Privacy Policy
Template notice: this is a baseline policy provided with the platform.
Review it with qualified counsel and complete the [bracketed] fields before relying on it. It is not legal advice.
1. Who we are
[LEGAL ENTITY NAME] ("we", "us") operates digitalrealm.live and its applications. For India's Digital Personal Data Protection Act, 2023 (DPDP) we act as the Data Fiduciary; for the EU/UK GDPR we are the Data Controller. Individual applications on this domain may publish their own, additional privacy notices.
2. Personal data we process
- Account & contact data you provide (e.g., name, email).
- Usage & device data (e.g., pages requested, IP address, user-agent, timestamps) for security and reliability.
- Communications you send us (e.g., email to our addresses below).
3. Purposes & legal basis
We process data to provide and secure the service, respond to requests, comply with law, and improve reliability. Legal bases (GDPR): your consent; performance of a contract; our legitimate interests in security and operation; and legal obligation. Under DPDP we rely on your consent or legitimate uses as permitted by the Act.
4. Cookies & tracking
We do not set non-essential or advertising cookies, and we do not load analytics or third-party tracking before you consent. Strictly-necessary cookies (e.g., security/session) may be used without consent.
5. Sharing & processors
We share data only with service providers acting on our instructions โ notably Cloudflare, Inc. (edge, DNS, access control, email routing) โ and where required by law. We do not sell personal data.
6. International transfers
Data may be processed outside your country (including by Cloudflare's global network). Where required, transfers rely on appropriate safeguards (e.g., GDPR Standard Contractual Clauses).
7. Retention
We keep personal data only as long as needed for the purposes above or as required by law, then delete or anonymise it. Operational logs are retained for a limited period for security and debugging.
8. Your rights
Under GDPR: access, rectification, erasure, restriction, portability, objection, and the right to withdraw consent or lodge a complaint with your supervisory authority. Under DPDP: access to and correction/erasure of your data, grievance redressal, and nomination. To exercise rights, contact us below; we respond within the timeframes required by applicable law.
9. Security
We use HTTPS everywhere, least-privilege access, identity-gated non-production environments, and signed service-to-service identity. No system is perfectly secure, but we take reasonable measures to protect your data.
10. Children
The service is not directed to children below the age set by applicable law, and we do not knowingly collect their data without verifiable parental consent where required.
11. Changes
We may update this policy; material changes will be posted here with a new effective date.
12. Contact & Grievance Officer
Privacy enquiries: privacy@digitalrealm.live. DPDP grievance redressal: grievance@digitalrealm.live (Grievance Officer: [NAME], [ADDRESS]).