1. Introduction
TRDO (operated by Chromatic Creations) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website creation and hosting services.
2. Information We Collect
2.1 Personal Information You Provide
When you register for our services, we collect:
- Business Information: Business name, type, description
- Contact Details: Owner name, email address, phone number
- Business Address: Street address, city, state, PIN code
- Service Details: Services offered, operating areas, pricing
- Business-Specific Data: Vehicle details (for taxi), menu items (for restaurants), etc.
- Payment Information: Processed securely through Razorpay (we do not store card details)
2.2 Automatically Collected Information
- Usage Data: Pages visited, time spent, clicks
- Device Information: Browser type, operating system, device type
- IP Address: Your internet connection's IP address
- Cookies: Small files stored on your device (see Cookie Policy below)
2.3 Information from Third Parties
- Google OAuth: Name, email, profile picture (when you login with Google)
- Razorpay: Payment transaction details and status
3. How We Use Your Information
3.1 Service Delivery
- Create and host your business website
- Customize website content based on your business details
- Provide subdomain (yourbusiness.trdo.in)
- Maintain and update your website
3.2 Account Management
- Create and manage your customer account
- Process subscription payments
- Send important service notifications
- Provide customer support
3.3 Communication
- Send order confirmation emails
- Notify when your website is live
- Send payment receipts and invoices
- Remind about trial expiration and renewal
- Respond to your inquiries
- Send important service updates (optional marketing with consent)
3.4 Business Operations
- Improve our services and platform
- Analyze usage patterns and trends
- Detect and prevent fraud
- Comply with legal obligations
4. Legal Basis for Processing (India)
We process your personal data based on:
- Consent: You explicitly agree to provide information during registration
- Contract: Processing is necessary to fulfill our service agreement with you
- Legal Obligation: Required by Indian law (IT Act 2000, GST, etc.)
- Legitimate Interest: Improving services, fraud prevention, customer support
5. How We Share Your Information
5.1 We Share With:
- Supabase: Database hosting (data stored in secure cloud servers)
- Razorpay: Payment processing (for subscription billing)
- Google: OAuth authentication (login with Google)
- Hostinger: Website hosting infrastructure
5.2 We DO NOT:
- Sell your personal data to third parties
- Share data with advertisers
- Use your data for unrelated purposes
- Share customer lists or contact information
5.3 Legal Disclosures
We may disclose your information if required by:
- Court order or legal process
- Government authorities in India
- To protect our legal rights
- To prevent fraud or criminal activity
6. Data Storage and Security
6.1 Where We Store Data
- Primary Database: Supabase (PostgreSQL) - Secure cloud servers
- Website Files: Hostinger servers
- Payment Data: Razorpay (PCI DSS compliant)
- Location: Data may be stored in servers outside India (EU/US)
6.2 Security Measures
- SSL/TLS encryption (HTTPS) for all data transmission
- Encrypted database connections
- Secure authentication (Google OAuth, password hashing)
- Regular security updates and monitoring
- Access controls and role-based permissions
- Regular backups to prevent data loss
6.3 Data Retention
- Active Subscriptions: Data retained as long as subscription is active
- After Cancellation: Data retained for 30 days, then deleted
- Financial Records: Kept for 7 years (as per Indian tax law)
- Backup Data: Automatically purged after 90 days
7. Your Rights
7.1 Access and Portability
- Request a copy of all your personal data
- Export your website content and business information
- View payment history and invoices
7.2 Correction and Update
- Update your business information anytime via customer portal
- Correct inaccurate or incomplete data
- Request changes via email
7.3 Deletion and Erasure
- Cancel subscription and request account deletion
- Data deleted within 30 days of request
- Some data may be retained for legal compliance
7.4 Objection and Restriction
- Opt-out of marketing communications
- Restrict processing of your data
- Object to automated decision-making (if any)
7.5 How to Exercise Your Rights
Email us at: creations.chromatic@gmail.com
Call us at: +91-9910882993
We will respond within 30 days of your request.
8. Cookies and Tracking
8.1 What Are Cookies?
Cookies are small text files stored on your device to improve your experience and analyze usage.
8.2 Types of Cookies We Use
- Essential Cookies: Required for login, session management, security
- Functional Cookies: Remember your preferences and settings
- Analytics Cookies: Understand how you use our website (if implemented)
8.3 Third-Party Cookies
- Google OAuth: For authentication
- Supabase: Session management
8.4 Managing Cookies
You can control cookies through your browser settings. Note that disabling cookies may affect functionality.
9. Children's Privacy
Our services are intended for businesses and individuals 18 years or older. We do not knowingly collect information from children under 18. If you believe we have collected data from a minor, contact us immediately for deletion.
10. Your Website Visitors' Privacy
When we create a website for your business:
- Your website visitors' data belongs to YOU (the business owner)
- You are responsible for having a privacy policy on your website
- If you use contact forms, you must handle inquiries responsibly
- We do not collect or access data from your website visitors
- WhatsApp/call buttons directly connect visitors to your number
11. International Data Transfers
Your data may be transferred to and stored on servers outside India (primarily US/EU) through our service providers:
- Supabase: US-based with EU servers available
- Razorpay: India-based, PCI compliant
- Google: Global infrastructure with data protection measures
We ensure adequate safeguards are in place for international transfers, including:
- Standard Contractual Clauses (SCCs)
- Data Processing Agreements with vendors
- Encryption during transmission and storage
12. Data Breach Notification
In the unlikely event of a data breach:
- We will notify affected users within 72 hours via email
- Provide details about the breach and data affected
- Explain steps we're taking to address the issue
- Advise on actions you can take to protect yourself
- Report to relevant authorities as required by Indian law
13. Changes to Privacy Policy
- We may update this policy from time to time
- Changes will be posted on this page with updated date
- Significant changes will be notified via email
- Continued use after changes constitutes acceptance
14. Compliance with Indian Laws
TRDO complies with:
- IT Act 2000: Information Technology Act and amendments
- IT Rules 2011: Reasonable Security Practices
- Consumer Protection Act 2019: E-commerce regulations
- DPDP Act 2023: Digital Personal Data Protection Act (when enforced)
15. Contact Us - Privacy Concerns
📞 Privacy & Data Protection Officer
Company: Chromatic Creations
Email: creations.chromatic@gmail.com
Phone: +91-9910882993
Address: Apex the Florus, Sector 18, Vasundhara, Ghaziabad - 201012, Uttar Pradesh, India
Business Hours: Monday to Saturday, 10:00 AM - 7:00 PM IST
Response Time: Within 48 hours for privacy-related inquiries
16. Consent
By using TRDO services, you consent to:
- Collection and processing of your personal data as described
- Use of cookies and tracking technologies
- Transfer of data to third-party service providers
- International data transfers with appropriate safeguards
- Communication via email and SMS for service-related purposes
Effective Date: January 2025
Last Reviewed: January 2025
← Back to Home