Privacy Policy

We are committed to protecting the personal information of our customers, visitors, and users. This policy describes our practices regarding data collection, use, storage, and your rights in relation to that data.

Corevo is built on Odoo Community Edition. When you self-host Corevo on your own infrastructure, you are the data controller for all data you store within the system. When you use Sarvify's managed hosting service, Sarvify acts as a data processor on your behalf.

Information you provide directly

• Contact form submissions — name, company, email address, phone number
• Demo request information — business size, modules of interest, current systems
• Account registration details for Sarvify managed services
• Support ticket information submitted to our helpdesk
• Survey responses and feedback you choose to submit

Information collected automatically

• IP address and approximate geographic location (country/city level)
• Browser type and version, operating system
• Pages visited on corevo.in, time spent, and navigation path
• Referral source — how you arrived at our website
• Device type (desktop, tablet, mobile)

Information from Corevo ERP usage (managed hosting customers)

For customers using Sarvify's managed hosting service, we may have access to data stored within your Corevo instance for the purpose of providing support, maintenance, and infrastructure operations. This data is subject to a separate Data Processing Agreement (DPA) that forms part of your service contract.

• To respond to your enquiries and demo requests
• To provide and support the Corevo software and related services
• To send service-related communications (updates, invoices, support responses)
• To improve our website, software, and documentation based on usage patterns
• To comply with legal and regulatory obligations
• To detect and prevent fraud, abuse, and security incidents
• To send marketing communications — only with your explicit consent, which you can withdraw at any time

We share personal data only in the following limited circumstances:

• Service providers — Infrastructure, email delivery, and analytics tools used to operate our services. These providers process data only on our instruction.
• Legal requirements — If required by law, court order, or government authority in India or another applicable jurisdiction.
• Business transfers — In the event of a merger, acquisition, or asset sale, customer data may transfer to the new entity. We will notify you if this occurs.
• With your consent — For any other purpose, only with your explicit permission.

We do not share data with any third party for their independent marketing or commercial purposes.

Storage location

Data collected through the corevo.in website and Sarvify-managed Corevo instances is stored in data centers located in India. We do not transfer personal data outside India except where necessary for operating specific services (such as transactional email delivery), and only to countries or providers with adequate data protection standards.

Security measures

• TLS/HTTPS encryption for all data in transit
• Encrypted storage for sensitive data at rest
• Role-based access controls limiting internal access to personal data
• Regular security assessments and penetration testing
• Automated daily backups with point-in-time recovery
• Incident response procedures for data breach scenarios

Client-hosted instances

If you self-host Corevo on your own infrastructure, you are solely responsible for data security, backups, and access controls within your instance. Sarvify provides implementation guidance but has no access to your data in client-hosted deployments.

The corevo.in website uses a minimal set of cookies to operate and improve the website. See our Cookie Policy for full details of the cookies we set, their purpose, and how to control them.

• Essential cookies — Required for the website to function. Cannot be disabled.
• Analytics cookies — Help us understand how visitors use the site. Can be disabled.
• No advertising or tracking cookies are set by corevo.in.

Under applicable Indian data protection law (DPDP Act 2023) and, where applicable, GDPR, you have the following rights regarding your personal data:

• Right of Access — Request a copy of the personal data we hold about you
• Right to Correction — Request correction of inaccurate or incomplete data
• Right to Erasure — Request deletion of your personal data, subject to legal obligations
• Right to Portability — Receive your data in a machine-readable format
• Right to Object — Object to processing of your data for marketing purposes
• Right to Withdraw Consent — Withdraw consent for any processing based on consent
• Right to Grievance Redressal — Lodge a complaint with our Data Protection Officer

To exercise any of these rights, email us at privacy@sarvify.in. We will respond within 30 days.

We retain personal data only for as long as necessary for the purposes set out in this policy, or as required by law.

• Contact form and demo request data — 2 years from last interaction
• Customer account data — Duration of the customer relationship plus 5 years for accounting purposes
• Website analytics data — 14 months (anonymised thereafter)
• Support ticket data — 3 years from ticket closure
• Financial and billing records — 7 years as required by Indian tax law

Corevo is a business software product intended for use by adults in a professional capacity. We do not knowingly collect personal data from individuals under the age of 18. If you believe a minor has submitted data to us, please contact us at privacy@sarvify.in and we will delete it promptly.

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify registered users by email. Your continued use of Corevo after the updated date constitutes acceptance of the revised policy.

For any questions, concerns, or to exercise your data rights, please contact: