Privacy Policy (DPDP-Compliant)

The Privacy Policy describes how customer data is collected, stored, used, and protected in compliance with the Digital Personal Data Protection Act (DPDP Act), Government of India.

1.1 Data Collection

The company collects personal data including the customer's name, contact number, email address, shipping address, order history, payment identifiers, device details, browsing information, and communication logs. Data is collected for providing essential services, preventing fraud, improving customer experience, and fulfilling legal requirements.

1.2 Use of Customer Data

Customer data is used for processing orders, coordinating with courier partners, generating invoices, updating customers on delivery status, responding to enquiries, detecting fraudulent activity, and complying with taxation or regulatory obligations.

1.3 Data Retention and Deletion

Personal data related to orders will be retained for a minimum of five years or longer if required under applicable law. Payment-related information is retained only as allowed under RBI guidelines. Users may request deletion of their active account once all ongoing orders have been completed and return/refund windows have expired.

1.4 User Rights Under DPDP

Users have the right to withdraw consent, the right to request correction of inaccurate data, the right to access personal information held by the company, and the right to request deletion after completing all transactions. If a deletion request conflicts with ongoing legal or operational requirements, the request will be postponed accordingly.

If a user requests account deletion while an order is in progress, the deletion will be delayed until the order is delivered, the return period expires, and all payments are settled. If a customer asks for deletion of data that is part of an ongoing fraud investigation, the request will be temporarily rejected. If a minor attempts to create an account, it will be suspended immediately to comply with data protection laws.