Introduction
Platform Context
MARCII operates a B2B digital logistics marketplace connecting freight forwarders, customs brokers/CHAs, exporters, importers with NVOCCs, shipping lines, carriers, and logistics service providers. Our Platform facilitates quote requests, rate comparisons, bookings, shipment tracking, and commercial transactions within the global logistics industry.
This Privacy Policy applies to all users who access or use the Platform, regardless of their role (User or Supplier), geographic location, or subscription status. We are committed to protecting your privacy while enabling efficient business operations and regulatory compliance.
Scope of This Policy
Covers personal and business data collected through www.maricii.com, mobile applications, APIs, and related services
Applies to data collected during registration, platform usage, transactions, and customer support interactions
Explains how we collect, use, share, store, and protect your information in compliance with applicable data protection laws
Describes your rights regarding your personal data and how to exercise them
Agreement to This Policy
By creating an account, accessing the Platform, or using our services, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your information as described. If you do not agree with this policy, please do not use the Platform.
Data We Collect
We collect various types of information to provide, maintain, improve, and secure our Platform and services. The data we collect includes:
2.1 Registration & Account Information
When you register for an account, we collect:
Business Information
- • Company legal name and trade name
- • Business registration number
- • GST/VAT/Tax identification numbers
- • Business type and industry classNameification
- • Years in operation
Contact Details
- • Primary contact name and designation
- • Email address (business)
- • Phone number (mobile with OTP verification)
- • Office address and locations
- • Website URL
Licensing & Credentials
- • Freight forwarder license numbers
- • Customs broker/CHA authorizations
- • NVOCC certifications
- • Carrier operating permits
- • Insurance certificates
Verification Documents
- • Business incorporation certificates
- • Director/owner identification
- • Address proof documents
- • Bank account details (for Suppliers)
- • Professional references
2.2 Transaction & Operational Data
During your use of the Platform, we collect:
Shipment Information
Origin and destination ports/locations, cargo details (type, weight, volume, dimensions, HS codes), container specifications, special handling requirements, commodity descriptions, hazardous material declarations, and shipment values.
Quote & Booking Data
Quote requests submitted, rates received and viewed, booking confirmations, Bill of Lading (B/L) numbers, container numbers, vessel/flight details, estimated and actual departure/arrival dates, and booking modifications.
Commercial Information
Payment terms, freight charges, additional fees, currency preferences, invoicing details, payment method information, transaction history, subscription plans purchased, and commission arrangements (for Suppliers).
Tracking & Status Updates
Real-time shipment location data, milestone events (gate-in, loading, departure, arrival, delivery), delay notifications, exception reports, customs clearance status, and delivery confirmation records.
2.3 Technical & Usage Data
We automatically collect technical information when you access the Platform:
Device Information
Device type, operating system, browser type and version, screen resolution, device identifiers
Connection Data
IP address, geographic location (country/city), internet service provider, connection type
Usage Analytics
Pages visited, features used, time spent, click patterns, search queries, navigation paths
Session Information
Login/logout times, session duration, access frequency, last activity timestamps
Error Logs
System errors, crash reports, performance issues, API failures, debugging information
Cookies & Identifiers
Session cookies, authentication tokens, preference settings, tracking pixels
2.4 Communications & Support Data
When you communicate with us, we collect:
- Email Correspondence: Support inquiries, feedback, complaints, questions, and our responses
- Chat Messages: Live chat transcripts, AI assistant interactions, automated support conversations
- Phone Communications: Call recordings (with consent), voicemail messages, call duration and timing
- Feedback & Reviews: Platform ratings, service reviews, feature requests, user satisfaction surveys
- Support Tickets: Issue descriptions, attachments, resolution history, priority levels, assigned agents
2.5 Third-Party & Integrated Data
We may receive information from third-party sources:
How We Use Data
We use the collected information for various legitimate business purposes to provide, improve, and secure our Platform and services:
3.1 Platform Operations & Service Delivery
Account Management
Create and maintain user accounts, authenticate login sessions via OTP, manage profile information, process role-based access permissions, handle subscription plans (free trial, 1-day, 1-week, 1-month), and verify business credentials.
Transaction Facilitation
Process quote requests, display supplier rates and availability, enable booking confirmations, generate Bills of Lading (B/L) automatically, facilitate communication between Users and Suppliers, and coordinate shipment arrangements.
