Privacy Policy

Section 2: What Information We Collect

At Clickin.in, we collect different types of personal and non-personal information to provide and improve our services. We only collect data that is necessary, lawful, and relevant for our operations. This section outlines the types of information we gather from users, whether directly or indirectly.

2.1 Personally Identifiable Information (PII)

We collect the following types of personally identifiable information (PII) from users during registration, purchase, subscription, or service inquiry:

• Full Name: For identification and personalization of your account and services.
• Mobile Number: For verification (OTP-based or otherwise), customer support, and transactional communication.
• Email Address: For communication, receipts, notifications, and verification.
• Postal Address: Required for product delivery or correspondence, especially if physical goods are involved.
• Business or Company Name (if applicable): For B2B services and invoicing.
• Government ID (if legally required): Such as PAN, Aadhaar, or GSTIN for verification or compliance with Indian tax and regulatory laws.
• Payment Information: Though we do not store full card details, payment gateways used may collect cardholder name, UPI ID, or transaction reference for completing secure transactions.

2.2 Non-Personal Information

We also collect data that does not directly identify you, but helps us understand your usage patterns:

• Device Information: Type, operating system, browser, and screen resolution.
• IP Address: For security, fraud detection, and location-based services.
• Browser Cookies: Used to remember your preferences, session details, and personalize your browsing experience (detailed further in the Cookies section).
• Location Data: General geographic location (e.g., city or state) derived from your IP address.
• Usage Data: Pages visited, time spent on site, click patterns, and interactions with specific features.

2.3 Information from Third Parties

We may receive user information from third-party platforms, partners, or services when you:

• Sign in using Google, Facebook, or other OAuth services (as allowed).
• Interact with our ads or promotions on third-party platforms.
• Are referred to us by a partner website or affiliate.

Such data may include your name, profile picture, or publicly shared email address, depending on the permissions granted by you to the third party.

2.4 Children’s Information

We do not knowingly collect personal data from children under the age of 18. If we become aware that a child has submitted information without proper parental consent, we will take steps to delete that data in accordance with applicable Indian laws such as the DPDP Act, 2023.

All data collected is handled with strict confidentiality and used solely for lawful purposes, as described in the following sections.

Section 3: How We Use Your Information

At Clickin.in, we use your information responsibly, lawfully, and transparently. The personal and non-personal data collected is used to provide, operate, improve, and safeguard our services in compliance with Indian laws, including the Digital Personal Data Protection (DPDP) Act, 2023 and relevant provisions of the Information Technology Act, 2000.

3.1 To Provide Services

• To register your account and verify your identity through OTP, email, or other lawful means.
• To fulfill orders, process payments, deliver services or products, and provide technical support.
• To enable core website features such as dashboards, account management, and settings customization.

3.2 To Improve User Experience

• To personalize your interaction with Clickin.in by displaying content, services, or offers tailored to your location, usage history, or preferences.
• To analyze website traffic, navigation paths, and behavior trends for usability enhancements.
• To gather feedback via forms, surveys, or reviews to improve our features and customer satisfaction.

3.3 To Communicate with You

• To send transactional communications such as order confirmations, service updates, and payment receipts.
• To notify you of important changes to our policies, terms, or service features.
• To offer support via email, WhatsApp, or call in response to your queries or feedback.

3.4 For Marketing and Promotions

• To send promotional offers, newsletters, or updates via SMS, email, or push notifications (only if you have opted in).
• To run referral or affiliate programs where your referral code or user ID may be used.
• You can opt-out of marketing messages anytime using the unsubscribe link or by contacting us.

3.5 To Comply with Legal Obligations

• To respond to lawful requests by government agencies, courts, or law enforcement under Indian jurisdiction.
• To comply with obligations under tax laws, consumer laws, and other statutory mandates in India.
• To protect against fraudulent, abusive, or illegal activities involving your account or transactions.

3.6 Internal Reporting & Data Analytics

• To generate internal business reports and measure performance metrics.
• To understand demand trends, user behavior, and popular services/products.
• This aggregated data is anonymized and used strictly for operational improvements.

3.7 With Your Explicit Consent

In certain cases, such as sharing your testimonial or integrating your data with a third-party partner, we will ask for your clear and informed consent. This is done in alignment with the principles of consent as defined in the DPDP Act, 2023.

We ensure that all uses of your data are transparent, secure, and never in violation of your trust or applicable Indian privacy regulations.

Section 4: Legal Basis for Processing Data

At Clickin.in, we process your personal data only when we have a valid legal basis to do so, in full compliance with Indian data protection laws such as the Digital Personal Data Protection (DPDP) Act, 2023, Information Technology Act, 2000, and other applicable guidelines.

4.1 Consent (आपकी सहमति)

We obtain your clear and informed consent before collecting or processing your personal data for purposes like marketing, optional cookies, newsletters, or third-party data sharing. You may withdraw your consent at any time by contacting us or through your account settings.

• Example: Subscribing to email promotions or allowing location tracking for personalized services.
• Withdrawal of consent will not affect the legality of data processed before the withdrawal.

4.2 Contractual Necessity

We process your data when it is necessary for fulfilling a contract with you — for example, when you place an order, create an account, or request our services. Without this data, we cannot provide essential features of our platform.

• Example: Name, address, and phone number are used to deliver physical products.
• Banking details are used for secure payment processing and refunds.

4.3 Legal Obligation

Certain data must be processed to comply with legal requirements such as:

• Responding to official notices from Indian courts, police, or government bodies.
• Maintaining transaction records for taxation under the Goods and Services Tax (GST) regime.
• Providing KYC or identity details when mandated by law.

4.4 Legitimate Interests

We process some data when it is in our legitimate business interest and does not override your rights and freedoms. This includes actions like:

• Preventing fraud or misuse of our platform.
• Ensuring platform security and maintaining system performance.
• Understanding user behavior to improve features and usability.

We always conduct a balancing test to ensure that such interests do not negatively impact your privacy.

4.5 Public Interest or Legal Claims

In rare cases, we may process your data to establish or defend against legal claims, or if required in the public interest, such as during government audits or for public safety concerns as per Indian law.

4.6 Special Note on Children’s Data

We do not knowingly collect data from children below the age of 18. If we discover that data has been collected from a minor without parental consent, we will delete it immediately as per the DPDP Act guidelines.

We ensure that every instance of data processing is supported by a lawful basis and meets both ethical and legal expectations under Indian jurisdiction.

Section 5: How We Store and Protect Your Data

At Clickin.in, we take the security and storage of your personal data very seriously. We ensure that your data is stored safely and processed in accordance with the Digital Personal Data Protection (DPDP) Act, 2023, Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and relevant Indian cybersecurity standards.

5.1 Data Storage Location

Your data may be stored on secure servers located within India or, where permitted, in countries that provide adequate levels of data protection. Any transfer of data outside India is done in compliance with Indian legal requirements and with appropriate safeguards in place.

• Our primary data storage is within secure cloud-based infrastructure hosted by certified providers with strong encryption protocols.
• We ensure that vendors storing or processing data on our behalf are contractually bound to maintain equivalent security and privacy measures.

5.2 Data Security Measures

We use a combination of technical, administrative, and physical safeguards to protect your data from unauthorized access, alteration, disclosure, or destruction.

• Encryption: All sensitive personal data is encrypted both during transit (using HTTPS/SSL protocols) and at rest.
• Access Controls: Access to user data is role-based and limited to authorized personnel only, using two-factor authentication where applicable.
• Regular Security Audits: We conduct periodic vulnerability assessments, penetration tests, and security reviews.
• Monitoring: Our systems are continuously monitored for unusual or suspicious activity.

5.3 Data Retention Policy

We retain your data only for as long as necessary for the purposes outlined in this policy, or as required by applicable laws such as the Income Tax Act, 1961 or GST regulations. Once data is no longer needed, it is securely deleted or anonymized.

• Transactional and billing data may be retained for up to 8 years as per Indian taxation norms.
• Inactive user accounts may be deleted after a defined period, with prior notice.

5.4 Breach Notification Protocol

In the unlikely event of a data breach, we will notify affected users and the Indian Data Protection Board (or any relevant government authority) within the timelines required under the DPDP Act, 2023.

• We will provide details of the breach, potential consequences, and steps users should take to protect themselves.
• Our internal incident response team will act immediately to contain and mitigate any threat.

5.5 User Responsibility for Security

While we implement robust security, you also have a role in keeping your data safe. Always use strong passwords, avoid sharing login credentials, and log out from shared devices. If you suspect unauthorized access, contact our support team immediately.

By using our platform, you trust us with your data. We honor that trust by applying the highest standards of data protection under Indian legal frameworks and industry best practices.

Section 6: How We Use Your Data

At Clickin.in, we are committed to using your data ethically and only for legitimate purposes that enhance your experience. This section explains the lawful bases and specific purposes for which we process your personal and non-personal information, in accordance with the DPDP Act, 2023 and the Information Technology Act, 2000.

