Privacy Policy
This Privacy Policy is an electronic record in accordance with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 ("SPDI Rules"), and the Digital Personal Data Protection Act, 2023 ("DPDP Act"). No physical or digital signatures are required.
1. Applicability
This Privacy Policy applies to all users ("Users") accessing or using the services of Kyra Jewelry through our website (www.lucirajewelry.com), mobile applications, or customer service channels. By using our services, you consent to the practices described herein.
2. Information We Collect
A. Personal Data
- Name, phone number, email address
- Billing and shipping address
- IP address, browser and device information
B. Sensitive Personal Data (SPD)
- Payment details (card info, UPI ID, etc.)
- Authentication credentials (e.g., passwords)
- Health information voluntarily shared (e.g., for allergy-safe jewelry options)
Sensitive data is collected only with your prior, clear, and explicit consent through opt-in mechanisms.
3. Purpose of Data Collection
We collect and process your data to:
- Fulfill orders and deliver products
- Provide customer support and grievance resolution
- Send marketing materials (with your consent)
- Enhance website functionality and user experience
- Comply with taxation and regulatory obligations
4. Consent and Withdrawal
By using our services, you consent to the collection and use of your data. You may withdraw consent at any time by writing to: support@kyra.com. Withdrawal will not affect processing done prior and may impact services provided.
5. Disclosure of Information
We do not share your Sensitive Personal Data with third parties without your prior written consent, except:
- To trusted service providers (e.g., payment gateways, logistics partners)
- To comply with legal or regulatory requests
- To protect Lucira's rights, property, or user safety
6. Cookies and Tracking
We use first- and third-party cookies to: Remember preferences, Facilitate secure transactions, Provide personalized shopping, and Monitor site performance.
You may disable cookies in your browser settings, though it may affect site functionality.
7. Data Retention
Personal data is retained only as long as needed for the purposes stated or as required by law. Non-personal data may be used for business analytics.
8. Your Rights
Under the DPDP Act and applicable Indian laws, you have the right to access your personal data, request correction or deletion, data portability, object to processing, and file complaints with the Data Protection Board of India.
To exercise rights, write to: support@kyra.com
9. Grievance Redressal
We are committed to resolving your privacy concerns.
Grievance Officer: [To be appointed]
Email: support@kyra.com
Response Time: Within 30 days
You may escalate unresolved issues to the Data Protection Board of India.
10. Data Security
We implement SSL encryption for all transactions, Two-factor authentication for internal systems, and Regular audits. Despite these, no method of transmission is 100% secure.
11. Children's Data
Our services are not intended for individuals under the age of 18. We do not knowingly collect data from minors.
12. Governing Law & Jurisdiction
This Policy is governed by the laws of India. Disputes shall be resolved through arbitration in Mumbai, India.
13. Force Majeure
Lucira shall not be held liable for any breach caused by unforeseen events including cyberattacks, natural disasters, or government restrictions.
14. Limitation of Liability
Lucira shall not be liable for indirect, incidental, or consequential damages unless arising from gross negligence.
15. Review and Updates
This policy is reviewed annually. Material changes will be communicated via our website or email.