Save up to 40% on your water bills — switch to smart metering today!
Book a Demo
This Privacy Policy ("Policy") explains how Perisync Technologies Pvt Ltd, operating under the brand name TheWaterFirm ("TWF", "we", "us"), collects, uses, stores, shares, and protects personal data in connection with our smart water metering products, services, website, and mobile application.
Perisync Technologies Pvt Ltd is the Data Fiduciary under the Digital Personal Data Protection Act, 2023 ("DPDP Act") for all personal data processed in connection with TWF's products and services. This means we determine the purpose and means of processing your personal data and are responsible for its protection.
This Policy is also governed by the Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 ("IT Rules").
This Policy applies to all individuals and entities whose personal data TWF processes, including:
- Apartment Associations, RWAs, and their authorised representatives (Building Admins);
- Individual flat owners, tenants, and residents who access the TWF platform;
- Builders and developers who engage TWF for project deployments;
- Commercial property owners and their representatives;
- Visitors to TWF's website (www.thewaterfirm.com), including individuals who submit a demo request, contact form, or newsletter subscription;
- Any individual whose personal data is provided to TWF in the course of service delivery.
| Category | Data Collected |
|---|---|
| Identity Data | Full name, designation (for Building Admins), Aadhaar number (where collected for e-sign or KYC purposes only) |
| Contact Data | Mobile phone number, email address |
| Property Data | Property address, flat or unit number, building or project name |
| Consumption Data | Water consumption readings, flow rate data, usage patterns, billing data generated from meter readings |
| Account Data | Username, encrypted password, account preferences, login history |
| Device & App Data | Device type, operating system, app version, device identifiers (for mobile app), push notification tokens |
| Payment Data | Transaction reference numbers, payment status. Full card/bank details are not stored by TWF — see Section 8 |
| Usage Data | Platform access logs, features used, session duration, error logs |
| Communication Data | Support tickets, emails, and communications you send to TWF |
| Technical Data | IP address, browser type, pages visited on the TWF website (collected via Google Analytics) |
We collect data through the following means:
- Directly from you — when you register an account, fill in a contact or demo request form, subscribe to our newsletter, contact support, or enter into a service agreement with TWF. Where you submit a form on the TWF website (demo booking, contact us, newsletter), the name, email, phone number, and message you provide are stored and used solely to respond to your enquiry or send the communications you subscribed to;
- Automatically via the Platform — when you use the web or mobile application, usage and device data is collected automatically;
- From IoT hardware — smart water meters and gateways installed at your premises transmit consumption readings and device health data to TWF's platform continuously during operation;
- From the Building Admin — resident and tenant details (name, flat number, contact) may be entered into the platform by the Building Admin during onboarding. The Building Admin is responsible for ensuring they have the necessary authority to share resident data with TWF;
- From payment gateways — transaction confirmation and status information is received from Razorpay, PayU, or equivalent authorised payment processors;
- From Google Analytics — website visitor behaviour, traffic source, and usage statistics are collected via Google Analytics cookies on the TWF website.
| Purpose | Data Used |
|---|---|
| Service Delivery | Providing access to the platform, displaying consumption data, generating billing reports, sending alerts and notifications |
| Account Management | Creating and managing user accounts, authentication, password reset, access control |
| Billing & Payments | Processing subscription and AMC payments, generating invoices, managing payment mandates |
| Technical Support | Diagnosing hardware and platform issues, responding to support tickets, conducting remote diagnostics |
| Maintenance & Operations | Scheduling preventive maintenance visits, tracking hardware performance, firmware updates |
| Communications | Sending service notifications, billing reminders, maintenance alerts, policy updates via email, SMS, and push notification |
| Legal & Compliance | Meeting obligations under applicable Indian law, responding to legal orders, maintaining statutory records |
| Analytics & Improvement | Understanding usage patterns, improving platform features, internal reporting — using anonymised and aggregated data only |
| Website Analytics | Understanding website visitor behaviour via Google Analytics to improve website content and performance |
TWF does not use your personal data for purposes beyond those listed above without obtaining your additional consent.
Under the DPDP Act, 2023 and the IT Rules, our processing of personal data is based on the following legal grounds:
- Consent: Where you have given explicit consent at the time of account creation or service activation — for example, for marketing communications or optional analytics;
- Contractual Necessity: Processing required to fulfil our obligations under your Service Contract or Subscription Agreement — for example, consumption monitoring, billing, and support;
- Legal Obligation: Processing required to comply with applicable Indian law, regulatory requirements, or lawful orders of courts or government authorities;
- Legitimate Interests: Processing necessary for TWF's legitimate business interests, such as platform security, fraud prevention, and service improvement — where such interests are not overridden by your data protection rights.
TWF does not sell your personal data. We share personal data only in the following circumstances:
| Third Party | Purpose | Data Shared |
|---|---|---|
| Amazon Web Services (AWS) | Cloud hosting and infrastructure for the TWF platform and data storage | All platform data including consumption readings, account data, and usage data |
| Razorpay / PayU (or equivalent) | Payment processing for subscriptions and AMC | Transaction amount, customer name, contact details for payment initiation. Full card/bank details are handled by the gateway only |
| Google Analytics | Website usage analytics | Anonymised website visitor behaviour data, IP address (pseudonymised), device and browser data |
| SMS / Email Providers | Delivering service notifications, OTPs, and alerts | Mobile number and/or email address only |
| TWF-Authorised Installation Partners | On-site installation and maintenance at Customer premises | Site address and contact name for scheduling purposes only |
TWF may disclose personal data to government authorities, law enforcement agencies, or courts when required to do so by applicable law, court order, or lawful direction from a competent authority. TWF will endeavour to notify affected users of such disclosure where legally permitted to do so.
