top of page

Privacy Policy

A Legal Disclaimer

The content on this page provides a high-level overview of general privacy-policy practices tailored to a website like Unhu Founders Journal. It is not legal advice. Privacy laws are complex and vary based on jurisdiction (such as India’s Data Protection laws, GDPR in Europe, etc.), and your actual data-processing operations may differ from the generic scenarios described here.

As your Data Protection Officer, I strongly recommend that you consult a qualified legal professional to draft or review your final policy, ensuring compliance with all relevant legal requirements and adjusting for your specific data flows, third-party integrations, and business model.

Privacy Policy - The Basics

A privacy policy is a formal declaration of how we, at Unhu Founders Journal / Doval Enterprises (OPC) Pvt. Ltd., collect, use, disclose, manage, and protect the personal information of our website visitors, newsletter subscribers, and other stakeholders.

In more detail:

  • Collection of Information: We collect both personal data (such as name, email address, and any information you actively provide when subscribing, contacting us, or commenting) and non-personal / technical data (such as IP address, browser type, device type, and site usage metrics).

  • Purposes: The data we collect helps us operate our website, respond to user queries, send newsletters, and improve our content and services. We may also use data to personalize user experience, run analytics, or for remarketing (if opted in).

  • Commitment to Privacy: We are committed to protecting your privacy by implementing appropriate technical and organizational measures (encryption, access controls, etc.) to guard against unauthorized access, misuse, or data breaches.

What to Include in the Privacy Policy

Here are the critical elements that should be covered in your comprehensive privacy policy, in a detailed and structured way:

  1. Types of Information Collected

    • Personal Information: Name, email, phone number, business or startup details (if provided).

    • Automatically Collected Information: IP address, browser and device details, referral URL, pages visited, time on site, and interaction data.

    • Cookies and Tracking: Which cookies you use (essential, analytics, marketing), how they work, what data they collect, and whether third-party trackers (e.g. Google Analytics, Facebook Pixel) are used.

  2. Purpose & Legal Basis for Processing

    • Why you collect each kind of data (e.g., to send newsletters, to improve website, for remarketing).

    • Legal grounds for processing: consent (for newsletter, cookies), legitimate interest (for analytics), contractual necessity (if you provide a service), or legal obligations (if required by law).

  3. Data Sharing / Disclosure

    • Service Providers: List or describe third parties who process data on behalf of Unhu (hosting providers, analytics vendors, email service providers).

    • Legal / Regulatory Disclosures: Under what circumstances you might share data with law enforcement, courts, or other government bodies.

    • Business Transfers: What happens in case of merger, acquisition, or sale — how user data would be handled.

  4. Data Retention

    • How long you keep different categories of data (e.g., form submissions, analytics data, logs).

    • What criteria you use to decide retention periods (e.g., “as long as needed for the purpose”, “legal requirement”, “security need”).

    • Process for data deletion / anonymization once retention ends or when a user requests deletion.

  5. Data Security Measures

    • Technical safeguards: SSL / TLS, encryption, firewalls.

    • Organizational measures: access control, least privilege, staff training.

    • Incident response: how you plan to respond in case of a data breach.

  6. User / Data Subject Rights

    • Rights you offer (depending on applicable law): access, correction, deletion, withdraw consent, restrict processing, data portability, objection.

    • How users can exercise their rights: contact email / DPO contact.

    • Any exceptions or limitations (e.g., when you cannot delete data for legal reasons).

  7. Children’s Privacy

    • Whether your site is intended for minors.

    • Statement on whether you knowingly collect data from children.

    • What steps you take to protect children’s data (if applicable).

  8. International Data Transfers

    • If you or your service providers transfer data across borders.

    • What safeguards you use (e.g., standard contractual clauses, data-processing agreements).

  9. Third-Party Links

    • Disclosure that your site may contain links to third-party sites.

    • Statement that you are not responsible for how those sites handle data.

    • Advice to users to review the privacy policies of those third parties.

  10. Policy Updates

    • That you may revise the policy occasionally.

    • How you will communicate changes to users (e.g., by updating “Last Updated” date, notifying by email).

    • Encouragement to check the policy periodically.

  11. Contact Information

    • Name and contact details of your Data Protection Officer (DPO) or privacy contact person.

    • Physical address (if relevant) of the data-controller (Doval Enterprises (OPC) Pvt. Ltd.).

    • Email / phone for privacy-related inquiries.

bottom of page