ServiceTiket Privacy Policy

Last Updated: 17 March 2025

1. About ServiceTiket

ServiceTiket, developed by Formobi Solutions, is a highly configurable SaaS platform designed for enterprise-grade Workflow Automation, Asset Lifecycle Management, and Service Operations. Trusted by global brands, it empowers organizations to:

  • Digitize complex workflows with real-time, data-rich insights.
  • Ensure full visibility and compliance across asset lifecycles.
  • Reduce operational costs through scalable automation.

Trusted by: Top ice cream brands, global consumer goods companies, leading coffee chains, large machine tool manufacturers, and office automation firms.

2. Scope & Roles

  • Enterprises (Data Controller): Configure workflows, onboard users, and govern data usage.
  • ServiceTiket (Data Processor): Processes data exclusively per enterprise instructions.

3. Data We Process

User Data

  • Name, email, phone number, job title, department, and role.

Workflow/Asset Data

  • Asset metadata (e.g., GPS location, maintenance logs), photos, timestamps, and device/browser information.

Sensitive Data

  • ServiceTiket does not store sensitive data. For eKYC (Electronic Know Your Customer) and e-Agreements, enterprises integrate with third-party providers of their choice (e.g., identity verification tools). ServiceTiket has no access to or control over this data.

4. Security & Compliance

ISO 27001 Certified: ServiceTiket employs enterprise-grade security measures, including:

  • Fortinet Web Application Firewall (WAF) and network firewalls for threat prevention.
  • End-to-end encryption (SSL/TLS in transit, AES-256 at rest).
  • Multi-Factor Authentication (MFA), role-based access controls, and audit logs.
  • Regular penetration testing and vulnerability scans.

Breach Response: Enterprises notified within 72 hours of incident detection.

5. Third-Party Services

ServiceProvidersData Shared
HostingAWS, Google CloudAll platform data
SMS/PushTwilio, FirebasePhone numbers, device tokens
SecurityFortinet, CloudflareNetwork traffic logs

Compliance: Subprocessors comply with GDPR/CCPA and use SCCs for cross-border data transfers.

6. Data Retention & Deletion

  • Retained while the enterprise account is active.
  • Permanently deleted within 30 days of contract termination.

7. User Rights

End-users must contact their enterprise (Data Controller) to:

  • Access, correct, or delete their data.
  • Opt out of location tracking or notifications.

8. Contact Us

For privacy inquiries or to exercise your rights:

  • Data Protection Officer (DPO): dpo@formobi.in
  • Registered Address:Formobi Solutions Pvt. Ltd. 91Springboard, Outer Ring Road (ORR), Mahadevapura, Bangalore - 560048, Karnataka, India.