6.1 Lawful Bases for Processing

We collect and process your data based on one or more of the following lawful grounds under Indian law:

• Consent: Where you have clearly agreed to us processing your data for a specific purpose.
• Contractual Necessity: To provide services as per our agreement with you (e.g., managing your account, delivering products).
• Legal Obligation: To comply with Indian laws such as tax regulations, IT security standards, and anti-fraud measures.
• Legitimate Interest: For operational purposes such as analytics, fraud detection, or business improvement—provided your rights are not overridden.

6.2 Specific Uses of Your Personal Data

We use your personal data for the following purposes, depending on your interactions with our website and services:

• Account Creation & Verification: To register and authenticate your user profile on Clickin.in.
• Service Fulfilment: To deliver services such as website creation, digital marketing, or product orders.
• Customer Support: To resolve your queries via phone, chat, email, or grievance channels.
• Payments & Transactions: To process online payments, issue invoices, track billing, and manage refunds.
• Personalized Offers: To suggest relevant services or promotions based on your interests and previous usage.
• Notifications: To send important updates, security alerts, order confirmations, or policy changes.

6.3 Use of Non-Personal and Aggregate Data

We may use non-personal or anonymized data for broader business purposes:

• Analytics: To understand user behavior and improve website functionality and service design.
• Marketing Insights: To analyze trends, campaign effectiveness, and user demographics.
• Research: For statistical and performance reporting in a way that does not identify individual users.

6.4 Communication Preferences

We may use your contact details to send:

• Service-related announcements (transactional emails or order updates).
• Marketing emails (only with your explicit opt-in consent).
• Important policy, legal, or security updates.

You can manage your preferences or unsubscribe from promotional communications at any time using the provided links or by contacting our support.

6.5 No Sale of Personal Data

We do not sell your personal data to third parties under any circumstances. Any data shared is only for the purposes mentioned above and strictly governed by this Privacy Policy and relevant Indian laws.

All uses of your data are monitored, documented, and periodically reviewed to ensure compliance with legal and ethical obligations. Your privacy and trust are of the utmost importance to us.

Section 7: Cookies and Tracking Technologies

Clickin.in uses cookies and similar tracking technologies to enhance your browsing experience, understand usage patterns, deliver personalized content, and improve our services. This section explains what cookies are, why we use them, and how you can control them, in compliance with the DPDP Act 2023 and applicable Indian IT laws.

7.1 What Are Cookies?

Cookies are small text files stored on your device (computer, mobile phone, tablet) by your browser when you visit a website. They contain anonymous identifiers and are used to remember your preferences, login sessions, and browsing behavior across sessions.

7.2 Types of Cookies We Use

• Essential Cookies: Necessary for the website to function properly. For example, maintaining login sessions or enabling navigation between pages.
• Performance Cookies: Help us understand how visitors interact with the site (via tools like Google Analytics), so we can improve usability and content.
• Functional Cookies: Remember user preferences such as language, location, or previously viewed pages, enhancing your experience.
• Advertising & Targeting Cookies: Track user activity across websites to deliver personalized ads or limit how often you see an ad.
• Third-Party Cookies: Set by external services like payment gateways, social media integrations, or analytics platforms.

7.3 How We Use Cookies

We use cookies to:

• Recognize returning users and maintain secure login sessions.
• Analyze traffic sources, most visited pages, and user behavior patterns.
• Display personalized content and recommend services based on user interests.
• Enable integrations with third-party tools such as chat support or payment processors.
• Measure the performance of our campaigns, improve loading speed, and reduce server load.

7.4 Your Choices and Cookie Control

As a user, you have the right to control or reject cookies:

• Browser Settings: You can configure your browser to block or delete cookies through its settings.
• Cookie Consent Banners: On your first visit, we may display a cookie notice allowing you to accept or reject non-essential cookies.
• Opt-Out Tools: For analytics or ads, you may opt out using tools like Google Analytics Opt-Out.

Please note that disabling some cookies may affect the functionality of the site and degrade your user experience.

7.5 Retention and Expiry

Cookies may be:

• Session Cookies: Expire when you close the browser.
• Persistent Cookies: Remain on your device for a set period or until manually deleted.

7.6 Third-Party Cookie Practices

Our website may use cookies set by trusted partners (e.g., payment gateways, analytics providers). These cookies are governed by the privacy policies of their respective platforms. We encourage you to review those policies before use.

7.7 Updates to Cookie Usage

We may update our cookie usage based on technological advancements, legal obligations, or business requirements. All such updates will be reflected in this section, and where required, we will request fresh consent.

By continuing to use Clickin.in, you agree to our use of cookies as outlined above. You are always free to change your settings or contact us for more information.

Section 8: Data Sharing and Disclosure

At Clickin.in, we value your trust and privacy. We do not sell your personal data to third parties. However, under specific circumstances, we may share your information with trusted entities to provide services, comply with laws, or protect our legal interests. This section explains when and with whom your data may be shared, in compliance with the Digital Personal Data Protection (DPDP) Act, 2023 and the Information Technology Act, 2000.

8.1 Sharing with Service Providers

We may share your personal data with third-party service providers or vendors that assist in our operations. These include:

• Cloud hosting providers and website infrastructure platforms
• Payment gateway processors (e.g., Razorpay, Paytm, etc.)
• Email and SMS communication partners
• Marketing and advertising platforms (e.g., Google Ads, Facebook)
• Analytics providers like Google Analytics or Hotjar
• Customer support and chat platforms

All such service providers are contractually bound by data protection clauses and are only permitted to use your data as instructed by Clickin.in.

8.2 Legal and Regulatory Disclosures

We may disclose your personal data when required by Indian law, regulation, legal process, or government request. This includes situations such as:

• Responding to lawful court orders, police inquiries, or notices from enforcement agencies under the CrPC or IPC
• Complying with investigations under the IT Act, 2000 or DPDP Act, 2023
• Preventing fraud, security breaches, or illegal activities
• Protecting our legal rights, safety of users, or defending against legal claims

8.3 Sharing for Business Transactions

In the event of a business merger, acquisition, reorganization, or sale of Clickin.in or its assets, user data may be transferred to the new entity or buyer. In such cases, you will be informed through email or a notice on the website.

8.4 Sharing with Your Consent

In some cases, we may seek your explicit consent before sharing your data. For example:

• When referring you to a third-party service provider upon request
• When publishing your testimonial or feedback publicly on our platform
• When using your data for any new purpose not originally stated in this policy

8.5 Cross-Border Data Transfers

While our servers are primarily located in India, some of our partners may store or process data outside India. In such cases:

• We ensure that the destination country has adequate data protection standards as per Indian government notification
• We use standard contractual clauses and appropriate safeguards before any cross-border data transfer

8.6 Anonymized and Aggregated Data

We may share anonymized, de-identified, or aggregated data (which cannot be used to identify you personally) with partners for research, analytics, or industry reports. This data does not include your personal information and is used for statistical or product development purposes only.

8.7 No Sale of Data

We do not sell, rent, lease, or trade your personal information to any individual or organization for profit. Any data exchange is done strictly under compliance and contract-based limitations.

8.8 Transparency & Updates

All data-sharing practices are reviewed periodically and updated in this Privacy Policy. Significant changes in sharing partners or purposes will be disclosed to users, and new consent will be taken if legally required.

Your trust is important to us, and we remain fully committed to ensuring that your data is never misused or disclosed irresponsibly.

Section 9: Data Retention and Storage

At Clickin.in, we retain your personal data only for as long as it is necessary to fulfill the purposes outlined in this Privacy Policy. Our retention practices comply with Indian legal requirements, especially under the Digital Personal Data Protection Act, 2023 and the Information Technology Act, 2000.

9.1 Retention Periods

We retain your data based on the type of information and the reason it was collected:

• User account data: Retained until your account is deleted or becomes inactive for over 24 months.
• Transactional data: Retained for a minimum of 7 years to comply with income tax, GST, and accounting laws in India.
• Communication logs: Emails, messages, or support chats are stored for 2–5 years for audit and service improvement.
• Marketing and analytics data: Stored for up to 36 months, unless you withdraw consent earlier.
• Legal records: Any data associated with disputes, complaints, or investigations may be retained longer as required by law.

9.2 Criteria for Determining Retention Duration

The decision on how long we keep specific categories of data depends on:

• Legal and regulatory compliance (e.g., tax, IT Act obligations)
• The purpose for which the data was collected
• Contractual obligations with service providers or partners
• User activity level and engagement with our services
• Pending grievances, disputes, or investigations

9.3 Secure Storage Practices

We store your data using industry-grade security and encryption mechanisms, including:

• Secure servers located in India and abroad (with adequate legal safeguards)
• Encryption at rest and in transit for sensitive data
• Restricted access controls and audit logs
• Regular data backups and firewall protection
• Cloud services that comply with ISO 27001, SOC 2, or similar certifications

9.4 Deletion and Anonymization

Once the retention period ends, we either:

• Securely delete the data from all storage systems
• Or convert it into anonymized data that no longer identifies you personally

In accordance with your rights under the DPDP Act, you may also request early deletion of your data by contacting our Grievance Officer (details in Section 16).

