← Back to Home

Privacy Policy

Effective Date: 13th April 2026

1. Introduction

1.1 Overview of the Policy

This Privacy Policy (“Policy”) is issued by New Company Alert, a Business duly incorporated under applicable laws, bearing Udyam Registration (UDYAM-BR-38-0026501), having its registered office at New Company Alert, Unit 402, Lotus Corporate Park, Western Express Highway, Andheri East Mumbai, Maharashtra India, Pin Code: 400069 (hereinafter referred to as “New Company Alert”, “we”, “us”, or “our”). Our corporate office is located at New Company Alert, Unit 402, Lotus Corporate Park, Western Express Highway, Andheri East Mumbai, Maharashtra India, Pin Code: 400069.

New Company Alert acknowledges and respects the importance of safeguarding your privacy and is committed to protecting the confidentiality, integrity, and security of all personal data collected from individuals (“you” or “your”) in connection with your use of our website, mobile applications, and other online or offline services (collectively, the “Services”).

To Communicate with You: We may use your information to respond to your inquiries, provide customer service support, send you important information about the services, and send you marketing communications (with your consent) via different channels, including but not limited to SMS, Email, WhatsApp, and Voice. This Privacy Policy provides details about how we collect, use, disclose, and safeguard your information when you access our services.

1.2 Effective Date

This Privacy Policy shall come into effect on 13th of April 2026 (“Effective Date”). New Company Alert reserves the right to modify, amend, or update this Policy at any time in accordance with applicable laws and regulations. Any such changes shall be effective immediately upon posting the revised Policy on the New Company Alert website or through other appropriate communication channels.

1.3 Definitions

For the purposes of this Privacy Policy, key terms include:

  • Personal Data: means any information relating to an identified or identifiable natural person, as defined under the Digital Personal Data Protection Act, 2023, including but not limited to name, contact details, identification numbers, IP address, and any other information that can be used to directly or indirectly identify an individual.
  • Sensitive Personal Data: refers to personal data that relates to financial information, health data, sexual orientation, biometric data, or any other category of data deemed sensitive under applicable laws.
  • Data Fiduciary: means New Company Alert, the entity that determines the purpose and means of processing Personal Data in relation to the Services provided.
  • Data Principal: means the individual to whom the Personal Data relates and who can be identified, directly or indirectly, from such data.
  • Processing: refers to any operation or set of operations performed on Personal Data, including collection, recording, organization, storage, adaptation, alteration, retrieval, consultation, use, disclosure, dissemination, or erasure.
  • Services: refers to the website, mobile applications, and any other online or offline platforms or services provided by New Company Alert that collect or process Personal Data.
  • Cookies: means small text files placed on a user's device by websites to store information to enhance user experience and enable certain functionalities.
  • Companies: shall mean all types of business entities registered in India, including but not limited to Private Limited Companies, Public Limited Companies, Limited Liability Partnerships (LLPs), Foreign Companies, and any other legal entity types registered under applicable Indian laws.
  • Data Protection Officer: means the designated individual responsible for overseeing New Company Alert's data protection strategy and implementation to ensure compliance with applicable data protection laws.
  • Digital Personal Data Protection Act, 2023: means the Indian legislation titled Digital Personal Data Protection Act, 2023, governing the processing of personal data.
  • Information Technology Act, 2000: means the Indian legislation titled the Information Technology Act, 2000, relating to cyber activities, electronic governance, and data security.
  • User: means any individual who accesses or uses the Services provided by New Company Alert.
  • Consent: means explicit, informed, and unambiguous agreement by the Data Principal to the processing of their Personal Data for specified purposes.
  • Ministry of Corporate Affairs: means the governmental authority in India responsible for administering company law and maintaining corporate data, including official portals V2 and V3.
  • Master Data: means foundational corporate data such as company registration details, identification numbers, and basic profile information, sourced from MCA portals.
  • Director Data: means personal and professional details of company directors obtained from MCA portals and other authorized sources.
  • Publicly Available Data: means personal data accessible in the public domain, including data from government portals such as MCA, which may be processed without explicit consent under applicable laws.
  • User-Provided Data: means personal information voluntarily submitted by users during registration, login, or interaction with New Company Alert's Services.
  • Third-Party Authentication Providers: means external services (e.g., Google) used to facilitate user login and authentication, which share limited user data with New Company Alert based on user consent.
  • Website Interaction Data: means technical and usage information collected automatically during a user's interaction with New Company Alert's platform, including IP addresses, browser type, device identifiers, and similar data.
  • Legitimate Business Purposes: means activities related to the operation, provision, and improvement of New Company Alert's Services, including but not limited to due diligence, compliance verification, research, and authorized commercial activities.

