PrivacyPolicy
🔒 Privacy Policy for Soulinside
Soulinside is committed to protecting your privacy and personal data. As a Data Fiduciary operating in India, we adhere to the provisions of the Digital Personal Data Protection Act, 2023 (DPDP Act) and all other applicable laws.
Brand Name: Soulinside (The "Data Fiduciary," "we," "us," or "our")
Products: Freeze-Dried Fruits, Vegetables, and other Freeze-Dried Items
Website: https://www.google.com/search?q=eatsoulinside.com (the "Site")
Effective Date: November 6, 2025
Last Updated: November 6, 2025
1. Contact Information and Grievance Redressal (DPDP Act Mandate)
If you have any questions, concerns, or wish to exercise your rights under the DPDP Act, please contact our designated Grievance Contact Person:
| Contact Method | Details |
| Grievance Contact Person | [Insert Name of Contact Person] |
| Email Address (for Grievances) | eatsoulinside@gmail.com (Please use the subject: DPDP Grievance) |
| Customer Care Number | 9946866676 (For general inquiries and customer support) |
| Mailing Address | [Insert Your Business/Legal Address Here] |
We are committed to addressing all grievances and requests in a timely manner as required by applicable law.
2. Personal Data We Collect
As a Data Fiduciary, we collect personal data that is necessary for the specified, lawful purposes of providing and improving our Services. We will provide you with a notice clearly detailing the data and purpose before seeking your consent.
A. Information You Provide Directly
This data is collected when you interact with our Site, place an order for freeze-dried products, or contact us:
-
Identity & Contact Data: Name, billing address, shipping address, email address (eatsoulinside@gmail.com if used for communication), and phone number (9946866676).
-
Order & Financial Data: Details about the freeze-dried items you purchase, payment confirmation, and partial payment details. Note: Full financial information (e.g., complete card number) is not stored by Soulinside; it is processed securely by our third-party payment gateways (e.g., Shopify Payments, etc.) under their security protocols.
-
Account Data: Username, password, security questions, and purchase history.
-
Communication Data: Information included in calls to 9946866676 or emails to customer support.
B. Device and Usage Data (Collected Automatically)
We automatically collect certain information when you interact with our Site:
-
Usage Data: Details about your activity on our Site (pages viewed, search terms, clicks, scrolls, etc.).
-
Device Data: IP address, browser information, time zone, and information collected through Cookies (defined below).
C. Information from Third Parties
We receive information from third parties, primarily our vendors and service providers who support our Site and Services, such as Shopify, our payment processors, and shipping partners.
3. Lawful Processing and Use of Personal Data (DPDP Consent Standard)
We process your Personal Data only for a Lawful Purpose and primarily based on your Consent or a Legitimate Use as permitted under the DPDP Act.
Under the DPDP Act, consent must be free, specific, informed, unconditional, and unambiguous with a clear affirmative action. You have the right to withdraw your consent at any time.
| Purpose of Processing | Personal Data Used | Legal Basis (DPDP Act) |
| Order Fulfillment | Identity, Contact, Financial, and Transactional Data | Consent (for the contract to purchase freeze-dried products). |
| Customer Service | Identity, Contact, and Communication Data | Legitimate Use (Responding to voluntary inquiries). |
| Marketing & Promotions | Identity, Contact, and Usage Data | Consent (Opt-in required for promotional communications). |
| Security & Fraud Prevention | Device, Contact, and Financial Data | Legitimate Use (Preventing unauthorized transactions/activity). |
| Compliance | Any necessary data | Legitimate Use (Complying with Indian laws, including tax, accounting, and consumer laws). |
4. Data Principal Rights (As per DPDP Act, 2023)
As the Data Principal, you have the following rights, which you can exercise by contacting our Grievance Contact Person at eatsoulinside@gmail.com:
| Data Principal Right | Our Obligation |
| Right to Access Information | To receive a summary of your personal data being processed, and the identities of all Data Fiduciaries/Processors with whom your data has been shared. |
| Right to Correction & Completion | To request us to correct inaccurate data or complete any incomplete data that we hold about you. |
| Right to Erasure | To request the erasure of your personal data when the purpose for which it was collected is no longer being served, or upon the withdrawal of your consent. |
| Right to Grievance Redressal | To an effective and readily available mechanism for grievance redressal (Section 1). |
| Right to Nominate | To nominate any other individual who may exercise your rights on your behalf in the event of your death or incapacity. |
| Right to Withdraw Consent | To withdraw the consent given to us at any time. Withdrawal of consent will not affect the lawfulness of processing done before the withdrawal. |
Data Principal Duty: The DPDP Act also imposes duties on you, including not providing false or frivolous information and ensuring all data provided for correction or update is verifiably authentic.
5. Sharing and Disclosure of Personal Data
We share your personal data only as necessary for the purposes outlined in this policy and to adhere to our Data Fiduciary obligations.
-
Data Processors: We share data with third-party vendors and service providers (e.g., Shopify, shipping carriers) who process data strictly on our behalf and under a written contract that mandates adherence to data protection standards.
-
Legal Compliance: We may disclose data if legally required by any court, tribunal, or government authority in India to comply with legal processes or government requests.
Data Retention (Storage Limitation)
We adhere to the principle of Storage Limitation. We will cease to retain your personal data and ensure our Data Processors do the same as soon as:
-
It is reasonable to assume that the purpose for which the personal data was collected is no longer being served.
-
You withdraw your consent.
-
Retention is no longer necessary to satisfy any legal requirement (e.g., tax records).
6. Security and Safeguards
We implement reasonable security safeguards to protect the personal data in our possession or control against data breaches. This is a baseline obligation under the DPDP Act and the IT Rules, 2011.
In the event of a personal data breach, we will notify the Data Protection Board of India (DPBI) and all affected Data Principals promptly, in the manner prescribed by the DPDP Act.
7. International Data Transfers
We may transfer your personal data to countries outside of India for processing (e.g., using cloud services or international platforms like Shopify). We will only transfer data to countries that are not restricted or prohibited by the Central Government of India through a notification in the Official Gazette.
8. Children's Data (Minors under 18)
Our Services are intended for individuals who are at least 18 years old. We do not knowingly process the personal data of a child (under 18 years of age) without verifiable consent from their parent or lawful guardian. Furthermore, we will not undertake any tracking, behavioral monitoring, or targeted advertising directed at children.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The revised policy will be posted on our Site, and the "Last Updated" date will be revised.
Disclaimer: This policy is based on the requirements of the Digital Personal Data Protection Act, 2023, and global standards. Soulinside strongly recommends consulting with a qualified legal counsel in India to ensure this policy and the associated data handling practices fully comply with all operational laws, rules, and sector-specific regulations that apply to your business.