9.5 Exceptions to Standard Retention

In some cases, we may retain certain data for longer durations if:

• It is required for legal claims, law enforcement, or tax compliance
• You have pending disputes, transactions, or refunds
• It is mandated under any central/state government regulation

9.6 User-Controlled Deletion

You have the right to request deletion of your data. After verifying your identity and ensuring no legal constraints, we will delete your personal information within 15 working days and confirm the same via email or SMS.

We take data retention seriously and ensure that your personal information is not stored beyond what is legally or operationally necessary. Responsible data disposal is a key part of our privacy practices.

Section 10: User Rights Under Indian Law

As a user of Clickin.in, you are entitled to various rights concerning your personal data under Indian laws, particularly the Digital Personal Data Protection Act, 2023 (DPDP Act), the Information Technology Act, 2000, and relevant rules issued by the Ministry of Electronics and Information Technology (MeitY).

10.1 Right to Access Your Data

You have the right to request and receive a copy of the personal information we hold about you. This includes:

• Details of the types of data collected
• Sources from which we collected the data
• Purpose for which your data is used
• Third parties with whom it has been shared

To access your data, you can write to us at help@clickin.in. We will respond within 15 working days.

10.2 Right to Correction

If you believe that any of your personal data held by us is inaccurate, incomplete, or outdated, you can request correction. Once verified, we will update the record within 7 working days and notify you of the same.

10.3 Right to Data Portability

Under the DPDP Act, you have the right to obtain your personal data in a structured, commonly used, and machine-readable format. This allows you to move your data to another platform or service provider if you choose to do so.

10.4 Right to Withdraw Consent

If we process your data based on your consent (e.g., for marketing or analytics), you can withdraw that consent at any time. Upon withdrawal:

• We will stop using your data for that specific purpose
• Your access to certain services may be restricted as a result

Withdrawal can be initiated by contacting us or updating your preferences through your user dashboard (if applicable).

10.5 Right to Data Erasure

You may request us to delete your personal data when:

• The purpose for which it was collected has been fulfilled
• You withdraw consent or object to further processing
• The data was unlawfully collected or used

We will review such requests and act within 15 working days, unless retention is required under law (e.g., for tax or legal disputes).

10.6 Right to Be Informed

You have the right to be informed, in clear and accessible language, about:

• What data we collect
• Why we collect it
• Who we share it with
• What rights you have over it

This Privacy Policy serves as your primary source of such information.

10.7 Right to Grievance Redressal

If you have concerns or complaints about how your data is being handled, you have the right to file a grievance with our Grievance Officer (see Section 16). We are required to respond within 7 working days under the DPDP rules.

10.8 Right Against Automated Profiling

You have the right to object to decisions made solely based on automated processing or profiling that significantly affects you. At Clickin.in, we do not use fully automated profiling for any legally binding decision-making.

10.9 How to Exercise These Rights

To exercise any of the above rights, please send an email to help@clickin.in with the subject line “Data Rights Request”. We may verify your identity before processing your request to ensure data protection. All requests are handled in accordance with Indian data protection regulations.

We believe in empowering our users with full control over their personal information and ensuring transparency in how data is handled. If any rights under Indian law are updated in the future, we will update this section accordingly.

Section 11: Cookies and Tracking Technologies

Clickin.in uses cookies and similar tracking technologies to improve your browsing experience, analyze site traffic, personalize content, and offer relevant services. These technologies help us understand user behavior and preferences, allowing us to enhance our offerings while respecting your privacy rights under Indian law.

11.1 What Are Cookies?

Cookies are small text files stored on your device (computer, smartphone, tablet) by a website when you visit it. These files contain data that helps the website recognize you on subsequent visits, remember your preferences, and provide a seamless user experience.

11.2 Types of Cookies We Use

• Essential Cookies: Required for core website functions such as account login, page navigation, and security. Without these, the website cannot function properly.
• Performance Cookies: Help us understand how visitors interact with our site, such as which pages are visited most often. These cookies collect anonymous data for analysis.
• Functionality Cookies: Allow us to remember your preferences (e.g., language or region) to offer you a more personalized experience.
• Advertising and Targeting Cookies: These cookies may be set by us or third-party partners (such as Google or Facebook) to deliver advertisements relevant to you and your interests.

11.3 Third-Party Tracking Technologies

We may also use third-party technologies such as:

• Google Analytics: For collecting statistics on site traffic, user behavior, and content popularity. This helps us improve performance.
• Meta Pixel (formerly Facebook Pixel): Used for measuring ad effectiveness and reaching users on Facebook platforms.
• AdSense or AdWords: To display tailored ads based on your behavior across the internet.

These third-party cookies are governed by their respective privacy policies. You may choose to manage or opt out of these via their settings.

11.4 How We Use Collected Data

Data collected through cookies may be used for the following purposes:

• Improving site functionality and user experience
• Storing your login sessions securely
• Monitoring and analyzing usage metrics
• Providing personalized content and recommendations
• Delivering advertisements based on user interests
• Preventing fraudulent activity and ensuring website security

11.5 Consent for Cookies

By using our website, you consent to the placement of cookies on your device, unless you disable them through your browser settings or opt-out mechanisms. You will see a cookie banner or notification upon your first visit, in line with applicable Indian data protection guidelines.

11.6 How to Manage or Disable Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to:

• View the cookies stored
• Delete cookies individually or all at once
• Block cookies from specific websites
• Disable third-party cookies

Note: Disabling cookies may affect your experience on Clickin.in, including login functionality, content personalization, and other interactive features.

11.7 Retention and Duration

Some cookies are session-based (deleted once you close your browser), while others may persist for longer periods to remember your preferences. We follow best practices and only retain cookie data for the duration necessary to fulfill their purpose.

11.8 Cookies Under Indian Law

In compliance with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the DPDP Act, 2023, we ensure:

• Cookies do not collect sensitive personal information unless consented
• All cookie data is stored securely and not misused
• Users are informed and given meaningful control over cookies

11.9 Updates to This Section

As legal requirements evolve, we may update our cookies and tracking practices. You are encouraged to review this section periodically to stay informed of how we use such technologies.

If you have any questions about our use of cookies, you may contact our support team at help@clickin.in.

Section 12: Sharing and Disclosure of Information

At Clickin.in, we value your trust and are committed to maintaining the confidentiality of your personal information. We only share your data when absolutely necessary and in accordance with applicable Indian laws, including the Digital Personal Data Protection (DPDP) Act, 2023, the Information Technology Act, 2000, and relevant rules.

12.1 When We Share Your Information

We may disclose your personal data under the following circumstances:

• Service Providers and Partners: We may share data with third-party service providers or partners (e.g., payment gateways, hosting companies, analytics providers, advertising networks) who help us operate our website or deliver services. These entities are contractually bound to use your data only for specific, authorized purposes and with appropriate safeguards.
• Legal Obligations: We may disclose your information if required by law, regulation, legal process, or government request (such as a court order, police inquiry, or summons) in accordance with Indian laws like the IT Act, 2000 and relevant provisions under the Indian Penal Code (IPC).
• Business Transfers: In case of a merger, acquisition, restructuring, sale of assets, or business transfer, your personal data may be shared with relevant third parties involved in the transaction. We will ensure that such entities uphold the same level of data protection standards.
• Protection of Rights: We may share your data when we believe it is necessary to protect the rights, property, or safety of Clickin.in, our users, or the public. This includes fraud detection, prevention of data breaches, or enforcing our Terms of Use.

12.2 Types of Third Parties We Work With

We work with specific categories of third parties, such as:

• Payment processors (e.g., Razorpay, Paytm, Stripe)
• Web hosting and server providers (e.g., AWS, DigitalOcean)
• Email and SMS marketing platforms (e.g., Mailchimp, Twilio)
• Data analytics services (e.g., Google Analytics)
• Advertising networks (e.g., Google Ads, Facebook Ads)
• Social media plugins (e.g., Facebook Like Button, Instagram Feed)

All third-party vendors are selected with care and must adhere to strict privacy standards and data protection obligations under Indian law.

12.3 Cross-Border Data Sharing

In certain cases, we may transfer your data to service providers located outside India. Such transfers are done in compliance with Indian data protection laws and only when:

• The destination country offers an adequate level of data protection, or
• We have entered into binding agreements that safeguard your data, or
• You have provided explicit consent for the international data transfer

We do not engage in cross-border sharing unless absolutely necessary and legal mechanisms are in place to ensure your data is protected.

12.4 Aggregated or Anonymized Data

We may share aggregated, anonymized data (which cannot identify you) with advertisers, researchers, or analytics platforms to understand usage trends, performance insights, or marketing effectiveness. Such data does not contain personal information.

12.5 No Unauthorized Sale of Data

We do not sell, rent, or trade your personal information to third parties for commercial purposes without your consent. Your trust is our priority, and we will never misuse your data.

