Privacy Policy

This Privacy Policy explains how Purispherix Technologies Pvt Ltd (“Purispherix”, “we”, “our”, “us”) collects, uses, shares and protects your information when you visit or make a purchase from any Purispherix-controlled website, mobile application, IoT device, or in-store point of sale (collectively, “Services”).

2.1 Information We Collect

We collect the following types of information:

  • Personal Identifiers: name, postal address, telephone number, e-mail address, date of birth, government ID if required for KYC.
  • Payment Information: debit/credit-card details, UPI VPA, wallet IDs (processed via PCI-DSS-certified partners; we never store full card numbers).
  • Device & Usage Data: IP address, browser type, referring URLs, time-stamp, cookies, language settings, product interaction statistics.
  • Health / Wellness Metrics: only when you choose to pair a Purispherix health device or enter data into our apps; stored with explicit consent.
  • Voluntary Inputs: product reviews, survey responses, customer-support tickets, contest entries.

2.2 Legal Bases for Processing

(GDPR / DPDP Bill, India)

  • Performance of a contract
  • Legitimate interests (product safety, fraud prevention)
  • Your explicit consent
  • Compliance with legal obligations

2.3 How We Use Your Data

  • Fulfil and manage orders, subscriptions and warranties.
  • Improve, personalise and debug our Services.
  • Send transactional messages (order confirmations, shipping notices, security alerts).
  • Send marketing communications only if you have opted in (easy opt-out anytime).
  • Conduct analytics, A/B testing and research (pseudonymised where possible).
  • Detect and prevent fraud, abuse and security incidents.
  • Satisfy accounting, taxation and regulatory requirements.

2.4 Cookies & Similar Technologies

Purispherix uses first-party and third-party cookies, web beacons and local storage solely to keep you signed in, remember cart contents, and measure traffic and campaign performance. You can disable cookies in your browser, but some features may not work.

2.5 When We Share Data

We never sell or rent your personal data. We share it only with:

  • Payment gateways, logistics companies and cloud hosts that enable our core operations (all bound by strict confidentiality and data-processing agreements).
  • Government authorities or courts when legally compelled.
  • Successors in a corporate restructuring, subject to this Policy.

2.6 International Transfers

Our primary servers are located in India; certain backups or customer-support systems may reside in the EEA or the US. We rely on standard contractual clauses and equivalent safeguards for such transfers.

2.7 Data Retention

  • E-commerce purchase records: 8 years (per Indian tax law).
  • Marketing consents: until you withdraw.
  • Inactive accounts: anonymised after 24 months of inactivity, unless a legal hold applies.

2.8 Your Rights

You may, at no cost, request:

  • Access to the data we hold about you.
  • Correction of inaccurate or incomplete data.
  • Deletion or anonymisation (where legally permissible).
  • Data portability (CSV/JSON).
  • Withdrawal of consent for marketing.

Contact: purispherix@proton.me. We respond within 15 working days.

2.9 Security

  • TLS 1.3 encryption for all in-transit data.
  • AES-256 encryption at rest.
  • Regular vulnerability scans, penetration tests, and ISO/IEC 27001-aligned controls.

2.10 Children's Privacy

We do not knowingly collect data from children under 12. Parents or guardians may request deletion of a minor's data via the e-mail above.