Legal
Privacy Policy
Last updated: May 11, 2026
This Privacy Policy describes how Gandharaja collects, uses, and shares information when you use our website and services. By using our Service, you agree to the collection and use of information in accordance with this policy.
Contents
Interpretation & Definitions
Words whose initial letters are capitalised have meanings defined below and apply equally in singular and plural form.
Collecting and Using Your Personal Data
Personal Data
When you use our Service or make a purchase, we may collect the following personally identifiable information:
- ◆Name and email address
- ◆Phone number
- ◆Shipping address (street, city, state, postal code, country)
- ◆Bank account or payment reference information for processing transactions
- ◆Additional verification data (date of birth, government ID, or bank statements) where required for fraud compliance on certain transactions
Usage Data
Usage Data is collected automatically when you use the Service and may include:
- ◆Your device's IP address, browser type, and version
- ◆The pages of our Service you visit and the time spent on each page
- ◆Unique device identifiers and diagnostic data
- ◆On mobile: device type, unique mobile device ID, operating system, and browser type
Tracking Technologies & Cookies
We use Cookies and similar tracking technologies to monitor activity on our Service. You may refuse cookies through your browser settings, though some parts of the Service may then not function correctly.
Required for authentication and fraud prevention. The Service cannot function without these.
Remembers whether you have accepted our cookie notice.
Remembers your preferences and login details for a better experience.
Non-essential cookies require your consent where legally required. You may withdraw consent at any time through your browser or cookie preference settings.
How We Use Your Data
We use your Personal Data for the following purposes:
- ◆To provide, operate, and improve the Service
- ◆To manage your account and purchase registrations
- ◆To fulfil purchases and perform contractual obligations
- ◆To contact you via email, telephone, or SMS regarding your order or account
- ◆To send marketing communications about similar products or services (you may opt out at any time)
- ◆To manage and respond to your requests and enquiries
- ◆To evaluate or execute business transfers (mergers, acquisitions)
- ◆For data analysis, trend identification, and Service improvement
Retention & Deletion of Your Data
We retain Personal Data only as long as necessary for the purposes outlined in this policy, or as required by law.
| Data Category | Retention Period |
|---|---|
| User Accounts | 24 months after account closure |
| Support Tickets & Chat Transcripts | 24 months from closure |
| Website Analytics & Server Logs | 24 months from collection |
| Payment Information | Not stored — transaction records kept 10 years for tax and legal compliance |
| Billing Records & Invoices | 10 years for accounting requirements |
When data is deleted it is removed from active systems. Encrypted backups are retained for a limited period before permanent deletion. Data may be anonymised and retained indefinitely for statistical purposes.
Your Right to Delete
You have the right to request deletion of your Personal Data. You may do so through your account settings or by contacting us directly. Retention may be required where mandated by legal obligations.
Security of Your Personal Data
We use commercially reasonable technical and organisational measures to protect your Personal Data from unauthorised access, alteration, disclosure, or destruction.
Please note: No method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee its absolute security.
Your Personal Data may be transferred to and processed in locations outside your country where data protection laws may differ. Such transfers are subject to appropriate safeguards as required by applicable law.
Payment Processors
We do not store your payment card information. All payments are handled by PCI-DSS-compliant third-party processors (a standard administered jointly by Visa, Mastercard, American Express, and Discover).
Bank transfers may require identity verification information, used solely for fraud compliance and not stored beyond the transaction.
"Do Not Track" Policy (CalOPPA)
Our Service does not currently respond to Do Not Track (DNT) browser signals. Some third-party websites may track your browsing activity when you leave our Service. You can enable or disable DNT through your browser preferences.
Children's Privacy
Our Service is not directed to anyone under the age of 16. We do not knowingly collect personally identifiable information from children under 16.
If you are a parent or guardian and believe your child has provided us with Personal Data, please contact us immediately. We will remove such information upon discovery. Parental consent may be required where mandated by applicable law.
Links to Other Websites
Our Service may contain links to third-party websites that we do not operate. We have no control over and assume no responsibility for their content or privacy practices. We encourage you to review the Privacy Policy of every website you visit.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Where significant changes occur, we will also notify you via email or a prominent notice on the Service before the changes take effect.
We encourage you to review this page periodically.
Contact Us
For questions about this Privacy Policy or how we handle your data, please contact us:
