Privacy Policy

1. Introduction

Welcome to Aséa ("we," "our," "us," or "the Company"). We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.asea.in (the "Site") or purchase our luxury fragrances.

By using our Site or services, you consent to the data practices described in this policy. If you do not agree with our policies and practices, please do not use our services.

2. Information We Collect

2.1 Personal Information You Provide

We collect information you provide directly to us, including:

• Identity Data: First name, last name, username, title, date of birth, gender
• Contact Data: Email address, telephone numbers, billing address, delivery address
• Financial Data: Payment card details (processed by our payment service providers)
• Transaction Data: Details about payments, products purchased, order history
• Profile Data: Username, password, purchases, preferences, feedback, survey responses
• Marketing Data: Preferences in receiving marketing, communication preferences
• Communication Data: Emails, chat transcripts, customer service interactions

2.2 Information Automatically Collected

When you visit our Site, we automatically collect:

• Device Information: Hardware model, operating system, unique device identifiers, mobile network information
• Log Information: IP address, browser type, ISP, referring/exit pages, operating system, date/time stamps, clickstream data
• Location Data: Approximate location based on IP address
• Usage Data: Pages viewed, time spent on pages, links clicked, language preferences, browsing behavior
• Cookie Data: Information collected through cookies, web beacons, and similar technologies

2.3 Information from Third Parties

We may receive information about you from:

• Payment Providers: Transaction confirmations and fraud prevention data
• Analytics Providers: Google Analytics, Facebook Pixel for website performance
• Social Media: When you interact with us on social platforms
• Marketing Partners: When you participate in joint promotions
• Delivery Partners: Shipping confirmations and delivery status

2.4 Special Categories of Data

We do not collect any special categories of personal data about you (including details about your race, ethnicity, religious beliefs, sexual orientation, political opinions, trade union membership, health information, genetic data, or biometric data). We also do not collect information about criminal convictions or offenses.

3. How We Use Your Information

3.1 Legal Basis for Processing

We will only use your personal data when the law allows us to. Most commonly, we use it where:

• Contract Performance: Processing necessary to fulfill our contract with you
• Legal Obligations: Processing necessary to comply with legal requirements
• Legitimate Interests: Processing necessary for our legitimate business interests
• Consent: You have given clear consent for us to process your data
• Vital Interests: Processing necessary to protect someone's life

3.2 Purposes of Processing

4. Information Sharing & Disclosure

4.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our business:

4.2 Legal Requirements & Protection

We may disclose your information when required to:

• Comply with applicable laws, regulations, or legal processes
• Respond to lawful requests from public authorities
• Protect and defend our rights, property, or safety
• Prevent or investigate possible wrongdoing
• Protect the personal safety of users or the public
• Protect against legal liability

4.3 Business Transfers

If we are involved in a merger, acquisition, asset sale, or bankruptcy, your personal information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.4 Aggregate Information

We may share aggregate or de-identified information that cannot reasonably be used to identify you. This may include statistical data about our users, their behavior, and demographics.

5. Data Security

We take the security of your personal data seriously and implement industry-standard measures to protect it.

5.1 Technical Measures

• Encryption: 256-bit SSL/TLS encryption for all data transmission
• Secure Storage: Encrypted databases with restricted access
• Payment Security: PCI DSS compliant payment processing
• Access Controls: Multi-factor authentication for administrative access
• Regular Updates: Security patches and software updates
• Firewalls: Advanced firewall protection against unauthorized access

5.2 Organizational Measures

• Limited access to personal data on a need-to-know basis
• Confidentiality agreements with all employees and contractors
• Regular security training for staff
• Incident response procedures
• Regular security audits and assessments
• Vendor security assessments

5.3 Data Breach Procedures

In the unlikely event of a data breach that may pose a risk to your rights and freedoms:

• We will notify affected users within 72 hours
• We will provide details about what information was affected
• We will advise on steps you can take to protect yourself
• We will notify relevant authorities as required by law
• We will take immediate steps to secure the breach

7. Your Rights & Choices

You have certain rights regarding your personal data. We respect these rights and have processes in place to help you exercise them.

7.1 Your Legal Rights

7.2 How to Exercise Your Rights

To exercise any of these rights:

1. Email us at privacy@asea.in with your request
2. Include "Privacy Rights Request" in the subject line
3. Provide your full name and order number (if applicable)
4. Specify which right(s) you wish to exercise
5. We will respond within 30 days of receiving your request

7.3 Marketing Preferences

You can manage your marketing preferences by:

• Clicking "unsubscribe" in any marketing email
• Updating preferences in your account settings
• Contacting us at unsubscribe@asea.in
• Replying STOP to marketing SMS messages

7.4 Complaints

If you have concerns about how we handle your personal data:

1. First, contact us at privacy@asea.in
2. We will investigate and respond within 30 days
3. If unsatisfied, you may lodge a complaint with the relevant data protection authority

6. Cookies & Tracking Technologies

6.1 What Are Cookies?

Cookies are small text files placed on your device when you visit our website. They help us provide you with a better experience by remembering your preferences and understanding how you use our site.

6.2 Types of Cookies We Use

6.3 Third-Party Cookies

Some cookies are placed by third-party services that appear on our pages:

• Google: Analytics, Ads, reCAPTCHA
• Facebook: Social plugins, Pixel tracking
• Payment Providers: Fraud prevention
• Customer Support: Live chat functionality

6.4 Managing Cookies

Note: Disabling cookies may affect website functionality, including inability to add items to cart, complete purchases, or access your account.

6.5 Other Tracking Technologies

• Web Beacons: Tiny graphics that track email opens and website visits
• Local Storage: Similar to cookies but with larger capacity
• Session Storage: Temporary storage cleared when browser closes
• Device Fingerprinting: Used only for fraud prevention

8. International Data Transfers

As we operate primarily in India, most data processing occurs within Indian borders. However, some services may involve international data transfers.

8.1 Cross-Border Transfers

Your data may be transferred to and processed in countries other than India for:

• Cloud storage and hosting services (AWS, Google Cloud)
• Analytics and performance monitoring
• Customer support tools
• Payment processing
• Email communication services

8.2 Safeguards

When transferring data internationally, we ensure protection through:

• Standard contractual clauses approved by relevant authorities
• Ensuring recipients are in countries with adequate data protection laws
• Implementing appropriate technical and organizational measures
• Obtaining your explicit consent where required

9. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18 years of age.

If you believe we have inadvertently collected information from a child under 18, please contact us immediately at privacy@asea.in so we can delete such information.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations.

11.1 Notification of Changes

We will notify you of material changes by:

• Posting a prominent notice on our website
• Sending an email to registered users
• Updating the "Last Updated" date at the top of this policy
• Requiring consent for material changes affecting data processing

11.2 Review Recommendations

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of our services after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please don't hesitate to contact our Data Protection Officer.