bd@techypharma.com

Terms of Use (Techy Pharma LLP)

Effective date: 17 Dec 2025

Company: Techy Pharma LLP (the "Company", "we", "us", "our")

Website: TechyPharma.com (the "Site")

Services: Techy Pharma software products and related offerings (collectively, the "Services"), including modules such as eSignature, CTMS, QMS, eTMF/ETMS, training management, and other solutions we provide.

1) Acceptance of these Terms

By accessing or using the Site or any public-facing content, you agree to these Terms of Use ("Terms"). If you do not agree, do not use the Site.

If you use Techy Pharma Services under a separate written agreement (e.g., a Master Services Agreement, SaaS Agreement, Order Form, DPA, BAA) (the "Customer Agreement"), then the Customer Agreement governs your use of the Services, and these Terms govern only the Site and any parts not covered by the Customer Agreement.

2) Who may use the Site

You represent that you are legally able to enter into these Terms. If you use the Site on behalf of a company, you represent you have authority to bind that company.

3) Updates to the Terms

We may update these Terms from time to time. The "Effective date" will change when we do. Continued use of the Site after an update means you accept the updated Terms.

4) Site content and permitted use

The Site includes text, graphics, software descriptions, demos, documentation, blog posts, and other materials ("Content").

You may view and use the Site for your internal business evaluation and lawful purposes. You must not:

  • copy, modify, distribute, sell, or lease the Content (except as expressly allowed);
  • reverse engineer or attempt to extract source code from the Site (except where permitted by law);
  • interfere with the Site's security or operation;
  • use scraping, bots, or automated collection without our permission.

5) Accounts, demos, and trial access (if offered)

If we provide trial environments, demos, or sandbox access:

  • you are responsible for maintaining confidentiality of your credentials;
  • you must not upload sensitive personal data unless explicitly agreed and supported by the applicable environment;
  • we may suspend or end trial access if we detect misuse, security risk, or policy violations.

6) Regulatory and compliance context

TechyPharma builds products used in regulated environments and may support compliance frameworks such as 21 CFR Part 11, EU Annex 11, GAMP 5, ISO 27001/27701, and applicable privacy laws.

However, compliance depends on how each customer configures and uses the Services, and customer responsibilities (including validation, SOPs, training, and access controls) are typically defined in the Customer Agreement and related documentation.

7) Intellectual property

TechyPharma and its licensors own all rights in the Site and Content, including trademarks, logos, product names, and design elements. No rights are granted to you except the limited right to use the Site under these Terms.

8) Feedback

If you send ideas, suggestions, or feedback, you grant us a worldwide, royalty-free right to use and incorporate it into our products and services without obligation to you.

9) Third-party links and services

The Site may contain links to third-party websites or tools. We do not control them and are not responsible for their content or practices. Your use of third-party services is at your own risk and subject to their terms.

10) Disclaimers

THE SITE AND CONTENT ARE PROVIDED "AS IS" AND "AS AVAILABLE." TO THE MAXIMUM EXTENT PERMITTED BY LAW, WE DISCLAIM ALL WARRANTIES, INCLUDING IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.

We do not warrant that the Site will be uninterrupted, error-free, or free of harmful components.

11) Limitation of liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, TECHYPHARMA WILL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR FOR LOSS OF PROFITS, REVENUE, DATA, OR BUSINESS OPPORTUNITY, ARISING OUT OF OR RELATED TO YOUR USE OF THE SITE.

If liability cannot be excluded, it will be limited to the minimum amount permitted by law.

12) Indemnity

You agree to defend and indemnify TechyPharma from claims arising from your misuse of the Site, violation of these Terms, or infringement of any third-party rights.

13) Suspension and termination

We may suspend or terminate your access to the Site if we reasonably believe you have violated these Terms or pose a security or legal risk.

14) Governing law and venue

These Terms are governed by the laws of India (State: Gujarat), without regard to conflict of laws principles. Courts located in Ahmedabad, Gujarat will have exclusive jurisdiction, unless applicable law requires otherwise.

Questions about these Terms: bd@techypharma.com

Cookie Notice (Techy Pharma LLP)

Effective date: 01 Jan 2026

This Cookie Notice explains how Techy Pharma LLP ("TechyPharma", "we", "us") uses cookies and similar technologies on TechyPharma.com (the "Site").

What are cookies?

Cookies are small text files stored on your device when you visit a website. Similar technologies include pixels, tags, SDKs, and local storage. These technologies help websites function, remember preferences, measure performance, and improve user experience.

Why we use cookies

We use cookies to:

  • operate the Site reliably and securely
  • understand how visitors interact with Site pages and content
  • improve Site performance and diagnose errors
  • measure the effectiveness of campaigns (where applicable)
  • remember your preferences (e.g., region/language)

Types of cookies we use

A) Strictly Necessary Cookies

These cookies are required for core Site operation (e.g., security features, load balancing, session management). They cannot be disabled through preference tools where used.

B) Performance & Analytics Cookies

These help us understand how the Site is used (e.g., page visits, time on page, navigation patterns, error events) so we can improve the Site.

C) Functional Cookies

These remember your selections and provide enhanced features (e.g., saved preferences, smoother form completion).

D) Advertising / Targeting Cookies (if enabled)

If we enable advertising/targeting cookies, they are used to measure ad performance and show relevant content. Where required by law, we will provide controls to accept/reject these cookies.

Your choices and controls

You can control cookies in several ways:

  • Cookie banner / preferences tool: If enabled, you can accept or reject non-essential cookies.
  • Browser settings: You can block or delete cookies using your browser controls. Blocking some cookies may impact Site functionality.
  • Do Not Track: Some browsers send a "Do Not Track" signal. Whether and how we respond may depend on legal requirements and our available controls.

