Re: New Notice - Vehicle Sticker Replacement Drive – Enhancing Security & Management

[Amarkant Kumar]

Dear Association,

This query is with reference to the “Society Notice: Vehicle Sticker Replacement Drive – Enhancing Security & Management” dated 10 June 2026, 16:09.

Thank you for sharing the details regarding the new QR-enabled vehicle sticker initiative for improving society security and administration. I would appreciate clarification on a few important data privacy, security, and legal compliance aspects before resident and vehicle information is onboarded into QR based system:

1. Which company/vendor is providing the QR and application-based vehicle tracking solution, and what security/privacy compliance standards do they follow?

2. What specific resident and vehicle data will be collected, stored, or processed through this system? Does it include any personally identifiable information (PII)?

3. Will any resident or vehicle-related data be shared with third-party companies/vendors, advertisers or external platforms in any form?

4. In the event of a data breach, unauthorized access, misuse, or leakage of resident/vehicle data, who will be responsible — the Association or technology vendor?

5. What safeguards, access controls, retention policies, and audit mechanisms are in place to ensure that only authorized personnel can access resident data?

Additionally, it would be helpful if the Association could share:

• The vendor’s privacy policy and terms of service, details regarding data hosting/storage location.

• Whether explicit resident consent will be obtained before onboarding data into the platform

Considering increasing concerns around digital privacy, surveillance, and misuse of personal data, clarity on these points would help better understand the security, legal, and compliance framework behind this initiative before scheduled Vehicle Sticker Replacement Drive.

Thank you for your time and support. Looking forward to your clarification.

Regards,
Amarkant Kumar

CONFIDENTIALITY NOTICE: The contents of this email message and any attachments are intended solely for the addressee(s) and may contain confidential and/or privileged information and may be legally protected from disclosure. If you are not the intended recipient of this message or their agent, or if this message has been addressed to you in error, please immediately alert the sender by reply email and then delete this message and any attachments. If you are not the intended recipient, you are hereby notified that any use, dissemination, copying, or storage of this message or its attachments is strictly prohibited.

On Wed, 10 Jun 2026 at 16:09, Sobha Dream Acres Palm Springs <nor...@mygateapp.in> wrote:

Society Notice : Vehicle Sticker Replacement Drive – Enhancing Security & Management Dear Residents, Good Day! This is to formally inform all residents about the upcoming replacement of vehicle stickers for cars and two-wheelers within our community. After careful evaluation, the Association Committee has decided to introduce a new sticker system to improve security, tracking, and administrative efficiency. Reasons for Replacing the Existing Stickers 1. Enhanced Security Requirements We have observed a few instances where individuals continued to possess society vehicle stickers even after vacating the premises. In some cases, the old stickers were not properly removed, creating potential security concerns. 2. Long Overdue Replacement The current stickers have been in use for more than five years and are due for replacement. 3. Manual Tracking Challenges The existing system relies heavily on manual tracking, which limits effective monitoring and administration. 4. Exhausted Sticker Inventory The stock of the existing stickers has been fully utilized, requiring a fresh print cycle in any case. Benefits of the New Sticker System 1. QR Code Enabled Each sticker will contain a unique QR code for improved identification and verification. 2. Application-Based Tracking Vehicle records can be managed and tracked efficiently through a dedicated application. 3. Better Administrative Control o Vehicle information will remain secure and accessible only to authorized personnel. o Stickers can be activated or deactivated instantly when required, ensuring proper control over access. 4. Future-Ready Integration o The system is API-enabled and can be integrated with platforms such as MyGate and other community management applications. 5. Improved Security o The new solution significantly enhances the overall security and monitoring capabilities of the community. Distribution Schedule The distribution of the new vehicle stickers will commence from this weekend onwards. A detailed schedule and process will be shared separately. We request all residents to extend their cooperation to ensure a smooth and successful implementation. We appreciate your understanding and support in this initiative. Should you have any questions, concerns, or suggestions, please feel free to reach out to us. We will make every effort to address all queries promptly. Thank you for your cooperation and continued support in making our community safer and better managed. Thank You Security Management Committee Disclaimer: This is an official notice sent by Sobha Dream Acres Palm Springs society admin Download App

Click here to unsubscribe

[Amarkant Kumar]

Hi Uma,

Thank you for sharing  your background as a Post Graduate Diploma holder in Cyber Law and Cyber Forensics, and I respect your expertise in this area. However, my queries were not regarding your qualifications. My concerns are specifically related to the Association notice titled “Society Notice: Vehicle Sticker Replacement Drive – Enhancing Security & Management” dated 10 June 2026, 16:09.

