How we handle your personal data.

Executive Summary

zidhuxd.com ("we," "us," or "our") respects your privacy and is committed to being transparent about data practices. We collect minimal personal information necessary to operate the website and provide services. We do not sell your data, and we process information only with valid legal bases under applicable laws including India's Information Technology Act, 2000 and Digital Personal Data Protection Act, 2023.

1. Information We Collect

Information You Provide Directly

• Contact information: Name, email address, phone number (when you contact us)
• Communication data: Messages, feedback, inquiries you send us
• Account information: If you create an account, username and password
• Content submissions: Code snippets, comments, articles you share

Information Automatically Collected

• Device information: Device type, operating system, browser type
• Access logs: IP address, pages visited, time spent, referrer URLs
• Cookies and tracking: Session identifiers, user preferences
• Usage analytics: How you interact with the website and features
• Location data: Approximate location from IP address (not precise)

Information from Third Parties

We do not collect personal information from third parties. We only use information you provide or that is automatically generated through your use of the website.

2. How We Use Your Information

• Provide, maintain, and improve website functionality
• Respond to your inquiries and support requests
• Send administrative notifications and updates
• Analyze website usage to optimize user experience
• Detect, investigate, and prevent fraudulent or illegal activity
• Comply with legal obligations and law enforcement requests
• Enforce Terms and Conditions
• Personalize content and recommendations (with consent)

3. Legal Basis Under Indian Law

Information Technology Act, 2000

We comply with the provisions of the IT Act, 2000, including:

• Section 43A: Reasonable security practices to prevent unauthorized disclosure
• Section 69: Cooperation with government agencies for lawful investigations
• Rule 7 of IT Rules, 2011: Disclosure of information without consent is prohibited

Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011

We implement:

• Adequate security infrastructure
• Encryption of sensitive data in transit and at rest
• Password protection and access controls
• Regular security audits
• Incident response procedures

Digital Personal Data Protection Act, 2023

We process personal data under these lawful bases:

• Consent: When you explicitly provide information
• Contract performance: To provide services you request
• Legal obligation: To comply with Indian law
• Legitimate interests: Website operation, security, fraud prevention

Information Technology (Intermediary Guidelines and Digital Ethics Code) Rules, 2021

• We do not host, transmit, or display unlawful content
• We have mechanisms to address complaints about inappropriate content
• We maintain records for lawful investigation
• We remove content upon receipt of competent legal notice

4. How We Share Information

We Do NOT Share Your Data With:

• Third-party marketers or advertisers
• Data brokers
• Entities for profiling or direct marketing

We MAY Share Your Data With:

• Service providers: Analytics, hosting, security services (under strict confidentiality agreements)
• Legal requirements: Law enforcement, regulatory agencies, courts (when compelled by legal process)
• Business transfers: In case of merger, acquisition, or sale of assets
• Public information: Information you voluntarily make public (e.g., published articles)

5. Cookies and Tracking Technologies

Types of Cookies We Use

• Essential cookies: Required for website functionality
• Analytics cookies: Google Analytics to understand user behavior
• Preference cookies: To remember your settings and preferences

Your Cookie Choices

You can control cookies through your browser settings or opt-out of analytics tracking. However, disabling essential cookies may affect website functionality.

Tracking Technologies

We use standard web analytics to measure website performance and user engagement. No sensitive information is tracked.

6. AI and Machine Learning

If the website uses AI-powered features (chatbots, recommendations, analysis tools), we ensure:

• Transparent disclosure of AI usage
• No automated decision-making without meaningful human review
• Inputs are not used to train models without consent
• Users can request explanations for AI decisions

7. International Data Transfers

For users outside India, your data may be processed by third-party service providers in other countries. When data is transferred internationally, we implement:

• Standard Contractual Clauses (SCCs): For transfers to non-adequate countries under GDPR
• Binding Corporate Rules (BCRs): Where applicable
• Adequacy decisions: For jurisdictions recognized as adequate

8. Data Retention

We retain personal information only for as long as necessary to provide services and comply with legal obligations:

• Contact information: Until you request deletion or as long as you use services
• Analytics data: Typically 26 months (Google Analytics default)
• Server logs: 90 days typically
• Legal compliance: As long as required by Indian law (typically 3-7 years for tax/legal records)

After retention periods, data is securely deleted or anonymized.

