01Who we are
PowerLaunch is operated by MYCG AI TECH PRIVATE LIMITED, a company incorporated in India. When this policy says "we," "us," or "PowerLaunch," it means MYCG AI TECH PRIVATE LIMITED. When it says "you," it means anyone who visits our website, contacts us, or uses our services.
Our registered address is Myscape Sanctuary, Kondapur, Hyderabad, Telangana 500049, India. You can reach us by email at contact@powerlaunch.solutions or on WhatsApp at +91 70936 54545.
This policy explains how we handle your personal data. It applies to information you give us through our website, WhatsApp, email, phone calls, video calls, or any other interaction.
02What we collect
The information we collect depends on which of our services you use. Broadly, the data falls into the following categories:
Information you give us directly
- Contact details: name, email address, phone number, WhatsApp number, country of residence.
- Identity documents: passport copy, government-issued photo ID, date of birth, nationality. These are required for US LLC formation, EIN application, and US bank account opening, all of which legally require identity verification.
- Address information: your residential address, business address, registered agent address.
- Business information: proposed LLC name, state of formation, business activity, ownership structure, anticipated revenue range, business model details.
- Tax information: for clients using our tax services, we collect SSN or ITIN where applicable, EIN, prior US tax filings, transaction details required for Form 5472 and pro forma 1120 preparation.
- Banking documentation: bank statements, utility bills, or other proof-of-address documents required by US banking partners (Mercury, Wise, Relay, etc.).
- Payment information: we do not store full credit card details. Payments are processed by Razorpay (in India) and Stripe (internationally), who handle payment data under their own PCI-compliant systems. We retain only payment confirmation, transaction reference, and amount.
- Communications: the content of your WhatsApp messages, emails, support tickets, and call recordings (where you have given consent).
Information collected automatically
- Website usage data: IP address, browser type, device type, pages visited, time spent on pages, referring URL, country (derived from IP).
- Cookies and similar technologies: see Section 10 for details on which cookies we use.
Information from third parties
- Payment processors: Razorpay and Stripe send us transaction confirmations after you pay for services.
- Government registries: we receive your LLC formation confirmation from US Secretaries of State, EIN confirmation from the IRS, and BOI report confirmation from FinCEN. These confirmations contain identifying information about you and your LLC.
- Banking partners: Mercury, Wise, Relay and similar US banking partners may share account-opening status updates with us during the application process.
03How we use your information
We use your personal data for the following purposes:
- To deliver the service you've engaged us for: filing your LLC formation, applying for your EIN, supporting your US bank account application, preparing your tax filings, providing strategy and compliance consultations.
- To communicate with you: responding to your queries, sending status updates on your filings, providing compliance reminders, sharing relevant tax or regulatory updates.
- To process payments: generating invoices, recording payments, issuing receipts, processing refunds where applicable.
- To meet our legal obligations: identity verification under US KYC/AML rules, FinCEN BOI compliance, IRS reporting requirements, Indian DPDP Act 2023 obligations, GST and tax filings in India.
- To improve our service: analysing aggregate website usage to improve our content and conversion paths. This use is based on aggregated, non-identifying data.
- To prevent fraud and protect our business: verifying that you are who you say you are, that the business activity you describe is genuine, and that the engagement does not violate any applicable law.
- To send marketing communications: only with your explicit consent, and only on channels you've opted in to. You can withdraw consent at any time.
04Legal basis for processing
Under the Indian Digital Personal Data Protection Act 2023, the EU GDPR (where it applies), and similar privacy frameworks, we process your data on one of these legal bases:
- Contract: we need your data to provide the services you've engaged us for. Without it, we literally cannot file your LLC, get your EIN, or prepare your tax returns.
- Legal obligation: certain data must be collected and reported under US, Indian, or EU law (KYC/AML, BOI, tax reporting).
- Consent: for marketing communications and for any optional data we collect, we ask for and rely on your explicit consent.
- Legitimate interest: for fraud prevention, service improvement, and basic website analytics, we rely on our legitimate interest in operating the business safely and improving the service. You have the right to object to this processing.
05Who we share your information with
We share your data only when necessary to deliver the service or to meet a legal obligation. The categories of recipients are:
| Recipient |
Why we share |
What's shared |
| US Secretary of State (Delaware, Wyoming, etc.) |
To file your LLC |
LLC name, registered agent details, member information |
| Internal Revenue Service (IRS) |
EIN application, tax filings |
Form SS-4, Form 5472, pro forma 1120, identity information |
| FinCEN |
BOI (Beneficial Ownership Information) report |
Identifying information of beneficial owners |
| US registered agents |
Required US presence for the LLC |
LLC details, contact information |
| US banking partners (Mercury, Wise, Relay) |
Bank account opening, only when you authorise it |
Identity documents, LLC details, address verification |
| Razorpay, Stripe |
Payment processing |
Transaction details, payer information (handled by them under PCI standards) |
| Tax professionals (US-licensed) |
Where you've engaged us for tax services that require licensed review |
Information necessary to prepare and review filings, under confidentiality agreement |
| Cloud infrastructure providers |
Storage, communication, document delivery (Google Workspace, AiSensy for WhatsApp) |
Whatever data is necessary to operate the service |
| Indian regulatory authorities |
Where required by law (e.g., income tax, GST) |
Information required by the specific authority |
We do not sell your personal data. We do not share your information with advertisers, data brokers, or any third party for their independent commercial benefit.
