Privacy Policy

Effective Date: 15 Oct 2024

At Bean&Beyond, we are committed to protecting your personal information and ensuring transparency in how we use, store, and safeguard your data. We follow all applicable legal compliances, including the Information Technology (IT) Act, 2000, and the IT Rules, 2011, to ensure your information is handled responsibly and securely.

1. Information We Collect
We may collect personal information such as:

- Name, email address, and contact details
- Payment information (processed securely via third-party payment gateways)
- Purchase history and preferences
- IP address and device details for analytics purposes
- Cookies and tracking information for website optimization

2. How We Use Your Information
We use your personal information for the following purposes:

- To process and fulfill your orders
- To verify payment through trusted third-party banking services
- To communicate with you regarding your order status or shipping updates
- To improve and personalize your browsing experience
- To send marketing communications (only if you’ve opted in)

3. Third-Party Services
We may use third-party services (such as payment processors, analytics providers, or marketing platforms) to help us operate our business. These third parties only access your data as needed to perform their services and are required to keep your information secure.

4. Legal Compliance with the IT Act, 2000
We comply with the provisions of India’s Information Technology (IT) Act, 2000, and its associated IT Rules, 2011, in our handling of personal data. Specifically:

- We adhere to the legal standards for handling Sensitive Personal Data or Information (SPDI), such as financial details, passwords, and any other sensitive information.
- Your sensitive information is processed only with your explicit consent and is handled in accordance with Section 43A of the IT Act, which outlines compensation for failure to protect data.

5. Data Storage and Protection
To comply with the IT Act, 2000, we ensure that:

- Payment information is encrypted and processed through secure third-party gateways, with compliance to PCI-DSS standards.
- We implement industry-standard security measures, including encryption, firewalls, and secure servers, to prevent unauthorized access or disclosure.
- Our systems are regularly audited to meet the required standards of ISO 27001 or other internationally recognized certifications.

6. Legal Compliance with Food Safety and Standards Authority of India (FSSAI)
All our coffee products sold comply with the standards set by the Food Safety and Standards Authority of India (FSSAI), ensuring the quality, labeling, and safety of consumable products.

7. Your Rights under the IT Act
As a user, you have the following rights under the IT Act:

- To request details about the personal information we collect and how it’s used.
- To access, update, or delete your personal data stored with us.
- To withdraw your consent for data collection and usage at any time.
- To seek compensation under Section 43A if any personal data is compromised due to our negligence in following reasonable security practices.

8. Changes to This Policy
We may update this Privacy Policy as necessary. Any changes will be reflected on this page with an updated effective date. We encourage you to review the policy periodically.