12.6 User Controls and Transparency

You have the right to know with whom your data is shared and why. Upon request, we will provide clarity on third parties your data may have been disclosed to, subject to reasonable verification of identity and legal limitations.

12.7 Security Measures During Sharing

Before sharing data with any third party, we ensure:

• They follow adequate data protection and security standards
• They do not use the data beyond agreed purposes
• They are held accountable via legal contracts, NDAs, or data processing agreements

12.8 Sharing Under the DPDP Act, 2023

As per the Digital Personal Data Protection Act, 2023, all sharing of personal data is based on valid legal grounds such as:

• Consent obtained from the Data Principal (user)
• Performance of a contract (e.g., service delivery)
• Legal obligation or compliance
• Legitimate interests that do not override user rights

We maintain records of all sharing activities in compliance with audit and reporting obligations as per Indian law.

If you have any questions about how your data is shared, or would like to exercise your rights, please contact us at help@clickin.in.

Section 13: Data Retention and Storage

At Clickin.in, we retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with applicable Indian laws, resolve disputes, enforce our agreements, and protect our legal interests. Our data retention and storage practices are in full compliance with the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000, and other relevant Indian data protection norms.

13.1 Duration of Retention

We retain personal data for the following durations based on data type and purpose:

• User account data: Stored until the user deletes their account or requests erasure, unless retention is required by law.
• Transaction data: Retained for a minimum of 7 years for tax, audit, and legal compliance as per Indian accounting standards and Income Tax Act.
• Communication logs: Stored for up to 2 years for customer service tracking, dispute resolution, and fraud prevention.
• Marketing consent and preferences: Retained until user withdraws consent or requests data deletion.
• Analytics and usage logs: Retained in anonymized or pseudonymized form for research, improvement, and security monitoring purposes.

13.2 Criteria for Retention

We determine appropriate data retention periods based on:

• The nature and sensitivity of the data
• The legal and regulatory obligations under Indian law
• The purpose for which the data was collected
• Risk of harm in case of unauthorized access or disclosure
• Our contractual obligations and rights enforcement requirements

13.3 Secure Storage Practices

All data is stored using secure and encrypted systems on industry-standard servers located in India or countries with adequate data protection safeguards. We use:

• End-to-end encryption for storage and transmission of sensitive data
• Access controls and authentication to prevent unauthorized access
• Regular security audits and vulnerability assessments
• Role-based access for employees and partners to ensure limited exposure

Wherever possible, we prefer to store data on servers within India to align with the data localization recommendations of the Government of India and the Reserve Bank of India (RBI) guidelines.

13.4 User Rights on Retention

You have the right to request deletion of your personal data after the completion of services or when you withdraw consent. Upon such a request:

• We will securely delete or anonymize your data unless we are legally obligated to retain it.
• We may retain minimal necessary data to comply with taxation, fraud detection, or legal claims as permitted under Indian laws.

Requests can be submitted via email to help@clickin.in with appropriate identity verification.

13.5 Data Archival and Disposal

We maintain a robust data archival and disposal policy that includes:

• Archiving old data securely with limited access
• Automatic purging or anonymization after expiry of retention period
• Permanent deletion from backups after legal hold periods end

13.6 Exceptions to Deletion

In certain scenarios, we may be required to retain data beyond user requests for deletion due to:

• Pending investigations or legal proceedings
• Regulatory or law enforcement requirements
• Compliance with anti-fraud obligations
• Internal auditing and accounting requirements

13.7 Retention Under the DPDP Act, 2023

As per Section 8 of the Digital Personal Data Protection Act, 2023, we retain data only as long as necessary and ensure that data is removed once the purpose is fulfilled. We maintain audit trails and documentation to support our compliance obligations.

If you wish to understand more about how long we keep specific categories of data, or wish to exercise your rights under the DPDP Act, please reach out to us at help@clickin.in.

Section 14: Data Security and Protection Measures

At Clickin.in, the security of your personal data is our highest priority. We are committed to ensuring that your information is safe, secure, and handled in accordance with Indian legal standards, including the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 under the Information Technology Act, 2000 and the Digital Personal Data Protection (DPDP) Act, 2023.

14.1 Our Security Approach

We implement a multi-layered security architecture to protect your personal data from unauthorized access, alteration, disclosure, or destruction. Our protection protocols cover data during transit, data at rest, and internal processing.

14.2 Technical Safeguards

• Encryption: All sensitive data is encrypted using AES-256 standards and TLS 1.3 for secure transmission over the internet.
• Firewalls & Intrusion Detection: Our servers are protected with enterprise-grade firewalls and monitored using intrusion detection/prevention systems (IDS/IPS).
• Secure Cloud Infrastructure: We use reliable, Indian law-compliant cloud providers with ISO 27001 and SOC 2 certifications.
• Multi-Factor Authentication (MFA): Employee and admin accounts use MFA to add a second layer of security for access control.
• Access Controls: Role-based access control (RBAC) ensures that only authorized personnel have access to specific data.

14.3 Organizational Safeguards

• Employee Training: All employees undergo regular training in data privacy, phishing awareness, and secure data handling practices.
• Confidentiality Agreements: All staff and partners are bound by strict confidentiality clauses aligned with Indian privacy regulations.
• Access Logging: We maintain logs of all user and admin data access to detect and respond to suspicious behavior.

14.4 Regular Testing and Audits

We conduct frequent vulnerability assessments, penetration testing, and security audits to identify and fix potential threats. We also engage third-party auditors to validate the robustness of our systems under Indian cyber security norms.

14.5 Data Breach Response Plan

In the unlikely event of a data breach, we follow a well-documented incident response protocol, which includes:

• Immediate containment and assessment of the breach
• Notifying affected users without undue delay, where required
• Filing necessary breach reports with CERT-In and other Indian regulatory authorities as per IT Rules and DPDP Act
• Implementing corrective and preventive measures to prevent future occurrences

14.6 User Responsibilities

While we take extensive steps to secure your data, you also play a role in protecting your information. We recommend:

• Creating strong and unique passwords
• Not sharing login credentials with others
• Logging out from public devices after use
• Keeping your software and devices updated with the latest security patches

14.7 Compliance with Indian Law

Our security measures align with the following Indian legal standards:

• Section 43A of the IT Act, 2000 – Reasonable security practices
• SPDI Rules, 2011 – Sensitive Personal Data or Information handling
• DPDP Act, 2023 – Security of personal data throughout its lifecycle

We periodically update our security policies to adapt to evolving threats and to ensure that we meet or exceed regulatory expectations.

14.8 Contact for Security Concerns

If you suspect any security breach, misuse of your data, or unauthorized activity on your account, please report it immediately to our Grievance Officer at help@clickin.in.

Section 15: Cookies and Tracking Technologies

Clickin.in uses cookies and similar tracking technologies to enhance user experience, analyze website traffic, and personalize content and advertisements. This section explains how we use these tools, your choices, and how they relate to Indian privacy laws such as the Digital Personal Data Protection (DPDP) Act, 2023 and the Information Technology Act, 2000.

15.1 What Are Cookies?

Cookies are small text files placed on your device (computer, tablet, or mobile) when you visit a website. These files help websites remember your preferences, login status, and browsing behavior to provide a smoother and more personalized experience.

15.2 Types of Cookies We Use

• Essential Cookies: These are necessary for the website to function properly, such as enabling secure login, shopping cart functionality, and session management.
• Performance Cookies: These help us understand how users interact with our site, which pages are most visited, and how users navigate through content. Tools like Google Analytics fall into this category.
• Functionality Cookies: These remember user choices, like language preferences or saved settings, to provide customized features.
• Advertising Cookies: These are used to deliver relevant ads and limit ad repetition. We may use platforms such as Google Ads or Facebook Pixel to track ad performance.
• Third-Party Cookies: These are placed by services we integrate (e.g., YouTube, Google Maps, WhatsApp buttons) and may track your interactions across sites.

15.3 How We Use Tracking Technologies

In addition to cookies, we use tracking pixels, beacons, and JavaScript snippets to collect user behavior data. These technologies help us:

• Measure site performance and load times
• Analyze browsing behavior for improvements
• Serve interest-based advertisements
• Understand demographic and geographic trends

15.4 Consent and Control

Under Indian privacy laws, we respect your right to give or withhold consent for non-essential. When you visit Clickin.in, a banner or popup informs you about cookie usage, allowing you to accept, reject, or customize your preferences.

You can also control cookies manually by:

• Adjusting your browser settings to block or delete cookies
• Using private/incognito browsing modes
• Opting out of personalized ads via Google Ads Settings or Facebook Ad Preferences

15.5 Data Collected via Cookies

Cookies may collect the following types of data, depending on their category:

• Device type, IP address, browser type and version
• Geographic location (approximate)
• Pages visited, time spent, and click interactions
• Login session IDs (for authenticated users only)
• Referring URL and exit pages

15.6 Third-Party Integrations

We work with third-party analytics and advertising providers like:

• Google Analytics: Tracks website usage patterns. You can opt out via the Google Analytics Opt-Out Add-on.
• Meta/Facebook Pixel: Helps show targeted ads and measure conversions.
• Hotjar or Similar Tools: Capture anonymized heatmaps and session recordings to improve usability.