2. Identity and Contact Details

2.1 Identity of the Data Fiduciary

The Data Fiduciary responsible for the collection, processing, and protection of Personal Data is: New Company Alert

Udyam Registration: UDYAM-BR-38-0026501

Registered Office: New Company Alert, Unit 402, Lotus Corporate Park, Western Express Highway, Andheri East Mumbai, Maharashtra India, Pin Code: 400069

2.2 Contact Information for Privacy and Data Protection Queries

For any queries, concerns, or requests related to this Privacy Policy or the processing of your Personal Data, you may contact our designated Data Protection Officer (“DPO”) at:

  • Email: dpo@newcompanyalert.in
  • Phone: 9082371232
  • Postal Address: Data Protection Officer, New Company Alert, Unit 402, Lotus Corporate Park, Western Express Highway, Andheri East Mumbai, Maharashtra India, Pin Code: 400069

We commit to acknowledging receipt of your communication within seven (7) business days and providing a substantive response or resolution within thirty (30) calendar days from the date of receipt.

3. Categories of Personal Data Collected

3.1 Types of Personal Data Collected

New Company Alert collects and processes various categories of Personal Data in connection with the provision of its Services. The primary sources and types of data include:

  • Data obtained from the Ministry of Corporate Affairs (MCA) portals: master data relating to Companies, director data, charges data, public filings, and annual e-filings data from both MCA V2 and V3 portals.
  • Data obtained from the Goods and Services Tax (GST) portal: GST registration details and filings data accessed via API through an authorized GST Suvidha Provider (GSP).
  • Publicly available data on directors: contact details such as mobile phone numbers and email addresses sourced from publicly accessible information on the internet, which New Company Alert processes and may commercialize.
  • User-provided data: personal data collected when users log into New Company Alert, including name, photograph, email address, and mobile phone number. Users may also log in via third-party providers such as Google.
  • Website interaction data: technical information such as IP addresses, browser details, device identifiers, and usage data automatically collected via cookies and similar tracking technologies.

3.2 Data Sources

New Company Alert primarily obtains corporate and director-related data from official MCA portals (V2 and V3), covering all Companies, ensuring compliance with applicable legal frameworks. GST registration and filing data is sourced from the GST portal via APIs provided by authorized GST Suvidha Providers (GSPs). Additional contact details of directors are sourced from publicly available data on the internet. User-related personal data is collected directly from users during account registration, login, or interaction with New Company Alert's Services, including through third-party authentication providers.

4. Purposes of Data Processing

4.1 Use of Data Sourced from MCA Portals

New Company Alert processes data obtained from the Ministry of Corporate Affairs (“MCA”) portals (V2 and V3) solely for legitimate business purposes, including providing comprehensive corporate information, director details, and statutory filings related to Companies. All MCA data processing activities are conducted in strict compliance with the terms and conditions governing the use of MCA portals, applicable Indian laws, and regulatory guidelines.

4.2 Use of Publicly Available Director Contact Data

New Company Alert collects and commercializes director contact details, including mobile phone numbers and email addresses, sourced from publicly accessible internet resources. Such processing is undertaken in compliance with applicable data protection laws and ethical standards. New Company Alert ensures that any marketing communications or data commercialization activities are conducted only after obtaining necessary consents where required and provide recipients with mechanisms to opt-out.

4.3 User Data and Authentication

New Company Alert processes user-provided personal data, including login credentials and profile information, to enable user authentication, access management, and customer support. Third-party authentication providers, such as Google, may share limited personal data with New Company Alert pursuant to user consent during login.

4.4 Data Security and Integrity

New Company Alert employs industry-standard security measures to safeguard the integrity, confidentiality, and availability of data obtained from MCA portals, users, and other sources against unauthorized access, alteration, or disclosure.

4.5 Compliance and Legal Obligations

New Company Alert processes Personal Data as required to comply with applicable laws, regulations, and lawful governmental requests.

5. Data Accuracy and Update Limitations

New Company Alert obtains personal data from external sources, including the Ministry of Corporate Affairs (“MCA”) portals (V2 and V3) and other authorized repositories, and processes such data in accordance with this Privacy Policy. New Company Alert makes reasonable and good faith efforts to ensure that the data displayed on its platform is accurate and current to the best extent technically and legally feasible.

