Privacy Policy – Srotam
Srotam (“we”, “our”, “us”) is a spiritual and religious jewellery brand committed to safeguarding the privacy of every individual who visits our website or interacts with our services. Srotam is a brand owned and operated by SK Ventures, a business entity registered office E-5/55, Sector 5, Chitrakoot, Vaishali Nagar, Jaipur, Rajasthan – 302021.
This Privacy Policy explains how we collect, use, disclose, and protect your personal information in accordance with applicable Indian laws, including the Information Technology Act, 2000, and related rules.
1. Scope & Your Consent
This Privacy Policy applies to all personal information collected through:
- Our website ([Insert Website URL])
- Purchases, account creation, or customer service interactions
- Email, WhatsApp, or social media communications initiated by you
By accessing or using our website, you acknowledge that you have read, understood, and agree to this Privacy Policy. If you do not agree, please discontinue use of our website.
2. Legal Framework & GST Compliance
We operate in compliance with applicable Indian laws, including:
- Digital Personal Data Protection Act, 2023 (DPDP Act) & DPDP Rules, 2025 (primary data protection law, being implemented in phases through May 2027)
- Information Technology Act, 2000 & IT (Amendment) Act, 2008
- Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (applicable until superseded by DPDP Act provisions)
- Consumer Protection Act, 2019 & E-Commerce Rules, 2020
- Goods and Services Tax (GST) laws under the CGST Act, 2017
In accordance with GST regulations:
As an e-commerce seller, Srotam is registered under GST regardless of turnover threshold, as mandated by Section 24 of the CGST Act, 2017.
- Applicable GST will be charged on all purchases as per the prevailing rate.
- A valid GST-compliant tax invoice will be issued for every transaction.
- If you provide your GSTIN, it will be used for invoicing and statutory filings.
- Customer data may be retained for the periods required under Indian tax and accounting laws.
3. Information We Collect
3.1 Personal Information
When you place an order, register an account, or contact us, we may collect:
- Full name
- Email address
- Mobile or phone number
- Billing and shipping address
- Payment details (processed securely by third-party gateways — we never store card numbers, CVV, or UPI PINs)
3.2 Account Information
If you create an account on our website:
- Login credentials (stored in encrypted form)
- Order history and purchase records
- Wishlist items and saved preferences
3.3 Communication Data
- Emails, messages, or enquiries you send to us
- Feedback, reviews, or survey responses
- Social media interactions on our official channels
4. How We Use Your Information
4.1 Order Processing & Fulfilment
- To process your transactions and arrange delivery of your order
- To send order confirmations, GST-compliant invoices, and shipping updates
- To process refunds or cancellations where applicable
4.2 Customer Support
- To respond to your enquiries, complaints, or after-sales requests
- To investigate and resolve disputes
4.3 Personalisation
- To enhance and customise your shopping experience
- To recommend products aligned with your interests
4.4 Marketing & Communications
- To send promotional emails, offers, or updates — only if you have opted in
- To share new product launches and spiritual content relevant to our brand
You may opt out of marketing communications at any time by clicking ‘Unsubscribe’ in any email or by contacting us directly.
4.5 Website Analytics & Improvement
- To understand user behaviour and improve website performance
- To optimise content, navigation, and product offerings
4.6 Security & Fraud Prevention
- To detect, investigate, and prevent fraudulent or unauthorised transactions
- To maintain the integrity and safety of our platform
5. Payment Processing
5.1 Secure Payment Infrastructure
All transactions on our website are processed through PCI-DSS compliant third-party payment gateways. We do not store or have access to your full card details, CVV, UPI PIN, or banking credentials.
5.2 Data Shared with Payment Gateways
When you make a payment, the following information may be shared with our payment partners:
- Name and contact details
- Billing address
- Transaction amount and order reference
- Device and IP information (for fraud detection)
This data is used solely for processing transactions, preventing fraud, and meeting regulatory requirements.
5.3 Payment Authentication
Payments may require additional authentication such as OTP, 3D Secure verification, or UPI approval, as mandated by the Reserve Bank of India (RBI). Srotam is not liable for failed or declined transactions resulting from bank or gateway security checks.
