Privacy Notice

Thank you for choosing to be part of our community at NILAYHR TECHNOLOGIES LLP (doing business as "Bluphlux") ("Bluphlux", "we", "us", or "our"). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about this privacy notice or how we handle your personal information, please contact us at [email protected].

When you visit our website (such as bluphlux.com) and use our services (collectively, the "Services"), you trust us with your personal information. We take your privacy seriously. This privacy notice explains what information we collect, how we use it, and what rights you have in relation to it. Please read it carefully. If you do not agree with any terms in this privacy notice, please discontinue use of our website and Services.

This privacy notice applies to all information collected through our website and any related services, sales, marketing, or events (we refer to them collectively in this notice as the "Services").

1. What Information Do We Collect?

In Short: We collect personal information that you voluntarily provide to us, and some information automatically when you use our Services.

Personal Information You Provide: We may collect personal details (such as your name, email address, phone number, or other contact information) that you provide when you register for an account, sign up for our Services, fill out a form, contact us, or otherwise voluntarily give to us.

Information Automatically Collected: When you visit or use our Services, we automatically collect certain technical information about your device and usage of our site. This information does not reveal your identity but may include data such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country and approximate location, and information about how and when you use our website (e.g. timestamps, pages viewed, and other usage statistics). This data is collected primarily to maintain the security and operation of our Services, and for our internal analytics and reporting. Like many websites, we also use cookies and similar tracking technologies to collect some of this information (see Section 4 on Cookies for more detail).

2. How Do We Use Your Information?

In Short: We use your personal information for legitimate business purposes, such as to operate our Services, fulfill contracts, comply with laws, protect our rights, or with your consent.

We use the information we collect or receive for the following purposes:

• Service Delivery: To provide and maintain our Services, including troubleshooting, data analysis, and testing. This includes using your information to perform the contract we have with you (such as providing the features or services you've requested).
• Protecting Our Services: To monitor and ensure the security of our website and Services. Your information helps us track and prevent fraudulent, harmful, or unauthorized activities – for instance, detecting potential fraud attempts or security incidents and preventing malicious use of our Services.
• Enforcing Terms and Policies: To enforce our terms, conditions, and policies for business, legal, and contractual reasons. We may use your information to ensure compliance with our Terms of Use and other policies, and to investigate any potential violations.
• Legal Compliance & Preventing Harm: To respond to legal requests (such as subpoenas or court orders) and prevent harm. If we receive an official legal request, we may need to review and possibly disclose the data we hold to determine how to respond. We also may use or disclose information if necessary to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, or violations of our policies or the law.
• Improve and Develop Services: To analyze usage trends and improve our products and Services. We may use aggregated usage information to understand how our Services are used and to make enhancements or develop new features.

We will only use your personal information for the purposes described above or for purposes that are compatible with those primary reasons. If we need to use your information for an unrelated purpose, we will notify you and explain the legal basis, or request your consent if required.

3. Will Your Information Be Shared With Anyone?

In Short: We only share your information in limited situations, such as with your consent, to comply with laws, to provide you with services, to protect your rights or safety, or to fulfill business obligations.

We may process or share your data in the following circumstances:

• With Your Consent: We may share your personal information if you have given us specific consent to do so for a particular purpose. For example, if you consent to us sharing a testimonial, or to receiving communications from a partner, we will share data in line with that consent.
• Service Providers and Partners: We share information with third-party vendors, consultants, and other service providers who perform services on our behalf and require access to such information to do their work. This includes, for example, payment processors, data analytics providers, email and hosting services, customer support tools, and marketing partners. These third parties are contractually obligated to protect your data and use it only for the specific services they provide to us. (We do not sell or rent your personal information to unrelated third parties for their own marketing purposes.)
• Business Transfers: We may share or transfer your information as part of any actual or contemplated business merger, acquisition, financing, sale of company assets, or similar transaction. If we engage in such a transaction, we will require that your personal information be handled securely and in accordance with this privacy notice.
• Legal Obligations: We may disclose your information where we are legally required to do so in order to comply with applicable law, regulation, legal process, or governmental request. This includes responding to court orders, subpoenas, or lawful requests by public authorities (including to meet national security or law enforcement requirements).
• Protect Rights and Prevent Harm: We may disclose information if we believe it is necessary to protect the vital interests of any person, our rights, or your safety. For example, we might share data to investigate and defend ourselves against any third-party claims or allegations, to protect the security or integrity of our platform, or to prevent illegal activities, suspected fraud, or situations involving potential threats to the physical safety of any person.

Aside from the situations above, we do not share, sell, or rent your personal information to third parties for their promotional purposes. If we ever need to share your information for any other purpose, we will explain it to you at the point we collect the information or obtain your consent.