Notwithstanding such efforts, New Company Alert does not warrant, guarantee, or represent, either expressly or impliedly, that the data provided through its Services is, at all times, accurate, complete, error-free, or up to date. Users acknowledge and agree that New Company Alert's ability to update and synchronize data depends substantially on the availability, performance, and reliability of third-party systems, including but not limited to MCA portals, over which New Company Alert has no control.

Users are strongly advised to verify any critical data or information directly with official MCA portals or other authoritative sources prior to relying on such data for legal, financial, or business decisions.

7. Data Retention Period

New Company Alert shall retain Personal Data only for as long as reasonably necessary to fulfill the purposes for which it was collected, including to comply with legal, regulatory, and contractual obligations. Retention periods vary depending on the category of Personal Data, the nature of the Services provided, and applicable statutory or regulatory requirements.

New Company Alert undertakes periodic reviews of stored Personal Data and shall securely delete, anonymize, or otherwise render such data irrecoverable once it is no longer necessary for the purposes stated herein or required by law. Notwithstanding the foregoing, New Company Alert may retain Personal Data beyond the applicable retention period where necessary to comply with ongoing legal proceedings, investigations, disputes, or enforcement actions.

8. Data Sharing and Disclosure

8.1 Circumstances for Sharing Personal Data

New Company Alert may share Personal Data collected in connection with its Services only in the following circumstances and subject to applicable legal and contractual safeguards:

  • With Service Providers: New Company Alert may disclose Personal Data to trusted third-party service providers, contractors, or agents engaged to perform functions on its behalf, including but not limited to data hosting, IT services, payment processing, customer support, and marketing. Such parties are contractually obligated to process Personal Data solely in accordance with New Company Alert's instructions and applicable data protection laws.
  • With Business Partners: New Company Alert may share aggregated, anonymized, or de-identified data with business partners for research, analytics, or service improvement purposes, provided that such data does not identify any individual Data Principal.
  • As Required by Law: New Company Alert may disclose Personal Data in response to lawful requests, subpoenas, court orders, or other legal processes issued by competent authorities, or to protect its legal rights, safety, or property.
  • With Consent: New Company Alert may share Personal Data with third parties where the Data Principal has provided explicit consent for such sharing.

8.2 Third-Party Due Diligence

New Company Alert maintains due diligence procedures to ensure that any third parties receiving Personal Data implement appropriate technical, organizational, and contractual measures to safeguard the data and comply with applicable privacy and security standards.

8.3 Restrictions on Data Sales

New Company Alert shall not sell, rent, or trade Personal Data to unauthorized third parties.

9. Data Security Measures

9.1 Security Implementation

New Company Alert implements and maintains reasonable technical, administrative, and organizational safeguards designed to protect Personal Data against unauthorized access, disclosure, alteration, destruction, or loss.

9.2 Security Measures

  • Encryption: Encryption of Personal Data both in transit and at rest, where applicable.
  • Access Controls: Secure access controls, including role-based permissions and multi-factor authentication.
  • Security Audits: Regular security audits, vulnerability assessments, and penetration testing.
  • Employee Training: Employee training and awareness programs focused on data privacy and security best practices.
  • Incident Response: Incident response procedures to promptly address and mitigate any data security breaches.

9.3 Security Limitations

Despite these efforts, New Company Alert cannot guarantee absolute security of Personal Data and disclaims liability for unauthorized access or breaches resulting from factors beyond its reasonable control.

10. User Rights Under the DPDPA

10.1 Available Rights

In accordance with the Digital Personal Data Protection Act, 2023 (“DPDPA”) and other applicable laws, Data Principals (“Users”) are entitled to exercise the following rights:

  • Right to Access: Users have the right to obtain confirmation of whether their Personal Data is being processed and to request access to such data.
  • Right to Correction: Users may request correction or rectification of inaccurate, incomplete, or outdated Personal Data.
  • Right to Erasure: Users have the right to request deletion or removal of their Personal Data, subject to applicable legal obligations or legitimate grounds for retention.
  • Right to Data Portability: Users may request to receive their Personal Data in a structured, commonly used, and machine-readable format for transmission to another Data Fiduciary.
  • Right to Withdraw Consent: Where processing is based on consent, Users may withdraw such consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
  • Right to Object: Users may object to the processing of their Personal Data on grounds relating to their particular situation, including for direct marketing purposes.
  • Right to Restrict Processing: Users may request limitation of processing of their Personal Data under certain circumstances as prescribed by law.

