Privacy Policy
Your Privacy is Our Priority
We are committed to protecting your personal information and being transparent about how we collect, use, and safeguard your data. This policy explains our privacy practices in clear, simple terms.
Our Privacy Commitment
At Shringarvatika, we respect your privacy and are committed to protecting your personal data. We will never sell your information to third parties and only use your data to provide you with the best possible jewelry shopping experience.
π’ Data Controller Information
π Quick Navigation
1. Information We Collect
Personal Information You Provide
We collect information you voluntarily provide when you interact with our website and services:
| Information Type | Examples | Purpose |
|---|---|---|
| Contact Information | Name, email address, phone number | Account creation, order communication |
| Delivery Information | Shipping address, landmark details | Order delivery and logistics |
| Payment Information | Billing address (payment details handled by gateways) | Order processing and invoicing |
| Communication Data | WhatsApp messages, emails, reviews | Customer support and service improvement |
| Marketing Preferences | Newsletter subscriptions, communication preferences | Personalized marketing and updates |
Information We Collect Automatically
When you visit our website, we automatically collect certain technical information:
- Device Information: Browser type, operating system, device model
- Usage Data: Pages visited, time spent, click patterns
- Technical Data: IP address, referral URLs, access times
- Location Data: General location based on IP address (city/state level)
- Performance Data: Website loading times, error reports
2. How We Use Your Information
Primary Uses
We use your personal information for the following purposes:
- Order Processing: Fulfill orders, process payments, arrange delivery
- Customer Service: Respond to inquiries, resolve issues, provide support
- Account Management: Create and maintain user accounts, order history
- Communication: Send order updates, delivery notifications, important announcements
- Website Improvement: Analyze usage patterns to enhance user experience
- Security: Detect fraud, prevent unauthorized access, ensure platform security
- Legal Compliance: Meet regulatory requirements, maintain business records
Marketing Communications (With Consent)
With your consent, we may use your information for:
- Promotional emails about new collections and special offers
- Personalized product recommendations based on your preferences
- Exclusive discounts and early access to sales
- Jewelry care tips and styling advice
- Customer satisfaction surveys and feedback requests
3. Legal Basis for Processing
We process your personal data based on the following legal grounds under Indian data protection laws:
| Processing Activity | Legal Basis | Description |
|---|---|---|
| Order Processing & Delivery | Contract Performance | Necessary to fulfill our contractual obligations |
| Customer Support | Legitimate Interest | Providing quality customer service |
| Marketing Communications | Consent | With your explicit permission only |
| Website Analytics | Legitimate Interest | Improving website performance and user experience |
| Legal Compliance | Legal Obligation | Meeting regulatory requirements (GST, taxation) |
| Security & Fraud Prevention | Legitimate Interest | Protecting customers and business from fraud |
4. Information Sharing & Disclosure
When We Share Information
We may share your information with trusted third parties in these limited circumstances:
- Shipping Partners: BlueDart and Delhivery for package delivery (name, address, phone)
- Payment Processors: Razorpay and Cashfree for secure payment processing
- Technology Services: Website hosting, email services, analytics tools
- Customer Support: WhatsApp Business API for customer communication
- Legal Requirements: When required by law, court orders, or government requests
- Business Protection: To protect our rights, property, or safety of users
Third-Party Service Providers
All third-party service providers are carefully selected and bound by contractual obligations to protect your data and use it only for specified purposes.
| Service Provider | Purpose | Data Shared |
|---|---|---|
| BlueDart / Delhivery | Package Delivery | Name, address, phone number |
| Razorpay / Cashfree | Payment Processing | Order amount, billing information |
| WhatsApp Business | Customer Communication | Phone number, messages |
| Email Service Provider | Email Communications | Email address, name |
| Website Analytics | Usage Analysis | Anonymized usage data |
5. Data Security Measures
Technical Safeguards
- SSL Encryption: All data transmission is encrypted using SSL/TLS technology
- Secure Hosting: Data stored on secure, regularly monitored servers
- Access Controls: Limited access to personal data on need-to-know basis
- Regular Updates: Security patches and software updates applied promptly
- Firewall Protection: Network security measures to prevent unauthorized access
- Data Backups: Regular secure backups to prevent data loss
Administrative Safeguards
- Employee Training: Staff trained on privacy and security best practices
- Confidentiality Agreements: All team members bound by confidentiality obligations
- Incident Response: Procedures in place for security breach response
- Regular Audits: Periodic review of security measures and practices
Physical Safeguards
- Secure data centers with restricted physical access
- Environmental controls and monitoring systems
- Secure disposal of hardware containing sensitive data
6. Data Retention Policy
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, and resolve disputes.
| Data Type | Retention Period | Reason for Retention |
|---|---|---|
| Order Information | 7 years | GST compliance, warranty support |
| Customer Support Records | 3 years | Service improvement, dispute resolution |
| Marketing Consent Data | Until withdrawal | Honoring your preferences |
| Website Analytics | 26 months | Business intelligence, trend analysis |
| Account Information | 3 years after last activity | Account management, re-engagement |
| Payment Records | 7 years | Financial compliance, audit requirements |
Secure Data Deletion
When data retention periods expire, we securely delete or anonymize your personal information using industry-standard data destruction methods.