Tracking & Visibility
Provide real-time shipment tracking, send status update notifications, monitor milestone events, alert users to delays or exceptions, and maintain transparent booking records throughout the logistics chain.
Customer Support
Respond to inquiries and support requests, troubleshoot technical issues, provide AI assistant guidance (circular icon at bottom left), resolve disputes, and maintain support ticket history for quality assurance.
3.2 Business Intelligence & Platform Improvement
Analytics & Insights
Analyze usage patterns, popular routes, search trends, booking behaviors, and platform performance to understand user needs and market dynamics. Generate business intelligence reports for strategic decision-making.
Feature Development
Identify areas for improvement, develop new features based on user feedback, enhance user interface and experience, optimize workflows, and prioritize development roadmap based on actual usage data.
Performance Optimization
Monitor system performance, identify bottlenecks, optimize page load times, improve search algorithms, enhance matching between Users and Suppliers, and ensure platform scalability.
AI & Machine Learning
Train AI models for better recommendations, improve quote matching accuracy, enhance predictive analytics for shipping trends, optimize pricing algorithms, and personalize user experience based on behavior.
3.3 Security, Fraud Prevention & Compliance
Security Monitoring
Detect and prevent unauthorized access, identify suspicious activities, monitor for security threats, protect against cyberattacks, maintain system integrity, and ensure data protection through continuous monitoring and threat analysis.
Fraud Detection
Verify business legitimacy through document scrutiny, screen against sanctions lists, detect fraudulent bookings or transactions, identify fake accounts, prevent payment fraud, and protect users from scams or malicious actors.
Legal & Regulatory Compliance
Comply with data protection laws (India's Digital Personal Data Protection Act, GDPR where applicable), maintain audit trails, respond to legal requests, enforce Terms and Conditions, verify regulatory licenses, and ensure sanctions compliance.
Financial Compliance
Process subscription payments, maintain financial records, generate invoices, comply with tax regulations (GST, VAT), handle payment disputes, and maintain transaction history for accounting and auditing purposes.
3.4 Marketing & Communications
We may use your information for marketing purposes, subject to your consent and applicable laws:
- Platform Updates: Notify you about new features, service enhancements, system maintenance, and important platform changes
- Promotional Communications: Send newsletters, special offers, subscription promotions, and relevant industry insights (with opt-out option)
- Transactional Messages: Send booking confirmations, shipment updates, payment receipts, subscription renewals, and account notifications
- Market Research: Conduct surveys, gather feedback, understand user satisfaction, and improve service quality
You can opt out of marketing communications at any time by clicking the unsubscribe link in emails or adjusting your account preferences. Transactional messages cannot be opted out as they are essential for service delivery.
How We Share Data
Important Notice on Data Sharing
MARCII does not sell, rent, or trade your personal or business information to third parties for their marketing purposes. We only share data as necessary to operate the Platform, facilitate transactions, comply with legal obligations, and protect our rights and users' safety.
4.1 Sharing Within the Platform
Between Users and Suppliers
To facilitate transactions, we share relevant information between parties involved in a booking:
- • To Suppliers: User company name, contact details, shipment requirements, cargo information, and booking specifications
- • To Users: Supplier company name, contact information, rates, schedules, terms and conditions, and service details
- • Transaction Data: Both parties receive booking confirmations, B/L information, shipment status updates, and tracking details
4.2 Service Providers & Business Partners
We engage trusted third-party service providers to support Platform operations. These providers are contractually bound to protect your data and use it only for specified purposes:
Technology Infrastructure
Cloud hosting providers (AWS, Azure, Google Cloud), CDN services, database management, API integrations, backup and disaster recovery services
Payment Processing
Payment gateways (Razorpay, Stripe, PayPal), billing systems, subscription management platforms, fraud detection services, financial reconciliation tools
Communication Services
Email delivery platforms (SendGrid, Amazon SES), SMS/OTP providers, push notification services, chat and messaging tools, customer support software
Analytics & Monitoring
Google Analytics, performance monitoring tools, error tracking systems (Sentry), user behavior analytics, A/B testing platforms
Security & Verification
Identity verification services, business credential checks, sanctions screening tools, fraud detection systems, cybersecurity monitoring
Customer Support
Help desk software (Zendesk, Freshdesk), live chat platforms, AI chatbot services, ticketing systems, knowledge base tools
4.3 Legal & Regulatory Disclosures
We may disclose your information when required by law or to protect rights and safety:
4.4 Business Transfers
In the event of a merger, acquisition, reorganization, asset sale, or bankruptcy involving MARCII or Transit Terminal Aitech Pvt Ltd, your information may be transferred to the successor entity or acquiring party.
