Ixora One — Privacy Policy

Last updated: 2 June 2026  ·  Effective: 2 June 2026

This Privacy Policy explains how Ixora Corporate Services ("Ixora", "we", "us") collects, uses, stores, and protects information when you use the Ixora One mobile application (the "App"). Ixora One is an internal workforce application provided to employees and authorised personnel of Ixora and its affiliates for attendance, identity verification, and facility management. It is not a consumer product and is not intended for use by the general public or by anyone under 18.

1. Who this applies to

The App is made available only to Ixora employees, supervisors, and authorised staff who have been issued login credentials by their organisation. Use of the App is governed by your employment relationship and your organisation's policies in addition to this Policy.

2. Information we collect

Category	What	Why
Identity & account	Name, employee ID, role/department, phone number, work site assignment, login identifier	To create and manage your account and authenticate you
Biometric / face data	A facial image (selfie) captured at check-in, and the facial feature vector derived from it	To verify that the person checking in is the enrolled employee (anti-impersonation)
Location	Precise (GPS) and approximate location, including background location for supervisors during an active shift	To confirm attendance happens at the assigned site and to support field-supervisor visit tracking
Attendance & activity	Check-in/out times, regularisation requests, productivity entries, in-app actions	To operate the attendance and facility-management features
Device & diagnostics	Device model, OS version, app version, crash logs, performance and usage analytics	To keep the App stable, secure, and improve it

We do not collect or display your personal email for user-facing purposes, we do not sell your data, and we do not use your data for advertising.

3. Biometric (face) data — how it is handled

Face verification is central to preventing attendance fraud. When you check in, the App may capture a selfie and, where required, run a liveness check. The image and the derived facial feature data are processed using Amazon Web Services (AWS) Rekognition, operating in the ap-south-1 (Mumbai, India) region, acting as our data processor.

• Facial data is used solely to match you against your own enrolled reference image for attendance verification. It is never used for surveillance, profiling, or advertising.
• Liveness frequency is risk-based and may be randomised; not every check-in requires a face scan.
• Facial reference data is retained for the duration of your enrolment and deleted when your enrolment is removed or upon a valid deletion request (see Section 8).
• Data is encrypted in transit (TLS) and protected by AWS and Google Cloud security controls.

4. Location data — how it is handled

The App requests location permission to confirm that check-in/out occurs at your assigned site and to detect location spoofing (mock GPS). For users acting in a supervisor capacity, the App may collect location in the background during an active shift (between check-in and check-out) to record field visits. Background location:

• Is only active while you are on an active shift and after you grant the "Allow all the time" permission through a clear in-app disclosure;
• Runs as a foreground service with a persistent notification so you always know it is on;
• Can be stopped by checking out, revoking the permission in system settings, or signing out.

5. How we use information

• Authenticate you and operate attendance, regularisation, and facility features;
• Verify identity and prevent fraud, impersonation, and location spoofing;
• Maintain security, diagnose crashes, and improve reliability and usability;
• Comply with legal, payroll, and HR-policy obligations of your organisation.

6. Service providers we share data with

We share the minimum data necessary with the following processors, who are contractually bound to protect it and use it only on our instructions:

Provider	Purpose	Data
Google Firebase / Google Cloud	Authentication, database, storage, hosting, crash reporting (Crashlytics)	Account, attendance, location, images, diagnostics
Amazon Web Services (Rekognition)	Face matching & liveness	Facial image & feature data
Sentry	Crash & error monitoring	Diagnostics, device info
PostHog	Product analytics (usage)	Pseudonymous usage events, device info

We do not sell personal data or share it with data brokers or advertisers.

7. Data retention

We retain personal data for as long as your account/enrolment is active and as required to meet attendance, payroll, HR, and legal obligations, after which it is deleted or anonymised. Diagnostic logs are retained for a limited period for security and debugging.

8. Your rights & data deletion

Subject to applicable law (including India's Digital Personal Data Protection Act, 2023), you may request access to, correction of, or deletion of your personal data, including your biometric data. Because the App is provided through your employer, some records must be retained for legitimate HR/legal reasons even after deletion of biometric identifiers.

To make a request, use the in-app "Report a tech issue / request" option, contact your HR administrator, or email us (see Section 11). See our Data Deletion page for the step-by-step process.

9. Security

We use encryption in transit, access controls, least-privilege rules, and reputable cloud infrastructure. No system is perfectly secure, but we work to protect your information and promptly address vulnerabilities.

10. Children

The App is intended only for adults (18+) employed or authorised by Ixora. It is not directed to children and we do not knowingly collect data from anyone under 18.

11. Contact us

Ixora Corporate Services
Email: privacy@ixoragroup.com
Website: ixoragroup.com

12. Changes

We may update this Policy from time to time. Material changes will be communicated in-app or by your organisation, and the "Last updated" date above will change.