Sorted

Privacy Policy

Last updated: April 16, 2026

This Privacy Policy describes how Sorted collects, uses, and protects your personal data in compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act).

1. Data We Collect

  • Account information: Name, email address, phone number (optional), profile photo from OAuth provider
  • Content you share: Reviews, ratings, photos, deposit records, rental experiences
  • Usage data: Pages visited, search queries, device type, IP address
  • Verification documents (optional): For Verified Resident or Landlord verification

2. How We Use Your Data

  • To provide, maintain, and improve the Platform
  • To enable you to submit reviews and interact with other users
  • To prevent fake reviews, fraud, and abuse
  • To comply with legal obligations
  • To communicate with you about the service (transactional emails)

3. Your Rights (DPDP Act)

As a Data Principal under the DPDP Act, you have the right to:

  • Access a copy of your personal data
  • Correct inaccurate or outdated data
  • Erase your data (subject to legal retention requirements)
  • Withdraw consent at any time
  • Nominate someone to exercise these rights in case of death or incapacity
  • Grievance redressal via our Grievance Officer

To exercise any of these rights, use our Grievance Portal and select the appropriate category.

4. Data Retention

We retain personal data only as long as necessary for the purposes described. Specifically:

  • Account data: until you delete your account (reviews anonymized, not deleted, to protect platform integrity)
  • Verification documents: 90 days after approval, then hash retained for audit
  • Moderation records: 180 days (IT Rules requirement)
  • Grievance records: 24 months for compliance audit

5. Data Sharing

We do not sell your personal data. We share data only in these circumstances:

  • With service providers (hosting, email, SMS) under strict data protection agreements
  • When required by law, court order, or lawful government request
  • To protect the rights, property, or safety of Sorted, our users, or others

6. Security

We use industry-standard security measures including encryption at rest for verification documents, HTTPS/TLS for data in transit, and least-privilege access controls.

7. Cookies

We use essential cookies for authentication and session management. We use analytics cookies (PostHog) to understand product usage. You may disable non-essential cookies.

8. Children's Privacy

The Platform is not intended for anyone under 18. We do not knowingly collect data from minors.

9. Changes to This Policy

We may update this Privacy Policy. Material changes will be notified via email to registered users.

10. Data Protection Contact

For data protection queries: privacy@sorted.example
Grievance Officer: see Grievance Portal