Privacy Policy

This privacy policy explains how Arteikon Maison LLP ("we," "us," or "our") collects, uses, and protects your personal data when you visit and interact with our website at https://arteikon.com. This policy applies to all visitors, users, customers, and others who access our services, and describes your privacy rights and how the law protects you.

Legal Entity: Arteikon Maison LLP
Business Address: A 904, LNR, Prabhakar Kunte Marg, Off. Pokhran Road No 2, Opp. Neelkanth Heights, Thane-West, Thane - 400610, India
Contact Email: talk_to_us@arteikon.com
Phone: +91 9324298242
Website: https://arteikon.com

Data Controller and Privacy Contact

Data Controller: Artéikon Maison LLP
Privacy Contact Person: Ravi Panicker, Founder & CEO
Privacy Email: talk_to_us@arteikon.com
Privacy Correspondence Address: A 904, LNR, Prabhakar Kunte Marg, Off. Pokhran Road No 2, Opp. Neelkanth Heights, Thane-West, Thane - 400610, India

Types of Personal Data We Collect

We collect the following categories of personal data:

• Contact Information: Names, email addresses, phone numbers
• Address Information: Billing and shipping addresses
• Transaction Data: Payment information, order history, purchase preferences
• Technical Data: IP addresses, browser information, device identifiers
• Usage Data: Website interaction data, analytics information
• Social Media Data: Information from our social media interactions on Facebook, Instagram, YouTube, Pinterest, and LinkedIn

Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

1. Consent: For marketing communications and non-essential cookies
2. Contract Performance: For order processing, shipping, payment processing, and customer service
3. Legal Obligation: For tax records, accounting, and regulatory compliance
4. Legitimate Interest: For fraud prevention, customer service improvements, and customer profiling for marketing purposes

You have the right to withdraw consent at any time for processing based on your consent without affecting the lawfulness of processing before withdrawal.

How We Use Your Personal Data

We use your information for the following purposes:

• Processing and fulfilling your orders
• Payment processing and fraud prevention
• Shipping and delivery of products
• Customer service and support
• Marketing communications (with your consent)
• Website analytics and improvements
• Legal and regulatory compliance
• Business operations and administration

Third-Party Service Providers

We share your data with the following categories of third-party processors:

• Payment Processor: CCAvenue (for secure payment processing)
• Shipping Partners: DHL (for international shipping) and Shiprocket (for domestic shipping)
• Website Hosting: Reseller Club (for website hosting services)
• Analytics Provider: Google Analytics (for website performance analysis)
• Social Media Platforms: Facebook, Instagram, YouTube, Pinterest, LinkedIn (for marketing purposes)

All third-party processors are bound by data processing agreements ensuring GDPR compliance.

Data Retention Policy

We retain your personal data for the following periods:

• Customer Account Data: 7 years after account closure
• Transaction Records: 15 years for tax and legal compliance
• Payment Data: Only as long as necessary for transaction completion (tokenized by payment processor)
• Marketing Data: Until you unsubscribe plus 3 additional years
• Website Analytics Data: 3 years
• Customer Support Communications: 3 years

Data Deletion Policy

Your Right to Data Deletion

You have the right to request deletion of your personal data from our systems. We are committed to making this process simple and transparent.

How to Submit a Data Deletion Request

You can request deletion of your personal data through any of the following methods:

1. Email Request: Send an email to talk_to_us@arteikon.com with the subject line "Data Deletion Request"
2. Postal Request: Send a written request to our business address: A 904, LNR, Prabhakar Kunte Marg, Off. Pokhran Road No 2, Opp. Neelkanth Heights, Thane-West, Thane - 400610, India
3. Phone Request: Call us at +91 9324298242 during business hours

Verification Process

To protect your privacy and prevent unauthorized deletion requests, we require identity verification:

• Provide your full name as registered with us
• Include your email address associated with your account
• Provide your phone number or order number for verification
• We may request additional verification if needed to confirm your identity

Deletion Timeline and Process

1. Acknowledgment: We will acknowledge receipt of your deletion request within 7 business days
2. Processing: We will complete the deletion process within 30 days of receiving a verified request
3. Backup Clearing: Data in backup systems will be cleared within 90 days
4. Confirmation: You will receive email confirmation once deletion is complete

Deletion Workflow

Upon receiving a verified data deletion request, we will:

• Delete your personal data from our active systems
• Instruct all our third-party processors (CCAvenue, DHL, Shiprocket, Reseller Club, Google Analytics, and social media platforms) to delete your data from their systems
• Remove your data from backup systems within the specified timeframe
• Provide you with written confirmation of completed deletion

Exceptions to Deletion

Some data may be retained despite a deletion request when required by law:

• Tax and Accounting Records: Retained for 15 years as required by Indian tax laws
• Fraud Prevention Records: Retained for legitimate fraud prevention purposes
• Legal Compliance: Data required for ongoing legal obligations or proceedings
• Anonymized Data: Aggregated, anonymized data that cannot identify you personally

We will inform you if any exceptions apply to your deletion request and explain the legal basis for retention.

International Data Transfers

Currently, we do not transfer personal data outside India. All data processing occurs within India through our domestic service providers.

Your Data Protection Rights Under GDPR

You have the following rights regarding your personal data:

1. Right to be Informed: To know when and why your data is collected
2. Right of Access: To obtain a copy of your personal data we hold
3. Right to Rectification: To request correction of inaccurate data
4. Right to Erasure: To request deletion of your data ("right to be forgotten") - see our detailed Data Deletion Policy above
5. Right to Restrict Processing: To limit our processing of your data
6. Right to Data Portability: To request transfer of your data to another organization
7. Right to Object: To object to processing based on legitimate interests or direct marketing
8. Right Against Automated Decision-Making: To not be subject to automated decisions with legal effects

To exercise any of these rights, please contact us at talk_to_us@arteikon.com.

Data Security Measures

We implement appropriate technical and organizational security measures:

• Encryption: All sensitive information is protected using SSL/TLS encryption during transmission and AES-based encryption at rest
• Access Controls: Role-based access with multi-factor authentication (MFA) and strong password policies
• Regular Updates: Systematic security updates and patches
• Staff Training: Data protection training conducted every 6 months
• Regular Audits: Periodic reviews of access rights and security measures

Cookies and Tracking Technologies

Our website uses the following types of cookies:

• Essential Cookies: Required for website functionality (no consent needed)
• Analytics Cookies: Google Analytics for website performance (requires consent)
• Functional Cookies: For making your shopping journey easier (requires consent)
• Advertising Cookies: For targeted advertising purposes (requires consent)
• Personalisation Cookies: For personalising your experience (requires consent)

You can manage your cookie preferences through our cookie banner and browser settings.

Automated Decision-Making and Profiling

We engage in limited automated processing:

• Fraud Detection: Our payment processor (CCAvenue) uses automated fraud detection systems
• Customer Profiling: We analyse customer behaviour for marketing purposes based on legitimate interest
• We do not use automated recommendation algorithms or pricing algorithms

You have the right to request human intervention in automated decisions that significantly affect you.

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will:

• Report to relevant supervisory authorities within 72 hours
• Notify affected individuals without undue delay when required
• Implement immediate containment and remediation measures

Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from children under 18.

Changes to This Privacy Policy

We may update this privacy policy to reflect changes in our practices or applicable laws. We will notify you of significant changes by:

• Posting prominent notice on our website
• Sending email notification to registered users
• Updating the "Effective Date" at the top of this policy

Contact Us and Complaints

For any privacy-related questions, to exercise your rights, or to file a complaint:

Email: talk_to_us@arteikon.com
Phone: +91 9324298242
Postal Address: Ravi Panicker, Founder & CEO, A 904, LNR, Prabhakar Kunte Marg, Off. Pokhran Road No 2, Opp. Neelkanth Heights, Thane-West, Thane - 400610, India

You also have the right to lodge a complaint with a supervisory authority in the EU/US if you believe our processing of your personal data violates GDPR.

Governing Law

This privacy policy is governed by the General Data Protection Regulation (GDPR) and applicable Indian data protection laws.