Simply Five Studio

Privacy Policy

Last Updated: March 05, 2026

PRIVACY POLICY AND DATA PROTECTION FRAMEWORK

1. PREAMBLE AND SCOPE

This Privacy Policy ("Policy") constitutes a legally binding electronic contract between SIMPLY FIVE STUDIO (hereinafter referred to as "The Company," "We," "Us," or "Our"), a creative solutions agency having its registered office at 22, G4, Josier Street, Nungambakkam, Chennai 600034, Tamil Nadu, India, and the user ("You," "Your," "User," or "Client") accessing Our website located at simplyfivestudio.in ("Website") or utilizing Our services including but not limited to web solutions, performance marketing, branding, graphic design, and fabrication solutions ("Services").

This Policy is published in compliance with:

  1. Section 43A of the Information Technology Act, 2000;

  2. Regulation 4 of the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Information) Rules, 2011 (the "SPI Rules");

  3. Regulation 3(1) of the Information Technology (Intermediaries Guidelines) Rules, 2011; and

  4. The General Data Protection Regulation (EU) 2016/679 ("GDPR") for users residing within the European Economic Area (EEA).

By accessing or using the Website or Services, You unequivocally accept and agree to the practices described in this Policy. If You do not agree with the terms herein, please discontinue use of the Website immediately.

2. INFORMATION COLLECTION AND CLASSIFICATION

We collect Information to provide, maintain, protect, and improve Our Services. This data is classified as follows:

2.1. Personal Identifiable Information ("PII")

We may collect information that identifies You personally, including but not limited to:

  • Identity Data: First name, last name, username, or similar identifier.

  • Contact Data: Billing address, delivery address, email address, and telephone numbers.

  • Professional Data: Company name, job title, website URL, and business requirements for creative briefs.

  • Financial Data: Bank account details and payment card details (processed via third-party gateways like Razorpay; We do not store raw magnetic stripe, CVV, or PIN data on Our servers).

2.2. Non-Personal and Technical Data

We automatically collect information about Your device and interaction with Our Website:

  • Technical Data: Internet Protocol (IP) address, browser type and version, time zone setting, browser plug-in types, operating system, and platform.

  • Usage Data: Information about how You use Our Website, products, and services, including clickstream data, page response times, and download errors.

2.3. Sensitive Personal Data or Information ("SPDI")

Under Indian law, We limit the collection of SPDI. However, payment information processed by Our Payment Gateway partners is treated with the highest security standards compliant with PCI-DSS.

3. PURPOSE AND LEGAL BASIS FOR PROCESSING (GDPR COMPLIANCE)

We process Your data based on specific legal grounds as defined under Article 6 of the GDPR:

  1. Contractual Necessity: To perform the contract we are about to enter into or have entered into with You (e.g., fulfilling a branding project or shipping signage).

  2. Legitimate Interests: To conduct and manage Our business to enable Us to give You the best service/product and the best and most secure experience.

  3. Legal Obligation: To comply with legal or regulatory obligations (e.g., tax filings, law enforcement requests).

  4. Consent: Generally, we do not rely on consent as a legal basis for processing your personal data other than in relation to sending third-party direct marketing communications via email or text message. You have the right to withdraw consent to marketing at any time.

4. DATA USAGE PROTOCOLS

Your Information is utilized for the following specific purposes:

  1. Service Fulfilment: To create, develop, and deliver creative assets, websites, and marketing campaigns.

  2. Transaction Processing: To facilitate payments via Razorpay and process invoices.

  3. Logistics: To arrange for the shipping and delivery of physical goods (print/signage) via third-party logistics partners.

  4. Communication: To provide customer support, respond to inquiries, and send administrative information, such as changes to our terms, conditions, and policies.

  5. Marketing & Analytics: To verify Your identity, prevent fraud, and analyze user demographics to improve Our performance marketing strategies.

5. DISCLOSURE AND DATA SHARING

We treat Your PII with strict confidentiality. We do not sell, trade, or rent Your PII to others. However, We may share generic aggregated demographic information or specific PII with:

5.1. Third-Party Service Providers

  • Payment Processors: Razorpay (India) and other gateways to process payments. They are bound by PCI-DSS standards.

  • Logistics Partners: Courier services (e.g., DHL, FedEx, BlueDart) for the delivery of fabricated signage and print materials.