I believe my queries regarding the subject matter may have been misunderstood. Therefore, I would like to reiterate them as below and seek constructive clarification. I would appreciate clarification on the following important data privacy, security, and legal compliance aspects:

1. Which company/vendor is providing the QR and application-based vehicle tracking solution, and what security/privacy compliance standards do they follow?

1. What specific resident and vehicle data will be collected, stored, or processed through this system? Does it include any Personally Identifiable Information (PII)?

2. Will any resident or vehicle-related data be shared with third-party companies/vendors, advertisers, or external platforms in any form?

3. In the event of a data breach, unauthorized access, misuse, or leakage of resident/vehicle data, who will be responsible — the Association or the technology vendor?

1. What safeguards, access controls, retention policies, and audit mechanisms are in place to ensure that only authorized personnel can access resident data?

Additionally, it would be helpful if the Association could share:

• The vendor’s privacy policy and terms of service

• Details regarding data hosting/storage location

• Whether explicit resident consent will be obtained before onboarding data into the platform

Considering the increasing concerns around digital privacy, surveillance, and misuse of personal data, clarity on these points would help residents better understand the security, legal, and compliance framework behind this initiative before the scheduled Vehicle Sticker Replacement Drive.

Looking forward to your clarification.

NOTE: In the absence of the requested clarification and supporting details, I will consider the process to lack adequate transparency and informed consent. Accordingly, I should not be held liable for any penalties, restrictions, or adverse actions imposed by the Association in relation to non-participation in this initiative.

Further, any collection, storage, or processing of my or my family member's personal data — including but not limited to my name, vehicle details, contact information, or other personally identifiable information (PII) — without my explicit prior consent will be considered a breach of trust and privacy.

Regards,
Amarkant Kumar, Owner - 53033.

CONFIDENTIALITY NOTICE: The contents of this email message and any attachments are intended solely for the addressee(s) and may contain confidential and/or privileged information and may be legally protected from disclosure. If you are not the intended recipient of this message or their agent, or if this message has been addressed to you in error, please immediately alert the sender by reply email and then delete this message and any attachments. If you are not the intended recipient, you are hereby notified that any use, dissemination, copying, or storage of this message or its attachments is strictly prohibited.

On Mon, 15 Jun 2026 at 18:56, SDA Palm Springs Association <sda.palmsprin...@gmail.com> wrote:

Hi Amarkant,

I would encourage you to visit their website, where they have clearly outlined their privacy policy and anti-spam measures. Constructive feedback is always valuable; however, it is important to evaluate the available information objectively before drawing conclusions. Dismissing documented facts while criticizing something that appears logically justified may not lead to a fair assessment.

Additionally, as a Post Graduate Diploma holder in Cyber Law and Cyber Forensics, I take matters related to privacy, security, and data protection very seriously. Therefore, I make it a point to review such aspects carefully before forming an opinion or making any recommendations.

https://www.qrmycar.in/

Thank You,

Uma Dayal

Get Outlook for Mac

[Umang Gupta]

Hi Dear Uma / Association Members, 

• QRMYcar.in is a domain Name registered almost a year ago. 
• In 1 Year - their own website mentions only 1000+  Active users approx
• This seems more like a Parking / Contact Resolution method and less like a security management
• On the surface : this looks like a startup solving a parking / contact problem which a society like ours does not have at large. 

I quickly reviewed QRMyCar’s Terms & Conditions and Privacy Policy as available on the website . 

While the service may be useful for parking/contact issues, there are several privacy and accountability concerns that should be clarified before residents are asked to submit personal and vehicle information.
QRMyCar’s own terms state that, in the housing society model, the society uploads resident and vehicle information, the society acts as the data controller, and the society is responsible for obtaining resident consent. 

This means our association may be responsible for ensuring lawful collection, consent, correction, deletion, and protection of resident data and I am not sure what prompts the association to carry this burden of data management on an ongoing basis. 

Before implementation, I request that the association pause any mandatory data collection and obtain written clarification on the following from the vendor team and share with the residents as it's not clear and especially because the vendor seems to view "Society" as data controllers.

1. What exact resident and vehicle fields will be collected?
2. Who inside the society can view this data: guards, admins, committee, all residents, or vendor staff?
3. Is access role-based, and are access logs/audit trails available?
4. What security safeguards are used, including encryption, admin controls, breach alerts, and backup protection?
5. Which third-party service providers receive the data, including hosting, WhatsApp, email, analytics, or support tools?
6. What is the deletion process if a resident opts out, sells a vehicle, moves out, or the society stops using the service?
7. Can residents directly request correction/deletion, or must everything go through the association?
8. Is there a signed Data Processing Agreement between the association and QRMyCar?
9. What is QRMyCar’s registered legal entity name, CIN/GST, registered address, grievance/privacy contact, and liability/indemnity position in case of data misuse or breach?
10. What controls exist to prevent anonymous QR scans from being used for harassment or spam?
11. Is participation voluntary, and will residents who do not consent have an alternative parking identification process?

Lastly

• I can see they mentioned 250 / Qr Code - Now even if we got a hefty discount as a society paying money for a QR Code sticker on my Car does not seem to have much value. 
• We will probably have 1000 stickers only in phase 3 - can you please specify what amount are we spending on this exercise and what benefits are we seeking from it

Until these answers are available in writing, I request that resident vehicle data not be uploaded to any third-party platform and that residents are not treated as having consented by default.

This is not an objection to improving vehicle management. It is a request to handle resident personal data carefully, wilfuly and transparently before onboarding an external vendor.

Thanks

Umang

--
You received this message because you are subscribed to the Google Groups "SDA Owner Wing 48" group.
To unsubscribe from this group and stop receiving emails from it, send an email to sda-owner-wing...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/sda-owner-wing-48/CAB6XpGR7tMQvZJ89dXOEAVfM0E_LoedbxMeYRh1XgznutFXR_w%40mail.gmail.com.

[Mohit Kumar]

Hi team,

This company does not have any security certifications which is core pillar of building trust. Example ISO certifications/ SOC2 etc. 

For example i below are the data privacy details of mygate. Do we have similar for this startup.   

https://mygate.com/data-privacy/

This is my first email and normally i don't get into these discussions but i believe data privacy is very critical for me so we need to evaluate well.

Regards,

Mohit

You received this message because you are subscribed to the Google Groups "SDA Wing 53 Owners" group.
To unsubscribe from this group and stop receiving emails from it, send an email to sda-wing-53-own...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/sda-wing-53-owners/CALABq9oPPYzdvyDQDDzTwNGrE8Z1GG0yqu%3DrmxRGMqgxkzAzQA%40mail.gmail.com.

[SDA Palm Springs Association]

Hi All,

Whoever is having concern related to Sticker and their privacy terms , please come to the association room by tomorrow 11:30 AM to discuss all your concerns. 

I understand the concerns, but any written document is the digital evidence even that is communicated over the any mode of communication and also only our Admin got all the access to make the entry hence we are not sharing any information to them directly.

Thank You,

Uma Dayal

Get Outlook for Mac

[Amarkant Kumar]

Dear Association,

Sorry for the inconvenience. Due to some personal commitments, I am currently unavailable for any discussion.

Further, verbal discussions generally do not ensure proper accountability or an official record. Therefore, for better clarity, transparency, and accountability, I would appreciate it if the details could kindly be shared over email or in any written/digital form for record purposes.

Otherwise, my concerns and points mentioned in the previous email may please be considered as stated.

Thank you for your understanding.

Regards,
Amarkant Kumar

CONFIDENTIALITY NOTICE: The contents of this email message and any attachments are intended solely for the addressee(s) and may contain confidential and/or privileged information and may be legally protected from disclosure. If you are not the intended recipient of this message or their agent, or if this message has been addressed to you in error, please immediately alert the sender by reply email and then delete this message and any attachments. If you are not the intended recipient, you are hereby notified that any use, dissemination, copying, or storage of this message or its attachments is strictly prohibited.​

[Mohit Kumar]

Team,

1. When we evaluate any vendor tool even for our company the first team that IT team requires is certifications and this means whether they have been audited and certified by external body or not. Without this the IT team wont allow. You can check in your prospective company.  

2. Sure the admin team is entering the details but where is this data stored? Is this on prem on society infra or in cloud thats accessed by the startup. If on prem thats fine but if its on startup server thats mean it has to be regulated well and anyone can access it via backdoor.

The information what they are going to have will have our PII and this raises a serious concern. I have seen enough of startup world so i know how these operates.

My simple question for you guys is if they have certifications then i am okay to proceed otherwise i am not.  I expect the certification answer here in this mail for record. 

To view this discussion visit https://groups.google.com/d/msgid/sda-wing-53-owners/CAB6XpGRJw%3DP422XcdY2f4U_sZdrWRdewWyesBPSjSpBOnrDEBA%40mail.gmail.com.

[Nitin Sachan]

Hi  Association Team, 

First of all, thank you for taking this initiative. I am very glad to see the  Committee taking steps to improve our community's safety. I fully support this decision and urge you to stick with it, as managing vehicle identification is a critical security matter.

I am aware that we have had past incidents related to vehicle stickers, including cases where individuals who vacated the premises still possessed them. Upgrading this system is genuinely required to prevent unauthorized access and potential security issues, and I hope we can implement this fix as soon as possible.

That being said, like many other residents, I do not yet have complete information regarding the personal data security aspects of the new platform. My request is that the Association treats data privacy as a top priority. Please look into the suggestions and concerns shared by other residents in this thread and address them transparently.

Thank you for your hard work and commitment to making our community safer. Please proceed with this initiative while ensuring our data remains secure.

Nitin K. Sachan
8971303123

You received this message because you are subscribed to the Google Groups "SDA Owner Wing 54" group.

To unsubscribe from this group and stop receiving emails from it, send an email to sda-owner-wing...@googlegroups.com.

To view this discussion visit https://groups.google.com/d/msgid/sda-owner-wing-54/CAF%2B-4eoApeKoKiOj3OSL0YAGvLZ1TR-LYa3PktBBZ%3DdYJ_yxyg%40mail.gmail.com.

[Rishikesh Kumar]

Hi,

Regarding the discussion on vehicle sticker incidents, I am aware that we have had past cases where individuals who have vacated the premises still possessed active stickers but what is the number here of such incidents?  While upgrading the system to prevent unauthorized access is a valid security consideration, I believe we need to weigh this against our data privacy concerns.

In my view, the core conflict lies between the risk of data misuse and the actual threat of THIS SPECIFIC KIND OF unauthorized entry. The number of such incidents is likely quite small, and since these individuals are former residents—not unknown external parties—the security risk may not be significant enough to justify putting our data at stake.

Given that there are other more pressing issues to address, I believe we should reconsider whether this specific use case warrants the potential privacy risks.

Regards,

Rishikesh Kumar

To view this discussion visit https://groups.google.com/d/msgid/sda-wing-53-owners/CAK%3DQEdp3Mm%2BwE5DyyFXJQq95Zdmf99OGi9ZPD-1_7b954ujiPQ%40mail.gmail.com.

[Nandeesh Gunaki]

Hello Association,

Thank you for sharing the NDA.

Section 11 limits QRMyCar's liability to the fees paid by the Society during the preceding 12 months. However, the platform processes residents' personal data, and the DPDP Act provides for penalties of from ₹10k to  ₹250 crore for certain violations. 

Attaching the reference to DPDP act India.

Could you please clarify why the vendor's liability is restricted to only 12 months' fees instead of requiring compliance and accountability in line with applicable laws, including the DPDP Act?

Kindly share the agreement and also security assessment certificate possessed by vendor.

What is the alternate if I dont want to give consent?

Regards,

Nandeesh 

To view this discussion visit https://groups.google.com/d/msgid/sda-owner-wing-48/CA%2BPcZR9sPgJhHRUTxsFJP_X%3DgOsDyp-KCcq_PahQO8MGbOT0Gw%40mail.gmail.com.