Privacy Policy

Last Updated: 23-09-2025

This Privacy Policy (“Policy”) is a legally binding agreement between you (“you”, “your”, “User”, “Data Subject”) and Brass Essence (“we”, “our”, “us”). It describes how we collect, use, share, retain, and protect your personal data when you access or use our website www.brassessence.in or transact with our services. By accessing or using the Site, making a purchase, or otherwise providing us your information, you accept and consent to the practices described herein.

If you do not agree with the terms of this Policy, please do not use our Site or provide any personal information.

1. Definitions

In this Policy:

“Personal Data” means any information relating to an identified or identifiable natural person.

“Processing” means any operation performed on Personal Data, including collection, storage, use, disclosure, erasure, or transfer.

“Sensitive Personal Data / Sensitive Personal Information” means data of a type requiring heightened protection (e.g., health data, biometric data) under applicable law.

“Data Controller” means Brass Essence, responsible for deciding the means and purposes of processing Personal Data.

“Data Processor” means any third party that processes data on behalf of the Data Controller.

“Third Party” means any person or entity other than you or us.

2. Scope & Applicability

2.1 This Policy applies to all Personal Data collected through or in connection with:

Your use of the Site, mobile site, or web application;

Your registration, account creation, or subscription;

Your purchases, returns, or customer support interactions; and

Any other interactions with us, offline or online, where you provide personal information.

2.2 It does not apply to data collected by third-party websites, apps, or services that you may access via links from our Site (except where we own or control those). We are not responsible for those third parties’ privacy practices.

3. Information We Collect

We may collect the following categories of information:

3.1 Information You Provide Directly

Name, email address, phone number, billing and shipping address;

Payment information (e.g. credit/debit card, UPI, bank account) — only via secure, PCI-compliant processors;

Account credentials (username, password), preferences, profile information;

Communication records (customer support emails, feedback, product reviews, surveys);

Photographs or media you submit (for reviews, contests, personalized orders), if any.

3.2 Automatically Collected or Derived Information

IP address, device identifiers, browser type, operating system;

Usage metrics (pages visited, time spent, click paths, search terms);

Cookies, web beacons, log files, and similar tracking technologies;

Geolocation data (coarse or precise) where you grant permission;

Referral and advertising identifiers.

3.3 Information from Third Parties

Address validation or shipping address from courier services;

Marketing and analytics partners, social media platforms;

Publicly available sources (e.g. social media, business registries) to augment our records or detect fraud;

Credit/debit card verification, fraud screening services.

4. Legal Basis for Processing

We process your Personal Data under the following legal bases (as applicable under Indian law or other relevant jurisdictions):

Performance of Contract: to process orders, deliver goods, perform after-sales service, returns, etc.

Consent: where you choose to provide additional data (e.g. marketing opt-in, reviews, mailing list).

Legitimate Interests: for fraud prevention, system security, enhancing user experience, ensuring compliance, direct marketing (subject to opt-out).

Legal Obligation: to satisfy applicable laws, tax, regulatory or record-keeping obligations.

5. Purposes of Processing & Use

We may use your Personal Data for the following purposes:

To authenticate and manage your account;

To process your orders, returns, exchanges, warranties;

To provide customer support, respond to inquiries, handle complaints;

To send transactional communications (order confirmations, shipping updates, invoices);

To send marketing communications (offers, newsletters) where permitted and where you have opted in;

To conduct internal analytics, product development, usage patterns, trend analysis, improving our Site;

To detect, prevent, or mitigate fraud, security breaches, abuse;

To comply with legal obligations, record-keeping, audits, dispute resolution;

To transfer or merge with third parties in case of corporate reorganization, sale, merger, subject to confidentiality commitments.

6. Cookies, Tracking & Analytics

6.1 We use cookies, web beacons, local storage, and similar technologies (collectively “Tracking Technologies”) to collect information about your interaction with the Site and to personalize your experience.

6.2 Categories of cookies:

Essential / Strictly Necessary Cookies — required for the operation of the Site and to process transactions.

Performance / Analytics Cookies — help us understand how the Site is used (e.g. page views, sessions).

Functional Cookies — remember your preferences (language, login state, theme).

Advertising / Targeting Cookies — to deliver relevant advertisements or promotions, measure ad performance, retargeting.

6.3 Most browsers allow you to refuse cookies or alert when cookies are set. However, disabling certain cookies may degrade your experience or prevent certain Site functions.

