Privacy Policy

We collect the following types of information when you use our website and services:

• Personal Information: Name, email address, phone number, business name, and billing address — provided when you fill out contact forms, register an account, or purchase our services.
• Project Information: Business requirements, project descriptions, design preferences, and any content or assets you share with us for project execution.
• Technical Data: IP address, browser type, device information, pages visited, and timestamps — collected automatically through server logs and analytics.
• Cookies: We use essential cookies for website functionality and analytics cookies (with your consent) to improve user experience. You can manage cookie preferences through your browser settings.
• Payment Information: When you make payments, transaction details are processed by our third-party payment gateway. We do not store your credit/debit card numbers on our servers.

Your personal data is used for the following lawful purposes:

• To provide, manage, and deliver our web development, design, and digital marketing services.
• To communicate with you regarding project updates, support requests, and service-related notifications.
• To process payments and generate invoices as required under the Goods and Services Tax (GST) framework.
• To improve our website, services, and user experience through anonymised analytics.
• To comply with legal obligations under Indian law, including the Information Technology Act, 2000 and the Digital Personal Data Protection Act, 2023.
• To send you promotional communications (only with your explicit opt-in consent), which you may unsubscribe from at any time.

We implement industry-standard security measures to protect your personal data:

• Encryption: All data transmitted between your browser and our servers is encrypted using TLS/SSL (HTTPS).
• Access Control: Only authorised personnel have access to personal data, and all access is logged.
• Secure Hosting: Our servers are hosted on secure, industry-standard cloud infrastructure with regular security patches and monitoring.
• Password Protection: User passwords are hashed using bcrypt and are never stored in plaintext.
• Data Retention: We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy, or as required by applicable Indian law. Project-related data is retained for a minimum of 3 years for legal and business continuity purposes.

As a data principal under the Digital Personal Data Protection Act, 2023 (DPDP Act), you have the following rights:

• Right to Access: You may request a summary of your personal data that we hold and the processing activities carried out on it.
• Right to Correction: You may request correction of any inaccurate or incomplete personal data.
• Right to Erasure: You may request deletion of your personal data, subject to our legal retention obligations.
• Right to Grievance Redressal: You may raise concerns about our data processing activities with our Grievance Officer (details below).
• Right to Nominate: You may nominate another individual to exercise your rights in the event of your death or incapacity.
• Right to Withdraw Consent: Where processing is based on your consent, you may withdraw it at any time. Withdrawal will not affect the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, please contact us at contact@venturerize.com. We will respond within 30 days of receiving your request.

We do not sell your personal data to third parties. We may share your information only in the following circumstances:

• Service Providers: With trusted third-party vendors who assist us in operating our website, processing payments, or delivering services (e.g., payment gateways, hosting providers, email services). These providers are contractually bound to protect your data.
• Legal Compliance: When required by law, court order, or governmental authority under Indian jurisdiction, including requests from the Data Protection Board of India.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of the transaction, with prior notice to you.
• With Your Consent: For any other purpose, only with your explicit consent.

This Privacy Policy is governed by and construed in accordance with the laws of the Republic of India, including but not limited to:

• The Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.
• The Digital Personal Data Protection Act, 2023 (DPDP Act) and any rules notified thereunder.
• The Indian Contract Act, 1872 to the extent applicable.
• The Consumer Protection Act, 2019 and the Consumer Protection (E-Commerce) Rules, 2020.

Any disputes arising out of or in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the courts in Bengaluru (Bangalore), Karnataka, India.

Our services are not directed to individuals under the age of 18 years. We do not knowingly collect personal data from children. If you are a parent or guardian and believe that your child has provided us with personal data, please contact us immediately at contact@venturerize.com, and we will take steps to delete such information.

As required under Section 9 of the DPDP Act, 2023, processing of personal data of children shall only be done with verifiable consent from a parent or lawful guardian.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes:

• We will update the "Last Updated" date at the top of this page.
• For significant changes, we will notify you via email or a prominent notice on our website.
• Continued use of our website and services after changes constitutes acceptance of the updated policy.

We encourage you to review this policy periodically.