Privacy Policy

Last updated: April 8, 2026

This Privacy Policy describes how Dharmendra Asimi operating under the trade name Aapta Solutions (“we”, “us”, “our”) collects, uses, stores, and protects your personal information when you visit dharmendraasimi.com(the “Website”) or use any of our services. We are committed to protecting your privacy and handling your data transparently.

1. Information We Collect

1.1 Information You Provide Directly

  • Account & Checkout Information: Full name, email address, phone number, company/organization name, billing address (including country, state, and pincode), and WordPress website URL.
  • Contact Form Submissions: Name, email, phone, company name, service interest, and message content.
  • Newsletter Subscriptions: Email address.
  • Booking Information: Name, email, phone, preferred date/time, and meeting purpose.
  • Service Credentials: WordPress admin login, hosting/cPanel/SSH access credentials provided for maintenance services (stored securely and used solely for service delivery).
  • Communication Records: Emails, chat messages, and other communications between you and us.

1.2 Information Collected Automatically

  • Device Information: IP address, browser type and version, operating system, device type, and screen resolution.
  • Usage Data: Pages visited, time spent on pages, navigation paths, referral sources, click patterns, and scroll depth.
  • Cookies & Tracking Technologies: We use cookies, web beacons, and similar technologies as described in our Cookie Policy.
  • Location Data: Approximate geographic location derived from your IP address, used for GST determination and localized content.

1.3 Information from Third Parties

  • Payment Processors: Razorpay and Stripe provide us with transaction status, payment confirmation, and partial card details (last 4 digits) for order verification. We never receive or store full card numbers.
  • Analytics Services: Google Analytics and similar tools provide aggregated website usage data.
  • Social Media: If you interact with us via social media platforms, we may receive your public profile information.

2. How We Use Your Information

  • Service Delivery: To perform WordPress maintenance, consulting, and on-demand services you have purchased.
  • Order Processing: To process payments, send invoices, and manage your subscription.
  • Communication: To respond to your enquiries, send service updates, maintenance reports, and appointment confirmations.
  • Newsletter: To send marketing emails and insights (only with your explicit consent; you can unsubscribe at any time).
  • Website Improvement: To analyze usage patterns, improve our Website, and optimize user experience.
  • Security: To detect and prevent fraud, unauthorized access, and security threats.
  • Legal Compliance: To comply with applicable laws, regulations, tax requirements, and legal processes.
  • GST Determination: To determine whether GST applies to your purchase based on your location.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA) or the United Kingdom, we process your data under the following legal bases:

  • Contractual Necessity: Processing required to deliver services you have purchased.
  • Legitimate Interests: Website analytics, fraud prevention, and service improvement.
  • Consent: Newsletter subscriptions and non-essential cookies.
  • Legal Obligation: Tax records, invoicing, and regulatory compliance.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share data with:

  • Payment Processors: Razorpay and Stripe for secure payment processing.
  • Email Service Providers: Mailercloud for newsletter delivery; Microsoft Office 365 for transactional emails.
  • Analytics Providers: Google Analytics for website usage analysis (anonymized where possible).
  • Hosting Providers: Vercel for website hosting and deployment.
  • Database Providers: Supabase for secure data storage.
  • Calendar Services: Microsoft Outlook Calendar for booking and appointment management.
  • Legal Authorities: When required by law, court order, or to protect our legal rights.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity.

5. Data Storage and Security

5.1 Storage

Your data is stored on secure servers provided by Supabase (PostgreSQL) and Vercel. Data may be processed in multiple jurisdictions depending on service provider locations. We ensure all providers meet appropriate security standards.

5.2 Security Measures

  • Encryption in transit (TLS/SSL) and at rest.
  • Access controls and role-based permissions.
  • Regular security audits and vulnerability assessments.
  • Secure credential storage with encryption for WordPress/hosting access provided by clients.
  • Two-factor authentication on administrative accounts.
  • Regular backups with secure offline storage.

5.3 Credential Security

WordPress and hosting credentials provided for maintenance services are stored using industry-standard encryption, accessed only by authorized personnel, used solely for service delivery, and permanently deleted upon service termination.

6. Data Retention

  • Account Data: Retained for the duration of your service subscription plus 1 year after termination.
  • Financial Records: Retained for 8 years as required by Indian tax law.
  • Communication Records: Retained for 2 years after last interaction.
  • Newsletter Data: Retained until you unsubscribe.
  • Analytics Data: Retained for 26 months (Google Analytics default).
  • Service Credentials: Deleted within 7 business days of service termination.
  • Backups: Deleted within 30 days of service termination.

7. Your Rights

Depending on your location, you may have the following rights:

  • Right of Access: Request a copy of all personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your personal data (subject to legal retention obligations).
  • Right to Restrict Processing: Request that we limit how we use your data.
  • Right to Data Portability: Request your data in a structured, machine-readable format.
  • Right to Object: Object to processing based on legitimate interests or for direct marketing.
  • Right to Withdraw Consent: Withdraw consent for newsletter subscriptions or non-essential cookies at any time.
  • Right to Lodge a Complaint: File a complaint with your local data protection authority.

To exercise any of these rights, contact us at contact@dharmendraasimi.com. We will respond within 30 days.

8. International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) where applicable, and that all service providers maintain adequate data protection standards.

9. Children's Privacy

Our Website and services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 18, we will delete it promptly.

10. Third-Party Links

Our Website may contain links to third-party websites and services. We are not responsible for the privacy practices or content of these external sites. We encourage you to review their privacy policies before providing any personal information.

11. Do Not Track (DNT)

Our Website currently does not respond to Do Not Track browser signals. You can manage tracking preferences through our cookie consent tool and browser settings.

12. Indian Data Protection

For users in India, we comply with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023 (DPDPA) as applicable. You have the right to access, correct, and request deletion of your personal data.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a prominent notice on the Website. The “Last updated” date at the top indicates when the policy was last revised.

14. Contact Us

For questions, concerns, or requests related to your privacy and personal data:

  • Data Controller: Dharmendra Asimi / Aapta Solutions
  • Email: contact@dharmendraasimi.com
  • Phone: +91-9900227835
  • Website: dharmendraasimi.com/contact
Dharmendra Asimi