Privacy Policy

Privacy Policy

Product Catalogue | Hatimi Online World

Effective Date: [Insert Date] Last Updated: [Insert Date]

1. Introduction

Welcome to Product Catalogue by Hatimi Online World (“Platform,” “Service,” “we,” “us,” or “our”), accessible at catalogue.hatimionlineworld.com.

This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our Platform. We are committed to protecting your privacy and ensuring transparency about our data practices.

By using our Platform, you consent to the collection and use of your information as described in this Privacy Policy. Please read this policy carefully. If you do not agree with our practices, please do not use our Platform.

2. Who We Are

Data Controller: Hatimi Online World Registered in India Email: amubush2024@gmail.com Website: catalogue.hatimionlineworld.com

We are the data controller responsible for your personal information collected through this Platform.

3. Information We Collect

3.1 Information You Provide Directly

Account Registration Information: - Email address - Mobile phone number - Name (if provided) - Password (encrypted)

Business/Service Information: - Business name - Business description - Product/service details - Business address - Business contact information - Business category

Content You Upload: - Product images (automatically compressed for optimization) - Logo images (automatically compressed for optimization) - Service descriptions - Pricing information - Any other catalogue content

Note: Images you upload are automatically compressed using our optimization feature to improve loading speeds and reduce storage. Original images are not retained after compression.

Payment Information: - UPI transaction details - Billing address - Payment history - Subscription plan details

Communications: - Enquiry messages received - Support requests - Feedback provided

3.2 Information Collected Automatically

Technical Information: - IP address - Browser type and version - Device type and operating system - Screen resolution - Time zone setting - Unique device identifiers

Usage Information: - Pages visited and features used - Time spent on pages - Click patterns and navigation paths - Search queries within the Platform - Referral source (how you reached us)

Cookie Information: - Session cookies - Preference cookies - Analytics cookies

(See our Cookie Policy for detailed information)

3.3 Information from Third Parties

We may receive information from: - Payment processors (transaction confirmation) - Analytics providers (aggregated usage data) - Fraud prevention services (risk assessment data)

4. How We Use Your Information

4.1 To Provide Our Services

Create and manage your account

Enable catalogue creation and management

Process subscriptions and payments

Facilitate enquiries from interested parties

Send service-related notifications

Provide customer support

4.2 To Improve Our Platform

Analyze usage patterns and trends

Develop new features and services

Fix bugs and technical issues

Optimize user experience

Conduct research and analytics

4.3 To Communicate With You

Send account-related emails

Notify you of subscription renewals

Respond to your enquiries

Send promotional communications (with your consent)

Provide important updates about our Services

4.4 To Ensure Security and Compliance

Detect and prevent fraud

Protect against unauthorized access

Enforce our Terms of Service

Comply with legal obligations

Resolve disputes

4.5 Legal Bases for Processing (GDPR)

If you are in the European Economic Area (EEA), UK, or other jurisdictions requiring legal basis for processing, we rely on:

5. How We Share Your Information

5.1 Public Information

When you create a catalogue, certain information becomes publicly visible: - Business name and description - Product/service listings - Images you upload - Contact information you choose to display

You control what information appears in your public catalogue.

5.2 Service Providers

We share information with trusted third-party providers who assist us:

All service providers are bound by data processing agreements and confidentiality obligations.

5.3 Legal Requirements

We may disclose your information when required to: - Comply with applicable laws or regulations - Respond to valid legal process (subpoenas, court orders) - Protect our rights, property, or safety - Protect the rights, property, or safety of others - Detect, prevent, or address fraud or security issues

5.4 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.

5.5 With Your Consent

We may share your information for other purposes with your explicit consent.

6. Data Storage and Security

6.1 Data Storage Location

Your data is stored on Amazon Web Services (AWS) servers. AWS maintains data centers in multiple regions, and your data may be processed in: - India - United States - European Union - Other AWS regions as necessary for service delivery

6.2 Security Measures

We implement appropriate technical and organizational measures to protect your data:

Technical Measures: - Encryption of data in transit (SSL/TLS) - Encryption of sensitive data at rest - Secure password hashing - Regular security updates and patches - Firewall protection - Access controls and authentication

Organizational Measures: - Limited access to personal data - Employee confidentiality obligations - Regular security training - Incident response procedures

6.3 Security Limitations

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6.4 Your Security Responsibilities

You are responsible for: - Keeping your login credentials confidential - Using strong, unique passwords - Logging out from shared devices - Notifying us immediately of unauthorized access

7. Data Retention

7.1 Retention Periods

7.2 Deletion

When you delete your account: - Your public catalogues are removed immediately - Personal data is deleted within 30 days - Backup copies are purged within 90 days - We retain only what is legally required

7.3 Legal Holds

We may retain data longer if required for legal proceedings or regulatory compliance.

