Privacy Policy & Acceptable Use Policy for Coderstm
Last Updated: June 2026
Welcome to Coderstm. Coderstm (coderstm.com) ("Company," "we," "us," or "our") operates as an enterprise-grade software product developer, specializing in SaaS applications, source code products, white-label software, multi-tenant platforms, gym & fitness management systems, opt-in newsletter & subscriber management software, developer tools, admin dashboards, mobile applications, and custom website solutions. We are deeply committed to protecting your privacy and establishing clear guidelines for the legal and acceptable use of our software licenses, source codes, and services.
This Privacy Policy & Acceptable Use Policy ("Policy") explains how we collect, use, and protect your personal information when you purchase our digital products, visit our website, or interact with our services, as well as the rules governing your conduct when using our software products. This Policy is fully integrated into and forms an essential part of our primary Terms & Conditions, and is designed to work in conjunction with our Software License Agreement, Technical Support & Maintenance Policy, and Refund Policy. By purchasing a license, downloading the source code, or utilizing any of our products, you explicitly consent to the data practices and acceptable use terms outlined in this Policy.
1. Crucial Clarification: Self-Hosted Data and Sovereign Infrastructure
It is critical to distinguish Coderstm's licensing model from traditional cloud-hosted SaaS applications. Because most of our products are delivered as self-hosted, downloadable source code packages and digital assets:
- Zero Access to Your Operational Data: Coderstm does NOT host, store, process, or have access to any databases or customer data managed within your self-hosted installations. This includes, but is not limited to, gym member profiles, fitness tracking records, email list databases, newsletter campaign logs, subscriber opt-in histories, API credentials, or transaction records.
- Sovereign Infrastructure: All data generated by your customers, members, subscribers, or administrative staff remains exclusively on your own self-hosted servers, cloud hosting instances, local hardware, or third-party database systems.
- Data Controllership: Under global data protection regulations (including GDPR, CCPA, and UK GDPR), you (our Customer) act as the sole "Data Controller" and "Data Processor" for your end-users. You are fully responsible for establishing your own privacy policy, obtaining necessary consent, securing your servers, and complying with all local privacy laws.
2. Information We Collect (Website, Billing & Licensing)
While we do not access your operational databases, we must collect limited information to process transactions, manage license activations, prevent software piracy, and provide support:
- Personal and Billing Details: When you purchase a software license, we collect your name, company name, email address, physical billing address, IP address, and details of the specific product acquired.
- Secure Payment Processing (Razorpay & PayPal): We do not store or process credit card numbers, bank credentials, or full account details on our servers. All payments are securely routed and processed through our PCI-DSS compliant third-party payment gateways:
- Indian Customers: Payments are processed via Razorpay and are subject to Indian Goods and Services Tax (GST) and gateway processing fees.
- International Customers: Payments are processed securely via PayPal and are subject to applicable local digital service taxes, sales tax, or Value Added Tax (VAT).
- License Key Validation: To protect our intellectual property and prevent unauthorized redistribution, Coderstm products may periodically send basic licensing metadata (such as the generated license key, target installation domain, PHP/software version, and active host IP address) to our central licensing server to confirm compliance with your purchased tier (Regular vs. Extended).
- Support & Communications: When you contact our support desk at [email protected], we collect your name, email address, transaction history, and any logs, diagnostic data, or screenshots you voluntarily supply to help us troubleshoot your queries.
- Website Telemetry and Cookies: We utilize cookies, web beacons, and standard analytics tools (such as Google Analytics) to gather technical logs (IP address, browser type, referrer URLs, page activity) to evaluate website traffic and optimize our platform design.
3. How We Use Your Information
We process your personal data under the following lawful bases and for these specified purposes:
- Contractual Performance: Generating and delivering your unique license keys, supplying downloadable product files, and providing baseline customer support.
- Intellectual Property Protection: Validating license keys, auditing domains, and tracking software piracy to protect our company from unauthorized source code distribution.
- Statutory Tax and Audit Compliance: Maintaining accurate transaction records, processing statutory taxes (GST, VAT, local sales taxes), and generating invoices.
- Consent-Based Marketing: Sending product updates, major version releases, security advisories, and relevant promotional newsletters (which you can opt-out of at any time via the direct unsubscribe link).
4. Information Sharing & Third-Party Disclosure
Coderstm does not sell, rent, lease, or trade your personal information to third parties. We share data only with trusted service providers necessary to run our software business, including:
- Payment Gateways (Razorpay & PayPal): To securely authorize, process, and invoice all transaction fees.
