Privacy Policy

Way2Orbit ("we", "our", "us") operates a cloud telephony and workforce management platform, including the Way2Orbit mobile application available on the Google Play Store. This Privacy Policy describes how we collect, use, store, share and protect your personal information when you use our website, platform and mobile application.

By using our services or installing our application, you agree to the practices described in this policy. If you do not agree, please do not use our services or install our application.

This policy is designed to meet the requirements of the Google Play Store Developer Policy, applicable Indian data protection regulations and international data privacy standards.

We collect the following categories of information depending on how you use our services:

Category	Examples	Source
Identity Data	Name, employee ID, username	Provided by employer/user
Contact Data	Email address, phone number	Provided by employer/user
Device Data	Device model, OS version, device ID, app version	Collected automatically
Location Data	GPS coordinates, altitude, speed, timestamp	Device sensors (with permission)
Call & Audio Data	Call logs, call duration, recordings	Telephony platform
Attendance Data	Check-in/out time, geo-fence status	Collected by app
Media	Photos captured via camera for attendance/docs	Device camera (with permission)
Usage Data	App screens visited, features used, error logs	Collected automatically

The Way2Orbit mobile application requests the following device permissions. Each permission is requested only when the relevant feature is used, and users are informed at the point of request. You may deny or revoke permissions at any time through your device settings — though doing so may limit application functionality.

The Way2Orbit application requests access to your device's microphone to enable voice communication features:

• Making and receiving VoIP/SIP telephone calls through the integrated softphone
• Two-way audio during business calls routed through our Asterisk platform
• Audio prompts and IVR interaction during calls

What we do NOT do with microphone access:

• We do not record audio in the background outside of active calls
• We do not listen to conversations without an active call session
• We do not use microphone access for advertising or profiling

Call recordings — where enabled by the employer organization — are stored securely and accessible only to authorized administrators of that organization.

You may revoke microphone permission at any time via Settings → Apps → Way2Orbit → Permissions → Microphone. Revoking this permission will disable the calling feature.

The Way2Orbit application requests camera access for the following purposes:

• Selfie Attendance: Employees may be required to take a photo at check-in or check-out to verify physical presence at a location
• Document Capture: Photographing work-related documents, installation photos, or site evidence for field operations
• Profile Photo: Optional capture of a user's profile image

What we do NOT do with camera access:

• We do not access the camera in the background without your knowledge
• We do not capture images without an explicit user action (button tap)
• We do not use camera images for facial recognition or biometric identification
• We do not sell or share camera images to third parties

Images captured are stored securely and accessible only to authorized administrators of the employer organization. Attendance photos are retained as configured by the employer organization.

You may revoke camera permission at any time via Settings → Apps → Way2Orbit → Permissions → Camera.

The Way2Orbit application collects precise location data when the app is open and in the foreground for the following purposes:

• Geo-Fence Attendance: Verify that the employee is physically present within an approved work location at check-in/check-out
• Field Task Assignment: Match tasks to the nearest available field engineer
• Route Verification: Confirm that field staff are visiting customer sites as scheduled
• Workforce Safety: Enable emergency location sharing for field employees

Location data collected in foreground is:

• Linked to the authenticated employee account
• Transmitted securely over HTTPS to Way2Orbit servers
• Accessible only to the authorized employer organization's administrators
• Not sold or shared with third parties for advertising purposes

The Way2Orbit application collects location data even when the app is closed or not in use (background location). This is a core feature of our employee field tracking module and is used exclusively for the following legitimate workforce management purposes:

• Continuous real-time GPS tracking of field staff during working hours
• Route history and movement logs for work shift verification
• Automated geo-fence entry and exit detection for client sites
• Live location sharing with supervisors and operations teams during active work shifts
• Time-stamped location evidence for field service reports

Employee consent and transparency:

• The application presents a clear permission dialog explaining background location use before requesting consent
• Employees must explicitly grant "Allow all the time" location permission for background tracking to function
• A persistent notification remains visible whenever background tracking is running
• Employees can revoke background location access at any time via Settings → Apps → Way2Orbit → Permissions → Location → Allow only while using the app
• Revoking background location will disable real-time tracking features but will not affect other app functions