15.7 Compliance with Indian Laws

We implement cookie and tracking mechanisms in accordance with the following Indian regulations:

• DPDP Act, 2023 – We seek valid user consent for tracking that involves personal data.
• SPDI Rules, 2011 – We ensure transparency about data collected via cookies.
• IT Act, 2000 – Section 72A – We avoid unlawful disclosure of personal data obtained via tracking tools.

15.8 Cookie Retention Duration

Cookies are stored for different durations based on their purpose:

• Session Cookies: Deleted automatically when the browser is closed.
• Persistent Cookies: Remain on your device for a specified period (typically between 30 to 365 days) unless manually deleted.

15.9 Updates to Our Cookie Policy

This section may be updated periodically to reflect changes in technology, laws, or our services. We encourage you to review this section from time to time for any updates.

15.10 Contact for Cookie Concerns

If you have any questions about our use of cookies or how to manage them, please reach out to our Grievance Officer at help@clickin.in.

Section 16: User Rights and Grievance Redressal Mechanism

At Clickin.in, we are committed to upholding your rights as a digital user under Indian law, including the Digital Personal Data Protection Act, 2023 (DPDP Act) and the Information Technology Act, 2000. This section outlines your key rights and the mechanism to raise grievances, ensuring you are fully informed, empowered, and protected.

16.1 Your Legal Rights

As a user of our services, you are entitled to exercise the following rights under applicable Indian privacy laws:

• Right to Access: You can request a summary or copy of the personal data we hold about you.
• Right to Correction: You can request correction of inaccurate or outdated personal data in our records.
• Right to Erasure: You may request deletion of your personal data in specific circumstances, such as account closure or withdrawal of consent.
• Right to Consent Withdrawal: You may withdraw consent to process your data for any non-essential purpose at any time.
• Right to Grievance Redressal: You can file a complaint if you believe your data is being misused or mishandled.
• Right to Nominate: As per the DPDP Act, you can nominate another person to exercise your data rights in the event of death or incapacity.

16.2 How to Exercise Your Rights

You may submit a request to exercise any of your rights by emailing us or contacting our Grievance Officer using the details below. Please include the following in your request:

• Your full name and registered email address or phone number
• A description of the right you wish to exercise
• Any relevant identification or authorization if required (especially for sensitive data requests)

We aim to respond to such requests within 15 business days of receipt, as per DPDP compliance timelines.

16.3 Grievance Redressal Procedure

If you have any concerns, complaints, or disputes regarding how your personal data is being handled, please follow the steps below:

1. Submit your grievance via email to the Grievance Officer at help@clickin.in.
2. Include your contact information, the nature of the issue, and any relevant supporting documents.
3. We will acknowledge your complaint within 72 hours and aim to resolve it within 15 days.

16.4 Grievance Officer Details (As per IT Act, 2000 and DPDP Act, 2023)

Name: Mustakim Khan
Designation: Grievance Officer
Company: MK Enterprises, Thane Mumbai, Maharashtra, India
Email: help@clickin.in

Mobile: 9619701322

Availability: Monday to Friday, 10:00 AM – 6:00 PM (IST)

16.5 Right to Approach Data Protection Board of India

If you are dissatisfied with our response or believe that your data rights are being violated, you have the right to escalate the matter to the Data Protection Board of India (DPBI) under the DPDP Act, 2023. Details on how to approach the DPBI will be provided on their official website upon its launch by the Ministry of Electronics and Information Technology (MeitY).

16.6 Non-Discrimination Clause

We respect your data rights and assure you that exercising any of the above rights will not result in denial of service, discriminatory treatment, or any penalty, unless such data is essential for delivering the core service.

Section 17: Children’s Privacy

At Clickin.in, we give utmost importance to the privacy and safety of children using digital platforms. In line with Indian laws such as the Digital Personal Data Protection Act, 2023 (DPDP Act), the Information Technology Act, 2000, and global best practices, we ensure that personal data related to minors is handled with enhanced care and protection.

17.1 Age Limit for Use

Our website and services are intended for individuals who are at least 18 years of age. If you are under the age of 18, you may use our services only with the involvement and consent of a parent or legal guardian.

We do not knowingly collect personal data from children below the age of 18 without verifiable parental consent. If we become aware that we have inadvertently collected such data, we will take immediate steps to delete it.

17.2 Parental Consent and Oversight

If a minor (under 18) is using our platform through parental involvement, the parent or guardian must:

• Provide verifiable consent for any data processing activity
• Remain responsible for the minor’s interactions and data shared on the platform
• Have the ability to review, correct, or delete any personal data shared by the child

We may request verification details to confirm parental authority, such as an OTP-based phone or email authentication or an identity document (in sensitive cases only).

17.3 Measures for Child Safety

To further ensure child privacy and safety, we undertake the following:

• We design our interface and communication tools to avoid soliciting or encouraging minors to submit personal data
• We do not use any minor’s personal data for advertising, marketing, or profiling purposes
• We educate users through warnings and notices that children must be accompanied by adults when using our services

17.4 Reporting Violations

If you believe that a child under 18 has provided us with personal information without appropriate consent, or if you become aware of any misuse of a child’s data on our platform, please contact us immediately at help@clickin.in.

We take such reports seriously and will investigate promptly, including removing the information or suspending related accounts if necessary.

17.5 Legal Compliance

We are committed to compliance with:

• Section 43A of the IT Act, 2000 and associated IT Rules that define reasonable security practices for sensitive personal data, including of minors
• DPDP Act, 2023, which imposes special obligations for processing children’s personal data
• Any additional guidelines or obligations issued by the Ministry of Electronics and Information Technology (MeitY) regarding child safety and digital protection

17.6 Responsibility of Parents and Guardians

We encourage all parents and guardians to take an active role in their children’s online activities. Please educate your children about online safety, guide their digital behavior, and review the privacy settings on the devices and platforms they use.

By using Clickin.in, you confirm that you are either:

• 18 years or older, or
• Using the platform under parental supervision with proper consent

Section 18: Policy Updates and Communication

At Clickin.in, we reserve the right to update, modify, or revise this Privacy Policy at any time to reflect changes in our practices, technology, legal obligations, or user feedback. It is our commitment to keep you informed transparently and in a timely manner about how your personal data is handled under evolving circumstances, especially in accordance with Indian laws such as the Digital Personal Data Protection Act, 2023 and the Information Technology Act, 2000.

18.1 Nature of Updates

Policy updates may occur due to the following reasons:

• Changes in legal requirements or regulatory frameworks
• Introduction of new services, features, or partnerships
• Enhancements in data security or processing technologies
• Internal audits or feedback from users or legal authorities

18.2 Notification of Changes

When changes are made to this Privacy Policy, we ensure that you are notified through one or more of the following methods:

• A prominent banner or pop-up on our website
• An email sent to your registered email address (if available)
• In-app notifications (for mobile or web applications, if applicable)
• Updates to the “Last Updated” date at the top of this Policy

It is your responsibility to periodically review this Policy to stay informed of any changes. Continued use of our website or services after the effective date of any change will be considered your acceptance of the updated terms.

18.3 Material Changes

If any change significantly affects your rights or how we process your personal data (e.g., introduction of new categories of data collection or sharing with new third parties), we will seek your explicit consent before implementing such changes, wherever required by law.

18.4 Version Control

Every version of this Privacy Policy is time-stamped and archived for reference. You may request a copy of previous versions by contacting us at help@clickin.in.

18.5 Communication Channels

For any clarification, questions, or concerns regarding policy changes, users are encouraged to reach out via:

• Email: help@clickin.in
• Contact Form: Available on our Contact Us page
• Postal Address: As mentioned in the final contact section of this policy

18.6 User Responsibility

We advise all users to:

• Regularly review this Privacy Policy for the latest updates
• Keep your contact details updated to ensure you receive notifications
• Contact us immediately if you disagree with any updated terms

Your trust and data safety are important to us, and we are committed to keeping you informed and protected under all legal frameworks applicable within India.

Section 19: User Testimonials and Public Content

At Clickin.in, we encourage and value the feedback, reviews, testimonials, and public contributions shared by our users. These may include written reviews, ratings, profile submissions, success stories, or any content voluntarily submitted by users for publication on our platform. This section outlines how we handle such content under applicable Indian laws and user rights.

19.1 Voluntary Submission of Testimonials

When users submit testimonials, reviews, or feedback to Clickin.in, either via our platform, email, social media, or any other medium, they are doing so voluntarily. By submitting such content, you agree to allow us to display, publish, and promote your submission for marketing, promotional, or editorial purposes on our website, social platforms, and other media, unless explicitly restricted by you in writing.