4. Do We Use Cookies and Other Tracking Technologies?

In Short: Yes. We use cookies and similar tracking technologies to collect and store information about your use of our Services.

Cookies are small text files that websites place on your device to store information about you, such as your preferences or login status. We may use cookies, web beacons, pixels, and other tracking technologies to access or store information. These technologies help us recognize you, remember your preferences, and track your activities on our site. For example, cookies allow us to keep you logged in as you navigate our site and help us understand which parts of our Services are most popular.

You have control over cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies or alert you when cookies are being sent. Note: If you disable or refuse cookies, some parts of our Services might become inaccessible or not function properly.

Cookie Preferences: If our website offers a "Cookie Preferences" tool (often found in the footer of the site), you can use it to customize your cookie settings. This allows you to choose which categories of cookies you will allow. Keep in mind that your cookie preferences are typically stored per browser or device, so if you use multiple browsers or devices, you may need to set your preferences on each one.

5. How Long Do We Keep Your Information?

In Short: We keep your information only as long as necessary to fulfill the purposes outlined in this privacy notice, unless a longer retention period is required by law.

We will retain your personal information for only as long as it is needed for the purposes described in this notice, unless a longer retention period is required or allowed by law (for example, for accounting or legal compliance). This means:

• If you create an account or use our Services, we will keep your personal information for as long as your account is active or as long as needed to provide you with our Services.
• If you close your account or it is otherwise terminated, we will either delete or anonymize your personal information. No purpose in this policy requires us to keep your information for more than 90 days after your account is terminated, unless a longer retention is mandated by law.

In some cases, we might not be able to completely delete or anonymize data immediately (for instance, if your personal information is stored in backup archives). In such cases, we will securely store your information and isolate it from any further use until deletion is possible.

Once we have no ongoing legitimate business need to process your personal information, we will securely dispose of it or anonymize it so that it can no longer be associated with you.

6. How Do We Keep Your Information Safe?

In Short: We aim to protect your personal information through a system of organizational and technical security measures, but no online system can be guaranteed 100% secure.

We have implemented appropriate technical and organizational security measures to protect the personal information we process. These measures are designed to prevent unauthorized access, disclosure, or misuse of your data. For example, we use encryption where appropriate, access controls to limit who can access information, and secure network protocols to safeguard data transfers.

However, please remember that no method of transmitting information over the Internet or storing data is completely secure. We cannot guarantee absolute security. Although we strive to protect your personal information, any transmission of personal data to and from our Services is at your own risk. We encourage you to use caution and protect your own technology (for example, use secure networks and strong passwords) when transmitting information online. If you believe that the security of your account or data has been compromised, please contact us immediately.

7. Do We Collect Information From Minors?

In Short: No. We do not knowingly collect data from or market to children under 18 years of age.

Our Services are not intended for children under 18. We do not knowingly solicit personal information from, or market to, anyone under the age of 18. By using the Services, you represent that you are at least 18 years old, or that you are the parent or guardian of a minor who is using our Services with your consent and supervision.

If we learn that we have inadvertently collected personal information from a user under the age of 18, we will take prompt steps to delete that information from our records. This may include deleting the account associated with that information. If you become aware of any personal data we have collected from children under 18, please contact us at [email protected], and we will address it immediately.

8. What Are Your Privacy Rights?

In Short: You have rights regarding your personal information. You can review, change, or delete your account information at any time.

Depending on where you live and the laws that apply, you may have some or all of the following privacy rights:

• Access and Update Your Information: If you have a Bluphlux account, you can access and update your personal information by logging into your account settings at any time. This allows you to correct or update your profile details. If you need assistance accessing, correcting, or updating any of your personal data that we store, you can also contact us for help.
• Account Deletion: You have the right to request deletion of your account or personal data. You can delete your account by contacting us with a request, or by using any self-service account deletion feature (if available). Upon receiving a verified deletion request, we will deactivate or delete your account and remove your personal information from our active databases. Please note that we may retain certain information in our files after you delete your account, if necessary, to prevent fraud, troubleshoot issues, assist with investigations, enforce our Terms of Use, or comply with legal requirements. We will only retain what is necessary and will handle any retained data securely.
• Cookies and Tracking Technologies: As described in Section 4, you have the option to disable cookies or adjust your cookie preferences. Most web browsers accept cookies by default, but you can usually modify your browser settings to remove or reject cookies. Keep in mind that disabling cookies might affect the functionality of our Services (for example, some features may not work properly). To opt out of targeted advertising cookies specifically, you can visit resources like the NAI's opt-out page or use our website's cookie preference tools if available.
• Opting Out of Marketing Communications: You can unsubscribe from our marketing or newsletter emails at any time. To do so, click the "unsubscribe" link in any marketing email we send you, or email us at [email protected] with your request to opt out. Once you opt out, we will remove you from our marketing list. However, you may still receive important service-related communications from us as long as you maintain an account or use our Services. For example, we may still send you emails about your account transactions, security updates, password resets, or other essential notices.