5.4 Refunds
Where applicable, refunds will be credited to the original payment method. Payment gateways typically process refunds within 5–10 business days, subject to their own policies and your bank’s processing timelines.
6. Sharing & Disclosure of Information
We do not sell, rent, or trade your personal information. We may share your data only in the following circumstances:
- Payment Gateways: As described in Section 6, for secure transaction processing.
- Logistics & Delivery Partners: To fulfil and track your orders.
- Technology & Service Providers: Hosting, analytics, and IT services that support our operations (subject to confidentiality obligations).
- Legal Obligations: If required by a court order, government authority, or applicable law.
- Business Transfer: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the successor entity. You will be notified in advance.
All third-party partners are required to handle your data in accordance with applicable privacy laws and our data-sharing agreements.
7. Cookies & Tracking Technologies
We use cookies and similar technologies to improve your experience on our website.
7.1 What Cookies Do
- Remember your preferences and maintain your login session
- Help us understand how visitors use our website (analytics)
- Enable personalised product recommendations
- Support remarketing and advertising on third-party platforms (if applicable)
7.2 Managing Cookies
You can manage or disable cookies through your browser settings at any time. Please note that disabling certain cookies may affect the functionality of some features on our website. Refer to your browser’s help documentation for guidance on cookie settings.
8. Data Security
We implement reasonable administrative, technical, and physical safeguards to protect your personal We take the protection of your data seriously. The Company employs appropriate technical,physical, and administrative security measures to safeguard your personal information from unauthorized access, alteration, disclosure, or destruction.
- Encryption: We use encryption to protect sensitive data during transmission.
- Access Control: We limit access to personal data to authorized personnel only, based on job roles and responsibilities.
- Regular Audits: We conduct regular security audits to ensure compliance with internal security policies.
9. Data Retention
We retain your personal information only for as long as is necessary to:
- Fulfil the purposes described in this Privacy Policy
- Comply with legal, tax, and regulatory requirements (including GST record-keeping obligations)
- Resolve disputes and enforce our agreements
Once your data is no longer required, we will securely delete or anonymise it.
10. Your Rights
You have the following rights with respect to your personal information:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request correction of inaccurate or incomplete information.
- Deletion: Request deletion of your data, subject to legal retention obligations.
- Opt-Out: Unsubscribe from marketing communications at any time.
- Portability: Request your data in a commonly used, machine-readable format (where applicable).
To exercise any of these rights, please contact us at [Insert Email Address]. We will respond within a reasonable timeframe and no later than 30 days.
11. Third-Party Links
Our website may contain links to third-party websites, social media platforms, or external services. Srotam is not responsible for the privacy practices, content, or security of such platforms. We encourage you to review the privacy policies of any third-party sites you visit before sharing your personal information.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. Any updates will be posted on this page with a revised ‘Last Updated’ date. We may also notify you by email if the changes are significant.
Your continued use of our website following the posting of changes constitutes your acceptance of the updated policy. We encourage you to review this page periodically.
13. Grievance Officer
In accordance with the Information Technology Act, 2000, and applicable rules, the name and contact details of our Grievance Officer are:
- Name: Rachit Bedi
- Email:
- Address: E-5/55, Sector 5, Chitrakoot, Vaishali Nagar, Jaipur, Rajasthan – 302021
- Response Time: Grievances will be acknowledged within 48 hours and resolved within 30 days.
14. Contact Us
For any questions, concerns, or requests related to this Privacy Policy, please reach out to us:
- Brand: Srotam (A Brand of SK Ventures)
- Website: [Insert Website URL]
- Email: sumankhandelwal.ventures@gmail.com
- Address: E-5/55, Sector 5, Chitrakoot, Vaishali Nagar, Jaipur, Rajasthan – 302021
- Phone No: +91-9460060693
Our Commitment
At Srotam, we treat your trust as sacred. Every transaction and interaction is handled with transparency, security, and integrity — values that are at the heart of the spiritual journey our brand represents. Thank you for being part of the Srotam family.
