PRIVACY POLICY

1. SCOPE AND ACCEPTANCE

This Privacy Policy (“Policy”) governs the collection, processing, and storage of personal data by Greeter (“Company”, “we”, “our”, “us”) through the website accessible at thegreeter.in (“Site”) and any associated services, tools, or functionalities (collectively, “Services”). By accessing or using the Services, you explicitly acknowledge that you have read, understood, and consent to the data practices described herein. If you do not agree, you must immediately discontinue use of the Services.

2. CONTROLLER AND CONTACT

The data controller responsible for your personal information is Greeter, reachable via electronic mail at greeterindia@gmail.com. All inquiries regarding data protection or requests to exercise your rights under applicable law shall be directed to this address.

3. CATEGORIES OF PERSONAL DATA COLLECTED

In the course of providing the Services, we may collect, process, and retain the following categories of personal information:

  • Identifiers: Name, email address, IP address, unique device identifiers, and similar identifiers.
  • User Content: Text, images, messages, and any customizations you upload, create, or otherwise make available through the Services (including but not limited to surprise websites and associated metadata).
  • Usage Data: Information about your interaction with the Site, such as pages visited, features engaged, time spent, clickstream data, and referring/exit pages.
  • Technical Information: Browser type and version, operating system, screen resolution, language preferences, and similar technical parameters.
  • Inferred Data: Preferences and behavioral patterns derived from your usage of the Services, which we may use to improve functionality and personalize experiences.

4. LEGAL BASES FOR PROCESSING

Our processing of your personal data is justified on one or more of the following legal grounds: (i) performance of a contract with you (e.g., delivering the surprise website you create); (ii) compliance with a legal obligation; (iii) legitimate interests pursued by us (e.g., improving security, preventing fraud, enhancing user experience); or (iv) your explicit consent, where required by applicable law.

5. PURPOSES OF PROCESSING

We process personal data for the following business and operational purposes:

  • Provision, maintenance, and improvement of the Services, including generation and hosting of user-created surprise websites.
  • Security monitoring, fraud detection, and prevention of unauthorized access or malicious activities.
  • Communication with you regarding account status, service updates, support requests, and transactional notifications.
  • Analytics and performance measurement to understand how users interact with the Site and to optimize user experience.
  • Compliance with legal and regulatory obligations, including responses to lawful requests from public authorities.
  • Enforcement of our Terms of Service and other policies.

6. DISCLOSURE OF PERSONAL DATA

We do not sell, rent, or trade your personal information. We may share your data with limited categories of third parties only under the following circumstances:

  • Service Providers: Vendors who perform functions on our behalf (e.g., cloud hosting, analytics, customer support) under contractual obligations of confidentiality and data protection.
  • Legal Compliance: When required by law, court order, or governmental regulation, or to protect the rights, property, or safety of the Company, our users, or the public.
  • Business Transfers: In connection with a merger, acquisition, reorganization, or sale of assets, provided that the recipient agrees to respect this Policy.
  • With Explicit Consent: When you have provided your unambiguous consent to a specific sharing arrangement.

7. COOKIES AND TRACKING TECHNOLOGIES

We utilize cookies, web beacons, local storage, and similar technologies to enhance functionality, analyze usage, and personalize content. These technologies may collect information such as IP address, browser characteristics, and interaction data. Essential cookies are necessary for core operations; functional and analytics cookies are used to improve performance. You may configure your browser to refuse cookies, but doing so may impair certain features of the Services. Third-party analytics providers (e.g., Google Analytics) may deploy their own cookies subject to their respective privacy policies.

8. DATA RETENTION AND STORAGE

Personal data is retained only as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required by law. User-created surprise websites, including any uploaded images and messages, are stored temporarily for sharing purposes and may be automatically deleted after a defined period of inactivity (currently 90 days). After deletion, data cannot be recovered. Backups may persist for a limited period but are subject to standard rotation and deletion schedules.

9. SECURITY MEASURES

We implement administrative, technical, and physical safeguards designed to protect against unauthorized access, alteration, disclosure, or destruction of personal data. These include encryption of data in transit (TLS 1.2+), firewalls, access controls, and regular security assessments. Nevertheless, no method of transmission over the Internet or electronic storage is 100% secure. You acknowledge that inherent risks exist and assume responsibility for maintaining the confidentiality of any passwords or authentication credentials associated with your use of the Services.

10. YOUR RIGHTS (GDPR / CCPA / OTHER REGIMES)

Depending on your jurisdiction, you may have certain rights with respect to your personal data, including:

  • Right to access: obtain confirmation of whether we process your data and request a copy.
  • Right to rectification: correct inaccurate or incomplete data.
  • Right to erasure (“right to be forgotten”): request deletion under certain conditions.
  • Right to restriction of processing: limit how we use your data in specific circumstances.
  • Right to data portability: receive your data in a structured, machine-readable format.
  • Right to object: object to processing based on legitimate interests or for direct marketing.
  • Right to withdraw consent: where processing is based on consent, you may withdraw it without affecting lawfulness of prior processing.

To exercise any of these rights, contact us at greeterindia@gmail.com. We will respond within the timeframes prescribed by applicable law (typically 30 days). You also have the right to lodge a complaint with a supervisory authority in your country of residence.

11. CHILDREN’S PRIVACY

The Services are not intended for individuals under the age of 13 (or such higher age as required by local law). We do not knowingly collect personal information from children. If you believe a child has provided us with data, please contact us immediately so that we may delete such information.

12. THIRD‑PARTY LINKS AND SERVICES

The Site may contain links to external websites, plugins, or applications not operated by us. This Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to review the policies of any third‑party service you interact with.

13. AMENDMENTS TO THIS POLICY

We reserve the right to modify this Policy at any time. Material changes will be communicated by updating the version date at the top of this page and, where reasonably practicable, via a notice on the Site or by email. Your continued use of the Services after the effective date of any modifications constitutes acceptance of the revised Policy.

14. GOVERNING LAW

This Policy and any disputes arising hereunder shall be governed by the laws of the jurisdiction in which Greeter is established, without regard to conflict of law principles, unless otherwise required by mandatory local law.

For any privacy‑related inquiries, please contact our Data Protection Officer at greeterindia@gmail.com.