We will notify you via email or prominent notice on the Platform before your information is transferred and becomes subject to a different privacy policy. You will have the opportunity to delete your account before the transfer if you do not agree with the new terms.
4.5 Aggregated & Anonymized Data
We may share aggregated, anonymized, or de-identified data that cannot reasonably be used to identify you or your business. This includes industry trends, market statistics, usage patterns, and performance benchmarks. Such data may be shared with business partners, researchers, or the public for analytical, research, or marketing purposes without restriction.
Cookies & Tracking Technologies
5.1 What Are Cookies?
Cookies are small text files stored on your device when you visit the Platform. They help us recognize your browser, remember your preferences, maintain your session, and provide a personalized experience. We use cookies and similar tracking technologies (web beacons, pixels, local storage) to enhance Platform functionality and analyze usage.
5.2 Types of Cookies We Use
Essential Cookies (Required)
REQUIREDNecessary for Platform operation and cannot be disabled. Enable core functions like authentication (OTP login), session management, security features, load balancing, and form submissions. Without these, the Platform cannot function properly.
Functional Cookies (Preferences)
OPTIONALRemember your preferences and settings such as language selection, currency, time zone, dashboard layout, notification preferences, and recently viewed items. Enhance user experience but not strictly necessary.
Analytics Cookies (Performance)
OPTIONALCollect information about how you use the Platform (pages visited, time spent, clicks, errors encountered). Help us understand usage patterns, identify issues, and improve Platform performance. Data is typically aggregated and anonymized.
Marketing Cookies (Targeting)
OPTIONALTrack your activity across websites to build a profile of your interests and show relevant advertisements. May be set by third-party advertising networks. You can opt out of these cookies without affecting Platform functionality.
5.3 Third-Party Cookies & Services
We use third-party services that may set their own cookies:
Google Analytics
Tracks website usage, user behavior, and traffic sources
Google Tag Manager
Manages tracking codes and marketing tags
Payment Gateways
Process secure payments and detect fraud
Social Media Pixels
Track conversions and enable social sharing
5.4 Managing Cookie Preferences
You have control over cookie usage:
- Browser Settings: Configure your browser to block, delete, or alert you about cookies. Note that disabling essential cookies may affect Platform functionality.
- Cookie Consent Tool: Use our cookie banner or preference center to accept, reject, or customize cookie categories when you first visit the Platform.
- Opt-Out Links: Visit third-party opt-out pages (Google Analytics Opt-out, NAI Opt-out, DAA Opt-out) to disable specific tracking services.
- Do Not Track: While we respect browser Do Not Track signals, their implementation varies and may not prevent all tracking.
Data Security
Our Commitment to Security
Protecting your data is our highest priority. We implement comprehensive technical, organizational, and administrative security measures to safeguard your information against unauthorized access, disclosure, alteration, or destruction. However, no system is completely secure, and we cannot guarantee absolute security.
6.1 Technical Security Measures
Encryption
- • TLS/SSL encryption for data in transit
- • AES-256 encryption for data at rest
- • End-to-end encryption for sensitive communications
- • Encrypted database backups
Access Controls
- • Multi-factor authentication (OTP-based)
- • Role-based access permissions
- • Least privilege principle
- • Regular access reviews and audits
Infrastructure Security
- • Secure cloud hosting (AWS/Azure/GCP)
- • Firewalls and intrusion detection systems
- • DDoS protection and rate limiting
- • Network segmentation and isolation
Monitoring & Detection
- • 24/7 security monitoring
- • Automated threat detection
- • Real-time alert systems
- • Regular security audits and penetration testing
6.2 Organizational Security Measures
Employee Training & Awareness
Regular security training for all employees, strict confidentiality agreements, background checks for personnel with data access, and ongoing awareness programs about phishing, social engineering, and security best practices.
Data Protection Policies
Comprehensive data protection policies and procedures, incident response plans, data breach notification protocols, privacy impact assessments for new features, and regular policy reviews and updates.
Vendor Management
Due diligence on third-party service providers, contractual data protection obligations, regular vendor security assessments, limited data sharing on need-to-know basis, and vendor compliance monitoring.