10.2 Process for Exercising Rights

To exercise any of these rights, Users may contact New Company Alert's Data Protection Officer using the contact details provided in Section 2 of this Policy. New Company Alert shall respond to such requests promptly and within the timelines prescribed under applicable laws.

11. Grievance Redressal Mechanism

11.1 Commitment to Addressing Concerns

New Company Alert is committed to addressing all concerns, complaints, or grievances raised by Data Principals relating to the processing of their Personal Data in a fair, transparent, and timely manner.

11.2 Grievance Submission Process

Users may submit grievances or complaints by contacting New Company Alert's designated Data Protection Officer (“DPO”) at the contact details provided in Section 2 of this Policy.

11.3 Acknowledgment Timeline

Upon receipt of a grievance, New Company Alert shall acknowledge the complaint within seven (7) business days and undertake a thorough investigation to address the issue.

11.4 Resolution Timeline

New Company Alert aims to resolve grievances expeditiously and, wherever possible, within thirty (30) calendar days of receipt, subject to the nature and complexity of the complaint.

11.5 Escalation Process

If a User is dissatisfied with New Company Alert's resolution, they may escalate the grievance to the Data Protection Board of India or any other competent regulatory authority as provided under the Digital Personal Data Protection Act, 2023 (“DPDPA”).

12. International Data Transfers

12.1 Transfer Overview

New Company Alert may transfer Personal Data to countries outside India (“International Transfers”) for purposes consistent with this Privacy Policy and in compliance with applicable data protection laws, including the Digital Personal Data Protection Act, 2023 (“DPDPA”).

12.2 Adequate Safeguards

International Transfers shall only occur where adequate safeguards are in place to protect Personal Data, such as:

  • Adequate Jurisdictions: Transfer to countries or entities recognized by Indian regulators as providing an adequate level of data protection.
  • Contractual Safeguards: Implementation of legally binding agreements, including Standard Contractual Clauses (SCCs), to ensure compliance with data protection standards.
  • Other Safeguards: Other appropriate safeguards approved under applicable law.

13. Cookies and Tracking Technologies

13.1 Purpose and Utilization

New Company Alert utilizes cookies and similar tracking technologies (“Cookies”) on its website and Services to enhance user experience, analyze usage patterns, and deliver personalized content and advertisements.

13.2 Cookie Categories

  • Essential Cookies: necessary for the operation and security of the website.
  • Analytical and Performance Cookies: to collect anonymous data on website usage and improve functionality.
  • Functional Cookies: to remember user preferences and settings.
  • Advertising and Targeting Cookies: to deliver relevant marketing content and track advertising effectiveness.

13.3 User Controls

Users may control or disable Cookies via browser settings, though such actions may affect the functionality and user experience of the Services.

14. Children's Privacy

New Company Alert's Services are not directed to, nor intended for use by, individuals under the age of eighteen (18) years (“Children”). New Company Alert does not knowingly collect, store, or process Personal Data of Children without verifiable parental or guardian consent, as required under applicable laws. If New Company Alert becomes aware that it has inadvertently collected Personal Data of a Child without such consent, it shall take prompt measures to delete or anonymize such data in accordance with applicable legal requirements.

15. Changes to This Policy

New Company Alert reserves the right to modify, amend, or update this Privacy Policy at any time in its sole discretion to reflect changes in legal, regulatory, operational, or technological developments. Material changes to this Privacy Policy will be communicated to Users via prominent notices on New Company Alert's website, email notifications, or other effective communication channels prior to the implementation of such changes, where feasible. Continued use of New Company Alert's Services following the posting or notification of any updated Privacy Policy constitutes acceptance of the changes.

16. Contact Information

16.1 Data Protection Officer Contact Details

For any questions, concerns, or requests regarding this Privacy Policy or New Company Alert's data processing practices, Users may contact the designated Data Protection Officer (“DPO”) at:

  • Email: dpo@newcompanyalert.in
  • Phone: 9082371232
  • Postal Address: Data Protection Officer, New Company Alert, Unit 402, Lotus Corporate Park, Western Express Highway, Andheri East Mumbai, Maharashtra India, Pin Code: 400069

16.2 Response Commitment

New Company Alert is committed to addressing all communications promptly, professionally, and in accordance with applicable data protection laws. Users are encouraged to use these contact channels to exercise their data protection rights, report concerns, or seek further information about their Personal Data.