19.2 Information Displayed

Testimonials and public content may include personal identifiers such as:

• Name (full or partial, depending on submission)
• Profile photo or initials
• City and state (location)
• Review text and rating
• Platform badge (e.g., Google, Facebook)
• Date of submission

We display this information strictly in line with what the user has submitted or authorized. No testimonial is ever fabricated or edited to misrepresent the contributor’s experience.

19.3 Consent and Rights

By submitting public content, you:

• Confirm that the content is accurate and genuinely based on your experience
• Grant Clickin.in a non-exclusive, royalty-free, worldwide license to use, reproduce, and publish the content
• Understand that the content may remain publicly visible unless you request its removal

If you later wish to withdraw your testimonial or have it modified, you may contact us with your request. We will comply within a reasonable timeframe, typically within 7 working days.

19.4 Moderation and Approval

To ensure quality and legality, all testimonials and public submissions undergo moderation. We may refuse to publish or remove content that contains:

• Offensive or defamatory language
• Inappropriate personal information
• False, misleading, or promotional content
• Copyrighted material without authorization

This helps us maintain a respectful and trustworthy platform for all users in line with Indian internet content regulations and ethical standards.

19.5 Legal Considerations (India Specific)

In India, user-generated content including testimonials may be governed by:

• IT Act, 2000 – for offensive or harmful digital content
• Consumer Protection Act, 2019 – to ensure truthful representation of user experiences
• Defamation Laws (IPC Section 499/500) – to prevent harm through false or derogatory statements

Clickin.in is committed to following all such laws and ensuring that testimonials are displayed in a responsible and lawful manner.

19.6 Platform-Specific Publishing

Testimonials may also be published on third-party platforms (such as Google Reviews, Facebook, or others) where applicable. When submitting reviews on those platforms, you are subject to their respective privacy policies and community guidelines.

19.7 Withdrawal or Update Requests

You can request the removal, update, or anonymization of your testimonial at any time by writing to us at help@clickin.in. We may ask you to verify your identity before processing the request to prevent misuse.

Your shared experiences help us grow and serve better. We deeply appreciate your trust and strive to present your voice honestly and respectfully across all media.

Section 20: Children’s Privacy and Age Restrictions

Clickin.in is committed to protecting the privacy and safety of children online. This section outlines our policy regarding users under the age of 18, in accordance with Indian laws and global best practices. We take special care when it comes to minors and do not knowingly collect or process data from children without appropriate consent.

20.1 Minimum Age Requirement

To use our services, you must be at least 18 years old or the age of majority as per your local laws in India. By accessing or using Clickin.in, you confirm that you meet this age requirement.

Under the Indian Contract Act, 1872, a person below the age of 18 cannot legally enter into binding agreements, including our Terms of Use. Therefore, users under this age are strictly prohibited from creating accounts or using services that require data submission.

20.2 No Knowing Collection of Children’s Data

We do not knowingly collect personal information from children under 18. If we become aware that we have unintentionally collected data from a minor without verifiable parental or guardian consent, we will take prompt steps to delete such information from our systems.

20.3 Parental and Guardian Supervision

If you are a parent or legal guardian and believe your child has provided personal data to us without your consent, please contact us immediately at help@clickin.in. We will take appropriate actions, including verifying your identity and removing the data where necessary.

20.4 Educational or Family Use Cases

In cases where a child may access our services under parental supervision for educational or learning purposes, the account and interaction must be managed by the adult. The adult shall be fully responsible for the data shared and content accessed.

20.5 Compliance with Indian Laws

This policy is made in accordance with relevant Indian laws, including:

• Information Technology Act, 2000 and its rules on digital data protection
• Indian Contract Act, 1872 for age of consent to agreements
• Digital Personal Data Protection (DPDP) Act, 2023, which includes special provisions regarding children’s data

Under the DPDP Act, entities are restricted from tracking, profiling, or targeting children with ads or services without express consent from parents or legal guardians.

20.6 Awareness and Digital Literacy

We encourage parents and guardians to educate children about safe online behavior, privacy awareness, and the importance of not sharing personal details on any digital platform. Children should be taught to never share their:

• Full name
• Address or location
• Mobile number or email
• School or family details
• Photographs without supervision

20.7 What to Do If You Are a Minor

If you are under 18 years of age, please do not register on Clickin.in or provide any personal information. You may only use the site under the guidance and full control of a parent or guardian, and only if they take full responsibility for your use.

20.8 Policy Updates for Children’s Privacy

We may update this section periodically to remain aligned with legal changes and best practices regarding children’s data protection. Any such updates will be published on this page and will take effect immediately upon posting.

At Clickin.in, the safety and dignity of children in the digital space are non-negotiable. We urge all users to help maintain a safe environment for all, especially vulnerable individuals.

Section 21: Policy Updates and Change Notifications

Clickin.in may revise or update this Privacy Policy from time to time to reflect changes in legal requirements, technological advancements, business practices, or user feedback. We believe in maintaining transparency and ensuring that users are always aware of how their data is handled. This section outlines how we communicate such changes and what they mean for you.

21.1 Periodic Policy Revisions

We reserve the right to make changes to this Privacy Policy at any time. Updates may be minor (clarifications, formatting changes) or significant (changes in the purpose of data use, new third-party sharing practices, or new legal obligations under Indian law such as the DPDP Act, 2023).

Examples of events that may lead to updates include:

• New features or services launched on Clickin.in
• Changes to Indian data protection laws or legal rulings
• Partnerships with third-party vendors or analytics providers
• Internal audits or user feedback requiring clarification

21.2 User Notification of Changes

Whenever a material change is made to this policy, we will notify users through one or more of the following methods:

• A prominent notice on our homepage or dashboard
• An in-app notification or system alert on login
• An email sent to your registered email address, if available
• An update notification on our Privacy Policy page with the “Last Updated” date changed

We recommend you review this policy periodically to stay informed about how your information is being protected and used.

21.3 Continued Use as Consent

By continuing to use Clickin.in after updates to the Privacy Policy are posted, you are agreeing to the revised terms. If you do not agree to the updated policy, you should stop using the services immediately and may request account closure and data deletion as per Section 17.

21.4 Version History and Archiving

To maintain transparency, we keep an internal archive of previous versions of our Privacy Policy. If you would like to view an older version or understand the nature of a past change, you may contact us at help@clickin.in.

21.5 Legal Compliance with Indian Regulations

This section has been created in accordance with Indian laws such as:

• Digital Personal Data Protection (DPDP) Act, 2023
• Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
• Indian Contract Act, 1872 (for consent validity)

Any changes to the policy that affect your rights will be fully documented and communicated. You will always have the right to withdraw your consent or request clarification before continuing use.

21.6 Contact for Change-Related Questions

If you have any questions regarding changes to this Privacy Policy or wish to understand the impact of a specific update, you can reach our Grievance Officer or write to us at help@clickin.in.

Your continued trust in Clickin.in is important to us. We are committed to updating you clearly and respectfully while ensuring your rights remain protected at all times.

Section 22: Your Responsibilities and Best Practices

At Clickin.in, we are committed to protecting your privacy and data, but safeguarding your personal information is a shared responsibility. This section outlines your responsibilities as a user and suggests best practices you should follow to ensure your data remains secure and your rights protected under Indian law.

22.1 Providing Accurate Information

When you sign up or interact with our services, you are expected to provide accurate, complete, and up-to-date information. This ensures that:

• You receive proper support and communication.
• We comply with Indian regulations such as Know Your Customer (KYC) norms where applicable.
• Your data can be managed and secured appropriately.

False or misleading information may result in account suspension or legal consequences under the Indian Penal Code (IPC) for misrepresentation or fraud.

22.2 Safeguarding Your Login Credentials

You are responsible for maintaining the confidentiality of your account credentials (username, password, OTPs, etc.). We strongly recommend:

• Using a strong password with a mix of letters, numbers, and symbols.
• Never sharing your password or OTP with anyone, including Clickin.in staff.
• Changing your password regularly.
• Logging out of your account after each session, especially on shared or public devices.

If you suspect any unauthorized access or breach, notify us immediately at help@clickin.in.

22.3 Respecting the Rights of Others

As a responsible user, you must not misuse personal data of other users or engage in activities that violate their privacy or rights. This includes:

• Sending spam, phishing links, or fraudulent messages.
• Accessing, storing, or misusing another user’s personal information.
• Harassing or impersonating individuals on our platform.

Violations may lead to strict actions including suspension, legal notice, or FIR under relevant Indian laws such as the IT Act, 2000 and the IPC.

22.4 Following Community and Legal Norms

You must use Clickin.in in accordance with applicable Indian laws, including:

• The Digital Personal Data Protection (DPDP) Act, 2023
• The IT Act, 2000 and its amendments
• Consumer Protection Act, 2019
• Indian Penal Code (IPC), 1860

Using Clickin.in for any illegal activity—such as cyberstalking, blackmailing, data theft, or identity fraud—will result in legal consequences and cooperation with law enforcement authorities.

