PRIVACY POLICY

PRIVACY POLICY

The Ahil Shop
Website: www.theahilshop.com

Effective Date: 12-02-2025

This Privacy Policy outlines how The Ahil Shop ("we," "us," or "our") collects, uses, maintains, discloses, and protects information from users ("you" or "users") of our website www.theahilshop.com and all associated products and services. As an e-commerce platform based in India, we are committed to safeguarding your privacy in compliance with the Digital Personal Data Protection Act, 2023 (DPDP Act), Information Technology Act, 2000, and other applicable laws.

This policy applies to anyone who visits our site, creates an account, makes purchases, or interacts with our services. By accessing or using our website, you consent to the practices described here. If you do not agree, please do not use our services. We encourage you to review this policy periodically, as it may evolve with our business and legal requirements.

Business Information

Business Name: The Ahil Shop
Website: www.theahilshop.com
Customer Support Email: Ahilasscents@gmail.com
Customer Support Number: +91-9119705357
Registered Address: Basi Kiratpur, Najibabad District Bijnor, Uttar Pradesh
Pincode 246731 (India)

The Ahil Shop operates as a trusted online retailer specializing in [briefly describe products if relevant, e.g., lifestyle essentials]. Our commitment to transparency starts with clear business details, ensuring you know exactly who handles your data.

Information We Collect

We collect information to provide seamless shopping experiences, process orders, and enhance our services. Collection happens transparently, with your knowledge and consent where required under Indian data protection laws.

We may gather personal identification information (PII) in various ways, including but not limited to:

  • Visiting our website: We track basic interactions to improve site performance.
  • Registering on the website: Creating an account requires details for personalized access.
  • Placing an order: Essential for fulfilment and delivery.
  • Subscribing to a newsletter: Opt-in for updates on deals and products.
  • Filling out a form: Contact forms, feedback surveys, or support tickets.

Examples of PII include:

  • Full name (e.g., first, last, or legal name as per your ID).
  • Email address (used for confirmations and communications).
  • Phone number (for order updates via SMS/WhatsApp).
  • Billing address (for payment processing).
  • Shipping address (to ensure accurate delivery).
  • Payment transaction details (e.g., transaction ID, amount, but not full card details—see Payment Information below).

We also collect non-personal information (non-PII), which doesn't identify you individually but helps us analyse trends:

  • Browser type (e.g., Chrome, Firefox) and version.
  • Device type (e.g., mobile, desktop, tablet) and operating system.
  • IP address (to detect location for region-specific content and fraud prevention).
  • Internet service provider (for network diagnostics).
  • Date and time of access (to monitor peak usage).
  • Referring URLs (e.g., how you found us via Google or social media).

For instance, if you browse products from Chandigarh, we might use your approximate IP-based location to suggest local delivery options or stock availability. We never combine non-PII with PII to profile you without consent.

Payment Information

Security is paramount for payments on The Ahil Shop. All transactions are handled through RBI-authorized third-party gateways like Razorpay, PayU, Stripe, or others certified under PCI DSS (Payment Card Industry Data Security Standard).

Key protections:

  • We do not store, process, or retain your debit/credit card numbers, CVV, UPI IDs, net banking credentials, or wallet details on our servers.
  • Tokenization is used: Gateways replace sensitive data with unique tokens for repeat purchases.
  • Example: When you buy a product worth ₹500, Payment gateways processes it end-to-end; we only receive confirmation and order ID.

This minimizes breach risks. In case of disputes, gateways provide transaction logs compliant with RBI guidelines.

Purpose of Information Collection

Your data fuels legitimate business needs, always aligned with DPDP Act principles of purpose limitation and data minimization. We use it strictly for:

  • Processing and fulfilling orders: Matching your shipping details with inventory for timely dispatch.
  • Providing confirmations and updates: Emails/SMS for order status, ETAs, or tracking links via partners like Delivery.
  • Responding to customer service: Resolving queries via email/phone within 24-48 hours.
  • Improving functionality and UX: Analysing usage to fix bugs or add features like wish lists.
  • Preventing fraud: Flagging suspicious patterns, e.g., multiple orders from one IP.
  • Complying with legal obligations: Retaining invoices for GST audits (7 years as per law).
  • Sending promotions: Only if you opt-in; unsubscribe anytime via email footer.

We never use data for unrelated purposes like selling to marketers.

Sharing of Information

The Ahil Shop does not sell, trade, or rent your PII to third parties. Sharing is limited, purposeful, and governed by strict agreements.

We disclose data only to:

  • Payment gateways (e.g., Razorpay) for transaction processing.
  • Courier/logistics partners (e.g., Blue Dart, DTDC) for shipping—limited to name, phone, address.
  • IT service providers (e.g., cloud hosts like AWS India) for secure storage/maintenance.
  • Government authorities: When mandated by law, e.g., income tax notices or cybercrime investigations under IT Act.

All partners sign Data Processing Agreements (DPAs) enforcing confidentiality, encryption, and DPDP compliance. For example, if police request data under Section 91 CrPC, we verify and share only what's legally required. No sharing with advertisers without explicit consent.

Cookies and Tracking Technologies

Cookies are small files that enhance your experience on www.theahilshop.com. We use:

  • Essential cookies: For cart persistence and login sessions.
  • Performance cookies: Aggregate traffic data (e.g., most-viewed products).
  • Marketing cookies: Personalized ads if you opt-in (via Google Analytics or Facebook Pixel).

They help:

  • Save preferences (e.g., language: English/Hindi).
  • Compile site analytics (e.g., 70% mobile users).
  • Optimize marketing (e.g., retargeting abandoned carts).

Manage via browser settings (Chrome: Settings > Privacy > Cookies). Disabling may affect features like auto-fill. We comply with India's upcoming cookie consent norms.

Data Security

We implement robust measures to protect your data from breaches, aligned with ISO 27001 standards and DPDP Act safeguards:

  • Encryption: SSL/TLS (HTTPS) for all transmissions; AES-256 for stored data.
  • Access controls: Role-based (e.g., staff see only order details).
  • Firewalls and monitoring: Real-time intrusion detection.
  • Regular audits: Penetration testing quarterly.
  • Breach response: Notify affected users and MeitY within 72 hours if required.

Example: Your order data is encrypted at rest on secure Indian servers, inaccessible without multi-factor authentication.

Data Retention

Data is retained only as needed, per DPDP Act's storage limitation:

  • Transaction data: 7 years for tax/GST compliance.
  • Accounts: Until deletion request or inactivity (2 years).
  • Logs: 90 days for security.

Post-retention, data is anonymized or securely deleted (e.g., NIST-compliant shredding).

User Rights

Under DPDP Act and global standards like GDPR (for international users), you have:

  • Access: Free summary of your data twice yearly.
  • Correction: Update inaccurate details instantly via account dashboard.
  • Deletion ("Right to be Forgotten"): Subject to legal holds (e.g., ongoing disputes).
  • Portability: Receive data in CSV format.
  • Withdraw consent: Opt-out of newsletters anytime.
  • Grievance redressal: Escalate to our Grievance Officer

Children's Privacy

Our site is not for children under 18. We do not knowingly collect data from minors. Parents/guardians can request deletion via support.

International Transfers

Data stays in India on local servers. Rare cross-border transfers (e.g., global gateways) use Standard Contractual Clauses.

Third-Party Links

Links to external sites (e.g., payment pages) have their own policies. We aren't responsible for them.

Your Responsibilities

Keep login credentials secure. Use strong passwords and enable 2FA.

Changes to This Policy

We may update for legal/business changes. Notice via email/banner; continued use implies acceptance. Check effective date.

Contact Information

If have questions? Reach us:

Mobile: +91-9119705357
Email: Ahilasscents@gmail.com
Address: Basi Kiratpur, Najibabad
District Bijnor, Uttar Pradesh — 246731

Thank you for trusting The Ahil Shop. Last updated: 12-02-2026.