Last updated: 24 September 2025
This Privacy Policy explains how VastuShashtra.com (“Site”, “we”, “our”, or “us”) collects, uses, shares, and protects your information when you visit our website, purchase products, or otherwise interact with us.
Table of Contents
- 1. Scope & Acceptance
- 2. Information We Collect
- 3. How We Use Information (Purposes & Legal Basis)
- 4. Payments
- 5. Cookies, Analytics & Advertising
- 6. Sharing & Disclosures
- 7. Retention
- 8. Security
- 9. Your Rights & Choices
- 10. Children & Minors
- 11. International Transfers
- 12. Third-Party Links & Social Media
- 13. Changes to This Policy
- 14. Contact & Grievance Officer (India)
1. Scope & Acceptance
By using this Site, creating an account, or placing an order, you agree to the collection and use of information in accordance with this Privacy Policy, the Information Technology Act, 2000 and applicable rules (including the SPDI Rules), and the Digital Personal Data Protection Act, 2023 (“DPDPA”). If you do not agree, please do not use the Site.
2. Information We Collect
2.1 Information you provide directly
- Account & Profile: name, email, mobile number, billing/shipping address.
- Orders & Support: order details, messages you send us (email, chat, forms), return/refund requests.
- Marketing Preferences: newsletter/WhatsApp/SMS opt-ins.
2.2 Information collected automatically
- Device & Usage: IP address, browser type, device identifiers, pages viewed, time spent, referring pages.
- Cookies & Similar Tech: for session management, analytics, preferences, and advertising (see Cookies).
2.3 Payment information
We use third-party payment gateways and processors. Your card/bank/UPI credentials are collected and processed directly by the respective payment service on their secure checkout pages. We do not store your full card or UPI details on our servers.
3. How We Use Information (Purposes & Legal Basis)
- Provide the Service: process and deliver orders, manage your account, provide customer support. Legal basis: contract performance; legitimate interests.
- Payments & Fraud Prevention: process payments, prevent fraud/abuse, maintain security. Legal basis: contract performance; legal obligation; legitimate interests.
- Communications: order updates, transactional emails/SMS/WhatsApp, service notices. Legal basis: contract performance; legitimate interests.
- Marketing (with consent where required): newsletters, offers, product updates. Legal basis: consent; legitimate interests.
- Analytics & Improvement: understand usage, improve Site performance and user experience. Legal basis: legitimate interests.
- Legal Compliance: tax, accounting, regulatory requests, dispute resolution. Legal basis: legal obligation; legitimate interests.
4. Payments
We accept online payments via trusted third-party payment services (e.g., card networks, net banking, wallets, UPI). When you make a payment, certain information is required to process the transaction and prevent fraud. Such information is handled in accordance with the payment provider’s policies and industry security standards (including PCI-DSS where applicable).
- What payment providers receive: your name, contact details, order ID, payment instrument details (entered on their checkout), and transaction metadata needed to process the payment.
- Security: Payment providers implement industry-standard security controls and tokenization as applicable.
- Storage: We do not store your full card/UPI details. Payment providers may store tokens as per applicable regulations.
5. Cookies, Analytics & Advertising
We use cookies and similar technologies to operate the Site, remember your preferences, analyze traffic, and deliver relevant ads.
| Category | Purpose | Examples | Retention |
|---|---|---|---|
| Essential | Core site functionality, checkout, security. | Session ID, cart, CSRF tokens | Session/short-term |
| Analytics | Measure usage and performance. | Google Analytics | As per tool settings |
| Preference | Remember choices like language or address. | UI/theme, locale | Until cleared/expiry |
| Advertising | Show relevant ads and limit repetition. | Google Ads/Meta pixels | As per tool settings |
Your choices: You can manage cookies in your browser settings. Blocking some cookies may impact Site functionality. Where required by law, we request consent before setting non-essential cookies.
6. Sharing & Disclosures
We may share your information with:
- Service Providers: payment processors, hosting, analytics, email/SMS/WhatsApp providers, couriers, customer support tools—only as necessary to provide services to you.
- Legal & Compliance: to comply with law, enforce our terms, protect our rights, users, or the public.
- Business Transfers: in a merger, acquisition, financing, or sale of assets, your data may be transferred, subject to this Policy.
We do not sell your personal information.
7. Retention
We retain personal information for as long as necessary to fulfill the purposes outlined in this Policy, comply with legal, accounting, or reporting requirements, resolve disputes, and enforce our agreements. Retention periods may vary by data category.
8. Security
We implement reasonable administrative, technical, and physical safeguards to protect personal information. However, no method of transmission or storage is completely secure; we cannot guarantee absolute security.
9. Your Rights & Choices
Subject to applicable law (including the DPDPA), you may have rights to:
- Access your personal information.
- Correction of inaccurate or incomplete information.
- Deletion (erasure) where applicable.
- Withdraw consent for processing that relies on consent (e.g., marketing emails/WhatsApp/SMS).
- Grievance redressal and nominate an individual to exercise your rights in case of incapacity or death, as per the DPDPA.
To exercise these rights, contact us at info@vastushastra.shop. We may request verification information before acting on your request.
10. Children & Minors
Our products and services are intended for individuals aged 18 and above. If you are under 18, you may use the Site only with the involvement of a parent or guardian. If we learn we have collected personal data from a child in violation of law, we will take appropriate steps to delete it.
11. International Transfers
We are based in India. Some service providers may process data in other countries. By using the Site, you acknowledge that your information may be transferred to and processed in jurisdictions with different data protection laws.
12. Third-Party Links & Social Media
The Site may contain links to third-party websites, apps, or services. We are not responsible for their privacy practices. Please review their privacy policies.
13. Changes to This Policy
We may update this Privacy Policy from time to time. The updated version will be indicated by a revised “Last updated” date and will be effective when posted. We encourage you to review this page periodically.
14. Contact & Grievance Officer (India)
Data Fiduciary / Controller: Vastu Shashtra
Grievance Officer: Devansh Thakkar
Email: info@vastushastra.shop
Phone: +91 7048663779
Address: C-1404, Navkar Heights, Utran-394105, Surat
If you have any questions, concerns, or complaints about our Privacy Policy or practices, please contact our Grievance Officer. We will acknowledge your complaint within the timelines required under applicable law and aim to resolve it promptly.