Privacy Policy

At Hathisoft (“we,” “us,” or “our”), accessible at hathisoft.com, we are fully committed to safeguarding the privacy and personal data of our users. Upholding the highest standards of data protection is integral to providing a secure and trustworthy experience when you use our website, products, and services. This Privacy Policy outlines how we collect, process, and protect your personal data, in accordance with applicable data protection laws including the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

1. Introduction

We recognize that your privacy is important and value the trust you place in us. This policy reflects our commitment to maintaining the confidentiality, integrity, and security of your personal information, and to processing it responsibly and transparently.

2. Scope of Policy and Data Controller Role

This Privacy Policy applies to all individuals who interact with our website, hathisoft.com, and related services. Hathisoft is the data controller for the processing activities described herein, meaning we determine the purposes and means for handling personal data under GDPR. Under CCPA, we act as a “business” in relation to the collection of personal information.

3. Categories of Data Processed

Depending on your interaction with our website and services, we may collect and process the following categories of personal data:

– Usage Data: Information about your visit, including your IP address, browser type, domain names, access times, referring website addresses, session duration, and navigation paths.

– Account Data: Information you provide during account creation or registration, including your name, email address, phone number, billing and shipping address.

– Profile Data: Details about your preferences, browsing behavior, previous purchases, product selections, and feedback.

– Communication Data: Records of your correspondence with us, including emails, support tickets, chat messages, and contact form submissions.

– Technical Data: Data collected from your device, such as device type, operating system, system configuration, and technical identifiers.

– Transaction Data: Records of purchases, transaction amounts, payment methods, order fulfillment, and delivery tracking.

– Preference Data: Your choices about receiving marketing communications, categories of interest, advertisement interactions, and notification settings.

4. Legal Bases for Processing

We process personal data on the following legal grounds, as permitted under GDPR:

– Contractual Necessity: For processing required to establish or perform a contract with you, such as fulfilling orders or providing services.

– Legitimate Interests: To pursue our legitimate business interests in analytics, service improvement, fraud prevention, and support, provided they are not overridden by your rights.

– Consent: Where required, especially for personalized marketing or non-essential cookies, we will request your explicit consent and allow you to withdraw it at any time.

– Legal Obligation: For compliance with applicable laws or government requests, such as tax regulations or legal proceedings.

5. Your Rights

If you are located in the EU, UK, California, or other regions with similar regulations, you have certain rights regarding your personal data, including the right to:

– Access: Obtain a copy of your personal data that we hold.
– Rectification: Correct inaccurate or incomplete data.
– Erasure: Request deletion of your data (“right to be forgotten”), subject to applicable retention obligations.
– Restriction: Limit the processing of your data under specific conditions.
– Portability: Receive your data in a structured, commonly used, and machine-readable format, and have it transferred to another controller, where technically feasible.
– Objection: Object to processing based on legitimate interests or direct marketing.

You may exercise these rights by contacting us at [email protected]. We will respond in accordance with applicable legal requirements.

6. Security Measures

We employ comprehensive organizational and technical measures to protect your data, including:

– Encryption of data in transit and at rest.
– Role-based access controls with audit logging.
– Regular security assessments and vulnerability patches.
– Secure backups and disaster recovery protocols.
– Staff training on data protection and confidentiality obligations.

7. International Transfers

Your personal data may be transferred and stored outside of your country of residence, including in jurisdictions that may not offer the same level of protection. Where personal data is transferred internationally, Hathisoft implements safeguards such as Standard Contractual Clauses approved by the European Commission or other relevant authorities to ensure an adequate level of protection in compliance with applicable laws.

8. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including retention required by law, regulation, or contractual obligation.

– Usage and Technical Data: retained for up to 12 months for analytics and improvement.
– Account and Profile Data: retained for the duration of your account and up to 6 years thereafter for legal and business continuity.
– Transaction Data: retained for 7 years in accordance with tax laws.
– Communication Data: retained for 2 years to manage past inquiries and support claims.
– Preference Data: retained until you change your privacy settings or withdraw consent.

9. Cookie Policy

Hathisoft.com uses cookies and similar tracking technologies to enhance user experience and improve our services. Cookies fall into the following categories:

– Essential Cookies: Required for core website functionality, such as navigation or secure login.
– Functional Cookies: Help store user preferences and choices (e.g., language settings).
– Analytics Cookies: Collect aggregated data on user behavior for analytical insights.
– Performance Cookies: Measure performance of different website areas and marketing efforts.

10. Cookie Management and Compliance

Before setting any non-essential cookies, we request your consent via our cookie banner in accordance with GDPR and CCPA requirements. You can manage your cookie preferences or withdraw consent at any time through our cookie settings panel. Additionally, you may control cookies via browser settings or third-party tools that provide Do Not Track functionality.

11. Special Protections for Children

Hathisoft.com does not knowingly collect, solicit, or process personal information from children under the age of 13. If we discover that such data has been collected without verified parental consent, it will be promptly deleted. Parents or guardians who believe their child has submitted personal information should contact us at [email protected].

12. Policy Updates & Notifications

We reserve the right to update this Privacy Policy from time to time to reflect changes in legal requirements, operational practices, or service offerings. We will notify users of material changes through appropriate notices on the website or by direct communication where legally required. Continued use of the website after such updates shall indicate your acknowledgment and agreement to the revised terms.

13. Contact

For questions, requests, or concerns related to this Privacy Policy or your personal data, please contact us at:

Email: [email protected]
Website: https://hathisoft.com

We are committed to ensuring that your privacy is respected and addressed appropriately.

This Privacy Policy reflects our compliance with GDPR, CCPA, and other relevant regulations to protect your personal data. If you have any questions or wish to exercise your rights, please reach out to us at [email protected].