Compliance & Certifications
Adherence to industry security standards (ISO 27001, SOC 2), compliance with data protection regulations, regular security audits by independent third parties, and continuous improvement of security posture.
6.3 Your Responsibility for Security
While we implement robust security measures, you also play a critical role in protecting your account:
- Protect Credentials: Keep your login credentials confidential, use strong passwords, never share OTPs, and log out after sessions
- Secure Devices: Use updated antivirus software, enable firewalls, avoid public Wi-Fi for sensitive transactions, and keep systems patched
- Beware of Phishing: Verify sender authenticity, don't click suspicious links, report phishing attempts, and never provide credentials via email
- Report Incidents: Immediately notify us of suspected unauthorized access, unusual activity, or security concerns
6.4 Data Breach Response
In the unlikely event of a data breach that may affect your personal information:
Data Retention
7.1 Retention Principles
We retain your personal and business information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, enforce agreements, and maintain business records. Retention periods vary based on data type, legal requirements, and business needs.
7.2 Retention Periods by Data Category
Account & Registration Data
Active + 7 yearsRetained for the duration of your active account plus 7 years after account closure to comply with tax, accounting, and regulatory requirements.
Transaction & Commercial Records
7-10 yearsBooking records, invoices, payment history, B/L documents, and shipment data retained for 7-10 years as required by commercial laws, customs regulations, and tax authorities.
Communication Records
3-5 yearsEmail correspondence, chat logs, support tickets, and customer service interactions retained for 3-5 years for quality assurance, dispute resolution, and customer support continuity.
Usage & Technical Data
1-3 yearsAnalytics data, log files, session information, and technical metrics retained for 1-3 years for platform improvement, security monitoring, and performance analysis. May be anonymized after shorter periods.
Marketing Communications
Until opt-outMarketing preferences and communication history retained until you opt out or unsubscribe. Suppression lists (opt-outs) maintained indefinitely to honor your preferences.
Legal & Compliance Data
As legally requiredData required for ongoing legal proceedings, regulatory investigations, or compliance obligations retained for the duration of the matter plus applicable statute of limitations.
7.3 Data Deletion & Anonymization
When retention periods expire or data is no longer needed:
- Secure Deletion: Personal data is securely deleted or destroyed using industry-standard methods to prevent recovery
- Anonymization: Data may be anonymized or aggregated for statistical analysis, removing all personally identifiable information
- Archival: Some data may be archived in secure, offline storage for legal compliance before eventual deletion
- Backup Systems: Data in backup systems is deleted according to backup retention schedules (typically 90 days)
7.4 Extended Retention Circumstances
We may retain data beyond standard periods in specific circumstances:
Your Rights (India Data Protection)
Rights Under Indian Law
As a data subject under India's Digital Personal Data Protection Act, 2023 (DPDPA) and other applicable regulations, you have certain rights regarding your personal data. We are committed to facilitating the exercise of these rights in accordance with Indian law.
8.1 Access & Information Rights
Right to Access
You have the right to request access to your personal data we hold, including a summary of processing activities, categories of data collected, purposes of processing, data sources, and recipients of your data. We will provide this information in a commonly used electronic format.
Right to Information
You can request information about how we process your data, our data protection measures, retention periods, and third parties with whom we share your information. This Privacy Policy provides much of this information, but you may request additional details.
8.2 Correction & Completion Rights
Right to Correction
If you believe your personal data is inaccurate, incomplete, or outdated, you have the right to request correction or completion. You can update most information directly through your account dashboard or by contacting us.
We will verify your identity, review the requested changes, and update your data within a reasonable timeframe (typically 30 days). We may require supporting documentation for certain changes, especially to business registration or licensing information.
8.3 Erasure & Deletion Rights
Right to Erasure
You may request deletion of your personal data under certain circumstances, such as when it is no longer necessary for the purposes collected, you withdraw consent, or you object to processing. We will honor deletion requests subject to legal and contractual obligations.
Limitations on Deletion:
- • Data required for legal compliance (tax records, regulatory filings) cannot be deleted until retention periods expire
- • Transaction records involved in pending disputes, investigations, or legal proceedings must be preserved
- • Data necessary to establish, exercise, or defend legal claims may be retained
- • Anonymized or aggregated data that cannot identify you is not subject to deletion
- • Backup systems may retain data for up to 90 days before permanent deletion
8.4 Data Portability Rights
Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format (such as CSV or JSON). You may also request that we transmit your data directly to another service provider where technically feasible.