Back to Main Site

Privacy Policy

Your privacy and data security are our top priorities. Learn how we protect your information.

Last updated: September 30, 2025

Back to NineKiwi

Security First Approach

We implement enterprise-grade security measures to protect your data from unauthorized access, fraud, and cyber threats.

End-to-End Encryption
Advanced Fraud Detection
PCI DSS Compliant

Contents

1. Introduction

At NineKiwi, we are committed to protecting your privacy and securing your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

By accessing or using NineKiwi, you agree to the collection and use of information in accordance with this policy. We regularly review and update our security measures to protect against emerging threats.

2. Information We Collect

Personal Information

  • Account Information: Name, email address, phone number, company details
  • Payment Information: Billing address, payment method details (processed securely by Razorpay)
  • Professional Information: Job title, company role, project details
  • Communication Data: Messages, support requests, feedback

Technical Information

  • Device Information: IP address, browser type, operating system
  • Usage Data: Pages visited, features used, time spent on platform
  • Location Data: General location based on IP address for security purposes

Project Data

  • Construction project details, timelines, budgets
  • Team member information and collaboration data
  • Document uploads, photos, and reports

3. How We Use Your Information

  • To provide, maintain, and improve our services
  • To process transactions and send transaction notifications
  • To detect and prevent fraud, abuse, and security issues
  • To personalize your experience and provide customer support
  • To communicate about updates, security alerts, and administrative messages
  • To comply with legal obligations and enforce our terms
  • For analytics and research to enhance our platform

4. Data Protection & Security Enterprise Grade

We implement comprehensive security measures to protect your data:

Encryption

  • End-to-end encryption for all data transmissions
  • AES-256 encryption for data at rest
  • SSL/TLS for secure communications

Access Controls

  • Role-based access control (RBAC)
  • Multi-factor authentication (MFA)
  • Regular access reviews and audits

Infrastructure Security

  • Secure cloud infrastructure with SOC 2 compliance
  • Regular security patching and updates
  • DDoS protection and WAF

Monitoring & Response

  • 24/7 security monitoring
  • Automated threat detection
  • Incident response plan

5. Fraud Prevention & Detection Advanced

We employ sophisticated measures to prevent and detect fraudulent activities:

Real-time Transaction Monitoring

Advanced algorithms analyze transaction patterns in real-time to flag suspicious activities, including unusual payment amounts, frequencies, or locations.

Behavioral Analytics

Machine learning models detect anomalous user behavior, such as rapid account creation, unusual login patterns, or abnormal data access.

Identity Verification

Multi-layered identity verification including email confirmation, phone verification, and document validation for high-risk transactions.

Device Fingerprinting

Unique device identification to detect and prevent account takeover attempts and suspicious login activities.

Payment Fraud Prevention

Integration with Razorpay's advanced fraud detection systems, including 3D Secure authentication, velocity checks, and blacklist monitoring.

Anti-Phishing Measures

DMARC, DKIM, and SPF protocols to prevent email spoofing, along with user education on identifying phishing attempts.

Reporting Suspicious Activity

If you suspect any fraudulent activity related to your account, please contact us immediately at hello@ninekiwi.com. We investigate all reports promptly.

6. Data Sharing & Third Parties

We do not sell your personal information. We may share data only in these specific circumstances:

Service Providers

  • Payment Processing: Razorpay (PCI DSS Level 1 certified) for secure payment processing
  • Cloud Infrastructure: Secure cloud providers with data protection commitments
  • Communication Tools: For sending transactional emails and notifications
  • Analytics: Anonymous usage data to improve our services

Legal Requirements

We may disclose information if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of NineKiwi, our users, or the public.

7. Cookies & Tracking Technologies

We use cookies and similar technologies for essential functions, security, and analytics:

Type Purpose Duration
Essential Session management, security, fraud prevention Session
Functional Preferences, authentication Up to 1 year
Analytics Usage statistics, performance monitoring Up to 2 years

You can control cookies through your browser settings, though disabling essential cookies may impact platform functionality.

8. Your Data Protection Rights

Depending on your location, you may have the following rights regarding your personal data:

Access & Portability

Request access to and copies of your personal data

Correction

Request correction of inaccurate or incomplete data

Erasure

Request deletion of your personal data

Restriction & Objection

Request restriction or object to processing of your data

To exercise any of these rights, please contact us at hello@ninekiwi.com. We will respond to your request within 30 days, in accordance with applicable laws.

9. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law.

  • Account Data: Retained while your account is active and for 3 years after deactivation for legal and business purposes
  • Payment Records: Retained for 7 years to comply with financial regulations
  • Project Data: Retained for the duration of the project plus 5 years for reference and legal requirements
  • Communication Data: Retained for 3 years to provide customer support and improve services

10. International Data Transfers

NineKiwi operates globally, and your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

When we transfer data internationally, we implement appropriate safeguards such as Standard Contractual Clauses and ensure recipients provide adequate data protection.

11. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to remove that information.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website with a new "Last Updated" date, and where required by law, we will seek your consent.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

General Privacy Inquiries

hello@ninekiwi.com

For questions about data protection and privacy rights

Security & Fraud Reports

hello@ninekiwi.com

For reporting security issues or suspected fraud

NineKiwi.com


India

By using our services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.

Return to NineKiwi