Privacy Policy

Last Updated: December 14, 2025

At The Digital Crafts, protecting your privacy isn't just a legal requirement—it's a core value. This Privacy Policy explains in simple terms how we collect, use, protect, and share your information when you visit our website or use our services.

We believe in transparency. If you have questions about anything in this policy, we're here to help. Simply reach out using the contact information at the bottom of this page.

By using our website, you agree to this Privacy Policy. If you don't agree, please don't use our services.

What Information We Collect

We only collect information that helps us serve you better. Here's what we gather:

Information You Share With Us

  • Contact Details: Your name, email, and phone number when you fill out forms or subscribe to our newsletter
  • Business Information: Company name, industry, project requirements, and budget when requesting quotes or services
  • Messages and Feedback: Any communications, questions, or feedback you send through our contact forms or email
  • Payment Information: Billing details are processed through PCI DSS compliant payment processors (such as Razorpay, PayPal, or Stripe). We never store complete credit card numbers or CVV codes on our servers. Payment processing is handled entirely by certified third-party payment gateways that meet international security standards.

Information Collected Automatically

  • Website Usage: Which pages you visit, how long you stay, what you click on, and how you navigate our site
  • Device and Browser Data: Your IP address, browser type, operating system, device type, and screen size
  • Location Data: General location (city/country level) based on your IP address
  • Cookies and Similar Tools: Small data files that remember your preferences and help us improve your experience

How We Use Your Information

Your information helps us provide excellent service. Here's exactly how we use it:

  • Deliver Your Services: Create, manage, and improve your digital marketing campaigns, websites, and other services you request
  • Communicate With You: Respond to questions, send project updates, provide support, and share important account information
  • Send Relevant Marketing: Share newsletters, tips, special offers, and service updates (you can unsubscribe anytime with one click)
  • Improve Our Services: Analyze how you use our website to fix bugs, add features, and make your experience better
  • Process Payments: Handle billing, invoices, and financial transactions securely
  • Prevent Fraud: Protect against spam, abuse, and security threats to keep you and our community safe
  • Comply With Laws: Meet legal obligations and respond to valid legal requests

Who We Share Your Information With

We never sell your personal information. Period. However, we do share it with trusted partners in specific situations:

  • Service Partners: Companies that help us deliver services like website hosting, email delivery, payment processing, and analytics tools. They can only use your data to help us serve you
  • Legal Obligations: Government authorities when required by law, court orders, or to protect legal rights
  • Business Changes: If we merge with or are acquired by another company, your information may transfer to the new owner (we'll notify you first)
  • With Your Permission: Other companies or services when you explicitly ask us to share your information
  • Anonymous Data: Aggregated statistics that don't identify you personally may be shared publicly or with partners

Cookies and Similar Technologies

Cookies are small text files that websites store on your device. We use them to make your experience better and understand how our site is used.

Types of Cookies We Use

  • Essential Cookies: Required for the website to function properly (e.g., remembering your login, shopping cart)
  • Performance Cookies: Help us understand how visitors use our site so we can improve it
  • Functionality Cookies: Remember your preferences and settings for a personalized experience
  • Marketing Cookies: Track your visits across websites to show relevant ads and measure campaign effectiveness

Your Cookie Choices

You can control cookies in several ways:

  • Browser Settings: Most browsers let you block or delete cookies. Check your browser's help section
  • Opt-Out Tools: Use tools like Network Advertising Initiative opt-out page or Google Ads Settings
  • Mobile Settings: Control advertising identifiers in your phone's privacy settings

Note: Blocking essential cookies may prevent some features from working properly.

How We Protect Your Information

We take security seriously and use industry-leading practices to keep your data safe:

  • Encryption: All data transferred between your browser and our servers is encrypted using SSL/TLS technology
  • Secure Storage: Your data is stored on secure servers with restricted access and regular backups
  • Regular Security Audits: We conduct vulnerability assessments and penetration testing to find and fix security gaps
  • Access Controls: Only authorized team members can access your data, and only when necessary for their job
  • Staff Training: Our team receives ongoing training on data protection and privacy best practices
  • Incident Response: We have protocols in place to quickly respond to any security breaches

Important: While we use strong security measures, no system is 100% secure. We continuously work to improve our security, but we can't guarantee absolute protection against all possible threats.

Your Privacy Rights

You're in control of your personal information. Here are your rights and how to exercise them:

  • Access Your Data: Request a copy of all personal information we have about you. We'll provide it within 30 days
  • Update or Correct: Request changes to inaccurate or incomplete information at any time
  • Delete Your Data: Ask us to delete your personal information (some data may need to be retained for legal reasons)
  • Stop Marketing Emails: Unsubscribe from promotional emails anytime using the link in every email
  • Download Your Data: Request a portable copy of your data to move to another service
  • Object to Processing: Ask us to stop using your data for certain purposes like marketing
  • Lodge a Complaint: Contact your local data protection authority if you have concerns

How to Exercise Your Rights: Simply email us at info@thedigitalcrafts.com with your request. We'll respond within 30 days.

Third-Party Links

Our website may contain links to third-party websites, plugins, and applications. Clicking on those links may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy practices.

We encourage you to review the privacy policies of any third-party sites you visit.

Data Retention

We only keep your information as long as necessary. Here's our approach:

  • Active Clients: We retain your data for the duration of our business relationship plus 7 years for legal and tax purposes
  • Marketing Contacts: We keep your email and contact details until you unsubscribe or request deletion
  • Website Visitors: Analytics and cookie data is typically retained for 26 months
  • Inactive Accounts: After 3 years of no activity, we may delete or anonymize your data

When we no longer need your data, we securely delete or anonymize it. You can request earlier deletion anytime by contacting us.

Children's Privacy

Our services are not directed to individuals under 18 years of age, and we do not knowingly collect personal information from children under 18.

If you're under 18, you may only use our services with the involvement and consent of a parent or legal guardian.

If you're a parent or guardian and believe your child has provided us with personal information without your consent, please contact us immediately at info@thedigitalcrafts.com. We'll delete such information promptly.

We comply with applicable children's privacy laws, including COPPA (Children's Online Privacy Protection Act) in the United States and similar regulations worldwide.

Changes to This Privacy Policy

We may update this Privacy Policy occasionally to reflect changes in our practices, technology, or legal requirements.

How We'll Notify You:

  • Update the “Last Updated” date at the top of this page
  • Send email notifications for significant changes to active clients
  • Display a prominent notice on our website for major updates

We encourage you to review this Privacy Policy periodically. Your continued use of our services after changes means you accept the updated policy.

International Users & GDPR Compliance

We serve clients globally, including in the European Economic Area (EEA) and United Kingdom. If you're located in these regions, you have additional rights under the General Data Protection Regulation (GDPR):

Legal Basis for Processing

  • Contract Performance: Processing necessary to deliver services you've requested and fulfill our contractual obligations
  • Legitimate Interests: Website analytics, fraud prevention, service improvement, and business operations
  • Consent: Marketing communications, non-essential cookies, and optional data processing
  • Legal Obligation: Tax records, financial reporting, regulatory compliance, and responding to legal requests

International Data Transfers

Your data may be processed in India and other countries where our service providers operate. We ensure adequate protection through:

  • Standard Contractual Clauses (SCCs): Approved by the European Commission for data transfers outside the EEA
  • Service Provider Agreements: Contracts requiring GDPR-equivalent protection measures
  • Regular Assessments: Ongoing compliance reviews of data transfer mechanisms and security practices
  • Data Minimization: We only transfer data that is necessary for service delivery

Additional GDPR Rights

  • Right to Restriction: Request limitation of processing in certain circumstances
  • Right to Data Portability: Receive your data in a structured, machine-readable format (JSON or CSV)
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Automated Decision-Making: We do not use automated decision-making or profiling that produces legal effects

EU Representative: As we grow, we will appoint an EU representative as required by GDPR Article 27 and update this policy with their contact details.

Indian Data Protection Compliance

As a business operating in India, we comply with the Digital Personal Data Protection Act (DPDPA), 2023 and the Information Technology Act, 2000. We are committed to protecting the data of Indian citizens and residents.

Grievance Officer

For any privacy concerns, complaints, or data protection queries:

  • Name: The Digital Crafts Team
  • Email: info@thedigitalcrafts.com
  • Response Time: We will acknowledge complaints within 24 hours and resolve them within 30 days as required by law
  • Escalation: If unsatisfied with our response, you may contact the Data Protection Board of India

Data Principal Rights Under Indian Law

Under the DPDPA, you have the right to:

  • Access and Correction: Obtain information about your personal data and request corrections to inaccurate or incomplete data
  • Erasure: Request deletion of your personal data (subject to legal retention requirements for financial records and compliance)
  • Grievance Redressal: File complaints regarding data processing through our Grievance Officer
  • Nomination Rights: Nominate another individual to exercise your rights in the event of death or incapacity
  • Withdrawal of Consent: Withdraw consent for data processing at any time (may affect service delivery)

Data Fiduciary Obligations

As a Data Fiduciary under Indian law, we:

  • Process personal data only for lawful purposes with valid consent or legal basis
  • Implement reasonable security safeguards to prevent data breaches
  • Ensure data accuracy and allow for corrections
  • Maintain transparency about data processing activities
  • Report significant data breaches to the Data Protection Board and affected individuals

Data Breach Notification

While we implement robust security measures, in the unlikely event of a data breach that affects your personal information, we have clear procedures in place:

Our Response Protocol

  • Immediate Action: Contain the breach, secure systems, and assess the extent of compromise
  • User Notification: Notify affected users via email within 72 hours of discovering the breach (as required by GDPR and DPDPA)
  • Authority Reporting: Inform relevant data protection authorities (Data Protection Board of India, EU supervisory authorities) as required by law
  • Clear Communication: Provide details about what data was affected, potential risks, and steps you should take to protect yourself
  • Remediation: Take immediate corrective action to prevent further breaches and enhance security measures
  • Support: Offer assistance and resources to affected individuals (such as credit monitoring if financial data is compromised)

What We'll Tell You

Breach notifications will include:

  • Description of the incident and timeline
  • Types of personal data affected
  • Number of affected individuals (if applicable)
  • Potential consequences and risks
  • Measures we've taken to address the breach
  • Recommended actions for affected individuals
  • Contact information for further questions

Prevention Focus: We continuously invest in security infrastructure, employee training, and regular audits to minimize the risk of data breaches.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please contact us:

Email

info@thedigitalcrafts.com

Phone

+91 82201 86924

Address

Bangalore, Karnataka, India

Your Privacy Matters

We are dedicated to maintaining the highest standards of privacy and data protection. Thank you for trusting The Digital Crafts with your information.