Privacy Policy

1. INTRODUCTION

1.1 Bhima Gold Private Limited, ("Company", "we", "our", or "us") is an Indian company engaged in the manufacture, sale and export of jewellery, gold, diamonds, gemstones and related luxury products.
1.2 This Privacy Policy explains how we collect, use, process, store, disclose and protect personal information of customers located in the United States of America who access our website www.bhimgold.com, place orders, communicate with us or otherwise use our services.
1.3 This Policy is intended to comply with the Digital Personal Data Protection Act, 2023 of India, applicable rules framed thereunder, the Information Technology Act, 2000, and applicable privacy requirements under relevant laws of the United States.

2. CATEGORIES OF PERSONAL DATA COLLECTED: We may collect the following categories of Personal Data:

2.1 Identity Information containing |Full Name of the customer | Date of Birth (where required) | Passport Details | Driver's Licence Information | Government-issued Identification Documents | Other Identity Verification Information.
2.2 Contact Information containing | Residential Address | Billing Address | Shipping Address | Email Address | Mobile Number | Telephone Number | Other Contact Details voluntarily provided by you.
2.3 Transaction Information containing | Order Details | Purchase History | Product Preferences | Delivery Information | Refund and Return Records | Transaction-related Communications.
2.4 Payment Information containing | Payment Confirmation Details | Transaction Reference Numbers | Payment Gateway Records | Last Four Digits of Payment Card. We do not store CVV numbers, complete payment card details, or sensitive authentication data.
2.5 Technical Information containing | IP Address | Browser Information | Device Information | Operating System | Website Usage Information | Cookies and Similar Tracking Technologies.
2.6 Customer Support Information containing | Customer Communications | Queries | Complaints | Feedback | Customer Service and Support Records.

3. PURPOSES OF PROCESSING: We may collect, use, process, store and disclose Personal Data for the following purposes:

3.1 Order Fulfilment consisting of processing and managing purchases, orders, payments, returns and refunds.
3.2 Delivery & Logistics dealing with arranging shipment, delivery, tracking, insurance and fulfilment of products.
3.3 Customer Support dealing with aspects related to responding to enquiries, requests, complaints, feedback and customer service requirements.
3.4 Identity Verification which inter alia includes verifying customer identity and validating information provided by customers.
3.5 Fraud Prevention & Security aspects concerning detecting, preventing and investigating fraud, unauthorized transactions, chargebacks, security incidents and other unlawful activities.
3.6 Regulatory Compliance covering aspects related to complying with applicable laws, regulations, court orders, governmental requests and legal obligations.
3.7 Export, Customs & Tax Administration dealing with preparing export documentation, facilitating customs clearance and complying with applicable taxation requirements.
3.8 Insurance & Risk Management dealing with managing insurance claims, shipment protection and risk mitigation processes.
3.9 Website Operations concerning operating, maintaining, administering and improving our website, products and services.
3.10 Security Monitoring dealing with protecting our systems, networks, customers and business operations through monitoring and security controls.
3.11 Marketing & Communications to address issues concerning sending promotional materials, updates, offers and marketing communications where consent has been provided or where otherwise permitted by applicable law.
3.12 Dispute Resolution & Legal Protection concerning establishing, exercising or defending legal claims and protecting the rights, property and interests of the Company.

4. LEGAL BASIS FOR PROCESSING: We process personal data based upon:
4.1 Consent provided by the customer;
4.2 Voluntary provision of information by the customer for the purpose of purchasing products and receiving services;
4.3 Compliance with legal obligations;
4.4 Prevention and detection of fraud;
4.5 Performance of contractual obligations relating to the purchase, shipment and delivery of products.

5. CONSENT: By providing personal information and using our services, customers consent to the collection, use, storage and processing of personal information in accordance with this Privacy Policy. Customers may withdraw consent at any time by contacting us. Withdrawal of consent shall not affect processing already undertaken or processing required for compliance with legal obligations.

6. STORAGE AND LOCATION OF DATA: All customer personal data is stored and processed in India. The Company maintains administrative, physical and technical safeguards to protect personal information against unauthorized access, disclosure, alteration, loss or destruction.

7. DISCLOSURE OF INFORMATION: We may disclose or share your personal information with trusted third parties where it is necessary to provide our products and services, process transactions, comply with legal obligations, protect our legitimate business interests, or prevent fraud and unlawful activities. Such third parties may include payment processors, logistics and courier service providers, customs and regulatory authorities, government agencies, insurance providers, fraud prevention and risk management service providers, technology and cloud service providers, and professional advisers, including attorneys, auditors, accountants, and consultants. Any disclosure of personal information shall be limited to the extent reasonably necessary for the relevant purpose and, where appropriate, shall be subject to contractual confidentiality and data protection obligations. We do not sell, rent, trade, or otherwise monetize your personal information to third parties for their independent marketing purposes.

