Privacy Policy.
Last updated: 20 February 2026
1. Introduction
This Privacy Policy explains how Arjun Raj ("we", "us", or "our") collects, uses, discloses, and protects your personal information when you visit arjunraj.dev ("Website") or use our professional services. We are committed to protecting your privacy and handling your data in a transparent, secure, and lawful manner in accordance with the Information Technology Act, 2000 and its associated rules, as well as applicable international privacy standards.
2. Information We Collect
2.1 Information You Provide
- Contact Form: Name, email address, phone number, service interest, project description, and budget range.
- Payment Portal: Full name, email address, phone number, and service amount. Sensitive payment details (card numbers, UPI IDs, bank credentials) are collected and processed directly by Razorpay and are never stored on our servers.
- Email Communication: Any information you voluntarily include in emails sent to us.
2.2 Information Collected Automatically
- Device & Browser Data: IP address, browser type and version, operating system, device type, and screen resolution.
- Usage Data: Pages viewed, time spent on pages, referring URLs, and navigation paths through the Website.
- Cookies & Local Storage: We may use essential cookies for Website functionality and analytics cookies to understand usage patterns. See Section 7 for details.
2.3 Payment Information
All payment transactions are processed by Razorpay Software Private Limited. Razorpay is PCI DSS Level 1 compliant and regulated by the Reserve Bank of India. We receive order confirmations and transaction statuses from Razorpay but do not store or have access to your full payment instrument details (e.g., card numbers, CVV, bank login credentials, or UPI PINs).
3. How We Use Your Information
We use your personal information for the following purposes:
- To respond to inquiries submitted through the contact form.
- To process payments and send payment confirmations and receipts.
- To deliver the Services you have engaged us for.
- To communicate project updates, invoices, and relevant notices.
- To improve the Website's functionality, design, and performance.
- To detect, prevent, and address fraud or security issues.
- To comply with legal obligations and enforce our Terms & Conditions.
4. Data Sharing & Third Parties
We do not sell, rent, or trade your personal information. We may share data with the following categories of third-party service providers strictly for operational purposes:
Razorpay
Payment processing. Your name, email, phone, and transaction details are shared with Razorpay to facilitate secure payments. See Razorpay's Privacy Policy.
Resend
Email delivery service for sending contact form notifications, payment receipts, and transactional emails. See Resend's Privacy Policy.
Vercel
Hosting and infrastructure provider. Standard web server logs (IP address, request data) may be processed. See Vercel's Privacy Policy.
We may also disclose your information where required by law, regulation, legal process, or governmental request.
5. Data Security
We implement reasonable technical and organizational measures to protect your personal information, including:
- HTTPS/TLS encryption for all data in transit.
- HMAC SHA-256 signature verification for all payment webhook communications.
- Server-side validation and rate limiting on all API endpoints.
- No storage of sensitive payment instrument data on our servers — Razorpay handles all PCI-scoped data.
- Environment-variable-based secrets management with no hardcoded credentials.
While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.
6. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements. Payment records are retained as required by applicable tax and financial regulations in India (typically 7 years for financial records). Contact form data is retained for 12 months from the date of submission unless an engagement is established.
7. Cookies & Tracking
The Website may use the following types of cookies and similar technologies:
- Essential Cookies: Required for core Website functionality (e.g., session management).
- Analytics Cookies: Used to understand how visitors interact with the Website, helping us improve user experience. These may include third-party analytics services.
You can manage cookie preferences through your browser settings. Disabling essential cookies may affect the Website's functionality.
8. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request correction of inaccurate or incomplete data.
- Deletion: Request deletion of your personal data, subject to legal retention requirements.
- Portability: Request your data in a structured, machine-readable format.
- Objection: Object to processing of your data for specific purposes.
- Withdrawal of Consent: Where processing is based on consent, you may withdraw it at any time.
To exercise any of these rights, contact us at arjunraj.developer@gmail.com. We will respond within 30 days of receiving your request.
9. Children's Privacy
Our Website and Services are not directed at individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected data from a minor, please contact us and we will promptly delete it.
10. International Data Transfers
Your data may be processed and stored by our third-party service providers in locations outside India (e.g., Vercel servers, Resend infrastructure). By using our Website and Services, you consent to such transfers. We ensure that appropriate safeguards are in place with our service providers to protect your data.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. Changes will be effective upon posting to this page with an updated "Last updated" date. We encourage you to review this page periodically. For material changes, we will make reasonable efforts to notify affected individuals via email.
12. Grievance Officer
In accordance with the Information Technology Act, 2000 and rules made thereunder, the name and contact details of the Grievance Officer are:
Arjun Raj
Grievance Officer
Email: arjunraj.developer@gmail.com
Response time: Within 30 days of receipt of complaint