9. Security Measures

We implement industry-standard security practices:

• HTTPS/SSL encryption: All data in transit is encrypted
• Access controls: Password-protected systems
• Firewalls: Network protection against unauthorized access
• Regular audits: Security assessments and vulnerability testing
• Employee training: Staff trained on data protection
• Incident response: Procedures to address data breaches

Disclaimer: No security system is 100% secure. We cannot guarantee absolute security against all potential threats.

10. Your Privacy Rights (Global)

Depending on your location, you may have the following rights:

• Right to access: Request a copy of your personal data
• Right to correction: Request inaccurate data be corrected
• Right to erasure: Request deletion of your data (subject to legal obligations)
• Right to restrict processing: Limit how your data is processed
• Right to data portability: Receive your data in a portable format
• Right to object: Object to processing for certain purposes
• Right to withdraw consent: Withdraw previously granted consent anytime
• Right to lodge a complaint: File complaints with relevant authorities

11. Rights for Indian Users (Digital Personal Data Protection Act, 2023)

As a data principal under the DPDPA, you have the right to:

• Request data held: Know what personal data is being processed
• Correction: Correct inaccurate or incomplete data
• Erasure: Request deletion where data is no longer needed
• Data portability: Obtain data in structured format
• Grievance redressal: File complaints through our grievance officer

Grievance Officer: zidhuxd@gmail.com

We will respond to requests within 30 days as per regulatory timelines.

12. Rights for EU Users (GDPR)

EU residents have enhanced privacy rights under the General Data Protection Regulation:

• Right to be informed: Clear, transparent privacy notices
• Right of access: Request and receive your personal data
• Right to rectification: Correct incomplete or inaccurate data
• Right to erasure ("right to be forgotten"): Request deletion of data
• Right to restrict processing: Limit certain types of processing
• Right to data portability: Receive data in machine-readable format
• Right to object: Object to processing for direct marketing
• Rights related to automated decision-making: Not be subject to automated decisions with legal effects
• Right to lodge a complaint: File complaints with your supervisory authority

To exercise EU rights, contact us at: zidhuxd@gmail.com

13. Rights for US Residents

California (CCPA)

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of the sale or sharing of personal information
• Right to correct inaccurate personal information
• Right to limit use of sensitive personal information
• Right to non-discrimination for exercising rights

Other US States

Other states (Virginia, Colorado, Connecticut, Utah) have similar privacy rights which we respect.

COPPA (Children's Privacy)

We do not knowingly collect personal information from children under 13.

14. Contact & Complaint Resolution

To exercise your rights or file a complaint:

Primary Contact

• Email: zidhuxd@gmail.com
• Website: zidhuxd.com
• Location: Kerala, India

Response Timeline

We will respond to all data subject requests within 30 days (or as required by applicable law). Complex requests may require additional time.

Regulatory Authorities

If you believe we have violated your privacy rights:

• India: Complaint to Ministry of Electronics and Information Technology (MeitY) or Data Protection Board
• EU: File complaint with your national Data Protection Authority
• US (California): File complaint with California Attorney General or California Privacy Protection Agency

15. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices. Please review their privacy policies before providing personal information.

16. Policy Updates

We may update this Privacy Policy to reflect changes in law, technology, or our practices. We will notify you of material changes by updating the "Last updated" date. Your continued use constitutes acceptance of updated terms.

17. California "Do Not Track" Disclosure

Some browsers include a "Do Not Track" feature. We recognize and respect DNT signals. We do not track users across third-party websites for targeted advertising purposes.