06International data transfers
Because our service inherently involves the United States and India, your data is necessarily transferred between countries. Specifically:
- Your identity and business information is sent to US Secretaries of State, the IRS, FinCEN, and US-based banking partners. This is required to deliver the service.
- Some of our cloud infrastructure providers store data in servers outside India. We use providers with appropriate security and data protection commitments.
- For users in the European Economic Area or United Kingdom, we ensure that international transfers are protected by Standard Contractual Clauses or equivalent mechanisms recognised under GDPR.
By engaging our services, you understand and agree that your data will be transferred to the United States and other jurisdictions as necessary to deliver the service.
07How long we keep your data
We retain your personal data only for as long as we have a legitimate reason to keep it. Different categories have different retention periods:
- Active client records: for the duration of your engagement, plus 7 years after termination, to meet US tax record retention rules and Indian Companies Act and Income Tax Act retention requirements.
- Communications (email, WhatsApp, support tickets): 3 years after the last interaction, unless tied to an active engagement.
- Marketing data: until you withdraw consent or 2 years of inactivity, whichever is earlier.
- Website analytics: aggregated and anonymised after 26 months.
- Payment records: 7 years (Indian Income Tax Act).
- Identity documents (passport, ID): 7 years after engagement ends, then deleted unless specifically retained under tax records above.
If you would like us to delete data earlier than the above retention periods, you can request this. We will assess each request individually against our legal obligations. In some cases (for example, completed tax filings), legal record-retention rules require us to keep the data even if you ask for deletion.
08How we protect your data
We take data security seriously because the consequences of a breach in this category (passport copies, banking documents, tax records) are severe for our clients. Our security practices include:
- Encryption of data in transit (TLS 1.2 or higher) and at rest where we control the storage layer.
- Access controls: only employees with a specific business need can access client data, and access is logged.
- Multi-factor authentication on all internal systems that handle client data.
- Confidentiality agreements with all employees and contractors.
- Vendor risk assessment for any third-party processor we use.
- Regular security reviews and incident response procedures.
If we ever discover a personal data breach that affects you, we will notify you within 72 hours of becoming aware of it, in accordance with the Indian DPDP Act 2023 and GDPR where applicable.
09Your rights
Depending on where you live, you have the following rights regarding your personal data. We honour these rights for all users globally, regardless of jurisdiction:
- Right to access: request a copy of the personal data we hold about you.
- Right to correction: ask us to correct inaccurate or incomplete information.
- Right to deletion: ask us to delete your data, subject to legal record-retention requirements.
- Right to restrict processing: ask us to stop using your data for specific purposes.
- Right to data portability: ask for your data in a machine-readable format that you can take to another provider.
- Right to withdraw consent: if we are processing data based on your consent, you can withdraw that consent at any time. This does not affect lawfulness of past processing.
- Right to object: object to processing based on legitimate interest, including for marketing purposes.
- Right to lodge a complaint: you can complain to the Data Protection Board of India, your local data protection authority (in the EU/UK), or any equivalent regulator.
To exercise any of these rights, email us at contact@powerlaunch.solutions with the subject line "Data Rights Request." We will respond within 30 days.
10Cookies and tracking
Our website uses cookies and similar technologies. Some are essential, others are optional and only used with your consent.
Essential cookies (always active)
- Session cookies that allow the site to function correctly during your visit.
- Security cookies that protect against cross-site request forgery and similar threats.
Analytics cookies (with consent)
- Google Analytics 4: measures website traffic, popular pages, and conversion paths. Configured with IP anonymisation.
- Microsoft Clarity: records anonymised session replays to help us improve the user experience.
Advertising cookies (with consent)
- Google Ads conversion tracking: allows us to measure which ad campaigns drive enquiries.
- Meta (Facebook) Pixel: measures conversions from our Meta ad campaigns.
- Google remarketing: shows you relevant ads on other websites if you've visited ours.
You can control non-essential cookies through your browser settings or our cookie consent banner (where applicable). Blocking all cookies will prevent the site from functioning properly.
11WhatsApp and messaging
WhatsApp is our primary client communication channel. By initiating contact with us on WhatsApp or providing your number through our forms, you agree that we may contact you on WhatsApp for service-related communications.
We use AiSensy as our WhatsApp Business API provider. AiSensy processes your messages and number on our behalf under a data processing agreement. Standard WhatsApp end-to-end encryption applies to one-to-one conversations.
Promotional WhatsApp messages are sent only with your specific opt-in consent and you can opt out at any time by replying STOP or messaging us asking to be removed from marketing lists. Service-related messages (status updates, compliance reminders, document deliveries) continue regardless of marketing opt-out, since they are necessary to deliver the engagement you've contracted us for.
12Children
Our services are intended for adults engaged in business formation. We do not knowingly collect personal data from anyone under the age of 18. If you believe a child has provided us personal data, please contact us and we will delete it.
13Changes to this policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top will reflect the date of the most recent change. For material changes that affect how we use your data, we will notify you by email or WhatsApp at least 30 days before the change takes effect, unless the change is required by law to take effect immediately.
Continuing to use our services after a Privacy Policy change constitutes acceptance of the updated policy.
For any privacy-related question, concern, or rights request, contact our Data Protection Officer:
A note on plain English
We've written this policy in plain English on purpose. Most privacy policies are unreadable, which means most users don't actually know what they're agreeing to. We think that's the wrong way to handle something this important. If anything in here is unclear, email us. We will rewrite it.