Privacy Policy · Air/Kraft Atelier

We collect the minimum data needed to respond to you and run this site.

1) Scope & Roles

This Policy explains how we collect, use, share, and protect personal information when you use our website and related touchpoints (the “Site”). We comply with the Digital Personal Data Protection Act, 2023 (DPDP Act) and other applicable Indian laws.

We act as a Data Fiduciary when individuals (“you”, Data Principals) interact with our Site, contact forms, email, or booking links.

2) What We Collect

Contact details you provide: name, email, phone, company, and the message you submit.
Website usage data (automatic): IP address, device/browser type, pages viewed, timestamps, referrers.
Optional analytics (if enabled): aggregated statistics such as session counts and popular pages.

We do not intentionally collect sensitive personal data on this Site.

3) Why We Use Your Data

To respond to enquiries and discuss projects/services.
To operate, secure, and improve the Site (performance, debugging, preventing abuse).
To perform basic analytics (if enabled) to understand content usefulness.
To comply with law and enforce our terms.

4) Lawful Basis (DPDP)

Consent: when you submit a form or opt into non-essential analytics/cookies.
Legitimate uses permitted by law: security, fraud prevention, and statutory compliance.

You may withdraw consent at any time—see Section 10.

5) Cookies, Tags & Similar Tech

Essential cookies/tools: for basic site operation and security (no consent banner needed).
Non-essential/analytics (if enabled): we show a consent banner and only load analytics after you opt in.

You may change preferences via our cookie/settings link (if present) or by contacting us.

We do not sell or rent personal information. We may share limited data with:

Hosting/CDN/Cloud (e.g., Google Firebase Hosting).
Email & productivity tools (e.g., Zoho Mail / Google Workspace).
Analytics (e.g., Google Analytics, only if enabled).
Professional advisors & compliance (legal, accounting) when required by law.

All processors are bound by confidentiality and data-protection commitments.

7) International Transfers

Service providers may process data outside India. Where applicable, we use contractual and technical safeguards. Transfers comply with the DPDP Act and any Government notifications.

8) Security

We apply reasonable technical and organizational measures (HTTPS/TLS, access controls, least-privilege, backups). No system is perfectly secure; we continually improve protections proportionate to risk.

9) Retention

Contact enquiries: typically retained for up to 24 months from last interaction, or longer if a project commences or law requires.
Analytics logs: typically up to 26 months (or provider default), stored in aggregate form.

We delete or anonymize data when retention ends.

10) Your Rights (DPDP)

Access information about how we process your data.
Correct or delete your personal data that we hold, subject to legal obligations.
Withdraw consent for non-essential processing at any time.
Nominate another person to exercise your rights in case of incapacity.

11) Children’s Data

Our Site is not directed to children (under 18). We do not knowingly collect children’s personal data. If you believe a child has provided data, contact us and we will delete it promptly.

12) Grievance Officer & Contact

Name: Abhijeet Khopkar (Founder & Grievance Officer)
Email: privacy@airkraftdesign.com

We acknowledge requests within 3 business days, aim to respond within 15 days, and resolve within 30 days, subject to applicable law.

13) Third-Party Links

External sites (social profiles, portfolios, booking tools) have their own policies. Please review them before sharing information there.

14) Changes to This Policy

We may update this Policy to reflect legal, technical, or business changes. The effective date above shows when it last changed. Material changes will be announced on the Site.