PRIVACY POLICY

Andhra University Official Merchandise Store

1. Introduction

This Privacy Policy describes how personal data is collected, processed, stored, and protected when users access and interact with the Andhra University Official Merchandise Store (“Platform”).

This Platform is white-labeled for Andhra University and technologically enabled and maintained by EduEmblem Services LLP (“Service Provider”). Andhra University acts as the Data Fiduciary, and EduEmblem acts as a Data Processor strictly under documented instructions.

By using this Platform, users consent to the practices described herein.

2. Information We Collect

2.1 Personal Data Provided by Users

We may collect the following:

  • Name, email address, phone number
  • Shipping and billing address
  • Order and transaction details
  • Account credentials (if registered)

2.2 Automatically Collected Data

  • IP address
  • Device and browser information
  • Access logs and usage patterns

This data is collected for security, fraud prevention, analytics, and service improvement.

3. Purpose of Processing

Personal data is processed strictly for:

  • Order processing and fulfillment
  • Customer support and communication
  • Platform security and fraud prevention
  • Compliance with legal and regulatory obligations
  • Service optimization and analytics

No personal data shall be processed beyond lawful and explicit purposes.

4. Comments and User-Generated Content

When users submit comments or feedback:

  • Data entered in forms is collected and stored
  • IP address and browser metadata may be recorded for spam detection and platform security

Public display of user-generated content is at the user’s discretion.

5. Media Uploads

Users uploading images or files must ensure:

  • No sensitive personal data is embedded
  • No location metadata (EXIF GPS) is included

The Platform shall not be responsible for extraction or misuse of publicly shared metadata.

6. Cookies Policy

The Platform uses cookies for functional and security purposes:

  • Session Cookies: Temporary cookies for login/session management
  • Preference Cookies: Store user settings for convenience
  • Security Cookies: Prevent fraudulent activity

Users may control cookie preferences through browser settings. Disabling cookies may affect platform functionality.

7. Embedded Third-Party Content

The Platform may include embedded content (e.g., videos, social media integrations). Such content:

  • Operates under the respective third-party’s privacy policies
  • May collect data independently

Users are advised to review third-party privacy policies before interaction.

8. Data Sharing and Disclosure

Personal data may be shared only with:

  • Payment gateways (for transaction processing)
  • Logistics partners (for order delivery)
  • IT and infrastructure service providers
  • Legal authorities, where required by law

No personal data is sold or traded.

All third parties are contractually bound by confidentiality and data protection obligations.

9. Data Retention

  • Transactional data is retained as required for legal, taxation, and audit purposes
  • User account data is retained until deletion request or inactivity
  • Logs and security data may be retained for a limited duration

Retention follows the principle of data minimization.

10. User Rights (Under Indian Law)

Users have the right to:

  • Access their personal data
  • Request correction or updating of data
  • Request deletion of data (subject to legal obligations)
  • Withdraw consent where applicable

Requests can be submitted through designated contact channels.

11. Data Security

The Platform implements:

  • Encryption and secure protocols
  • Role-based access controls
  • Monitoring and audit mechanisms

Reasonable security practices are maintained in accordance with:

  • Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011

However, no system can guarantee absolute security.

12. Cross-Border Data Transfers

If data is processed outside India:

  • It shall comply with applicable Indian laws
  • Adequate safeguards and contractual protections shall be ensured

13. Grievance Redressal

In compliance with Indian law, a Grievance Officer shall be designated.

Users may raise complaints regarding:

  • Data misuse
  • Unauthorized access
  • Privacy violations

All grievances shall be addressed within a reasonable time frame as mandated by law.

14. Limitation of Liability

  • Andhra University acts as the Data Fiduciary determining purpose and means of processing
  • EduEmblem acts solely as a technology service provider (Data Processor)
  • EduEmblem shall not be liable for:
    • Data misuse arising from user negligence
    • Third-party service failures
    • External cyber incidents beyond reasonable control

15. Policy Updates

This Privacy Policy may be updated periodically to reflect:

  • Legal changes
  • Platform enhancements

Users are encouraged to review this page regularly.

16. Contact Information

For privacy-related concerns, contact:
Andhra University Merchandise Store Support Team

Email: contact@eduemblem.com