  • Marketing Platforms: Google (Analytics, Ads), Meta (Facebook/Instagram Ads) for performance marketing execution.

  • Cloud Infrastructure: Hosting providers (e.g., AWS, Hostinger) where Our digital infrastructure resides.

5.2. Legal Requirements

We may disclose Your Information if required to do so by law or in the good faith belief that such action is necessary to:

  • Comply with a legal obligation (e.g., court order, government investigation).

  • Protect and defend the rights or property of SIMPLY FIVE STUDIO.

  • Prevent or investigate possible wrongdoing in connection with the Services.

6. INTERNATIONAL DATA TRANSFERS

Our servers and central operations are located in India. If You are accessing Our Services from the European Union (EU) or other regions with laws governing data collection and use, please note that You are agreeing to the transfer of Your Information to India. India may not have the same data protection laws as Your jurisdiction. However, We take all reasonable steps to ensure that Your data is treated securely and in accordance with this Policy and GDPR standards via Standard Contractual Clauses (SCCs) where applicable.

7. DATA RETENTION POLICY

We will only retain Your Personal Data for as long as necessary to fulfill the purposes We collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Tax & Legal: We are required by Indian tax law to keep basic information about our customers (including Contact, Identity, Financial, and Transaction Data) for a minimum of 8 years after they cease being customers.

  • Project Archives: Creative assets may be archived for a period of 5 years to facilitate future edits or re-prints unless a deletion request is formally submitted.

8. DATA SECURITY MEASURES

We have implemented appropriate physical, electronic, and managerial procedures to safeguard and help prevent unauthorized access, maintain data security, and correctly use the information We collect online. These measures include:

  • Secure Sockets Layer (SSL) encryption for data transmission.

  • Restricted access to PII on a "need-to-know" basis for employees and contractors.

  • Regular malware scanning and vulnerability assessments.

However, no method of transmission over the Internet or method of electronic storage is 100% secure. While We strive to use commercially acceptable means to protect Your Personal Data, We cannot guarantee its absolute security.

9. YOUR RIGHTS (GDPR & DPDP ACT)

Under certain circumstances, You have rights under data protection laws in relation to Your personal data:

  • Right to Access: Request a copy of the personal data We hold about You.

  • Right to Rectification: Request correction of the personal data that We hold about You.

  • Right to Erasure ("Right to be Forgotten"): Request erasure of Your personal data where there is no good reason for Us continuing to process it.

  • Right to Restriction: Request restriction of processing of Your personal data.

  • Right to Portability: Request the transfer of Your personal data to You or to a third party.

To exercise any of these rights, please contact the Grievance Officer listed in Section 11. We try to respond to all legitimate requests within 30 days.

10. USE OF COOKIES

Our Website uses cookies to distinguish You from other users. This helps Us provide You with a good experience and allows Us to improve Our Website.

  • Essential Cookies: Required for the operation of the Website (e.g., shopping cart, secure login).

  • Analytical/Performance Cookies: Allow Us to recognize and count the number of visitors and see how visitors move around the Website (Google Analytics).

  • Marketing Cookies: Record Your visit to Our Website to make advertising more relevant to Your interests.

You can block cookies by activating the setting on Your browser that allows You to refuse the setting of all or some cookies. However, if You use Your browser settings to block all cookies, You may not be able to access all or parts of Our Website.

11. GRIEVANCE OFFICER AND CONTACT INFORMATION

In accordance with the Information Technology Act, 2000 and rules made there under, the name and contact details of the Grievance Officer are provided below. This point of contact serves for GDPR inquiries as well.

Name: MURTAZA JAMNAGARWALA Designation: Grievance Officer Company: SIMPLY FIVE STUDIO Address: 22, G4, Josier Street, Nungambakkam, Chennai 600034, India. Email:hello@simplyfivestudio.in Phone: +91 95001 04218 Time: Mon - Fri (10:00 AM - 06:00 PM IST)

12. CHANGES TO THIS PRIVACY POLICY

We reserve the absolute right to update, change, or modify this Policy at any time. The "Last Updated" date at the top of this Policy will be revised accordingly. We encourage You to review this Policy periodically for any changes. Your continued use of the Website and Services following the posting of changes constitutes Your acceptance of such changes.

© 2026 Simply Five Studio