International Data Rights: If you are using our Services from certain regions (such as the European Economic Area or the United Kingdom), local data protection laws may grant you additional rights (for instance, the right to request access to or deletion of your personal data, or to restrict or object to certain data processing activities). While Bluphlux is based in India and primarily operates under Indian law, we strive to honor the privacy rights of all our users. If you are entitled to broader data rights under your local laws, you can exercise those rights by contacting us. We will review and respond to all legitimate requests in accordance with applicable data protection laws.

(Please note: As of the date of this policy, Bluphlux follows industry best practices for data protection but is not formally certified under GDPR or similar regimes. Even so, we aim to give users control over their data as described above.)

If you have any questions about your privacy rights or how to exercise them, you can always contact us at [email protected]. We will respond to your request as soon as we can, and in any event within any timeframe required by applicable law.

9. Controls for Do-Not-Track Features

In Short: We currently do not respond to Do-Not-Track (DNT) signals, because a uniform standard for DNT has not been established.

"Do-Not-Track" is a privacy preference you can set in your web browser to indicate that you do not wish to be tracked across websites. At this time, there is no universally accepted standard or technology for recognizing and implementing DNT signals. Therefore, we do not respond to DNT browser signals or any other mechanism that automatically communicates a "Do Not Track" request from your browser.

If a standardized approach to online tracking is established in the future that we are required to follow, we will update this privacy notice to inform you about how we comply with that new standard.

10. Do California Residents Have Specific Privacy Rights?

In Short: Yes. If you are a resident of California, you are granted specific rights regarding access to your personal information under California law.

California "Shine the Light" Law (Civil Code § 1798.83): California residents may request information, once per calendar year and free of charge, about our disclosures of certain categories of personal information to third parties for direct marketing purposes in the preceding calendar year. If applicable, this information would include the categories of personal information shared and the names and addresses of all third parties with which we shared that information. To make such a request, please send a written request to us using the contact information provided in Section 13 below. Please specify in your request that you are a California resident making a "Shine the Light" inquiry. We will respond in accordance with California law.

California Minors' Rights: If you are a California resident under the age of 18 and a registered user of our Services, you have the right to request the removal of any content or information you have publicly posted on our Services. To request removal of such data, please contact us using the contact information below, and include the email address associated with your account and a statement that you are a California resident under 18. We will make sure the content is not publicly displayed on our Services, but please be aware that the content or information may not be completely or comprehensively removed from all our systems (for example, backups might retain a copy for a period of time).

California Consumer Privacy Act (CCPA): If our business is subject to the California Consumer Privacy Act or its amendments, California residents have additional rights such as the right to know what personal information we collect, use, disclose, or sell, and the right to request deletion of their personal information. We address those rights and our compliance in a separate CCPA Privacy Notice. If you are a California resident, please refer to our CCPA Policy (available on our website) for detailed information about your privacy rights under California law and how to exercise them.

Non-Discrimination: In accordance with California law, if you choose to exercise any of your rights, we will not discriminate against you (for example, by denying you services or providing a different quality of services).

If you have any questions about your California privacy rights, you can contact us at [email protected].

11. Do We Make Updates to This Policy?

In Short: Yes. We will update this privacy notice as necessary to stay compliant with relevant laws and reflect any changes to our practices.

We may update this privacy notice from time to time. When we do, we will revise the "Last Updated" date at the top of this notice to let you know of the most recent changes. If we make any material changes, we will notify users by either prominently posting a notice of such changes on our website or by directly sending you a notification (for example, via the email associated with your account). We encourage you to review this privacy notice periodically to stay informed about how we are protecting your information. Your continued use of our Services after we post any modifications will constitute acknowledgement of the modified Privacy Notice and agreement to abide and be bound by it.

12. How Can You Request Your Data to Be Deleted?

If you would like to review, update, or delete the personal data we have collected from you, or if you would like to close your account and have your information removed, you may submit a request to us.

To request deletion of your data, please email us at [email protected] with the subject line "Data Deletion". In the email, include the email address associated with your account and clearly state that you are requesting data deletion. We take such requests seriously – once we receive your deletion request and verify your identity (for your data security), we will delete your data from our active systems within 1 Week, unless a longer period is required for us to comply with a legal obligation.

Please note that after deleting your data from our active databases, there might be residual data stored in backups or archives that cannot be immediately deleted. Any such residual data will be securely protected until those backups are updated or destroyed.

13. How Can You Contact Us About This Policy?

If you have questions or comments about this privacy policy, you can contact us by email or mail:

We will do our best to respond to your inquiry promptly and address any concerns you have about your privacy or this notice.