Legal

Privacy Policy

Effective Date: 12 May 2026  ·  Compliant with DPDPA 2023 & IT Act 2000

1. Introduction

AddMads ("we", "us", "our") is committed to protecting the privacy and personal data of our clients, website visitors, and business contacts. This Privacy Policy explains how we collect, use, store, and protect your personal data in accordance with the Digital Personal Data Protection Act, 2023 (DPDPA 2023), the Information Technology Act, 2000 (IT Act), the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (SPDI Rules), and all applicable Indian laws.


By using our website or engaging our services, you acknowledge that you have read and agree to this Privacy Policy.

2. Data Fiduciary Information

AddMads operates as a Data Fiduciary under DPDPA 2023.


Contact for privacy matters:

Email: info@addmads.com

Phone: +91-9220872212

India

3. Personal Data We Collect

We collect the following categories of personal data:


• Identity Data: name, designation, company name

• Contact Data: email address, phone number, postal address

• Project Data: briefs, requirements, feedback, files shared during engagement

• Usage Data: IP address, browser type, pages visited, referring URLs (via analytics)

• Communication Data: emails, messages, and enquiries sent to us

• Payment Data: billing name and address (payment card details are processed by our payment gateway and never stored by us)


We do not knowingly collect personal data from individuals below 18 years of age.

4. Legal Basis and Purpose of Processing

We process personal data on the following lawful bases under DPDPA 2023:


• Consent: when you submit a contact form, enquiry, or opt into communications

• Contractual Necessity: to provide agreed design, branding, advertising, and website services

• Legitimate Interests: to respond to enquiries, improve our services, and maintain security

• Legal Obligation: to comply with applicable Indian laws, court orders, or regulatory directions


Purposes include: delivering services, sending project updates, billing and invoicing, improving our website, and complying with legal requirements.

5. Data Sharing and Third Parties

We do not sell or rent your personal data. We may share data with:


• Service Providers: cloud hosting, email delivery, analytics, and payment gateway providers — bound by confidentiality obligations

• Professional Advisors: lawyers and accountants under legal professional privilege

• Regulatory Authorities: government agencies, courts, or law enforcement when legally required


All third-party processors are required to handle data securely and only for the specified purpose.

6. Cookies and Tracking Technologies

Our website may use cookies and similar technologies for essential functionality, performance analytics, and user experience. You may control cookie settings through your browser. Disabling certain cookies may affect site functionality.


We do not use cookies to build advertising profiles or share data with ad networks.

7. Data Retention

We retain personal data only as long as necessary for the purposes for which it was collected:


• Active client data: duration of engagement plus 3 years

• Enquiry data: 12 months from last contact

• Accounting and billing records: 7 years as required under Indian tax law

• Website analytics data: 26 months (aggregated and anonymised thereafter)


After the retention period, data is securely deleted or anonymised.

8. Your Rights as a Data Principal

Under DPDPA 2023, you have the following rights:


• Right to Access: obtain information about what personal data we hold about you

• Right to Correction: request correction of inaccurate or incomplete data

• Right to Erasure: request deletion of your personal data subject to legal retention obligations

• Right to Grievance Redressal: raise complaints with our designated contact

• Right to Withdraw Consent: at any time, without affecting lawfulness of prior processing

• Right to Nominate: nominate another individual to exercise rights in case of death or incapacity


To exercise these rights, email us at info@addmads.com. We will respond within 30 days.

9. Security

We implement reasonable security practices as required by SPDI Rules 2011, including encryption in transit (TLS), access controls, and secure data storage. While we take all reasonable precautions, no transmission over the internet is 100% secure. Please notify us immediately of any suspected breach at rohilla77@gmail.com.

10. Cross-Border Data Transfers

If personal data is transferred outside India, we ensure adequate safeguards are in place, consistent with DPDPA 2023 and applicable Central Government notifications regarding permissible countries.

11. Grievance Officer

In accordance with the IT Act 2000 and the SPDI Rules 2011, a Grievance Officer is available to address concerns:


Grievance Officer: Ankit

Email: info@addmads.com

Phone: +91-9220872212


We will acknowledge your grievance within 24 hours and resolve it within 30 days.

12. Changes to This Policy

We may update this Privacy Policy periodically. The updated policy will be posted on this page with a revised effective date. Continued use of our services after changes constitutes acceptance.

13. Governing Law

This Privacy Policy is governed by the laws of India. Any disputes shall be subject to the exclusive jurisdiction of courts in India.

Terms of ServiceCancellation PolicyAbout Us