Last updated: 8 June 2026 · Verify Granite (Aron Traders) · Madurai, India
This policy explains how we collect, use, and protect your personal data.
Compliant with GDPR (EU), Indian Information Technology Act 2000, and DPDP Act 2023.
Verify Granite is operated by Aron Traders, Madurai, Tamil Nadu, India (GST registered). We provide an AI-powered granite block verification platform at verifygranite.com.
Contact: info@verifygranite.com · +91 9655505108 · Madurai, Tamil Nadu 625001, India.
When you create an account or use our platform, we collect:
ACCOUNT DATA: Name, email address, company name, country, phone number (WhatsApp).
SCAN DATA: Photographs of granite blocks you upload. AI analysis results. Dimension estimates. Grade assignments. Generated PDF certificates.
PAYMENT DATA: Transaction reference numbers you provide. We do NOT store card numbers, bank account details, or UPI PINs. Payments are made directly to our UPI/bank account.
USAGE DATA: Pages visited, features used, scan timestamps, IP address, device type, browser type.
COMMUNICATION DATA: WhatsApp messages, emails you send to us, support conversations.
We use your data only to:
1. Provide the Verify Granite service — AI scanning, PDF generation, QR verification. 2. Send you your account credentials and certificate links. 3. Process subscription payments and issue receipts. 4. Provide customer support via WhatsApp and email. 5. Improve our AI model accuracy (anonymised scan data only). 6. Send you platform updates and new feature announcements (you can unsubscribe anytime). 7. Comply with Indian tax and GST regulations.
We do NOT sell your data to any third party. We do NOT share your supplier contacts or buyer enquiries with competitors.
We share data with the following service providers only, to operate the platform:
SUPABASE (supabase.com) — Database and file storage. Servers located in Singapore. Data encrypted at rest and in transit.
VERCEL (vercel.com) — Website hosting. Servers in global CDN.
RAILWAY (railway.app) — Backend API hosting.
GOOGLE (cloud.google.com) — Gemini Vision AI analysis. Photographs you upload are sent to Google's Gemini API for analysis. Google's AI usage policy applies. Google does NOT use your images to train public models without consent.
ZOHO MAIL — Email delivery for certificates and notifications.
No other third parties receive your personal data. We do NOT use Facebook Pixel, Google Ads remarketing, or any advertising trackers.
If you are in the European Union, UK, or a country with data protection law, you have the right to:
RIGHT TO ACCESS: Request a copy of all personal data we hold about you. RIGHT TO CORRECTION: Request correction of inaccurate data. RIGHT TO DELETION: Request deletion of your account and all associated data. We will process within 30 days. RIGHT TO PORTABILITY: Request your scan data in machine-readable format (JSON/CSV). RIGHT TO OBJECT: Object to any processing of your data. RIGHT TO WITHDRAW CONSENT: Withdraw consent to marketing emails at any time.
To exercise any right, email: info@verifygranite.com Subject line: "Data Request — [Your Name]" We will respond within 30 days. Identity verification may be required.
When you upload a photograph of a granite block:
1. The image is sent to Google Gemini Vision API for analysis. 2. The image is stored in our secure Supabase Storage bucket (encrypted at rest). 3. The image URL is included in your PDF certificate if you choose. 4. When a public catalog link (QR code destination) is created, the image may be visible to anyone with the link.
YOU CONTROL THIS: You choose whether to make a scan public or keep it private. Private scans are accessible only to your account.
FACES IN PHOTOS: Please ensure photos of granite blocks do not contain identifiable people's faces. We do not request or require photographs of people.
We retain your data as follows:
ACCOUNT DATA: Retained while your account is active + 12 months after account closure. SCAN DATA (certificates, photos): Retained for 3 years — so you can always re-download old certificates. PAYMENT RECORDS: Retained for 7 years (Indian tax law requirement). SUPPORT CONVERSATIONS: Retained for 2 years.
When you delete your account: account data and scan data are deleted within 30 days. Payment records are retained as required by law.
We use minimal cookies:
ESSENTIAL COOKIES: Login session token (required for platform to function). Cannot be disabled.
NO TRACKING COOKIES: We do not use Google Analytics, Facebook Pixel, or any advertising cookies.
NO THIRD-PARTY COOKIES: No social media buttons or external trackers.
You can clear cookies through your browser settings. Clearing session cookies will log you out.
We protect your data with:
- All data transmitted over HTTPS/TLS 1.3 encryption - Supabase Row Level Security (your data is isolated from other companies' data) - Service key authentication for server-to-server requests - No plaintext passwords (Google OAuth only) - Regular security reviews
Despite our precautions, no internet transmission is 100% secure. We will notify you within 72 hours of any data breach that affects your personal data.
Verify Granite is a B2B platform intended for business use. We do not knowingly collect data from persons under 18 years of age. If you believe a minor has provided data to us, contact info@verifygranite.com and we will delete it immediately.
We may update this Privacy Policy when our practices change. We will notify you by email and by posting a notice on the platform at least 14 days before any material changes take effect. Continued use of the platform after changes constitutes acceptance.
The current version is always at verifygranite.com/privacy.
For any privacy question, data request, or complaint:
Email: info@verifygranite.com Subject: "Privacy — [Your Request]" Phone: +91 9655505108 (WhatsApp available) Address: Aron Traders, Madurai, Tamil Nadu 625001, India
If you are in the EU and feel your complaint has not been adequately addressed, you may contact your national Data Protection Authority.