Privacy Policy

Last updated: January 2025

This Privacy Policy describes how Dcrayons Consultancy Private Limited collects, uses, and shares your personal information when you use our services. We are committed to protecting your privacy and ensuring the security of your personal data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the Information Technology Act, 2000.

1. Data Controller Information

Dcrayons Consultancy Private Limited is the data controller responsible for your personal data. We are committed to protecting and respecting your privacy in accordance with applicable data protection laws.

Contact Details: Dcrayons Consultancy Private Limited, 12th Floor, Unit 1204, Gopal Heights, Netaji Subhash Place, Delhi 110034, India. Email: privacy@dcrayons.app

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide when using our services, including: Personal identification information (name, email address, phone number, postal address); Account credentials (username, password); Payment and billing information (credit card details, billing address); Business information (company name, job title, industry); Communication preferences and marketing consents; Content you submit (feedback, reviews, support requests); Information provided through forms, surveys, or contests.

2.2 Information Collected Automatically

When you access our website or services, we automatically collect certain information, including: Device information (IP address, browser type, operating system, device identifiers); Usage data (pages visited, time spent, click patterns, referring URLs); Location data (country, city, approximate geographic location); Cookies and similar tracking technologies data; Log files and server data.

2.3 Information from Third Parties

We may receive information about you from third parties, including: Social media platforms when you connect your accounts; Business partners and service providers; Marketing and advertising partners; Public databases and data aggregators; Credit reference agencies for payment verification.

3. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

Contractual Necessity: Processing necessary for the performance of a contract with you or to take steps at your request before entering into a contract.

Legitimate Interests: Processing necessary for our legitimate business interests, such as improving our services, marketing, fraud prevention, and network security, provided these interests are not overridden by your rights.

Legal Obligation: Processing necessary for compliance with legal obligations to which we are subject.

Consent: Where you have given clear consent for us to process your personal data for specific purposes, such as marketing communications.

4. How We Use Your Information

We use your personal information for the following purposes: Providing and managing our services and your account; Processing transactions and sending related information; Responding to your inquiries and providing customer support; Sending administrative information, updates, and security alerts; Personalizing your experience and delivering relevant content; Conducting analytics and research to improve our services; Marketing and promotional communications (with your consent); Preventing fraud and enhancing security; Complying with legal obligations and enforcing our terms.

5. Data Sharing and Disclosure

We may share your personal information with the following categories of recipients:

Service Providers: Third-party vendors who perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, customer service, and marketing assistance.

Business Partners: Trusted partners with whom we collaborate to offer joint services or promotions.

Legal Requirements: Government authorities, law enforcement, or other third parties when required by law or to protect our rights and safety.

Business Transfers: In connection with any merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction.

With Your Consent: We may share your information with other third parties when you have given us your explicit consent to do so.

6. International Data Transfers

Your personal data may be transferred to and processed in countries outside your country of residence, including countries that may not provide the same level of data protection as your home country. When we transfer personal data internationally, we implement appropriate safeguards to ensure your data remains protected, including: Standard Contractual Clauses approved by the European Commission; Binding Corporate Rules for intra-group transfers; Certification mechanisms such as Privacy Shield (where applicable); Your explicit consent for specific transfers.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. The retention period may vary depending on the context of the processing and our legal obligations.

For determining the appropriate retention period, we consider: The amount, nature, and sensitivity of the personal data; The potential risk of harm from unauthorized use or disclosure; The purposes for which we process your data; Whether we can achieve those purposes through other means; Applicable legal, regulatory, tax, accounting, or other requirements.

8. Your Rights Under GDPR

If you are located in the European Economic Area (EEA) or UK, you have the following rights regarding your personal data:

Right to Access: You have the right to request copies of your personal data and information about how we process it.

Right to Rectification: You have the right to request correction of inaccurate personal data or completion of incomplete data.

Right to Erasure: You have the right to request deletion of your personal data in certain circumstances (also known as the "right to be forgotten").

Right to Restriction: You have the right to request restriction of processing of your personal data in certain circumstances.

Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, machine-readable format and transmit it to another controller.

Right to Object: You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw your consent at any time.

Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority if you believe your rights have been violated.

To exercise any of these rights, please contact us at privacy@dcrayons.app. We will respond to your request within 30 days.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information about your interactions with our website. Cookies are small text files placed on your device that help us provide and improve our services.

Types of cookies we use: Essential Cookies - necessary for the website to function properly; Performance Cookies - help us understand how visitors interact with our website; Functional Cookies - enable personalized features and preferences; Marketing Cookies - used to deliver relevant advertisements and track campaign effectiveness.

You can control cookies through your browser settings. However, disabling certain cookies may affect the functionality of our website. For more information, please see our Cookie Policy.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include: Encryption of data in transit and at rest using industry-standard protocols; Regular security assessments and penetration testing; Access controls and authentication mechanisms; Employee training on data protection and security; Incident response procedures for potential data breaches; Regular backups and disaster recovery planning.

While we strive to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to promptly addressing any security incidents.

11. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information promptly. If you believe we have collected information from a child, please contact us immediately.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website with a new "Last updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Dcrayons Consultancy Private Limited

Data Protection Officer

Address: 12th Floor, Unit 1204, Gopal Heights, Netaji Subhash Place, Delhi 110034, India

Email: privacy@dcrayons.app

Phone: +91-882-603-8534

For GDPR-related inquiries, you may also contact our EU representative at: eu-representative@dcrayons.app