Privacy Policy

Last updated: November 14, 2025

This Privacy Policy describes how We collect, store, use, process, retain, disclose and protect Your personal information when You access or use Our Website or any related services. This Policy is prepared in accordance with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, the Consumer Protection (E-Commerce) Rules, 2020, and the Digital Personal Data Protection Act (DPDPA) 2023 of India.

By using the Service, You consent to the practices described in this Privacy Policy. If You do not agree with the Policy, please stop using the Website and Services immediately.

Interpretation and Definitions

Interpretation

Words with initial capital letters have meanings defined under the following conditions. These definitions apply whether the terms appear in singular or plural.

Definitions

• Account means a unique profile created for You to access Our Service or specific features.
• Affiliate refers to any entity that controls, is controlled by, or is under common control with the Company, where control means ownership of more than fifty percent of the voting securities.
• Company refers to Awtara Fashion, which owns and operates the Website.
• Cookies are small text files placed on Your device to collect information such as preferences, session details, and browsing activity.
• Country refers to India, specifically the state of Madhya Pradesh.
• Device means any electronic device with internet access capability, including mobile phones, tablets, and computers.
• Personal Data refers to any data that can identify an individual directly or indirectly, as defined by applicable Indian laws.
• Sensitive Personal Data or Information (SPDI) includes data such as financial information, passwords, and health information as defined under Indian IT Rules.
• Service refers to the Website and all related features and services.
• Service Provider means any person or third-party entity that processes data on behalf of the Company.
• Usage Data refers to automatically collected information regarding how the Service is accessed and used.
• Website refers to Awtara Fashion, accessible from https://awtara.com/
• You refers to the user accessing or using the Service.

Collecting and Using Your Personal Data

Types of Data Collected

Personal Data

We may collect the following Personal Data when You use Our Services or register for an Account:

• Email address
• Full name
• Phone number
• Billing and shipping address
• Payment-related information (processed through authorized payment gateways only; We do not store full card details)
• Usage Data
• Customer support interactions

Sensitive Personal Data Under Indian Law

We may collect certain sensitive information only when legally required and with Your explicit consent. This may include:

• Financial information such as UPI ID, bank account details, or partial card information for verification
• Password or authentication token used for logging in

Such data is processed strictly as per IT Rules 2011 and the DPDPA 2023.

Usage Data

Usage data includes IP address, browser version, mobile device details, pages visited, time spent, and diagnostic data collected automatically when using the Service.

Tracking Technologies and Cookies

We use Cookies, beacons, tags, and scripts to improve user experience, analyze performance, maintain security, and store preferences.

• Necessary Cookies enable essential website functions like login and checkout.
• Preference Cookies store user settings and language choices.
• Analytics Cookies help us understand user behavior for improvement.
• Marketing Cookies track user interactions for personalized advertising only with Your consent.

Legal Basis for Processing Personal Data (Indian Compliance)

We process Your data under the following lawful bases:

• Consent under DPDPA 2023
• Performance of a contract for purchasing products
• Compliance with legal obligations under Indian law
• Legitimate interests such as fraud prevention and improving services
• Customer support and dispute resolution

Use of Your Personal Data

We may use Your Personal Data for the following purposes:

• To create and manage user accounts
• To process and deliver orders
• To comply with Indian e-commerce and taxation laws
• To provide customer assistance and resolve issues
• To send service updates, order alerts, and security notifications
• To send marketing communications only after receiving consent
• To prevent fraud, abuse, and misuse of the platform
• To analyze data and improve website performance and user experience
• To meet legal, regulatory, or law enforcement requirements

Data Retention

We retain personal data for as long as necessary for legal compliance, taxation, auditing, dispute resolution, or improving services.

Order-related data is retained for a minimum of 7 years as required under Indian business and GST regulations.

Data Storage and Transfer

All data is stored on secure servers. Some data may be stored or processed outside India depending on the service provider. Any such transfer complies with Indian cross-border data transfer laws.

We ensure reasonable security practices as required under ISO/IEC 27001 or equivalent standards, in compliance with the IT Act and DPDPA rules.

Your Rights Under Indian Law

You have the following rights:

• Right to access Your data
• Right to update or correct Your data
• Right to withdraw consent
• Right to request deletion of personal data (subject to legal retention requirements)
• Right to register grievances with Our Grievance Officer

Disclosure of Your Personal Data

Legal and Regulatory Disclosures

We may disclose Your data if required under:

• Indian court orders
• Law enforcement requests
• Taxation or compliance authorities
• Consumer protection and dispute resolution forums

Business Transactions

Data may be shared during merger, acquisition, sale, or restructuring processes.

Security of Your Data

We use encryption, access control, firewalls, and secure server practices to protect Your data. However, no online transmission is completely secure.

Children’s Privacy

We do not knowingly collect data from individuals under the age of 13. If any such data is identified, it will be removed in accordance with Indian guidelines.

Third-Party Services and Links

Our Website may contain links to third-party websites or use third-party plugins such as payment gateways and analytics tools. We are not responsible for their privacy practices. Users should review their individual policies.

Changes to This Privacy Policy

We may update this Policy periodically. Continued use of Our Services after changes implies acceptance.

Grievance Officer (As Required by Indian IT Rules)

In compliance with Rule 5(9) of the Information Technology Rules 2011, You may contact Our Grievance Officer for any concerns regarding data handling.

Grievance Officer:
Email: policy@awtara.com
Response Time: Within 15 working days

Contact Us

If You have questions regarding this Privacy Policy, You can contact Us at:

• Email: policy@awtara.com