22.5 Device and Network Security

You are advised to use secure devices and networks when accessing Clickin.in. Best practices include:

• Installing antivirus and firewall software.
• Avoiding use of public Wi-Fi for financial or sensitive actions.
• Keeping your device operating system and browser up-to-date.

We are not liable for losses or data breaches arising from your use of insecure devices or networks.

22.6 Reporting Vulnerabilities or Misuse

If you identify any misuse of the platform or a potential security issue, you are encouraged to report it responsibly to help@clickin.in. Prompt reporting helps us improve the safety and reliability of the platform for all users.

22.7 Consent and Acknowledgement

By using Clickin.in, you acknowledge that you have read, understood, and agreed to:

• This Privacy Policy and your role in it.
• Acting in accordance with legal and ethical responsibilities.
• Ensuring your own security and that of others on the platform.

Your responsible behavior directly contributes to a secure and trustworthy environment on Clickin.in.

Section 23: Data Localization and Storage in India

At Clickin.in, we understand the importance of protecting personal data within the jurisdiction of Indian law. This section explains how we handle the storage, processing, and localization of user data in accordance with the laws and expectations of India, including the Digital Personal Data Protection (DPDP) Act, 2023 and guidelines from the Ministry of Electronics and Information Technology (MeitY).

23.1 What is Data Localization?

Data localization refers to the requirement that certain categories of data—especially personal and sensitive personal data—be stored and processed within India’s geographical boundaries. The Indian government mandates this to ensure:

• Better control over data security and privacy.
• Facilitation of legal enforcement and investigation.
• Protection against foreign surveillance or misuse.

23.2 Our Commitment to Indian Data Residency

We ensure that the primary storage of all user data collected through Clickin.in is located within secure, ISO-certified data centers situated in India. These facilities follow industry best practices for:

• Data encryption at rest and in transit.
• 24/7 surveillance and physical access controls.
• Disaster recovery and backup protocols.

By keeping your data within India, we align with national digital sovereignty objectives and make sure your information remains within the protective scope of Indian regulatory frameworks.

23.3 Cross-Border Data Transfer (If Applicable)

In very limited circumstances, where a third-party service (such as email delivery or analytics) is involved, some non-sensitive data may be processed by providers with servers outside India. However:

• Such transfer is only done in compliance with Section 16 of the DPDP Act, 2023.
• We verify that the recipient country has adequate data protection standards.
• Strong Data Processing Agreements (DPAs) are signed with such third parties to protect your rights.
• Transfers occur only when absolutely necessary and with user knowledge where applicable.

23.4 Duration of Storage

We retain personal data only for as long as it is required to fulfill the purposes outlined in this Privacy Policy, or as mandated by Indian law (such as for tax, regulatory, or audit obligations). After this period, data is securely deleted using certified data wiping tools.

23.5 Data Protection Safeguards in Storage

To protect the integrity and privacy of your data while stored, we implement the following safeguards:

• End-to-end AES-256 encryption for data storage.
• Role-based access control to limit access to authorized personnel.
• Real-time security monitoring and incident response mechanisms.
• Regular vulnerability testing and risk audits.

23.6 Legal Compliance and Government Access

We cooperate with law enforcement agencies and government authorities only when legally required, and such access is granted strictly based on formal written requests or judicial orders, as per the provisions of the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 and the IT Act, 2000.

We never sell or voluntarily disclose your data to foreign entities or commercial parties without your explicit consent.

23.7 Your Rights Related to Data Storage

As a user in India, you have full rights under the DPDP Act to:

• Know where your data is stored.
• Request correction or deletion of stored data.
• Withdraw consent for future storage of non-essential data.
• Complain to our Grievance Officer or the Data Protection Board if your rights are violated.

23.8 Future Readiness and Updates

We continuously track regulatory developments from MeitY, the Reserve Bank of India (RBI), and other government agencies. If new localization rules are introduced, we will promptly update our infrastructure and notify users accordingly.

Clickin.in is committed to honoring India’s digital sovereignty while delivering world-class data security to our users.

Section 24: Artificial Intelligence (AI) and Automated Decision-Making

At Clickin.in, we may use Artificial Intelligence (AI) technologies and automated systems to enhance your experience, provide faster services, and improve our platform. This section explains how such systems work, what decisions they may take, and your rights regarding these automated processes—especially in accordance with Indian digital rights and emerging ethical standards.

24.1 Use of AI at Clickin.in

We use AI in the following areas:

• Content Recommendations: To show you relevant services, offers, or content based on your preferences.
• Fraud Detection: To identify suspicious or potentially harmful activities automatically.
• Chat Support: Our chatbot may use AI to respond quickly to basic queries and route complex issues to human agents.
• Personalization: We tailor your dashboard, search results, or notifications using machine learning models trained on anonymized data.

24.2 No Solely Automated Legal or Financial Decisions

We do not use AI to make any legally binding decisions, or financial judgments (e.g., approving refunds, banning accounts, terminating services) without human involvement. Every sensitive or impactful decision is reviewed or authorized by a real person.

24.3 Transparency and Fairness in Algorithms

We strive to ensure our AI systems are:

• Fair: Designed to avoid bias based on religion, caste, gender, region, or language.
• Transparent: We provide clear information about when and how AI is used in our services.
• Accountable: Human reviewers oversee and validate important AI decisions before final implementation.

24.4 Your Rights Regarding Automated Processing

Under Indian laws and best practices, you have the following rights when AI-based or automated tools are used:

• Right to Explanation: You can ask for a human explanation of how an AI-based recommendation or outcome was generated.
• Right to Challenge: If you disagree with an automated outcome, such as an incorrect warning or suggestion, you may appeal for human review.
• Right to Opt-Out (if applicable): In non-essential features, you may choose not to participate in automated decision-making tools.

24.5 Responsible AI Use and Indian Digital Ethics

We align our AI usage with global ethical AI frameworks and evolving Indian government guidelines including those from the National Strategy for AI (NITI Aayog) and Digital India Initiative. We aim to:

• Maintain human dignity and fairness.
• Ensure explainability and accountability in algorithm design.
• Protect privacy, especially of minors, marginalized users, and rural populations.

24.6 No Profiling Without Consent

We do not use AI to profile you for marketing or targeting without your explicit consent. Any profiling for advertising or personalization is opt-in, and users can withdraw consent at any time.

24.7 Human Oversight Always Exists

Even in cases where AI makes recommendations or categorizes content, human administrators or moderators are always available to intervene, override, or provide clarity. Your concerns will never be left to a machine alone.

Clickin.in believes in building trustworthy, ethical AI systems that enhance your digital experience while respecting your rights and individuality. We commit to evolving with Indian legal frameworks and societal expectations.

Section 25: Minors and Child Privacy Protection in India

At Clickin.in, we are deeply committed to protecting the privacy and personal data of minors (children under 18 years of age) in strict compliance with Indian laws and international child safety norms. This section outlines how we handle the data of minors, obtain verifiable consent, and maintain transparency with parents and guardians.

25.1 Definition of a Minor (Child)

As per the Digital Personal Data Protection Act, 2023 (DPDP Act) and Section 11 of the Indian Majority Act, a “minor” is defined as an individual below the age of 18 years. For the purposes of this policy, all references to children or minors shall apply to users under this age limit.

25.2 No Direct Data Collection from Minors

We do not knowingly collect personal information directly from children under 18 without the verifiable consent of their parents or legal guardians. If you are a minor, you must obtain permission from a parent or guardian before accessing or using our services.

25.3 Parental or Guardian Consent

Before collecting any data of a user identified as a minor, we ensure that:

• Consent is collected from the child’s parent or legal guardian through verifiable methods (e.g., email confirmation, OTP authentication).
• The parent/guardian is informed about what data will be collected, how it will be used, and their rights to review or delete such data.

25.4 Child-Centric Data Practices

We follow strict child-focused data handling protocols:

• We do not profile or track minors for personalized ads.
• No behavioral advertising is conducted for children.
• We limit data collection to only what is absolutely necessary for basic platform access.
• We avoid using deceptive UX patterns or dark patterns that might manipulate children.

25.5 Rights of Parents and Guardians

If you are a parent or legal guardian of a minor who has interacted with our services, you have the right to:

• Review the child’s personal data we have collected.
• Request correction or deletion of the child’s data at any time.
• Withdraw consent previously given for processing the child’s data.
• Contact our Grievance Officer for any concerns regarding the child’s online experience or data privacy.

25.6 Educational Content and Age-Appropriate Design

When services or content are accessible to minors, we strive to:

• Ensure the content is age-appropriate and safe.
• Avoid displaying mature, harmful, or misleading material to child users.
• Use interfaces that are understandable and navigable by younger users.

25.7 Compliance with Indian and Global Child Safety Laws

Our practices comply with the following child protection frameworks:

• Digital Personal Data Protection Act, 2023 (India)
• Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021
• Protection of Children from Sexual Offences (POCSO) Act, 2012 – for content moderation and reporting.
• UN Convention on the Rights of the Child (UNCRC) – to align with best practices globally.