8. Your Rights

8.1 Rights for All Users

Regardless of your location, you have the right to:

Access: Request a copy of your personal data

Correction: Update or correct inaccurate data

Deletion: Request deletion of your data (subject to legal requirements)

Withdraw Consent: Opt out of marketing communications

Account Closure: Terminate your account at any time

8.2 Additional Rights (GDPR - EEA/UK Users)

If you are in the European Economic Area or United Kingdom:

Data Portability: Receive your data in a structured, machine-readable format

Restriction: Request limitation of data processing

Object: Object to processing based on legitimate interests

Automated Decision-Making: Not be subject to solely automated decisions with legal effects

Lodge Complaint: File a complaint with your local data protection authority

8.3 Additional Rights (CCPA - California Users)

If you are a California resident:

Right to Know: Request disclosure of data collected, used, and shared

Right to Delete: Request deletion of your personal information

Right to Opt-Out: Opt out of “sale” of personal information

Right to Non-Discrimination: Not be discriminated against for exercising rights

We do not sell your personal information.

8.4 Exercising Your Rights

To exercise any of these rights, contact us at:

Email: amubush2024@gmail.com Subject Line: Privacy Rights Request - [Your Request Type]

We will respond within: - 30 days for GDPR requests - 45 days for CCPA requests - 30 days for other requests

We may need to verify your identity before processing requests.

9. International Data Transfers

9.1 Transfer Mechanisms

As we operate globally and use AWS infrastructure, your data may be transferred to countries outside your residence. For transfers from the EEA/UK, we rely on:

Standard Contractual Clauses (SCCs)

AWS’s Data Processing Addendum

Adequacy decisions where applicable

9.2 Your Consent

By using our Platform, you consent to the transfer of your data to India and other countries where we or our service providers operate.

10. Children’s Privacy

10.1 Age Requirement

Our Platform is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

10.2 Parental Notice

If you believe we have collected information from a child under 18, please contact us immediately at amubush2024@gmail.com. We will promptly delete such information.

11. Marketing Communications

11.1 What We Send

With your consent, we may send: - Product updates and new features - Tips for improving your catalogue - Promotional offers and discounts - Industry news and insights

11.2 Opting Out

You can opt out of marketing communications: - By clicking “unsubscribe” in any marketing email - By updating your account preferences - By contacting us at amubush2024@gmail.com

Note: You cannot opt out of essential service communications (e.g., security alerts, payment confirmations).

12. Third-Party Links

Our Platform may contain links to third-party websites or services. We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies before providing any personal information.

13. Changes to This Privacy Policy

13.1 Modifications

We may update this Privacy Policy from time to time to reflect changes in: - Our data practices - Legal requirements - Platform features

13.2 Notification

We will notify you of material changes by: - Email to your registered address - Prominent notice on the Platform - Updating the “Last Updated” date

13.3 Your Continued Use

Your continued use of the Platform after changes constitutes acceptance of the updated Privacy Policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Hatimi Online World Email: amubush2024@gmail.com Website: catalogue.hatimionlineworld.com

For Data Protection Enquiries: Email Subject: Privacy Inquiry - [Your Topic]

We aim to respond to all enquiries within 48 hours.

15. Supervisory Authorities

If you are not satisfied with our response to your privacy concerns, you may contact the relevant data protection authority:

For India: (Data Protection Authority details to be added once established under DPDP Act)

For European Union: Your local Data Protection Authority - Find yours at ec.europa.eu

For United Kingdom: Information Commissioner’s Office (ICO) - ico.org.uk

For California, USA: California Attorney General - oag.ca.gov

By using Product Catalogue | Hatimi Online World, you acknowledge that you have read and understood this Privacy Policy.