Background location data is NOT used for:

• Advertising, marketing or profiling unrelated to employment
• Tracking employees outside of employer-configured working hours (where configured)
• Sharing with third-party advertisers, data brokers or analytics companies
• Any purpose beyond the employer workforce management listed above

We use the information we collect for the following purposes:

• Providing, operating and maintaining the Way2Orbit telephony and workforce platform
• Processing VoIP calls and routing them through our Asterisk infrastructure
• Enabling employee attendance, geo-fence check-in and field tracking features
• Generating call detail records (CDRs), attendance reports and operational analytics for employers
• Monitoring system health, detecting errors and improving platform reliability
• Sending operational notifications (e.g., missed calls, task assignments, schedule alerts)
• Enforcing our Terms of Service and applicable legal obligations
• Responding to support requests and communicating with users

We do not use your personal data for targeted advertising. We do not sell your data to data brokers, marketers or any third parties.

Way2Orbit does not sell, rent or trade your personal information. Data may be shared only in the following limited circumstances:

Recipient	Purpose	Safeguards
Employer Organization	Attendance records, location logs and call data are shared with the organization that deployed Way2Orbit for that employee	Contractual data processing agreement
Infrastructure Providers	Cloud hosting and server services required to operate the platform	Data processing agreements; data stays in India
Legal Authorities	When required by law, court order or government authority under applicable Indian law	Limited to legally required disclosure

We implement industry-standard security measures to protect your personal information:

• All data transmitted between the application and our servers uses TLS/HTTPS encryption
• Call recordings and location logs are stored with encryption at rest
• Access to personal data is restricted to authorized personnel on a need-to-know basis
• Our servers are hosted in secure, monitored data centers
• Periodic security reviews and vulnerability assessments are conducted
• API endpoints are authenticated using token-based authorization

No system is 100% secure. If you suspect unauthorized access to your account, please contact us immediately at support@way2orbit.in.

We retain personal data only as long as necessary for the purposes described in this policy:

Data Type	Retention Period
Location tracking logs	As configured by employer (typically 90 days)
Call recordings	30–180 days depending on plan; configurable by employer
Attendance records	As required by employer; minimum 1 year
Call detail records (CDR)	12 months
Account data	Duration of account + 30 days after deletion request
Error and usage logs	30 days

Upon account termination, personal data is deleted or anonymized within 30 days unless retention is required by law.

The Way2Orbit platform and mobile application are designed for use by business organizations and their employees. Our services are not directed at children under the age of 13 (or 18 where applicable under local law). We do not knowingly collect personal information from children.

If you believe we have inadvertently collected information from a minor, please contact us immediately at support@way2orbit.in and we will delete it promptly.

Depending on your role (employee or organization administrator), you may have the following rights regarding your personal data:

• Access: Request a copy of personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data (subject to legal and contractual obligations)
• Restriction: Request restriction of processing in certain circumstances
• Portability: Request your data in a machine-readable format
• Withdraw Consent: Revoke device permissions (microphone, camera, location) at any time via device settings
• Opt-out of Tracking: Disable background location by revoking the "Allow all the time" location permission

Note: Certain data may be controlled by your employer organization. Requests related to employer-managed data should be directed to your employer. To exercise any of the above rights, contact us at support@way2orbit.in.

The Way2Orbit application may integrate with or link to third-party services. These include:

• Google Play Services: Required for Android device functionality and push notifications
• Firebase / FCM: Used for push notification delivery (call alerts, task notifications)
• OneRadius CRM: Customer data sync for ISP/broadband operators where configured by the employer

Third-party services operate under their own privacy policies. We are not responsible for the privacy practices of third-party services. We recommend reviewing their policies separately.

We do not integrate with advertising networks, social media tracking pixels or analytics services that collect data for commercial profiling.

Way2Orbit may update this Privacy Policy from time to time. When we make significant changes, we will:

• Update the "Last Updated" date at the top of this page
• Display an in-app notification for material changes
• Where required, request re-consent from users

We encourage you to review this policy periodically. Continued use of the application after updates constitutes acceptance of the revised policy.

If you have any questions, concerns or requests regarding this Privacy Policy or our data practices, please contact our Privacy team: