Effective Date: 01-11-2025
This Privacy Policy explains how DigiLuxWeb.com collects, uses, and protects the personal data you provide when you use our website.
1. Who We Are
Our website address is: https://digiluxweb.com.
The entity operating this website is:
- Company/Organization Name: DigiLuxWeb
- Email: digilux1@gmail.com
- Phone: +91 8558996674
- Physical Address: 4th Floor, F-190 Focal Point Industrial Area Phase 8b, SAS Nagar, Mohali
- Registration Number: Will be provided on request.
2. What Personal Data We Collect and Why We Collect It
We collect personal data from users and site visitors through various means, as outlined below.
| Data Category | Examples of Data Collected | Purpose of Collection | Legal Basis for Collection |
| Personal & Account Data | Name, email address, password (hashed), personal account preferences. | To create and manage your user account, provide personalized services, and communicate with you. | Necessary for the performance of a contract (user agreement) or User Consent. |
| Transactional Data | Purchase details, billing address, items ordered. | To process and fulfill orders, manage payments, and handle customer service requests related to purchases. | Necessary for the performance of a contract (sale of goods/services). |
| Technical Data | IP address, browser type, operating system, pages viewed. | To maintain website security, diagnose technical problems, and analyze user traffic to improve website performance. | Legitimate Interest (website maintenance and security). |
| Sensitive Personal Data | [If applicable, e.g., health data for fitness services] | [Insert purpose] | Explicit User Consent or as required by law. |
Comments
When visitors leave comments on the site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help with spam detection.
- An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://support.gravatar.com/privacy-and-security/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
- Retention: We retain comments and their metadata indefinitely.
Media
If you upload images to the website (e.g., as part of a profile or a post), you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Contact Forms
We use a contact form plugin to facilitate communication.
- Data Captured: Name, Email Address, and the content of your message.
- Purpose: To respond to your inquiries and provide customer service.
- Retention: We keep contact form submissions for up to six month] for customer service purposes. We do not use the information submitted through them for marketing purposes unless explicit marketing consent is given.
Cookies
Our website uses cookies to enhance user experience and analyze traffic.
- Default WordPress Cookies:
- If you leave a comment on our site, you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies last for one year.
- If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
- When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
- Plugin/Third-Party Cookies:
- WooCommerce cookies to remember cart contents.
3. Who We Share Your Data With
We only share personal data with third parties necessary to provide our services and/or when legally required.
4. How Long We Retain Your Data
We retain personal data only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
- Contact Form Entries: Six months.
- Analytics Records: one year.
- Customer Purchase Records: ten years to comply with tax and accounting laws.
- User Account Data: We retain profile information for users with active accounts as long as the account remains active. Users can request data deletion (see Section 5).
5. What Rights You Have Over Your Data
If you have an account on this site, or have left comments, you have the following rights regarding your personal data:
- Right to Access: You can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.
- Right to Rectification: You have the right to request the correction of inaccurate personal data.
- Right to Erasure (‘Right to be Forgotten’): You can request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
- Right to Restrict Processing: You have the right to request that we limit the processing of your personal data under certain conditions.
- Right to Object to Processing: You have the right to object to our processing of your personal data, especially for direct marketing.
- Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
To invoke any of these rights, please contact us using the details in Section 8.
6. Where Your Data Is Sent
Personal data collected by DigiLuxWeb.com may be transferred to and stored in countries outside of the European Union (EU). This could include our web hosting servers, cloud storage providers, or third-party service providers listed in Section 3.
- Safeguards for EU Data Transfers: Whenever we transfer your personal data out of the EU, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:1
- We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.2
- We use specific contracts approved by the European Commission which give personal data the same protection it has in Europe (Standard Contractual Clauses or Model Clauses).
- Where we use US-based providers, we may rely on frameworks such as Privacy Shield (if reinstated and relevant) or other approved mechanisms.
7. Additional Information
How We Protect Your Data
We have implemented the following measures to protect your data from accidental loss and from unauthorized access, use, alteration, and disclosure:
- Technical Measures: Data encryption (SSL/TLS) for data in transit; use of firewalls; regular security scanning.
- Security Measures: Staff training on data protection; use of strong passwords; two-factor authentication (where applicable).
- Risk Assessment: [Mention if a Privacy Impact Assessment (PIA) has been carried out].
What Data Breach Procedures We Have in Place
In the event of a data breach, we have internal procedures that include:
- An internal reporting system to immediately assess the scope of the breach.
- Contact Mechanisms: Notifying affected users and relevant supervisory authorities within the required time frames (e.g., 72 hours for GDPR).
- Taking immediate steps to contain and rectify the breach.
What Automated Decision Making and/or Profiling We Do With User Data
DigiLuxWeb.com [State clearly: does not / does] engage in automated decision making or profiling that produces legal effects concerning a user or similarly significantly affects a user. [If it does, elaborate: “For example, we use aggregated data to create advertising profiles to show targeted ads. Users have the right to object to this and request human intervention by contacting us.”]
Industry Regulatory Disclosure Requirements
[Insert any required disclosures, e.g., if you are subject to specific financial regulations. If none, state: We are not subject to any industry-specific regulatory disclosure requirements that mandate additional privacy policy content at this time.]
8. Contact Information
For any privacy-specific concerns or to exercise your data rights, please contact us:
- Email: digilux1@gmail.com
- Contact: +918558996674
- Postal Address: India