Privacy policy

Last updated: January 22, 2026

At SOONCH (“we”, “us”, “our”), we are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, store, and protect personal data when users (“user”, “you”, “your”) access or use __________ (“Website”).

By accessing or using our website, you consent to the collection and processing of your personal data in accordance with this Privacy Policy.

1. Definitions

·         “Personal Data” means any data about an individual who is identifiable by or in relation to such data.

·         “Data Principal” means the individual to whom the personal data relates.

·         “Data Fiduciary” means SOONCH, which determines the purpose and means of processing personal data.

·         “Processing” includes collection, storage, use, disclosure, sharing, or deletion of personal data.

 

2. Information We Collect

A. Personal Data Provided by You

In compliance with Section 6 of the DPDP Act and Rule 5 of the IT Rules, we may collect:

·         Name

·         Email address

·         Phone number

·         Billing and shipping address

·         Order and transaction details

B. Payment Information:

Payment details are processed securely by third-party payment gateways. SOONCH does not store card, CVV, or banking information, in compliance with RBI and IT Act standards.

C. Automatically Collected Information

As permitted under the IT Act and Intermediary Rules:

·         IP address

·         Device and browser information

·         Approximate geolocation

·         Pages visited and usage data

·         Cookies and tracking technologies

 

3. Purpose of Processing

 Your personal data is processed only for lawful purposes, including:

·         Processing and fulfilling orders

·         Managing deliveries and logistics

·         Customer support and grievance redressal

·         Fraud detection and security

·         Website analytics and improvement

·         Marketing communications only with explicit consent

We do not sell or trade personal data.

4. Consent Mechanism

·         Consent is obtained explicitly when you submit your personal data through forms, checkout, or account creation.

·         You may withdraw consent at any time, subject to legal obligations and order-related requirements.

Withdrawal of consent may affect the availability of certain services.

5. Disclosure & Third- Party Sharing

In compliance with Section 8 of the DPDP Act and Rule 6 of the IT Rules, personal data may be shared with:

·         Payment processors

·         Shipping and logistics partners

·         Website analytics and IT service providers

All third parties are contractually obligated to:

·         Process data only for authorized purposes

·         Maintain reasonable security practices

·         Comply with applicable data protection laws

 

 

6. Data Retention & Storage Limitation

In line with Digital Personal Data Protection Act, 2023 (storage limitation principle):

·         Personal data is retained only as long as necessary for the stated purposes

·         Financial, tax, and transaction data may be retained as required by law (GST, accounting, audit)

·         Upon completion of purpose, data is securely deleted, anonymized, or archived

Account data is retained until deletion is requested, subject to legal obligations.

7. Cross-Border Data Transfers

As SOONCH serves customers worldwide, personal data may be transferred outside India.

Such transfers are made:

·         In compliance with the Digital Personal Data Protection Act, 2023

·         Subject to reasonable safeguards

·         With user consent by continued use of the Website

8. Cookies & Tracking Technologies

Cookies are used for:

·         Website functionality

·         User preferences

·         Traffic analysis and User behaviour

You may control cookies through browser settings. Disabling cookies may impact Website functionality.

9. Reasonable Security Practices (IT Act & IT Rules)

In compliance with Section 43A of the Information Technology Act, 2000 and Rule 8 of the IT Rules, SOONCH implements reasonable security practices including:

·         Secure servers and encryption

·         Restricted access to personal data

·         Regular system monitoring

While we take reasonable precautions, no system is completely secure.

 

10. User Rights

You have the right to:

·         Access your personal data

·         Request correction or updating

·         Request erasure of personal data

·         Withdraw consent

·         Grievance redressal

Requests can be made using the contact details below.

11. Children’s Privacy

Our website is not intended for children under 18 years of age.

We do not knowingly collect personal data from children. If such data is identified, it will be deleted when such information is communicated to the Grievance Officer.

12. Intermediary Compliance

SOONCH acts as an intermediary for content hosted on its platform and complies with the Intermediary Guidelines and Digital Media Ethics Code Rules, 2021, including grievance redressal and lawful takedown obligations.

13. Grievance Redressal Officer

Grievance Officer: Abritti Deb
Email: a.deb@soonch.com

Brand: SOONCH

Country: India

Grievances will be acknowledged and addressed within the timelines prescribed under law.

14. Changes to this Privacy policy

We reserve the right to update this Privacy Policy to reflect legal or operational changes. Updates will be posted on this page and become effective upon publication.

 

Your data. Your story. Protected.