Privacy Policy

Last updated: 05.08.2025

1. Introduction

GRAHMUR Innovations Private Limited ("we", "our", or "us") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect personal data through our corporate website: https://grahmur.com. This website serves to inform visitors about our company, our products (including Yuniyo), and our services.

2. Data Controller Information

Data Controller:

GRAHMUR Innovations Private Limited

CIN:

Address: Plot 41-42, Block A, Sainik Nagar, Uttam Nagar, New Delhi - 110059, India

Email: support@grahmur.com

We are the legal controller of personal data collected through this website in accordance with the Digital Personal Data Protection Act, 2023 (DPDPA) and other applicable Indian laws.

3. What Information We Collect

We collect the following information:

a) Automatically via the website:

  • IP address

  • Browser type and version

  • Date and time of visit

  • Pages visited

  • Basic cookies (strictly necessary for website functionality)

b) When you contact us:

  • Name (as entered by you)

  • Email address

  • Any other details you voluntarily include in your message

We do not use tracking, marketing, or third-party analytics cookies.

4. Legal Basis for Processing

We process your personal data under the following lawful bases:

  • Consent – when you voluntarily contact us via the contact form or provide data explicitly.

  • Legitimate Purpose – to maintain and monitor website performance and security, as permitted under DPDPA.

We do not process sensitive personal data or profile visitors in any way.

5. Purpose of Data Processing

We use your data solely to:

  • Ensure website functionality and security

  • Respond to your queries or messages

  • Monitor and improve the performance of our site

  • Prevent fraud or misuse

We do not use your data for marketing or share it with advertisers.

6. Data Retention

We retain:

  • Server logs for up to 90 days

  • Contact form submissions for up to 1 year or until your request is fulfilled (whichever comes first)

Data may be retained longer if required by applicable law, such as for tax, audit, or legal compliance purposes under Indian regulations.

7. Your Rights Under DPDPA

You have the following rights:

  • Access – Request a copy of your personal data

  • Correction – Request rectification of inaccurate or incomplete data

  • Erasure – Request deletion of your data in certain circumstances

  • Nomination – Nominate a person to exercise rights on your behalf in case of death or incapacity

  • Grievance Redressal – Raise grievances regarding data processing

  • Withdraw Consent – Withdraw consent where processing is based on it, though this may not affect prior processing

  • Lodge a Complaint – With the Data Protection Board of India (DPBI)

Supervisory Authority: refer to Ministry of Electronics and Information Technology guidelines at https://www.meity.gov.in]

To exercise any rights, contact us at: support@grahmur.com. We will respond within the timelines prescribed under DPDPA (generally 30 days).

8. Data Security

We implement appropriate security measures, including:

  • SSL encryption

  • Secure hosting environments

  • Access controls on stored data

  • Regular security updates

We comply with reasonable security practices and procedures as required under the Information Technology Act, 2000, and DPDPA.

9. Third-Party Links

Our website may link to:

  • Subsidiary brands or apps (each with its own privacy policy, such as GRAHMUR OÜ)

  • Social media platforms

  • External websites

We are not responsible for the privacy practices of third-party sites.

10. International Data Transfers

As an Indian company with a subsidiary in Estonia (GRAHMUR OÜ), personal data may be transferred internationally. For transfers outside India, we ensure compliance with DPDPA requirements, including:

  • Adequacy decisions (if applicable)

  • Standard Contractual Clauses or binding corporate rules

  • Other safeguards to protect data adequacy

Currently, we aim to minimize non-essential international transfers and use service providers compliant with Indian data localization norms where required.

11. Children's Privacy

Our website is not intended for children under the age of 18. We do not knowingly collect data from children under this age without verifiable parental consent as required under DPDPA. If you believe a child has submitted data without consent, please contact us immediately for deletion.

12. Updates to This Policy

We may update this policy periodically. The most recent version will always be available on https://grahmur.com/privacy-policy-in (or a dedicated page for GRAHMUR Innovations Private Limited if separate). Changes take effect upon publication. We recommend checking periodically for updates.

Last updated: 05 August 2025

Important Links

Where ideas come to life, and connections are made real.

Privacy Policy

Terms & Conditions

© 2025 GRAHMUR INNOVATIONS PRIVATE LIMITED | All rights reserved.

New Delhi, India