Privacy Policy

Last updated: 24 May 2026 · Effective immediately

Agrigore Ventures Pvt. