Confidential Dispatch

Is your housing society’s gate app violating your privacy?

At a glance

Not automatically — a gate app like MyGate or NoBrokerHood is legal, but only within limits. Under India’s DPDP Act your society can collect what entry and security genuinely need, must tell people why, and must delete logs once the purpose is over. It crosses the line when it over-collects — mandating a visitor’s phone number it doesn’t need, quietly surveilling domestic workers, or hoarding entry data indefinitely. You can question and refuse the excess.

Educational resource only. This explains how housing-society gate apps are treated under India’s Digital Personal Data Protection Act, 2023 (DPDP Act); it is not formal legal advice.

On this page

The situation

Your society switched to a gate app, and now every visitor, delivery, and domestic worker is logged, photographed, and phone-verified before the gate opens. It’s convenient — and it’s also a detailed record of who comes and goes, sitting on an app’s servers and your management committee’s dashboard. Residents across cities have reported a jump in spam calls after their numbers went into these systems, which is exactly the kind of question worth asking: how much of this collection is actually needed?

Who’s actually responsible for the data?

Your society — its management committee or Resident Welfare Association (RWA) — is the Data Fiduciary: it decides what gets collected, so the legal responsibility sits with it, not just the app. When your society chooses a gate app and sets what it captures, it’s the one determining the purpose and means of collection. That makes it a Data Fiduciary under the DPDP Act, with duties to residents, visitors, and workers alike. The app vendor largely acts as its data processor — handling data on the society’s instructions — though where the vendor reuses data for its own purposes, it takes on fiduciary duties of its own too.

Why this matters: if the collection is excessive or the data leaks, “the app does it” isn’t an answer. Your society is accountable for what it set up.

What can the app and society legally collect?

Only what entry and security genuinely require — and a visitor’s phone number often isn’t part of that. The DPDP Act ties collection to a stated purpose: the society must give a clear notice of why it’s collecting (Section 5), and collection is limited to what that purpose needs (Section 6). A gate’s purpose is verifying and authorising entry — a resident approving a named visitor can achieve that without the visitor’s mobile number, photo, and vehicle details all being mandatory.

That’s not just theory: MyGate itself no longer requires a visitor to hand over a mobile number to be let in. Where a society still mandates extra fields “at the society’s discretion,” the DPDP test is whether each field is necessary for entry — not whether the app can capture it.

  • Reasonable: a resident approving a visitor; a log the society genuinely needs for security.
  • Questionable: forcing every visitor’s phone number, photographing delivery staff, or capturing more than authorising entry requires.

Can they track and rate domestic workers?

Domestic workers are data principals too — their movements and “ratings” are their personal data, and the same consent and minimisation limits apply. Gate apps often log workers’ entry and exit through the day and let residents rate them, frequently without the worker’s real understanding of what’s collected or how it’s used. The power imbalance doesn’t change the law: a worker’s attendance trail and any rating about them is personal data, and collecting it needs a clear purpose, notice, and a lawful basis — not just the society’s convenience.

For a resident, the practical point is that your society’s setup carries obligations to the people it monitors, and an over-broad worker-surveillance system is a fair thing to raise at a residents’ meeting.

How long is your entry data kept — and can you delete it?

Only as long as the security purpose lasts — indefinite logs aren’t allowed, and you can ask for deletion. Under the DPDP Act a Data Fiduciary must keep data secure and erase it once its purpose is served (Section 8). Entry logs from months ago, with no live security reason, shouldn’t just accumulate. MyGate, for instance, deletes visitor logs after 180 days, and a visitor who gave their details at the gate can have them removed by request.

If you or a visitor want data removed, you can ask — and if the society or app stalls, the erasure right is yours to press.

What you can do about it

Ask what’s collected and why, push back on the unnecessary, and use your management committee as the lever.

  1. Ask for the notice. What does the gate capture — numbers, photos, vehicle, worker movements — and for what stated purpose? A system nobody can explain is the flag.
  2. Decline unnecessary fields. If a visitor’s number isn’t needed for entry, it shouldn’t be mandatory; raise it.
  3. Raise worker surveillance. Over-broad tracking or rating of domestic staff is a legitimate concern to put to the committee.
  4. Ask for deletion. You or a visitor can request that entry data be deleted once there’s no purpose for it.
  5. Escalate if ignored. Your society is the Data Fiduciary — raise a grievance with it, and you can complain to the Data Protection Board of India if over-collection or hoarding continues.

FAQ

Is MyGate or NoBrokerHood illegal under the DPDP Act? No — the apps aren’t illegal. What matters is how your society configures them: collecting only what entry needs, with notice and a real purpose, is fine; over-collecting and hoarding isn’t.

Does a visitor have to give their phone number to enter? Often not. If a resident can approve a named visitor without it, the number isn’t necessary for entry — and MyGate no longer mandates it at the gate.

Who is responsible if the gate data leaks — the app or the society? Your society — its management committee or RWA — is the Data Fiduciary because it decides what’s collected, so it’s accountable; the app acts largely as its processor. Responsibility doesn’t disappear into “the app.”

Can I get my entry or visitor data deleted? Yes. Data should be erased once its purpose is over, and you can request deletion — MyGate, for example, auto-deletes visitor logs after 180 days and allows earlier removal on request.

Can the society track my domestic help all day? Only for a genuine, stated purpose with a lawful basis — workers are data principals with the same protections. Blanket surveillance and hidden ratings are exactly what minimisation and consent limits push back on.

Reviewed by Confidential Dispatch Editorial Team

Last updated 14 July 2026

Not legal advice.