In the event of a merger, acquisition, or sale of all or part of TWF's business, personal data may be transferred to the successor entity. Users will be notified of any such transfer through the platform and this Policy will be updated accordingly.
TWF does not share personal data with advertisers, data brokers, or any third party for commercial profiling or targeted advertising purposes.
TWF uses authorised third-party payment gateways (Razorpay, PayU, or equivalent) to process all financial transactions. The following applies:
- TWF does not store, retain, or have access to your full debit card, credit card, or bank account numbers. These are entered directly into the payment gateway's secure environment;
- TWF receives only transaction confirmation, reference numbers, and payment status from the payment gateway;
- For automated recurring payments (e-NACH, UPI Autopay, e-Mandate), the mandate details are held by your bank or the payment gateway under their own compliance framework. TWF does not store mandate credentials;
- Payment data is processed by the gateway in compliance with PCI-DSS standards. TWF is not responsible for the security practices of the payment gateway;
- For payment-related disputes or queries, contact the payment gateway directly or raise a support ticket with TWF at support@thewaterfirm.com.
Cookies are small text files placed on your device by websites you visit. They are used to make websites work, improve user experience, and provide analytics information to website operators.
| Type | Purpose | Can Be Disabled? |
|---|---|---|
| Essential Cookies | Session management, authentication, security. Required for the platform to function. Cannot be disabled without breaking core functionality. | No |
| Analytics Cookies (Google Analytics) | Tracking website visitor behaviour, pages visited, traffic source, and usage statistics on www.thewaterfirm.com. Data is pseudonymised and aggregated by Google Analytics before being shared with TWF. | Yes |
| Preference Cookies | Remembering your language, region, and display preferences. | Yes |
TWF's website uses Google Analytics, a service provided by Google LLC. Google Analytics collects data about your website visit using cookies and transmits it to Google servers, which may be located outside India. Google uses this data to compile reports for TWF on website activity. Google may also use this data for its own purposes under Google's Privacy Policy. To opt out of Google Analytics tracking, you may install the Google Analytics Opt-out Browser Add-on.
You may disable non-essential cookies through your browser settings or through our cookie consent tool on the website. Disabling analytics cookies will not affect your ability to use the TWF platform or receive the Services.
TWF's platform data is hosted on Amazon Web Services (AWS). AWS operates data centres globally and your data may be processed on servers located outside India, including in regions such as Singapore, the United States, or other AWS regions.
Similarly, Google Analytics processes website visitor data on Google's global infrastructure, which may include servers outside India.
TWF acknowledges its obligations under the DPDP Act, 2023 regarding cross-border transfer of personal data. Where the Government of India, through notification, restricts transfer to specific countries, TWF will comply with such restrictions. We rely on the contractual terms and security standards of AWS and Google, which include appropriate safeguards for international data transfers.
| Data Category | Retention Period |
|---|---|
| Account & Identity Data | For the duration of the active service relationship, and for 3 years after account closure or contract termination, for legal and compliance purposes |
| Water Consumption Data | For the duration of the active contract, and for 2 years after contract termination. Aggregated, anonymised consumption data may be retained indefinitely for analytical purposes |
| Payment & Billing Records | 7 years from the date of transaction, as required under Indian accounting and tax law |
| Support & Communication Data | 2 years from the date of the last communication |
| Website Analytics Data (Google Analytics) | As per Google Analytics default retention settings (typically 14 months). TWF does not independently retain raw website analytics data |
| Legal & Regulatory Records | As required by applicable law, which may exceed the above periods |
After the applicable retention period, personal data will be deleted or anonymised. TWF does not guarantee retrieval of data after the retention period has elapsed.
Under the Digital Personal Data Protection Act, 2023 and the IT Rules, you have the following rights with respect to your personal data:
TWF implements reasonable technical and organisational security measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. These include:
- Encrypted data transmission (HTTPS/TLS) between devices and the platform;
- Encrypted storage of sensitive data at rest on AWS infrastructure;
- Role-based access controls ensuring that TWF staff access only the data necessary for their function;
- Regular security reviews of the platform and infrastructure;
- Password hashing — TWF does not store plaintext passwords.
TWF's liability for any loss, corruption, or unavailability of data is governed by the Limitation of Liability section in TWF's Terms & Conditions.
TWF's Platform and Services are not directed at children under the age of 18. TWF does not knowingly collect personal data from minors. If you are a Building Admin who provides resident data to TWF, you confirm that the data you provide relates to individuals who are 18 years of age or older, or that you have the necessary parental or guardian consent where a user is under 18.
If TWF becomes aware that it has collected personal data from a minor without appropriate consent, it will take steps to delete that data promptly. Contact support@thewaterfirm.com if you have concerns about a minor's data.
TWF may update this Privacy Policy from time to time to reflect changes in our data practices, applicable law, or business operations. The current operative version is always available at www.thewaterfirm.com/policies/privacy-policy. Updates take effect upon publication. For material changes, TWF will make reasonable efforts to notify active users via platform notification or email. It is your responsibility to review this Policy periodically.
In accordance with the IT Rules and the DPDP Act, 2023, TWF has appointed a Grievance Officer to address privacy-related complaints and queries: