How We Handle Your Data
Last updated:
OrangeMantras (“we”, “our”, “us”) provides web design, development, and digital marketing services. This Privacy Policy explains what information we collect, how we use it, and the choices you have. This policy applies to our website, contact forms, checkout pages (including Razorpay/Stripe), and any related services.
Quick navigation
1) Information We Collect
- Contact data: name, email, phone, company, country, and any message you send via forms or WhatsApp.
- Billing data: address, GSTIN (if provided), currency preference, and purchase details.
- Payment data: handled by processors (e.g., Razorpay/Stripe). We receive limited details such as payment status, amount, and transaction IDs.
- Technical data: IP address, browser, device type, pages visited, time on site, referrer, and approximate location (from your IP).
- Files & project assets: content and credentials you share for project delivery (stored securely and used only for your project).
2) How We Use Information
- Provide quotes, proposals, and perform our services.
- Process orders and subscriptions; send invoices and receipts.
- Improve our website, UX, security, and service quality.
- Send service messages (project updates, critical notifications).
- With your consent, share newsletters or marketing communications (you can unsubscribe anytime).
- Prevent fraud, enforce our Terms & Conditions, and comply with law.
3) Legal Bases (GDPR)
For users in the EEA/UK, we process personal data based on one or more of the following legal bases:
- Contract: to provide requested services or pre-contract steps (quotes, SOW, onboarding).
- Consent: for optional marketing or cookies where required.
- Legitimate interests: improving services, securing our site, and preventing abuse.
- Legal obligations: tax/accounting, responding to lawful requests.
5) Payments
Online payments may be processed by Razorpay and/or Stripe. Your card/banking details are submitted directly to the payment processor over an encrypted connection; we do not store full card numbers or CVV on our servers. We receive payment confirmation, amounts, and masked identifiers to reconcile your order.
7) Data Retention
We keep personal data only as long as needed for the purposes described above—typically for the duration of our engagement plus a reasonable period for record-keeping, legal, and tax obligations. You may request deletion where applicable.
8) Security
We apply reasonable technical and organizational measures (encryption in transit, access controls, least-privilege) to protect data. No method of transmission or storage is 100% secure; please share credentials via secure channels we provide.
9) Your Rights
Depending on your region, you may have rights to access, correct, delete, restrict, or object to processing; to data portability; and to withdraw consent at any time. California residents may request disclosure or deletion of certain information and ask us not to share/sell personal information.
To exercise rights, email us using the address below. We may need to verify your identity before responding.
10) International Transfers
We may process data in countries outside your own (e.g., India/USA). When we transfer personal data internationally, we use appropriate safeguards such as contractual clauses and vendor due diligence.
11) Children’s Privacy
Our services are intended for business users and are not directed to children under 13 (or the age defined by local law). If you believe a child has provided personal data, contact us to remove it.
12) Changes to This Policy
We may update this Privacy Policy from time to time. We’ll change the “Last updated” date above and, where appropriate, provide additional notice.
13) Contact Us
If you have questions, requests, or complaints about this Privacy Policy or our data practices, contact us:
- Email: privacy@orangemantras.com
- Contact page: orangemantras.com/contact-us/
- Phone (India): +91 7000577701
Data Controller: OrangeMantras
This template is provided for general guidance only and is not legal advice. For strict compliance (GDPR/CCPA/DPDP, etc.), please consult your counsel and update this page to reflect your exact processes and vendor list.