Privacy Policy

Last Updated: 08 June 2025

1. INTRODUCTION AND COMMITMENT

Madras Marketing (“we”, “us”, “our”), a Sole Proprietorship located at 4/7, Sowrashtra Nagar 2nd Street, Choolaimedu, Chennai, Tamil Nadu, 600094, is committed to protecting the privacy and security of the personal data it processes.

This Privacy Policy (“Policy”) provides a detailed explanation of how we collect, use, store, share, and protect your personal data. It also outlines the legal rights you have concerning your data. We act as a “Data Fiduciary” with respect to the data of our clients, prospective clients, and website visitors. We act as a “Data Processor” when we manage personal data on behalf of our clients as part of our service delivery.

This Policy is intended to be in compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act) of India and other applicable legal frameworks. Your use of our website or services, and any disputes over privacy, are subject to this Policy and our Master Services Agreement.

2. DEFINITIONS

  • “Data Fiduciary” means the entity that, alone or in conjunction with others, determines the purposes and means of the processing of personal data. For the purpose of this policy, we are the Data Fiduciary of our client’s and website visitor’s data.
  • “Data Principal” means the individual to whom the personal data relates (i.e., “you”).
  • “Data Processor” means any entity that processes personal data on behalf of a Data Fiduciary.
  • “Personal Data” means any data about an individual who is identifiable by or in relation to such data. This includes, but is not limited to, names, contact details, IP addresses, and billing information.
  • “Processing” means any operation or set of operations which is performed on personal data, such as collection, recording, organisation, structuring, storage, adaptation, retrieval, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.
  • “Consent” means any freely given, specific, informed, and unambiguous indication of the Data Principal’s wishes by which they, by a clear affirmative action, signify agreement to the processing of their Personal Data for a specified purpose.

3. SCOPE AND APPLICABILITY

This Policy applies to:

  • Website Visitors: Individuals who visit our website ([Your Website Address]).
  • Clients: Individuals and entities who engage us for our Services.
  • Prospective Clients: Individuals who contact us via our website, email, or other channels to inquire about our Services.
  • End-Users: Individuals whose data we may process on behalf of our Clients in our capacity as a Data Processor (e.g., individuals targeted in an advertising campaign we manage).

4. PERSONAL DATA WE COLLECT AND PROCESS

We collect and process different categories of Personal Data depending on your relationship with us.

4.1. As a Data Fiduciary:

  • Identity and Contact Data: Name, email address, phone number, company name, job title, and postal address.
  • Financial and Billing Data: Billing address, payment information, and details of services you have purchased from us. Note: Sensitive payment card details are not stored by us and are processed directly by our secure payment gateway partners.
  • Technical and Usage Data: IP address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, and other data collected automatically about your visit to our website (e.g., pages viewed, duration of visit).
  • Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.

4.2. As a Data Processor:

When providing services to our Clients (who are the Data Fiduciaries in this context), we may process Personal Data of their customers or target audiences (“End-Users”). This data may include, but is not limited to, email addresses, phone numbers, IP addresses, cookie identifiers, and Browse history. We process this data strictly on the lawful instructions of our Client as detailed in our Master Services Agreement.

5. LAWFUL BASIS AND PURPOSES FOR PROCESSING

We will only process your Personal Data when the law allows us to. Under the DPDP Act, our principal lawful bases are your Consent and certain Legitimate Uses.

Purpose of ProcessingType of DataLawful Basis for Processing
To provide and manage our Services as per the SOWIdentity, Contact, FinancialPerformance of a contract; Legitimate Uses
To process payments for our ServicesIdentity, Contact, FinancialPerformance of a contract
To manage our relationship with you (e.g., responding to inquiries, providing support)Identity, Contact, CommunicationsLegitimate Uses; Consent (for marketing)
To administer and protect our business and website (including troubleshooting, data analysis, security)Technical, UsageLegitimate Uses
To deliver relevant website content and marketing communications to youIdentity, Contact, Technical, MarketingConsent
To use data analytics to improve our website, services, marketing, and user experienceTechnical, UsageLegitimate Uses
To comply with legal or regulatory obligationsAll relevant categoriesCompliance with a legal obligation

6. CONSENT

Where we rely on your consent as the lawful basis for processing, you have the right to withdraw that consent at any time. We will make this process as straightforward as providing consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. We will not make the provision of a service conditional on consent to the processing of data that is not necessary for that service.