8. INTERNATIONAL SHIPMENTS: Where necessary to complete an international shipment, certain customer information may be disclosed to customs authorities, freight forwarders, carriers and governmental agencies involved in the export and import process.

9. IDENTITY VERIFICATION: For high-value transactions, fraud prevention or regulatory compliance purposes, we may request government-issued identification documents and additional verification information. Failure to provide requested verification information may result in delay, cancellation or refusal of an order.

10. Data Security: We maintain and implement reasonable administrative, technical, and physical safeguards designed to protect personal information from unauthorized access, disclosure, alteration, misuse, loss, or destruction. Such measures may include, among other things, encryption technologies, access controls, authentication and verification mechanisms, network and system monitoring, periodic security assessments and reviews, and incident response and recovery procedures. We continually evaluate and update our security practices to address evolving threats and industry standards. However, despite our efforts and the implementation of appropriate safeguards, no method of transmitting information over the Internet or storing information electronically can be guaranteed to be completely secure. Accordingly, while we strive to protect personal information, we cannot guarantee the absolute security of any information transmitted to or stored by us.

11. Data Retention: We retain personal information only for as long as is reasonably necessary to fulfill the purposes for which it was collected, including the performance of contractual obligations, compliance with applicable legal and regulatory requirements, satisfaction of tax and accounting obligations, maintenance of export and customs documentation, prevention and detection of fraud, resolution of disputes, and establishment, exercise, or defence of legal claims and rights. The duration of retention may vary depending on the nature of the information and the applicable legal requirements. Upon expiration of the applicable retention period, or when personal information is no longer required for the purposes for which it was collected, such information may be securely deleted, anonymized, aggregated, or archived in accordance with applicable law and our record retention practices.

12. Rights of Data Principals: Subject to applicable laws and regulations, individuals whose personal information is processed by us may have certain rights in relation to their personal data. These rights may include the right to request access to the personal information we hold about them, request correction or updating of inaccurate, incomplete, or outdated information, request deletion or erasure of personal information in appropriate circumstances, withdraw consent where processing is based on consent, seek redressal of grievances relating to the processing of personal information, and nominate another individual to exercise such rights on their behalf in accordance with applicable law. Requests relating to the exercise of these rights may be submitted through the contact details provided in this Privacy Policy, and we will respond to such requests in accordance with applicable legal requirements. For the purpose of this Policy, Data Principal shall mean the individual to whom the personal data relates and, where such individual is a child, includes the parents or lawful guardian of such child, a person with disability who has a lawful guardian, includes such lawful guardian acting on her behalf.

13. CHILDREN'S PRIVACY: Our services are not intended for individuals below the age prescribed under applicable law. We do not knowingly collect personal information from children. If any children below the prescribed age are accessing the services, it is deemed that the consent of their lawful guardian has been obtained.

14. UNITED STATES PRIVACY RIGHTS

14.1 Bhima Gold is an Indian company engaged in the sale and export of jewellery, precious metals, diamonds, gemstones and related products to customers located throughout the United States of America.

14.2 We recognize that various states within the United States have enacted or may enact privacy and consumer data protection laws that provide residents with certain rights concerning their personal information. Accordingly, Bhima Gold is committed to handling personal information in a transparent, fair and secure manner consistent with applicable privacy requirements.

14.3 Subject to applicable law and verification of identity, customers located in the United States may have the right to:
a) request confirmation regarding whether personal information concerning them is being processed;
b) request access to personal information maintained by Bhima Gold;
c) request correction of inaccurate or incomplete personal information;
d) request deletion of personal information, subject to applicable legal, regulatory, contractual, tax, customs, fraud prevention, dispute resolution and record retention obligations;
e) request a copy of certain personal information provided by the customer in a portable and reasonably usable format where required by applicable law;
f) withdraw consent for processing activities that are based upon consent;
g) opt out of certain forms of targeted advertising, profiling or processing activities where such rights are required by applicable law;
h) appeal decisions relating to privacy requests where such appeal rights are provided under applicable law; and
i) submit complaints concerning the handling of personal information.
14.4 Bhima Gold does not sell personal information to third parties for monetary consideration.

14.5 Bhima Gold may disclose personal information to service providers, logistics providers, payment processors, customs authorities, governmental agencies, insurers, fraud prevention providers, technology vendors and professional advisers solely for legitimate business, contractual, regulatory, legal or operational purposes.

