Privacy Policy

This policy applies strictly to digital personal data provided voluntarily by website visitors ("Data Principals") or collected automatically during a visit.

• Voluntary Information: Name, email, telephone number, corporate affiliations, and any specific text or compliance details entered into website query forms.
• Automated & Technical Data: Basic server logs, IP addresses, browser types, operating systems, and traffic patterns collected solely to maintain technical stability, optimize performance, and protect the security of our digital infrastructure.

We process your personal data under Section 4 of the DPDP Act based on either your explicit consent or applicable legal grounds:

• Explicit Consent: By submitting an inquiry via our web forms, you grant us explicit consent to process your data to address your specific request.
• Legitimate Uses & Legal Obligations: We reserve the standard legal right to process personal data without explicit consent where it is necessary for:
  • Compliance with any law, statutory mandate, or order issued by a court, tribunal, or regulatory authority (such as the MCA, SEBI, or ICSI).
  • Detecting, preventing, or mitigating fraud, cyber incidents, or security vulnerabilities.

In accordance with the DPDP Act's storage limitations, personal data will be purged once the purpose for collection is fulfilled. However, the Firm reserves the exclusive right to determine the operational timeline required to satisfy that purpose.

Furthermore, data will be retained for longer durations if required to meet statutory record-keeping obligations under Indian corporate laws, or to defend against potential legal claims, professional misconduct disputes, or regulatory audits.

Data Principals retain the right to withdraw their consent at any time. However, any withdrawal of consent must be submitted in writing and will operate prospectively.

• Consequences of Withdrawal: If you withdraw consent, the Firm reserves the right to immediately terminate all communication, access, or response streams associated with your original request.
• Exemptions: Withdrawal of consent does not obligate the Firm to erase data that is actively required to comply with statutory mandates or defend legal/regulatory rights.

We implement reasonable, industry-standard technical and administrative security measures to protect personal data. However, because no internet transmission is entirely secure, the Firm explicitly disclaims liability for unauthorized access, interception, or data breaches resulting from factors outside our immediate control, including third-party hosting server failures or vulnerabilities in external internet networks.

In alignment with statutory requirements, any observations, queries, or formal grievances regarding the processing of personal data may be routed directly through our centralized administrative channel. To ensure streamlined processing and protect internal operational identities, all communication must be sent exclusively via email at mahhak@chaudharynegipartners.com.

In accordance with the framework of the DPDP Act, Data Principals are expected to exercise their rights responsibly. The Firm reserves the right to reject or delay responses to grievances that are demonstrably vague, repetitive, systematic, or frivolous in nature.

The Firm reserves the unilateral right to amend, modify, or update this Privacy Policy at any time without prior individual notice to adapt to changing corporate laws or operational shifts. The "Effective Date" at the top of this page will indicate when the latest revisions were made.