7. COOKIES AND TRACKING TECHNOLOGIES

Our website uses cookies and similar technologies to distinguish you from other users. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site. We use:

  • Strictly Necessary Cookies: Essential for the website to function.
  • Performance/Analytical Cookies: Allow us to recognise and count the number of visitors and see how they move around our website.
  • Functionality Cookies: Used to recognise you when you return to our website.
  • Marketing/Targeting Cookies: Record your visit to our website, the pages you have visited, and the links you have followed. We will use this information to make our website and the advertising displayed on it more relevant to your interests.

We will request your consent before placing non-essential cookies on your device, typically via a cookie banner.

8. DATA SHARING AND DISCLOSURE

We do not sell your Personal Data. We may share your Personal Data with the following categories of third parties for the purposes outlined in this Policy:

  • Service Providers (Data Processors): Companies that provide services to us, such as cloud hosting providers (e.g., AWS, Google Cloud), payment gateway partners, CRM software providers, and analytics providers (e.g., Google Analytics). We have contracts in place to ensure they only process your data on our instructions and keep it secure.
  • Advertising Platforms: Third-party platforms like Google and Meta for the purpose of running advertising campaigns.
  • Professional Advisors: Lawyers, bankers, auditors, and insurers who provide consultancy, banking, legal, insurance, and accounting services.
  • Legal and Regulatory Authorities: Government bodies, regulators, and law enforcement agencies where we are required to do so by law.
  • Business Transfers: In connection with any merger, sale of company assets, or acquisition of all or a portion of our business by another company.

9. DATA SECURITY

We have implemented appropriate technical and organisational security measures designed to protect your Personal Data from accidental loss, unauthorised use, access, alteration, or disclosure. These measures include data encryption, access control policies, and regular security assessments. We limit access to your Personal Data to those employees and third parties who have a business need to know.

10. DATA RETENTION

We will only retain your Personal Data for as long as is necessary to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. Typically, client data is retained for the duration of the service relationship and for a period of up to [e.g., 7 years] thereafter to comply with statutory obligations.

11. YOUR LEGAL RIGHTS AS A DATA PRINCIPAL

Under the DPDP Act, you have several rights concerning your Personal Data:

  • Right to Access: You have the right to obtain a summary of your Personal Data that is being processed by us and the processing activities undertaken.
  • Right to Correction and Erasure: You have the right to request the correction of inaccurate or misleading Personal Data, the completion of incomplete data, and the erasure of Personal Data that is no longer necessary for the purpose for which it was processed.
  • Right of Grievance Redressal: You have the right to have readily available means of grievance redressal provided by us. Please see the “Grievance Officer” section below.
  • Right to Nominate: You have the right to nominate any other individual who, in the event of your death or incapacity, shall exercise your rights under this Policy.

To exercise any of these rights, please contact our Grievance Officer.

12. INTERNATIONAL DATA TRANSFERS

While we are based in India, we may use service providers located in other countries. Therefore, your Personal Data may be transferred to and stored at a destination outside of India. We will ensure that such transfers are made in compliance with applicable data protection laws, to countries that are deemed to provide an adequate level of data protection or through the use of appropriate safeguards.

13. GRIEVANCE OFFICER

In compliance with the DPDP Act, we have appointed a Grievance Officer to address your concerns and grievances regarding the processing of your Personal Data. You may contact our Grievance Officer with any inquiries or to exercise your rights:

Name: [Name of Grievance Officer / The Proprietor] Email: info@madras.marketing Address: 4/7, Sowrashtra Nagar 2nd Street, Choolaimedu, Chennai, Tamil Nadu, 600094

We will respond to your request in a timely and effective manner.

14. CHANGES TO THIS PRIVACY POLICY

We reserve the right to update this Privacy Policy at any time. We will notify you of any significant changes by posting the new policy on our website and updating the “Last Updated” date.

15. GOVERNING LAW

This Privacy Policy and any disputes arising from it are governed by the laws of the Republic of India.

Scroll to Top