7. Your Privacy Rights
π― Your Data Rights
How to Exercise Your Rights
To exercise any of these rights, please contact us using the details below:
- Email: hello@shringarvatika.in with subject “Privacy Rights Request”
- WhatsApp: +91 6200238517 with your request details
- Response Time: We will respond within 30 days of receiving your request
- Identity Verification: We may require verification of your identity for security
Marketing Opt-Out
8. Cookies & Tracking Technologies
What Are Cookies?
Cookies are small text files stored on your device when you visit our website. They help us provide you with a better, more personalized experience.
Types of Cookies We Use
| Cookie Type | Purpose | Duration | Required |
|---|---|---|---|
| Essential Cookies | Website functionality, security, shopping cart | Session | Yes |
| Performance Cookies | Website analytics, usage statistics | 2 years | No |
| Functional Cookies | Remember preferences, language settings | 1 year | No |
| Marketing Cookies | Personalized advertising, social media | 1 year | No |
Cookie Management
You can control cookies through your browser settings:
- Accept All: Allow all cookies for the best experience
- Reject Optional: Only essential cookies for basic functionality
- Customize: Choose specific cookie categories
- Browser Settings: Manage cookies through browser preferences
9. Third-Party Services & Integrations
External Service Providers
We work with trusted third-party services to provide you with the best possible experience. Each service has its own privacy policy governing how they handle your data.
| Service | Purpose | Data Shared | Privacy Policy |
|---|---|---|---|
| Razorpay | Payment Processing | Payment information | razorpay.com/privacy |
| Cashfree | Payment Processing | Payment information | cashfree.com/privacy-policy |
| BlueDart | Shipping & Delivery | Name, address, phone | bluedart.com/privacy-policy |
| Delhivery | Shipping & Delivery | Name, address, phone | delhivery.com/privacy-policy |
| WhatsApp Business | Customer Support | Phone, messages | whatsapp.com/legal/privacy-policy |
| Google Analytics | Website Analytics | Usage data (anonymized) | policies.google.com/privacy |
Social Media Integration
Our website may include social media features (like sharing buttons). These features may collect your IP address and set cookies. These services are governed by the respective social media platforms’ privacy policies.
Third-Party Links
Our website may contain links to external websites. We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies.
10. International Data Transfers
Data Location
Your personal data is primarily stored and processed within India. However, some of our service providers may process data outside India with appropriate safeguards in place.
Safeguards for International Transfers
- Contractual clauses ensuring data protection standards
- Adequacy decisions by Indian data protection authorities
- Certification schemes and codes of conduct
- Regular monitoring of third-party compliance
11. Children’s Privacy Protection
Parental Rights
If you believe we have collected information from a child under 18, please contact us immediately. We will take steps to delete such information promptly.
What We Do If We Discover Child Data
- Immediately cease processing the information
- Delete the data from our systems
- Implement additional safeguards to prevent future collection
- Notify parents/guardians if contact information is available
12. Privacy Policy Updates
How We Handle Changes
We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
Notification of Changes
- Material Changes: Email notification to registered users
- Minor Updates: Website notification and updated effective date
- Advance Notice: 30 days notice for significant changes
- Continued Use: Using our services after changes constitutes acceptance
Your Options After Changes
If you disagree with changes to this policy, you may:
- Contact us to discuss your concerns
- Exercise your data rights (deletion, restriction, etc.)
- Discontinue use of our services
- Withdraw consent for marketing communications
13. Privacy Complaints & Data Protection Authority
Internal Complaint Process
If you have concerns about how we handle your personal data, please contact us first. We are committed to resolving privacy issues promptly and fairly.
External Complaint Options
If you are not satisfied with our response, you have the right to file a complaint with relevant data protection authorities or consumer protection agencies in India.
Email: hello@shringarvatika.in
Subject Line: “Privacy Concern – [Your Issue]”
Response Time: Within 7 business days
14. Consent Management
How We Obtain Consent
We obtain your consent through:
- Account Creation: Explicit agreement during registration
- Marketing Opt-in: Separate checkbox for promotional communications
- Cookie Consent: Cookie banner with granular options
- Order Placement: Implicit consent for order processing
Withdrawal of Consent
You can withdraw your consent at any time by:
- Clicking unsubscribe links in our emails
- Contacting our customer service
- Updating your account preferences
- Managing cookie settings in your browser
15. Data Breach Response
Our Commitment
In the unlikely event of a data breach that may pose a risk to your personal information, we will take immediate action to contain the breach and protect your data.
Breach Response Process
- Immediate Action: Contain and assess the breach within 24 hours
- Investigation: Determine scope, cause, and impact of the breach
- Notification: Inform affected users within 72 hours when legally required
- Remediation: Implement fixes and additional security measures
- Monitoring: Enhanced monitoring to prevent future incidents
What We’ll Tell You
If we need to notify you about a breach, we’ll include:
- Description of what happened and when
- Types of information involved
- Steps we’re taking to address the breach
- Recommended actions you can take
- Contact information for questions
π Privacy Questions or Concerns?
We’re here to help! If you have any questions about this privacy policy, how we handle your data, or want to exercise your privacy rights, please don’t hesitate to contact us. Your privacy is important to us, and we’re committed to addressing your concerns promptly.
