Privacy Policy

Last Updated: May 12, 2026

Your privacy and data security are our highest priorities.

Quick Links

1. Privacy Policy Overview

This Privacy Policy ("Policy") describes how our Service Request Management System ("we," "us," "our," or "Company") collects, uses, maintains, and discloses information collected from users ("you" or "User") of our website and services.

By accessing and using our platform, you acknowledge that you have read, understood, and agree to be bound by all the terms of this Privacy Policy. If you do not agree with our policies and practices, please do not use our platform.

🔒 Your Trust Matters: We handle your personal and sensitive information with the utmost care and implement industry-leading security measures to protect your data.

2. Information We Collect

2.1 Service Request Information

When you submit a service request, we collect:

  • Full Name or Business Name
  • Email Address
  • Phone Number
  • Service Type Requested
  • Service-Specific Details

2.2 Sensitive Personal Information (SPI)

Depending on the service requested, you may provide:

  • PAN (Permanent Account Number): For tax-related services (ITR, GST, Audit)
  • Aadhaar Number: For identity verification (12-digit biometric ID)
  • Bank Account Details: For financial services
  • Business Information: Company registration, CIN, GST numbers
  • Address Information: Residential and business addresses
  • Date of Birth: For age verification purposes

⚠ī¸ Important: Never share passwords or unauthorized credentials. We will never ask for your complete bank account numbers, credit card numbers, or OTPs via email or unsecured channels.

2.3 Automatically Collected Information

  • IP Address and location data
  • Browser type and version
  • Operating system
  • Pages visited and time spent
  • Referral source
  • Device identifiers

3. How We Use Your Information

We use the information we collect in the following ways:

  • Service Delivery: To process your service requests and provide the requested services
  • Communication: To contact you about your request status, updates, and clarifications
  • Compliance: To comply with Indian laws (GST Act, Income Tax Act, FSSAI Act, etc.)
  • Service Improvement: To analyze usage patterns and improve our platform
  • Legal Obligations: To meet regulatory and legal requirements
  • Support: To provide customer support and handle inquiries
  • Marketing: To send updates about new services (with your consent only)
  • Fraud Prevention: To detect and prevent fraudulent activities

✓ We will NOT sell, rent, or share your personal information with third parties for their marketing purposes.

4. Data Security & Protection

We implement multiple layers of security to protect your information:

4.1 Technical Security Measures

  • SSL/TLS Encryption: All data in transit is encrypted using industry-standard protocols
  • Secure Authentication: Multi-factor authentication available for admin access
  • Access Control: Role-based access control restricts data viewing to authorized personnel only
  • Database Security: Sensitive data stored with additional encryption layers
  • Firewall Protection: Advanced firewalls prevent unauthorized access attempts
  • Regular Audits: Continuous security monitoring and audit logging

4.2 Administrative Safeguards

  • Limited employee access to sensitive data (need-to-know basis)
  • Background checks for employees handling personal data
  • Confidentiality agreements with all staff members
  • Regular security training and awareness programs
  • Incident response procedures in place

4.3 Audit Trail & Logging

All administrative access and data modifications are logged with:

  • User identification (who accessed the data)
  • Timestamp (when the access occurred)
  • IP address and location (from where)
  • Action performed (what was done)
  • Changes made (old vs. new values)

ℹī¸ While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

5. Your Privacy Rights

Under applicable data protection laws (including principles aligned with GDPR and India's digital privacy framework), you have the following rights:

5.1 Right to Access

You have the right to request access to the personal information we hold about you. We will provide this information within 30 days of your request.

5.2 Right to Rectification

If your information is inaccurate or incomplete, you can request correction. We will update your records promptly.

5.3 Right to Erasure ("Right to be Forgotten")

You can request deletion of your personal data, subject to legal retention requirements. We may retain some information for compliance purposes.

5.4 Right to Data Portability

You can request your data in a structured, machine-readable format for transfer to another service provider.

5.5 Right to Withdraw Consent

Where we rely on your consent, you can withdraw it at any time. This will not affect the lawfulness of processing before withdrawal.

5.6 Right to Lodge a Complaint

You have the right to lodge a complaint with data protection authorities if you believe we have violated your privacy rights.

To exercise your rights: Contact us with your request, proof of identity, and specific details. We will respond within 30 days or notify you of any delays.

6. Third-Party Sharing

6.1 When We Share Information

We may share your information only in these specific circumstances:

  • Service Providers: Only with trusted partners who help deliver services (accountants, legal advisors for your service)
  • Government Agencies: When required by law for tax compliance, regulatory submissions
  • Court Orders: If compelled by law or legal process
  • Your Consent: Only with your explicit written permission

6.2 What We DON'T Do

  • ✗ We DO NOT sell your data to marketing companies
  • ✗ We DO NOT share data with competitors
  • ✗ We DO NOT use your data for targeted advertising without consent
  • ✗ We DO NOT share sensitive data (PAN, Aadhaar) unnecessarily

6.3 Service Providers

Any third-party service provider:

  • Must sign a data processing agreement
  • Must maintain same security standards as us
  • Can only use data for specified purposes
  • Is subject to regular audits

7. Data Retention Period

Data Type Retention Period Reason
Service Request Data 7 years Income Tax & GST compliance
Audit Logs 5 years Compliance & dispute resolution
Email Communications 3 years Service records & legal protection
Website Analytics 1 year Performance analysis
IP Logs 90 days Security & fraud prevention

After the retention period ends, data is securely deleted or anonymized. However, we may retain data longer if required by law or for legitimate business purposes.

8. Contact & Data Requests

For any privacy concerns, data requests, or to exercise your rights, contact us:

Email: privacy@casagargore.com

Support Email: support@casagargore.com

Phone: +91 XXXXXXXXXX

Address: Casa Gargore Services Pvt Ltd, India

Response Time: 30 days maximum

To Submit a Data Request

Include in your request:

  • Your full name and contact information
  • Date of your service request (if applicable)
  • Type of request (access, rectification, deletion, etc.)
  • Specific data or service request you're referring to
  • Proof of identity (government-issued ID copy)
  • Signature (physical or digital)

9. Additional Information

9.1 Children's Privacy

Our services are not intended for children under 18 years of age. We do not knowingly collect personal information from children. If we become aware that a child has provided information, we will delete it immediately.

9.2 Cookies & Tracking

We use cookies and similar tracking technologies to enhance your experience. You can control cookies through your browser settings. However, disabling cookies may affect functionality.

9.3 External Links

Our website may contain links to external websites. We are not responsible for the privacy practices of these external sites. Please review their privacy policies independently.

9.4 Data Breach Notification

In the unlikely event of a data breach, we will notify affected users within 72 hours with details of the breach and protective measures taken.

9.5 Policy Changes

We may update this Privacy Policy periodically. Material changes will be communicated via email or website notification. Your continued use implies acceptance of changes.

✓ Your Privacy is Protected

This Privacy Policy is designed to protect your rights and maintain your trust. We are committed to transparent and responsible data handling.

Privacy Policy Version 1.0 | Last Updated: May 12, 2026

If you have any questions, please don't hesitate to contact us.