- Cloud & Hosting Infrastructure: Secure cloud providers used to host our official website, developer portals, license validation databases, and ticketing software.
- Transactional Email Services: Providers used to deliver your license keys, invoices, and product download links instantly upon checkout.
- Legal and Regulatory Authorities: In rare cases where disclosure is mandatory to comply with Indian laws, tax regulations, court orders, or to protect our intellectual property from copyright violations.
5. Acceptable Use Policy (AUP) & Software Restrictions
To preserve our brand reputation and ensure our codebases are not used for malicious purposes, all Coderstm licensees must adhere to these strict Acceptable Use guidelines. The following activities are strictly prohibited and constitute a material breach of contract, resulting in immediate license termination without refund:
- Unsolicited Bulk Messaging & Spam Prohibitions: You may not use our opt-in newsletter & subscriber management software, APIs, or SaaS starter kits to send unsolicited bulk communications (spam), cold outreach, prospecting, or lead generation campaigns. The Software is designed exclusively for permission-based communications sent to subscribers who have explicitly given double opt-in consent. You may not process, import, or manage scraped, purchased, or harvested contact lists, and you must maintain strict compliance with global anti-spam regulations (such as CAN-SPAM, CASL, and GDPR).
- Malicious Code and Phishing: You may not integrate, embed, or utilize our software products to distribute malware, trojans, ransomware, spyware, or execute phishing campaigns and social engineering schemes.
- Illegal Operational Activities: You may not utilize our gym & fitness management software, CRM systems, automation tools, or websites to run illegal operations, manage illicit transactions, store illegal content, or facilitate any activity that violates local, state, national, or international laws.
- Reverse Engineering & Code Bypassing: You may not decrypt, modify, bypass, or reverse-engineer the integrated licensing validation files, domain checks, or software telemetry designed to verify license compliance.
- Copyright Notice Removal: You may not remove, obscure, or alter Coderstm's copyright notices, trademarks, or proprietary markings embedded in the source code files.
6. Data Security and Infrastructure Safeguards
We deploy robust, industry-standard security measures—including SSL/TLS encryption for all website communications, firewall protections, and strict role-based access controls—to safeguard your purchase records, license keys, and email history. However, please remember that securing the **self-hosted environment** where you install our source code (including configuring databases, Nginx/Apache servers, SSL certificates, API integrations, and daily data backups) is exclusively your responsibility.
7. Data Retention Policy
We retain your personal data (billing histories, license activations, support tickets) only as long as necessary to fulfill the purposes detailed in this Policy, or as required by statutory law:
- Billing & Invoices: Retained for a minimum of seven (7) years to comply with Indian tax and corporate audit regulations.
- License Key Data: Maintained perpetually or until the license is officially terminated or revoked, in order to confirm product ownership.
- Support Records: Archived to preserve historic bug resolutions and support threads, which can be deleted upon explicit customer request.
8. Your Global Privacy Rights (GDPR & CCPA Compliance)
Depending on your legal residence, you are entitled to specific global privacy rights regarding your purchase data, including:
- Right of Access: The right to request a full copy of the customer profile and transaction history we maintain.
- Right to Rectification: The right to correct or update inaccurate billing, contact, or profile information.
- Right to Erasure (Right to be Forgotten): The right to request that we delete your customer account and support records, subject to our statutory tax and license validation retention duties.
- Right to Data Portability: The right to receive your customer data in a standard, machine-readable digital format.
To exercise any of these rights, please submit an official request to our privacy team at [email protected].
9. Children's Privacy
Our website, digital products, and licensing services are designed strictly for developers, businesses, and individuals over the age of 18. We do not knowingly collect or solicit personal information from children. If we discover that we have inadvertently gathered data from a minor, we will delete it immediately.
10. Updates to this Policy
Coderstm reserves the right to modify, amend, or update this Policy at any time. Any changes will be published directly on this page with a revised "Last Updated" date. Your continued use of our products, websites, or services following the publication of changes constitutes your explicit acceptance of the updated terms.
11. Governing Law & Legal Jurisdiction
This Policy, our data practices, and the acceptable use terms are governed exclusively by, and shall be construed in accordance with, the laws of the Republic of India. Any legal dispute, claim, or action arising under this Policy must be brought solely and exclusively in the Barrackpore Sub-Divisional Court in North 24 Parganas, West Bengal, India.
12. Legal Contact Information
For any questions, privacy requests, or legal notices concerning this Policy, please contact us at:
