Privacy Policy
Last Updated: June 29, 2025
Shree Kesariya Overseas ("we", "us", or "our") is committed to protecting your privacy and complying with all applicable laws, including the Information Technology Act, 2000, and international best practices. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services. By accessing our website, you agree to the terms of this policy.
1. Scope and Applicability
This Privacy Policy applies to all users of our website, clients, business partners, and any individual whose data we process in connection with our import-export business, including visitors from India and abroad.
2. Information We Collect
- Personal Information: Name, email, phone number, address, company details, GSTIN, PAN, and any information you provide via forms, emails, or business correspondence.
- Business Information: Product interests, trade requirements, order details, and transaction history.
- Technical Data: IP address, browser type, device information, location data, and usage statistics collected automatically through cookies and analytics tools.
- Financial Data: Bank account details, payment information, and GST-related data (only as required for business transactions).
- Other Data: Any other information you voluntarily provide or that is required for compliance with Indian and international trade laws.
3. How We Collect Data
- Directly from you via forms, emails, phone calls, or business meetings.
- Automatically through cookies, web beacons, and analytics tools when you use our website.
- From third parties such as logistics partners, government authorities, or public sources as required for compliance and business operations.
4. Use of Your Information
- To provide, operate, and improve our import-export services.
- To process orders, manage shipments, and fulfill contractual obligations.
- To comply with legal, regulatory, and tax requirements (including GST, FEMA, RBI, and Customs regulations).
- To communicate with you regarding your inquiries, orders, or business relationship.
- To send you updates, newsletters, or marketing communications (with opt-out option).
- To protect our legal rights, prevent fraud, and ensure security.
- For internal record-keeping, audits, and compliance with CA/CS standards.
5. Cookies and Analytics
We use cookies and similar tracking technologies to enhance your experience, analyze website traffic, and improve our services. Cookies may be essential, functional, or analytical. You can control cookies through your browser settings. We use Google Analytics and similar tools, which may collect anonymized usage data. For more information, refer to our Cookie Policy.
6. Data Sharing and Disclosure
- We do not sell or rent your personal data to third parties.
- We may share your data with trusted service providers (e.g., logistics, IT, payment gateways) under confidentiality agreements.
- We may disclose your data to government authorities, regulators, or law enforcement as required by law (e.g., GST, Customs, RBI, FEMA, or court orders).
- In case of mergers, acquisitions, or business transfers, your data may be transferred to the new entity with appropriate safeguards.
- We may share aggregated, anonymized data for analytics or business purposes.
7. International Data Transfers
If you are located outside India, your information may be transferred to and processed in India or other countries where we or our partners operate. We ensure adequate protection for such transfers as per applicable laws.
8. Data Retention
We retain your personal data only as long as necessary for business, legal, and compliance purposes, including record-keeping as per Indian tax and company law. Data no longer required is securely deleted or anonymized.
9. Your Rights
- Right to access, correct, or delete your personal data (subject to legal exceptions).
- Right to withdraw consent for marketing communications.
- Right to object to or restrict certain processing activities.
- Right to data portability (where applicable).
- To exercise your rights, contact us at sales@shreekesariyaoverseas.com.
10. Data Security
We implement industry-standard security measures, including encryption, access controls, and regular audits, to protect your data. However, no online system is completely secure. You are responsible for keeping your credentials confidential.
11. Third-Party Links
Our website may contain links to third-party sites or services. We are not responsible for their privacy practices. Please review their privacy policies before providing any information.
12. Eligibility
Our website and services are intended for users who are 18 years of age or older, or who can form a binding contract under Indian law. If you are under 18, please use our services only with parental consent.
13. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in law, technology, or our business practices. The latest version will always be available on our website. Your continued use of our website constitutes acceptance of any changes.
14. Governing Law and Jurisdiction
This Privacy Policy is governed by the laws of India. Any disputes shall be subject to the exclusive jurisdiction of the courts of Indore, Madhya Pradesh, India.
15. Contact Us
For any questions, concerns, or requests regarding this Privacy Policy or your data, please contact:
Shree Kesariya Overseas
103, Tilak Marg Depalpur, Indore, Madhya Pradesh, India - 453115
Email: sales@shreekesariyaoverseas.com
Phone: +91 94793 34009
16. Lawful Bases for Processing (GDPR/International)
Where required by the General Data Protection Regulation (GDPR) or other international laws, we process your personal data on the following lawful bases:
- (a) your consent
- (b) performance of a contract
- (c) compliance with a legal obligation
- (d) protection of vital interests
- (e) legitimate interests pursued by us or a third party, provided your rights do not override those interests.