Cookie retention

Cookies may be: Session cookies (deleted when you close your browser), or Persistent cookies (remain until they expire or you delete them). Retention depends on the cookie's purpose.

Updates to this Cookie Notice

We may update this Cookie Notice from time to time. The "Effective date" will reflect the latest version.

Questions about cookies or privacy: bd@techypharma.com

Data Processing Addendum (DPA)

TechyPharma provides software used by pharmaceutical companies, CROs, and regulated teams. When customers use TechyPharma products, Techy Pharma LLP may process personal data on behalf of the customer. A Data Processing Addendum (DPA) sets the terms for that processing.

To request our DPA, email: bd@techypharma.com

Roles: Controller vs Processor

Depending on the relationship and applicable law: The Customer is typically the Controller (or "Business") and determines the purposes and means of processing. Techy Pharma LLP is typically the Processor (or "Service Provider") and processes personal data only on documented instructions from the Customer, as described in the Customer contract and DPA.

What data is covered

The DPA generally covers Customer Data processed in TechyPharma Services, which may include:

  • user account details (name, email, username/ID)
  • roles/permissions and authentication/security logs
  • audit trail events (who did what, when) and workflow metadata
  • training records, electronic signature events, and compliance-relevant metadata (where modules support it)
  • documents and attachments uploaded to the Services (customer-controlled content)

What the DPA typically includes (high level)

Our DPA includes commitments such as:

  • processing Customer Data only on Customer instructions and to deliver the Services
  • confidentiality obligations for authorized personnel
  • appropriate technical and organizational security measures
  • subprocessors bound by written agreements with equivalent protections
  • assistance with data subject requests (where applicable and feasible)
  • breach notification procedures (as defined in the DPA/contract)
  • return or deletion of Customer Data at contract end (as agreed)
  • transfer safeguards for cross-border processing where required

Subprocessors

TechyPharma may use vetted subprocessors (e.g., hosting, monitoring, email delivery, customer support tooling) to provide the Services. Customers may request the current subprocessor list and our notification approach for material subprocessor changes (where applicable). Request via: bd@techypharma.com

International transfers

If Customer Data is processed in countries other than the Customer's location, TechyPharma will use appropriate safeguards required by applicable law (typically via contractual protections).

How to request the DPA

Email bd@techypharma.com with:

  • company name
  • primary contact
  • product(s) in scope
  • regions in scope (e.g., India / EU / UK / US)

We will share the current DPA for signature.

Security (Techy Pharma LLP)

Techy Pharma LLP builds software used by pharmaceutical and CRO teams where confidentiality, data integrity, and inspection readiness matter. Our security program is designed to protect the confidentiality, integrity, and availability of our systems and Customer Data across our product modules (including eSignature, CTMS, QMS, ETMS/eTMF, training management, and related solutions).

Note: Specific features and controls can vary by product/module and deployment model, and may be further defined by contract (SaaS Agreement/MSA/DPA/SLA).

A) Governance & security management

  • defined security and operational responsibilities across engineering and operations
  • documented policies and procedures (access control, incident response, vendor management, secure development, change control)
  • risk-based security planning aligned to customer expectations and regulated environments

B) Compliance alignment for regulated use

TechyPharma products are designed to support customer compliance programs, including: 21 CFR Part 11 (electronic records and electronic signatures), EU Annex 11, GAMP 5 (supporting validated operation), alignment with privacy/security best practices (including concepts consistent with ISO 27001/27701, where applicable).

Customer responsibility note: Compliance depends on customer configuration, SOPs, validation approach, training, and intended use.

C) Data protection and privacy by design

  • data minimization principles for web and product operations
  • access limitation using least privilege concepts
  • logical separation and controls appropriate to the delivery model

D) Identity & access management

  • authentication controls designed to protect account access
  • role-based access controls (RBAC) where supported
  • administrative tools for managing users and permissions (module dependent)

E) Encryption & key management

  • encryption in transit using industry-standard protocols (e.g., TLS)
  • encryption at rest where appropriate to the environment and deployment model
  • controlled access to cryptographic material with operational safeguards

F) Audit trail and traceability

For regulated workflows, auditability is a priority. Where supported by the module:

  • audit trails capturing key actions and events (who/what/when) and relevant metadata
  • integrity-focused controls intended to reduce tampering risk
  • reporting/export options to support review and inspections

G) Secure development lifecycle (SDLC)

  • secure coding practices and peer review expectations
  • security testing activities integrated into release processes
  • controlled change management and release practices (including documentation and rollback planning where applicable)
  • vulnerability management: identification, prioritization, remediation tracking, and verification

H) Infrastructure & operations security

  • system monitoring and logging to detect anomalies
  • baseline hardening practices and secure configuration
  • backup and restore processes aligned to business continuity needs (commitments may be described in the SLA, if applicable)

I) Incident response

We maintain an incident response process designed to:

  • detect, triage, and contain security events
  • investigate, remediate, and document outcomes
  • notify customers in accordance with contractual and legal requirements
  • conduct lessons-learned reviews to improve controls

J) Shared responsibility model (customer responsibilities)

Security is shared. Customers are responsible for:

  • provisioning and reviewing user access
  • configuring roles/permissions to match regulated responsibilities
  • defining and executing SOPs and validation activities
  • classifying data and controlling what is uploaded
  • protecting customer-managed devices and endpoints

Security contact

For security questions, documentation requests, or to report a concern: bd@techypharma.com

Governing law (site policy alignment): For Site terms and policy interpretation where applicable: India — Ahmedabad jurisdiction (as specified in relevant terms/agreements).