Privacy Policy

Last Updated: May 2025

1. Introduction

Domain Registration India Private Limited ("Domain India") is committed to protecting your privacy. This policy explains how we collect, use, disclose, and secure personal information in compliance with India's Digital Personal Data Protection Act, 2023 (DPDP) and CERT-IN guidelines. This policy applies to website visitors, registered customers, and anyone using our domain registration, hosting, support, and email services.

2. Personal Information Collected

**Identity data:** Full names, emails, phone numbers, addresses

**Technical data:** IP addresses, browser details, device information

**Service data:** Domain WHOIS data, hosting usage logs

**Financial data:** Payment details (excluding stored card information)

**Communications:** Emails, chats, support tickets

Third-party processors including Razorpay, Atom, Stripe, and PayPal collect limited data under strict data protection agreements.

3. Data Collection Purposes

Delivering domain and hosting services

Customer verification and account management

Meeting legal obligations under NIXI and IT Act

Sending service notifications and invoices

Fraud detection and security breach prevention

Service optimization through analytics

4. Cookies & Analytics

Session cookies maintain secure logins; optional cookies track preferences and behavior. Google Analytics captures device and browser information. Data is stored within India for 180 days per CERT-IN guidelines.

5. Data Sharing

Personal information is never sold. Data may be shared with:

Domain registries (INRegistry/NIXI)

Legal authorities when required

Third-party vendors on a need-to-know basis for core services

6. User Rights

Customers can:

Access, correct, or delete personal data

Withdraw non-essential processing consent

File complaints with the Grievance Officer via the support portal

7. Security Measures

SSL/TLS encryption

Role-based access controls

Firewall and malware scanning (CSF, Imunify360)

Two-factor authentication for staff

Regular patching and vulnerability monitoring

PCI-DSS compliant payment processing

8. Data Retention

Account and log data retained for service continuity

WHOIS information stored per registry contracts

Primary backups retained 30 days

Regulatory logs stored minimum 180 days per CERT-IN

9. Grievance Officer

**Name:** Suresh Kumar

**Email:** [email protected]

**Phone:** +91-9597588555

**Response time:** Within 7 working days

10. Policy Updates

Changes announced via email and website notices. Continued service use indicates acceptance of updated policies.

---

Domain Registration India Private Limited

CIN: U72900TZ2016PTC028001