7. Sharing & Disclosure of Data

We may share your Personal Data under the following circumstances:

With Service Providers / Processors (e.g. payment gateways, logistics, hosting, analytics, marketing): who assist us in providing the services, under contract requiring confidentiality.

With Affiliates / Subsidiaries: for internal operational purposes, abiding by this Policy.

For Legal or Safety Reasons: to comply with judicial or governmental orders, defend legal rights, investigate or prevent fraud or misuse, protect users or the public.

Corporate Transactions: if we sell, merge, or reorganize parts of our business, your data may be transferred, but you will be notified and data protection assurances will apply.

Aggregate / Anonymized Data: we may share de-identified or aggregated usage data (not directly traceable to you) with third parties.

We will not sell your Personal Data to third parties for their direct marketing or other purposes.

8. International / Cross-Border Transfer

Your data may be stored or processed outside your country of residence (including in countries with data protection laws different from yours). When we transfer your data internationally, we ensure appropriate safeguards are in place (e.g., contractual safeguards, standard contractual clauses, approved transferee assurances).

By providing your data, you consent to such transfers and acknowledge the possible risks associated.

9. Data Retention

We will retain your Personal Data only as long as necessary to fulfill the purposes described here, or as required under applicable laws (e.g. tax laws, consumer protection). We will securely dispose of or anonymize data when no longer needed.

Specific retention periods may apply for:

Order and transaction records;

Customer inquiries / support logs;

Marketing data (subject to opt-out);

Cookies and tracking data (may expire sooner).

10. Security of Data

We implement technical, administrative, and physical safeguards designed to protect your Personal Data against unauthorized access, loss, misuse, alteration, or deletion. These may include encryption (in transit and at rest), network and application firewalls, access controls, regular security audits, and personnel confidentiality obligations.

However, no system is 100% secure. We cannot guarantee absolute security. If you suspect any breach, please contact us immediately.

11. Your Rights & Choices

Subject to applicable law, you have certain rights regarding your Personal Data:

Access / Portability: to request a copy of data we hold about you.

Correction / Update: to correct incomplete or inaccurate data.

Erasure / Deletion (“Right to be Forgotten”): to request deletion of your data (unless retention is legally required).

Restriction / Blocking: to limit processing in certain circumstances.

Objection: to processing based on legitimate interests or for direct marketing.

Withdraw Consent: for operations based on consent, you may withdraw at any time.

Opt-out: from marketing communications, cookies/tracking.

To exercise these rights, contact us at privacy@brassessence.in
 (or your official contact). We may require identity verification. We aim to respond within a reasonable timeframe (e.g. 30 days, or shorter if required by law).

12. Children’s Privacy

Our Site and services are not intended for children under the age of 13 (or higher as required by applicable law). We do not knowingly collect Personal Data from minors without parental consent. If we become aware of such collection, we will delete the data promptly.

13. Grievance / Redressal Mechanism

If you believe your rights have been violated or you have a complaint regarding compliance, you may contact our designated Grievance Officer:

Name: [Name]

Email: grievances@brassessence.in

Address: [Business Address]

We will acknowledge your grievance within [e.g. 7] days and aim to resolve it within [e.g. 30] days, or as mandated by law.

If unresolved, you may approach the competent data protection or consumer authorities as permitted by law.

14. Changes to This Policy

We may update this Policy from time to time (for legal, operational, or business reasons). Any changes will be posted on the Site with a revised “Last Updated” date. In certain cases, we may notify you (e.g. by email) of significant changes. Your continued use of the Site following modifications constitutes your acceptance of the updated Policy.

15. Severability & Interpretation

If any provision of this Policy is found invalid, illegal, or unenforceable by a court, that provision will be severed or modified to the minimum extent required, and the remainder will continue in full force. The headings are for convenience only and do not affect interpretation.

16. Governing Law, Jurisdiction & Dispute Resolution

This Policy and all disputes related to it shall be governed by the laws of [State / Union Territory], India, without regard to any conflict-of-law rules. Any dispute shall be subject to the exclusive jurisdiction of the courts in [City], India.

You and we each waive the right to a jury trial to the maximum extent permitted by law.

17. Contact Information

If you have questions, concerns, or wish to exercise your rights, please contact us at:

Brass Essence
Email: privacy@brassessence.in

Alternate / Support: support@brassessence.in

Website: www.brassessence.in