Complimentary shipping on orders above ₹999 · UPI & COD available
Legal

Privacy Policy

Last Updated · 12 May 2026

At Erynoq Hub, your privacy is treated with the same care we put into our edit. This policy explains what we collect, why we collect it, how we use it, and the rights you have under the Digital Personal Data Protection Act, 2023 and the Information Technology Act, 2000.

Section 01

Who We Are

This website (erynoqhub.com) is owned and operated by Erynoq Systems Private Limited, a company incorporated under the laws of India, with its registered office at JK Business Centre, 8-2-293/82/A/787/1/4F/1, 4th Floor, Road No. 36, Jubilee Hills, Rangareddy, Hyderabad, Telangana - 500033.

GSTIN: 36AAJCE2200Q1ZJ. For the purpose of the DPDP Act, 2023, we act as the Data Fiduciary in relation to your personal data.

Section 02

Information We Collect

We collect only the information needed to fulfil your order and run our business responsibly:

  • Identity & contact data — full name, email address, phone number, shipping & billing address, pincode.
  • Order data — items ordered, sizes, quantities, prices, payment method (UPI or COD), order timestamps.
  • Payment data — handled exclusively by our PCI-DSS compliant payment partner (MMADPay). We do not store your UPI PIN, card numbers, or banking credentials on our servers.
  • Technical data — IP address, browser type, device type, pages visited, referring URL — collected for analytics and security.
  • Communication data — any messages, queries, or feedback you send us via the contact form, email, or phone.
Section 03

How We Use Your Information

We use your personal data strictly for the following purposes:

  • To process and fulfil your orders, including delivery and customer service.
  • To send order confirmations, shipping notifications, and payment receipts to your registered email.
  • To respond to your queries, grievances, or return/refund requests.
  • To detect, prevent, and address fraud, abuse, or security incidents.
  • To comply with applicable laws, tax requirements, and lawful requests from authorities.
  • To improve our website, products, and overall customer experience through analytics.

We do not sell, rent, trade, or transfer your personal data to third parties for marketing purposes. Ever.

Section 04

Sharing With Service Providers

We share limited information with vetted third parties strictly to deliver your order:

  • Payment gateway (MMADPay) — to securely process UPI transactions. Only the transaction reference, amount, and customer name/email are shared.
  • Logistics & courier partners — to deliver your order. Shipping address, name, phone number, and order details are shared.
  • Email service provider (Hostinger SMTP) — to send transactional emails (order confirmation, shipping, etc.).
  • Analytics (Google Analytics 4) — anonymised usage data for performance measurement.

All such partners are contractually required to handle your data lawfully and with appropriate security safeguards.

Section 05

Data Security

We implement industry-standard technical and organisational safeguards to protect your data:

  • The entire website is served over HTTPS with SSL/TLS encryption.
  • Payment processing is routed through a tokenised, RBI-compliant gateway. We are compliant with RBI tokenisation guidelines and do not store card data on our servers.
  • Admin access is restricted, password-protected (bcrypt hashed), and monitored.
  • Databases are hosted in secured Indian data centres with regular backups.

Despite all reasonable precautions, no system is 100% secure. You agree to notify us immediately if you suspect any unauthorised use of your account.

Section 06

Data Retention

We retain your personal data only for as long as needed:

  • Order records — retained for at least 8 years as required under GST and Companies Act compliance.
  • Communication records — retained for 24 months, unless legally required for longer.
  • Analytics data — anonymised and retained for 14 months.

Once the retention period expires, your data is securely deleted or anonymised.

Section 07

Your Rights Under DPDP Act, 2023

As a Data Principal, you have the following rights regarding your personal data:

  • Right to access — request a summary of personal data we hold about you.
  • Right to correction — ask us to correct inaccurate or outdated information.
  • Right to erasure — request deletion of your data (subject to legal retention obligations).
  • Right to grievance redressal — escalate complaints through our Grievance Officer.
  • Right to nominate — nominate another person to exercise your rights in case of incapacity or death.
  • Right to withdraw consent — withdraw consent for any non-essential processing at any time.

To exercise any right, email us at contact@erynoqhub.com from your registered email address. We respond within 30 days.

Section 08

Cookies & Tracking

Our website uses essential cookies to maintain your shopping cart and login session. We also use Google Analytics 4 to understand site usage in aggregate. You can disable cookies in your browser, though some features (like checkout) may stop working.

Section 09

Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect data from children. If we learn that we have inadvertently collected such data, we will delete it immediately.

Section 10

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, technology, or our practices. The "Last Updated" date at the top will always reflect the latest revision. Continued use of the website after changes constitutes acceptance.

Privacy Concerns?

For any questions, concerns, or requests related to your personal data, reach out to our Grievance Officer:

Yedhururu Abhilash · Grievance Officer
Email: grievance@erynoqhub.com
Phone: +91 9989402274
Erynoq Systems Private Limited, Hyderabad, Telangana — 500033