14.6 Requests relating to privacy rights may be submitted using the contact details provided in this Privacy Policy. Bhima Gold may require reasonable verification of identity before processing any request in order to protect customers against unauthorized access, fraud or misuse.

14.7 Certain rights may be restricted, denied or delayed where retention or processing of personal information is necessary to:
a) comply with applicable laws or regulatory obligations;
b) maintain business and transaction records;
c) complete pending transactions;
d) investigate fraud, chargebacks, money laundering concerns or security incidents;
e) establish, exercise or defend legal claims; or
f) protect the rights, property, safety and security of Bhima Gold, its customers, employees, service providers or the public.
14.8 Bhima Gold reserves the right to update its privacy practices and this Privacy Policy to reflect changes in applicable privacy laws, regulatory guidance or business operations.

15. INDUSTRY-SPECIFIC VERIFICATION, COMPLIANCE AND RECORD RETENTION

15.1 In light of the high-value nature of the products offered by the Company, including gold, silver, diamonds, gemstones, jewellery, and other precious articles, we may collect, verify, retain, and process additional information as reasonably necessary to comply with applicable laws, prevent fraud, facilitate secure transactions, and protect our legitimate business interests.

15.2 To assist in the prevention and investigation of fraudulent transactions, chargebacks, payment disputes, unauthorized purchases, and other legal or regulatory claims, we may retain communications, transaction records, invoices, shipping and delivery records, proof of receipt, customer service correspondence, identity verification documents, payment verification records, and other related information for such period as may be reasonably necessary for dispute resolution, legal compliance, enforcement of contractual rights, or defence of legal claims.

15.3 For certain transactions, particularly those involving high-value goods, international shipments, unusual purchasing patterns, or elevated fraud-risk indicators, we reserve the right to conduct enhanced identity verification and due diligence procedures prior to accepting, processing, or shipping an order. Such verification may include requests for government-issued identification, proof of address, payment verification, confirmation of beneficial ownership, or such other information as may be reasonably required to validate the transaction and comply with applicable legal, regulatory, anti-money laundering, sanctions, customs, export control, and fraud prevention requirements.

15.4 We may disclose or transfer personal information, transaction details, shipping information, and related documentation to customs authorities, border agencies, export and import regulators, freight forwarders, logistics providers, shipping carriers, insurers, payment processors, law enforcement authorities, governmental agencies, and other service providers or regulatory bodies in India, the United States, or any other relevant jurisdiction, where such disclosure is necessary to facilitate international shipments, comply with legal obligations, satisfy customs and trade requirements, obtain insurance coverage, prevent fraud, enforce contractual rights, protect the security of our business operations, or otherwise as permitted or required by applicable law.

16. DATA BREACH RESPONSE: In the event of a personal data breach, the Company shall take appropriate measures as required by applicable law, including notification where legally required.

17. GRIEVANCE OFFICER
Name:RamkiranN
Email: [email protected]
18. CHANGES TO THIS POLICY: We reserve the right to modify this Privacy Policy at any time. Updated versions shall be posted on the website together with the revised effective date.

19. CONTACT US: If you have any questions regarding this Privacy Policy, our privacy practices, the processing of your personal information, or if you wish to exercise any rights available to you under applicable data protection laws, please contact us using the details provided below:

Bhima Gold Private Limited
Registered Address: No.423, Bhima House,
8th Main Road, 4th Block, Koramangala,
Bangalore-560034, Karnataka
Email: [[email protected]]
Where required by applicable law, requests relating to access, correction, deletion, restriction, portability, objection, withdrawal of consent, or other privacy-related matters may be submitted through the contact details above.

20. Changes to this Privacy Policy:

20.1 We reserve the right to amend, modify, update, or replace this Privacy Policy at any time to reflect changes in our business practices, legal obligations, technologies, products, services, or regulatory requirements. Any updates will be posted on this website together with the revised effective date.

20.2 Your continued use of the website, products, or services following the publication of any revised Privacy Policy constitutes your acknowledgment of such changes to the extent permitted by applicable law.

21. Effective Date: This Privacy Policy is effective as of 12-June-2026 and supersedes all previous versions relating to the collection, use, disclosure, and processing of personal information through this website and associated services. This policy has been adopted by the management of Bhima Gold and is binding on the Company, its employees and to customers of Bhima Gold.

22. Acknowledgement: By accessing, browsing, registering with, purchasing from, or otherwise using our website, products, or services, you acknowledge that you have read, understood, and accepted the terms of this Privacy Policy and consent to the collection, use, disclosure, storage, transfer, and processing of your personal information as described herein, subject to your rights under applicable law.