Privacy Policy
Effective Date: 22 March 2026 | Last Updated: 22 March 2026
This Privacy Policy is published in compliance with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and applicable international data protection frameworks including the General Data Protection Regulation (GDPR) for visitors from the European Economic Area.
1. Identity of the Data Controller
| Firm Name | Sakshya Sahayak (साक्ष्य सहायक) |
|---|---|
| Proprietor | Aditya Chauhan, Advocate |
| Bar Council | Bar Council of Delhi | Enrolment No. D/11905/2022 |
| Registered Address | Extension 2C, Street No. 8, Nangloi, Delhi – 110041, India |
| contact@sakshyasahayak.in | |
| Website | https://sakshyasahayak.in |
2. Information We Collect
We may collect the following categories of information when you interact with this website:
2.1 Information You Provide Voluntarily
- Your name and email address when you contact us via email or any contact form
- Phone number if provided in a communication
- Details of your legal enquiry or matter you describe in your message
2.2 Information Collected Automatically
- IP address and general geolocation (country/city level)
- Browser type, operating system, and device information
- Pages visited, time spent, and navigation paths on this website
- Referral source (e.g., search engine, direct link)
- Data collected via Google Analytics 4 (anonymised analytics)
2.3 Sensitive Personal Data
We do not intentionally collect sensitive personal data as defined under Rule 3 of the SPDI Rules 2011 (including passwords, financial information, health data, biometric data, etc.). Please do not include such information in your enquiry messages.
3. Purpose and Legal Basis of Processing
| Purpose | Legal Basis (GDPR Art. 6) | Legal Basis (IT Act) |
|---|---|---|
| Responding to your legal enquiries | Legitimate Interest / Contract | Section 43A, IT Act 2000 |
| Website analytics and performance | Legitimate Interest | IT (SPDI) Rules 2011 |
| Legal and regulatory compliance | Legal Obligation | Applicable Indian laws |
| Improving website content | Legitimate Interest | IT Act 2000 |
4. Cookies and Tracking Technologies
This website uses the following tracking technologies:
4.1 Google Analytics 4
We use Google Analytics 4 (GA4) to understand how visitors interact with our website. GA4 uses cookies and similar technologies to collect anonymised data including pages visited, session duration, and general geographic location. This data is processed by Google LLC under their Privacy Policy available at policies.google.com/privacy.
Google Analytics data is anonymised and does not identify you personally. You may opt out of Google Analytics tracking by installing the Google Analytics Opt-out Browser Add-on.
4.2 Essential Cookies
This website does not use any non-essential cookies beyond analytics. No advertising, retargeting, or social media tracking cookies are used.
5. Data Sharing and Disclosure
We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:
- Service Providers: Google LLC (analytics), Vercel Inc. (website hosting). These processors are bound by their own data processing agreements and privacy policies.
- Legal Obligation: Where required by applicable law, court order, or directive of a competent authority under Indian law or applicable international law.
- Professional Advice: Where strictly necessary for the performance of legal services you have requested, and only with your knowledge.
We do not transfer your personal data outside India unless necessary for the operation of the services listed above (e.g., Google Analytics servers operated by Google LLC). Any such transfer is made with appropriate safeguards in place.
6. Data Retention
We retain personal data only for as long as necessary for the purposes described in this Policy:
- Enquiry communications (email): Retained for a period of 3 years from the date of last communication, or as required by applicable professional and legal obligations.
- Analytics data: Retained in accordance with Google Analytics data retention settings (default: 14 months for user-level and event-level data).
- Server/hosting logs: Retained for up to 90 days by Vercel Inc. in accordance with their data retention policy.
7. Your Rights Under Applicable Law
7.1 Rights Under the IT Act 2000 and SPDI Rules 2011
Under Rule 5(6) of the SPDI Rules 2011, you have the right to:
- Review the information you have provided to us
- Correct or update inaccurate information
- Withdraw consent for collection and further use of your information
7.2 Rights Under GDPR (For EEA Residents)
If you are located in the European Economic Area, you have the following rights under GDPR:
- Right of Access (Art. 15) – Obtain a copy of your personal data
- Right to Rectification (Art. 16) – Correct inaccurate data
- Right to Erasure (Art. 17) – Request deletion of your data
- Right to Restriction of Processing (Art. 18)
- Right to Data Portability (Art. 20)
- Right to Object (Art. 21) – Object to processing based on legitimate interests
- Right to Lodge a Complaint with your local supervisory authority
To exercise any of the above rights, please contact us at contact@sakshyasahayak.in. We will respond within 30 days of receiving a verified request.
8. Security of Your Information
We implement reasonable security practices and procedures as required under Rule 8 of the SPDI Rules 2011 and Section 43A of the IT Act 2000. These include:
- Website served exclusively over HTTPS (TLS encryption)
- Email communications via secure mail servers
- No storage of sensitive personal data on website servers
- Access controls limited to authorised personnel
While we take reasonable measures to protect your information, no transmission over the internet is completely secure. We cannot guarantee absolute security of data transmitted to or from this website.
9. Third-Party Links
This website may contain links to third-party websites, including official government portals (IP India, MCA21, DPIIT) and reference materials. This Privacy Policy applies only to sakshyasahayak.in. We are not responsible for the privacy practices of third-party websites. We encourage you to review the privacy policies of any third-party sites you visit.
10. No Advocate-Client Relationship
Submission of your personal information through this website does not create an advocate-client relationship. An advocate-client relationship is established only upon explicit written engagement. Information shared prior to such formal engagement is not protected by attorney-client privilege unless a retainer has been executed.
11. Changes to This Privacy Policy
We reserve the right to amend this Privacy Policy at any time. Changes will be effective immediately upon posting the updated Policy on this page with a revised “Last Updated” date. Your continued use of this website following any update constitutes acceptance of the revised Policy. We encourage you to review this page periodically.
12. Governing Law and Jurisdiction
This Privacy Policy is governed by the laws of the Republic of India, including the Information Technology Act, 2000, and the rules made thereunder. Any dispute arising out of this Policy shall be subject to the exclusive jurisdiction of the courts in New Delhi, India.
13. Contact the Data Controller
For any questions, requests, or complaints regarding this Privacy Policy or the handling of your personal data, please contact:
Sakshya Sahayak — Privacy Enquiries
Aditya Chauhan, Advocate
Extension 2C, Street No. 8, Nangloi, Delhi – 110041
Email: contact@sakshyasahayak.in
Phone: +91 9958088691
We endeavour to acknowledge all privacy requests within 5 business days and to resolve them within 30 days.
This Privacy Policy was prepared by Sakshya Sahayak in compliance with: Information Technology Act, 2000 • IT (SPDI) Rules, 2011 • GDPR (EU) 2016/679 • BCI Rule 36, Chapter II, Part VI