Mahindra & Mahindra, having its registered office at Gateway Building, Apollo Bunder, Mumbai, Maharashtra, India, 400001 (“We” “Us” “Our” “CHARGE_IN” “Mahindra”) is committed to protecting the privacy and security of Your Personal Data.
This Privacy Policy (“Policy”) explains how we collect, receive, store, share, handle and use Your Personal Data for the purpose of Your participation and consumption of services offered by our EV charging application Charge_iN by Mahindra (the “App”) and related services (collectively, the “Services”).
This Policy also describes Your rights regarding Your Personal Data and how You can exercise them.
This Policy shall be referred and read in conjunction with Terms and Conditions of the App. Before using App, you are advised to carefully review this Privacy Policy including the Terms and Conditions and Return and Refund Policy of the App. If You do not agree with the terms of this Policy or Terms and Conditions, please do not access the App.
The scope of this Policy applies to the products and/or services provided by Us, through the App, across all regions and territories where Our offerings are made available and applies to Users who request these products and/or services in those regions and territories.
When you interact with our App, we may collect the following Personal Data from you directly:
We collect the following Personal Data from you directly for your registration:
When you contact customer support or submit a service-related query, we may collect additional Personal Data that you may choose to provide in your query or request in order to effectively address your query or request.
Login Credentials
We collect limited contact details which are provided by you to provide personalized assistance during emergency conditions. The sharing of these contact details with us for required assistance during an emergency is purely at your discretion.
Name of contact person to whom you intend the SOS message to be sent Mobile number of such contact person
When You opt to use certain optional features such as Profile Setup, and Social Media Integration, Mahindra may request access to limited categories of Your personal data, strictly with Your consent, in order to enable the effective functioning of these features:
The tools may collect the following information about you and how you are interacting with our App:
Electronic information is generally non-identifying in nature, but to process such usage information and to make it feasible for our legitimate business interests like promoting system security and stability, allowing for error and performance analysis, and serving internal statistical needs, we may associate the usage information with other information collected from you and such combination may be treated as your Personal Data.
The App contains some pages that are hosted and served by third parties. In this case, Mahindra is not responsible for the privacy policies/notices/statements or the content of such Third-Party/Software or Services even if you accessed the third-party website using links from our App.
If you provide your Personal Data to any third-party website, then the use of your Personal Data is governed by their privacy policies. This Policy applies to our App only. This means that when you use such features, the collection, use, storage, and further processing of your information are governed by the terms and policies of those third parties, over which Mahindra has no control. We encourage you to be aware when you leave our App and to read the privacy policies of other Third-Party Software Applications that may collect your Personal Data
Communications you send to us, feedback, survey responses. - Information from third parties (such as partners, payment providers, vehicle OEMs) in accordance with applicable law.
We collect Your Personal Data for the following purposes:
We use Your Personal Data only if We have a lawful basis for doing so. In case, We wish to use Your Personal Data for purposes other than the lawful basis uses, We shall seek specific Consent from You in a separate process prior to Processing Your Personal Data for such additional purposes.
We will only process Your Personal Data when there is a lawful basis to do so. This may include one or more of the following:
We ensure that your data is processed fairly, transparently, and only when necessary for clearly defined purposes.
We may share Your Personal Data with third parties where necessary for the purposes set out in this Policy. Such sharing will only occur with recipients who have a legitimate need to access Your data, and only under Our instructions and for no other purpose. The categories of recipients include:
Our businesses around the world are supported by different teams and functions, and Personal Data will be made available to them if necessary, for the provision of product and/or services, account administration, sales and marketing, customer and technical support, and business and product development. All Our employees and contractors are required to follow Our data protection and security policies when handling Personal Data. Your Personal Data might also have to be shared in the event of a merger, sale, restructure, acquisition, joint venture, assignment, transfer, or other disposition of all or any portion of Our business, assets, or stock (including in connection with any bankruptcy or similar proceedings).
Your Personal Data is securely stored on cloud servers located in India. In limited circumstances, authorized third-party technical support personnel based in India may access Your data solely for the purpose of resolving technical issues or maintaining system functionality. Any such access is strictly controlled, audited, and governed by robust contractual obligations, including the implementation of Standard Contractual Clauses (SCCs) or equivalent safeguards, to ensure Your data remains protected in accordance with Applicable Data Protection Laws.
Occasionally, to provide Our services, it is necessary to collaborate with external service providers (trusted third-party vendors, contractors, payment processors, cloud hosting providers, charging network operators, OEMs, fleet operators and analytics partners to perform services on our behalf.). These external service providers shall process Your Personal Data on our behalf subject to appropriate safeguards only insofar as it is necessary for them to provide their services to Us. Our prior authorization is required before they are permitted to transfer responsibility for Processing Personal Data to a third-party. We may share Your Personal Data with Our channel partners/service partners/third-party entities for the purpose of completing the transaction or establishing the relationship.