25.8 Reporting Child Safety Concerns

If you believe a child’s data has been collected without proper consent, or you have concerns about child safety on our platform, please report it immediately to our Grievance Officer at help@clickin.in. We investigate such concerns with utmost priority and take action under applicable Indian laws.

25.9 Special Precautions During Contests or Promotions

If any promotional activity is targeted toward young audiences, we ensure:

• Parental consent is obtained before participation.
• Prizes or rewards are not manipulative or misleading.
• Terms and conditions are clearly explained in simple language.

Clickin.in prioritizes child safety in every interaction. Our systems, policies, and human practices are designed to ensure that no minor is exposed to unnecessary data collection, risk, or inappropriate content.

Section 26: Consent Management and Opt-Out Rights

At Clickin.in, we believe that consent is not just a legal requirement but a fundamental right of every user. This section outlines how we obtain, manage, store, and respect your consent — including your rights to opt out of data processing at any time in accordance with the Digital Personal Data Protection Act, 2023 and applicable Indian IT laws.

26.1 What is Consent?

Consent is the clear and affirmative action taken by a user to allow us to collect, use, or process their personal data. As defined by the DPDP Act:

• Consent must be free, specific, informed, unconditional, and unambiguous.
• The user must be aware of the purpose for which the data is being collected.
• Consent must be revocable at any time.

26.2 When Do We Ask for Consent?

We request your consent before performing any of the following:

• Creating an account or profile on Clickin.in.
• Sending marketing emails, SMS, or WhatsApp messages.
• Collecting location data or device identifiers.
• Placing non-essential cookies on your browser.
• Sharing your data with third-party partners.

26.3 Consent Capture Mechanisms

We capture consent using the following transparent and recordable methods:

• Checkboxes or toggles (unchecked by default) for optional data use.
• Consent banners for cookies with “Accept” and “Manage Preferences” options.
• Email/SMS verification for sensitive data uses.
• Pop-up prompts or dashboards on your user account profile page.

26.4 Consent Logging and Storage

We maintain a secure log of all consents provided by users, including:

• Date, time, and method of consent.
• Details of what was consented to.
• Version of the privacy policy or terms active at that time.
• User’s IP address and device information (to verify authenticity).

This ensures we are legally compliant and accountable for every data processing activity.

26.5 Right to Withdraw Consent (Opt-Out)

Under the DPDP Act and your digital rights as an Indian citizen, you have the full right to:

• Withdraw consent at any time without affecting the lawfulness of past data processing.
• Opt out of specific services like marketing, newsletter emails, or location-based targeting.
• Request deletion of your personal data that was collected based on such consent.

You can exercise your opt-out rights through:

• Our privacy settings dashboard available on your profile page.
• Emailing our Grievance Officer at help@clickin.in.
• Clicking “Unsubscribe” links in our communications.

26.6 Granular Consent

We provide options for you to manage consent at a granular level. For example:

• You may consent to email communication but opt out of SMS notifications.
• You may allow us to store browsing preferences but deny marketing profiling.

This ensures that you are always in control of your data usage preferences.

26.7 Consent for Minors

In the case of minors (under 18 years of age), we require verifiable consent from a parent or legal guardian before any data collection or usage, as mentioned in Section 25.

26.8 Validity and Review of Consent

We periodically review and refresh your consent preferences, especially if:

• There is a change in our services or privacy policy.
• You have not accessed your account for a long time.
• You request to reconfigure your privacy settings.

26.9 Third-Party Consent Sharing

If we share your data with third parties (as outlined in Section 8), we ensure:

• Consent is obtained specifically for that sharing.
• Third parties comply with data protection laws and do not reuse the data without further consent.
• You are informed about such sharing in advance through our Privacy Policy or during the consent process.

26.10 Your Responsibilities as a User

We request you to:

• Read consent prompts carefully before agreeing.
• Regularly review and update your preferences from your account settings.
• Report any issue of data misuse or unconsented processing to us immediately.

At Clickin.in, we treat your consent as a living, active expression of your will — not just a checkbox. We are fully committed to keeping it meaningful, revocable, and respected in every interaction.

Section 27: Payment Information and Financial Data Security

At Clickin.in, we take the protection of your payment and financial information extremely seriously. This section outlines how we collect, process, and secure any financial data shared with us, in compliance with the Information Technology Act, 2000, the Reserve Bank of India (RBI) guidelines, and other applicable Indian regulations on digital payments and e-commerce security.

27.1 What Financial Information We Collect

We may collect the following types of financial data when you make a transaction on our platform:

• Name on the card or payment account.
• Billing address and contact number (for invoice generation).
• UPI ID (Unified Payments Interface).
• Transaction ID, amount paid, and timestamp.
• Partial card details (never the full card number or CVV).
• Bank name or wallet used (e.g., Paytm, PhonePe, Google Pay, Cashfree, Instamojo, Razorpay, etc.).

27.2 Secure Payment Gateways

Clickin.in does not store or directly handle any card or sensitive financial data. All online transactions are processed through RBI-authorized PCI-DSS compliant payment gateways such as:

• Razorpay
• Payu
• Paytm Payment Gateway
• PhonePe Business
• Cashfree
• Google Pay / UPI

These gateways use 128-bit or higher SSL encryption and industry-standard security measures. Your data is never stored on our servers during card processing or UPI transfers.

27.3 Compliance with RBI & IT Act Regulations

We strictly adhere to RBI mandates, including:

• No storage of full debit/credit card data by merchants post-transaction.
• Tokenization of card information by banks/payment gateways (if applicable).
• Two-factor authentication (2FA) for all applicable transactions.

We also follow the security practices as prescribed under the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.

27.4 Fraud Detection and Monitoring

To detect and prevent fraud or suspicious financial activities, we implement:

• Real-time transaction tracking.
• IP address and device fingerprinting for anomalies.
• Auto alerts for duplicate or high-risk purchases.
• Manual verification in case of unusual patterns or disputes.

27.5 Refunds and Chargebacks

If you request a refund or raise a chargeback, we may temporarily store the following for reconciliation:

• Your name and email ID associated with the transaction.
• Date of transaction and payment method.
• Reason for refund/chargeback.
• Bank reference number or UTR (Unique Transaction Reference).

This information is used only for validation and is removed securely once the dispute or refund is resolved.

27.6 Data Sharing with Financial Institutions

We may share necessary payment details with:

• Your issuing bank (for refunds or settlements).
• Authorized payment processors (e.g., Cashfree, Razorpay, Instamojo, Paytm).
• Law enforcement, only upon lawful written request (e.g., suspected fraud).

No payment data is ever sold or shared with advertisers or marketing partners.

27.7 Data Retention of Financial Records

We retain minimal, non-sensitive financial data (e.g., invoice details, transaction summaries) for a maximum of 5 years as per Indian tax laws and accounting regulations. Sensitive details like card numbers, UPI credentials, and CVV are never stored on our systems.

27.8 Your Responsibilities

• Ensure you use secure networks (avoid public Wi-Fi) while making payments.
• Never share OTPs, CVVs, or card details with unknown parties, even if they claim to be Clickin.in representatives.
• Report suspicious or unauthorized charges immediately to both us and your bank.

27.9 Need Help?

If you face any issues related to payments, billing, or financial security, please reach out to our Grievance Officer at help@clickin.in or refer to our Terms of Use for refund policies and support timelines.

Your financial safety is our top priority. We implement industry best practices to ensure that your transactions with Clickin.in are smooth, protected, and trustworthy.

We never ask for your passwords or OTPs over phone, email, or social media. Stay alert and transact safely.

Your financial safety is our top priority. We implement industry best practices to ensure that your transactions with Clickin.in are smooth, protected, and trustworthy.

41. Audio, Video, and Media Consent

In the course of our interactions with users, we may collect or receive audio recordings, video footage, or other media formats either directly (via features like voice search or video testimonials) or indirectly (from customer support calls or surveillance footage at physical events, if applicable). We treat such media with the highest level of sensitivity and protection.

41.1 Consent for Recording and Use

By using our services, participating in any recorded communications (such as support calls or webinars), or submitting media content voluntarily (such as testimonials or reviews), you provide us your express consent to collect, store, process, and use such media as outlined in this policy. If we intend to publicly display or share such media, we will always request additional explicit consent.

41.2 Usage Context

Audio or video materials may be used to improve services, train staff, validate transactions, provide customer assistance, or for marketing (only after explicit consent). If we hold offline events or interviews, any media captured will be handled as per this policy and in line with applicable Indian laws, including the Indian Contract Act and IT Act provisions.

41.3 Storage and Retention

All audio/video content is stored securely with encryption wherever applicable. We retain such data only for as long as necessary for the intended lawful purpose and dispose of it securely thereafter, in line with Section 65B of the Indian Evidence Act, 1872, where applicable.

41.4 Right to Withdraw Consent

Users may withdraw consent for the future use of their media recordings by writing to us at help@clickin.in. Upon such withdrawal, we will cease using or displaying the content and take reasonable steps to delete the media from our systems, except where retention is mandated by law.