: 7 May 2026 | Last Updated: 7 May 2026
Applies to: www.swenid.com and www.theridesharing.in
Swenid Private Limited (“Swenid”, “we”, “us”, “our”) is a company incorporated under the Companies Act, 2013, having its registered office at 5, Krishna Park Society, Berna Road, Himatnagar, Gujarat - 383001, India (CIN: U62099GJ2026PTC173653).
This Privacy Policy explains how we collect, use, store, share, and protect personal data when you visit our websites, contact us, or use our services, including the ride-sharing platform operated at www.theridesharing.in (the “Platform”).
This Policy is published in compliance with the Information Technology Act, 2000 and the rules made thereunder (including the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011), the Digital Personal Data Protection Act, 2023 (“DPDP Act”), the Aadhaar (Targeted Delivery of Financial and Other Subsidies, Benefits and Services) Act, 2016 and regulations made thereunder, and other applicable Indian laws.
We collect only such data as is necessary for the purposes set out in this Policy.
| Purpose | Categories of Data | Lawful Basis |
|---|---|---|
| To create and manage your account | Identity, contact, credentials | Consent / Performance of contract |
| To verify driver/rider identity for safety | Government ID verification result, photograph | Consent + Legitimate use (user safety) |
| To match riders and drivers, calculate fares, run trips | Location, profile, vehicle data | Performance of contract |
| To process payments and issue invoices | Transaction data, contact | Performance of contract / Legal obligation |
| Customer support | Contact, communications | Consent / Performance of contract |
| Fraud prevention, security, and platform integrity | Device, usage, transaction data | Legitimate use |
| Service improvement and analytics | Aggregated/anonymised usage data | Consent / Legitimate use |
| Statutory compliance (tax, law-enforcement requests) | As required | Legal obligation |
Where we rely on consent, we ask for it through a clear affirmative action — for example, by ticking an unticked checkbox before account creation, or by tapping an “I Agree” button before the first identity-verification request. Consent is asked for in clear, plain language and is itemised by purpose.
You may withdraw consent at any time by writing to our Grievance Officer (Section 14) or through the in-app settings. Withdrawal of consent does not affect the lawfulness of processing carried out before withdrawal, and may limit our ability to provide certain services.
Swenid does not sell your Personal Data. We share data only as follows:
Authorised Verification. For certain services — particularly the ride-sharing Platform at www.theridesharing.in — we conduct identity verification of drivers and riders to ensure user safety and platform integrity. Verification is performed exclusively through Government of India authorised channels, including API Setu and DigiLocker, and through licensed Aadhaar User Agencies (AUAs) / KYC User Agencies (KUAs) and Authentication Service Agencies (ASAs) where applicable.
Zero-Storage Policy for Aadhaar and Sensitive Identity Data. Swenid Private Limited strictly adheres to a “Zero-Storage” policy regarding sensitive identity data. We do not store on our servers, databases, logs, or backups:
Purpose Limitation. Identity data is accessed solely for one-time, real-time authentication of the Data Principal at the time of onboarding or re-verification. Once authentication is completed, only the following are retained:
Consent and Display. Before any identity-verification request, we display the purpose, the name of the verifying authority, and a clear “I consent” affirmative action. We do not perform any verification without explicit, informed consent recorded with a timestamp.
Compliance. Our verification processes are designed to comply with the Aadhaar Act, 2016 and regulations made thereunder (including the Aadhaar (Authentication and Offline Verification) Regulations, 2021), the Information Technology Act, 2000, the DPDP Act, 2023, and the terms of use published by UIDAI, API Setu, and DigiLocker.
No Profiling on Aadhaar Data. We do not use Aadhaar data for profiling, advertising, or any purpose other than the authentication for which it was collected.
We follow Reasonable Security Practices and Procedures as required under Section 43A of the IT Act, 2000 and adhere to the principles of ISO/IEC 27001 in our information-security programme. Specifically:
Notwithstanding these measures, no system can be guaranteed 100% secure. In the event of a personal data breach likely to result in risk to your rights, we will notify the Data Protection Board of India and affected users in the manner and within the timelines prescribed under the DPDP Act.
We retain Personal Data only for as long as it is required to fulfil the purposes set out in this Policy, or as required by applicable law (whichever is longer). Indicative retention periods:
On expiry of the retention period or upon your verified erasure request, data is securely deleted or irreversibly anonymised.
Subject to applicable law, you have the right to:
To exercise any right, write to the Grievance Officer (Section 14). We will respond within the timelines prescribed under the DPDP Act and, in any event, within 30 days.
We use first-party cookies that are strictly necessary for site operation (session management, security, language preferences) and, with your consent, analytics cookies to understand usage patterns. You can disable cookies from your browser settings; however, this may affect site functionality. We do not use cookies for cross-site advertising profiling.
Our services are not directed to individuals under 18 years of age. We do not knowingly collect Personal Data of children. If we become aware that a child’s data has been collected without verifiable parental consent, we will delete it promptly.
Personal Data is primarily stored on servers located in India. To the extent any data is transferred outside India for processing by service providers, such transfer is carried out only to jurisdictions permitted under the DPDP Act and subject to contractual safeguards.
In accordance with the Information Technology Act, 2000, the SPDI Rules, 2011, the Consumer Protection (E-Commerce) Rules, 2020, and the DPDP Act, 2023, the contact details of our Grievance Officer are:
Grievance Officer / Data Protection Contact
Jainam Patel
Swenid Private Limited
5, Krishna Park Society, Berna Road, Himatnagar, Gujarat - 383001, India
Email: info@swenid.com
Phone: +91 7041325320
Hours: Monday – Friday, 10:00 – 18:00 IST
We acknowledge complaints within 48 hours and aim to resolve them within 30 days. If you are dissatisfied with the resolution, you may approach the Data Protection Board of India.
We may update this Policy from time to time to reflect changes in our practices or applicable law. Material changes will be notified by email (where you have an account) and by a prominent notice on this page at least 7 days before they take effect. The “Last Updated” date at the top reflects the most recent revision.
For any questions about this Policy or our data-handling practices, write to info@swenid.com.
Partner with Swenid to transform your complex ideas into powerful, enterprise-grade digital products.