17. Rights of Data Subjects (GDPR/International)
- Right to be informed about data collection and use.
- Right to access your personal data.
- Right to rectification of inaccurate or incomplete data.
- Right to erasure (right to be forgotten) in certain circumstances.
- Right to restrict or object to processing.
- Right to data portability.
- Right to withdraw consent at any time (where processing is based on consent).
- Right to lodge a complaint with a supervisory authority (for EU/UK residents).
18. Children’s Privacy
We do not knowingly collect or process personal data from children under the age of 16 (or the minimum age required by applicable law). If you believe a child has provided us with personal data, please contact us for prompt removal.
19. Data Breach Notification
In the event of a data breach affecting your personal data, we will notify you and relevant authorities as required by Indian law (IT Act, 2000, SPDI Rules) and international regulations (such as GDPR, CCPA) without undue delay.
20. California Consumer Privacy Act (CCPA)
If you are a California resident, you have additional rights under the CCPA, including the right to know, access, delete, and opt out of the sale of your personal information. We do not sell your personal information. To exercise your rights, contact us as provided above.
21. Grievance Officer (India)
In accordance with the Information Technology Act, 2000 and rules made thereunder, the name and contact details of the Grievance Officer are:
Mr. Rohit Jain
Email: sales@shreekesariyaoverseas.com
Phone: +91 94793 34009
22. Dispute Resolution
Any disputes arising out of this Privacy Policy shall be resolved amicably. If not resolved, disputes shall be subject to arbitration in Indore, Madhya Pradesh, India, in accordance with the Arbitration and Conciliation Act, 1996. The courts of Indore shall have exclusive jurisdiction.
23. Data Protection Officer (DPO) and Compliance
To ensure compliance with Indian and international data protection laws, we have appointed a Data Protection Officer (DPO) responsible for overseeing our data protection strategy and implementation. The DPO can be contacted at sales@shreekesariyaoverseas.com.
24. Sensitive Personal Data or Information (SPDI)
In accordance with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, we take extra precautions when processing sensitive personal data, such as financial information, passwords, and health data. Such data is collected only when necessary and is protected with enhanced security measures.
25. Cross-Border Data Transfers (International Compliance)
For users in the European Union, United Kingdom, and other jurisdictions with cross-border data transfer restrictions, we ensure that any transfer of personal data outside your jurisdiction is subject to appropriate safeguards, such as Standard Contractual Clauses (SCCs), adequacy decisions, or other lawful mechanisms as required by GDPR and similar laws.
26. Automated Decision-Making and Profiling
We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects, unless required by law or with your explicit consent. If such processing is introduced, you will be informed and given the right to object or request human intervention.
27. Data Subject Access Request (DSAR) Process
You may submit a Data Subject Access Request (DSAR) to access, correct, or delete your personal data, or to exercise any other rights under applicable law. We will respond to your request within the timeframes required by law. To submit a DSAR, contact us at sales@shreekesariyaoverseas.com.
28. Record of Processing Activities
We maintain a record of all processing activities involving personal data, as required by GDPR Article 30 and similar international standards. This record is available to supervisory authorities upon request.
29. Consent Management
Where required by law, we obtain your explicit consent before collecting or processing your personal data. You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
30. Updates and Effective Date
This Privacy Policy may be updated periodically to reflect changes in law, technology, or our business practices. The effective date is indicated at the top of this page. We encourage you to review this policy regularly.
31. Data Localization (India)
Where required by Indian law (such as RBI guidelines for payment data), certain categories of data may be stored and processed only within India. We comply with all such data localization requirements for financial and sensitive personal data.
32. Data Anonymization and Pseudonymization
Wherever possible and required by law, we anonymize or pseudonymize personal data to protect your privacy, especially for analytics, research, or reporting purposes, in accordance with GDPR and Indian IT Rules.
33. Data Minimization and Purpose Limitation
We collect and process only the minimum personal data necessary for the stated purposes and retain it only as long as required by law or business needs, in line with global best practices.
34. Supervisory Authorities and Regulatory Compliance
We cooperate fully with Indian authorities (such as CERT-In, RBI, SEBI, and the Data Protection Board of India) and international supervisory authorities (such as EU Data Protection Authorities) in the event of investigations, audits, or regulatory requests.
35. Whistleblower and Ethics Reporting
We maintain a whistleblower policy and encourage reporting of any unethical or unlawful data practices. Reports can be made confidentially to our DPO or Grievance Officer.
36. Policy Interpretation and Precedence
If any provision of this Privacy Policy conflicts with applicable law, the law shall prevail to the extent of the conflict. The remainder of the policy shall remain in effect.