We only share Your Personal Data with recipients that have an adequate level of data protection by implementing appropriate technical and organizational security measures such as executing Standard Contractual Clauses, or We take measures to ensure that all recipients provide an adequate level of data protection as prescribed by applicable law. We do not sell Your Personal Data to anyone.
We will share Your Personal Data when required for the following purposes:
You shall notify us of any changes to Your Personal Data provided to us under this Policy via the avenues set out in the Policy so that we may properly process the Personal Data for the purpose for which it has been collected.
We implement appropriate technical and organizational measures in relation to the information and Personal Data that is processed by Us. We take reasonable measures to protect all Personal Data from unauthorised Processing or accidental disclosure, acquisition, sharing, alteration, misuse, destruction or loss or unauthorised access and modification that compromises the confidentiality, integrity, and availability of such data.
You too have an important role in protecting Your Personal Data. You should not share Your User identity, password or other authentication data provided to You with anyone. If You have any reason to believe that Your User identity or password has been compromised, please contact Us immediately in the manner set out in this Policy.
To the extent permitted by law, you have the following rights: - Right to access, review, and request a copy of your personal data. - Right to correct or update inaccurate or incomplete information. - Right to withdraw consent (where processing is based on consent). - Right to request deletion of your data. - Right to restrict or object to certain processing activities. - Right to data portability, where applicable.
You can exercise these rights by contacting us.
We will retain your Personal Data which We have collected for as long as We reasonably consider it necessary for achieving the abovementioned purposes and as is permissible under applicable law. This is determined on a case-to-case basis.
We will delete Your Personal Data whenever You request Us to do so. However, We may archive and/or retain Your Personal Data for as long as there are statutory retention obligations or potential legal claims that are not yet time barred.
We do not knowingly collect or solicit Personal Data from minors. Our services are not designed for any person who is under 18 years (or 16 years of age in sone jurisdictions) of age, and We do not knowingly permit such persons to register for the services. So, if You are under 18/16(subject to applicability), please do not attempt to register for the services or send any Personal Data about yourself to Us. Further, We do not undertake tracking and behavioural monitoring of children or targeted advertising directed to minors.
If We learn that We have collected Personal Data from a minor without verified parental Consent, We will erase such Personal Data.
If you believe that a child under 18/16(subject to applicability) years may have provided Us their Personal Data, please contact Us using the contact details provided in paragraph 11.
If You have questions or comments regarding this Policy or want to exercise any of Your rights or express Your grievances regarding the Processing of Your Personal Data, please contact Us using the contact details given below:
If You have any grievances against Our Processing of Your Personal Data, You may lodge your grievance with the Grievance Officer/ Data Protection Officer as per details provided in paragraph 11 above.
We reserve the right to change this Policy at Our sole discretion at any time. Any material changes to this Policy will be posted on this page. We encourage You to review this Policy regularly for such changes. The updated Policy will take effect immediately upon posting.
This Policy was last updated as of 05 November 2025.
We use cookies, pixels, beacons, and similar technologies to: - Recognize you when you return to our Services. - Understand your preferences and improve the user experience. - Analyze traffic patterns, usage trends, and measure effectiveness of campaigns.
You may disable cookies in your browser or device settings, but certain features of the Services may not function properly as a result.
Governing Law: This Privacy Policy shall be governed by and construed in accordance with the laws of India. Any disputes arising hereunder shall be subject to the exclusive jurisdiction of the courts in Mumbai, India.
15.1 Login into the App, open left panel and click on “View Profile”
15.2 Under Profile, click on “Edit Profile”
15.3 3 Click on the button “Delete Profile”
For the purposes of this notice, the following terms are defined as follows:
Applicable Data Protection Law refers to the data protection and privacy regulations that govern the collection, use, and management of Personal Data based on the relevant jurisdiction. This may include local, national, or international laws depending on where the User or Processing activities are located
Any information relating to an identified or identifiable natural person (‘User’). An identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier such as a name, identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Any operation or set of operations performed on Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
A natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the Processing of Personal Data.
A natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller.
A natural or legal person, public authority, agency or body other than the User, Controller, Processor, and persons who, under the direct authority of the Controller or Processor, are authorised to process Personal Data.
Any freely given, specific, informed and unambiguous indication of the User’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the Processing of Personal Data relating to them.
If applicable to your jurisdiction a Data protection Authority is referred as an independent public body responsible for overseeing compliance with data protection laws within a specific jurisdiction. It has the power to investigate complaints, issue guidance, and enforce data protection obligations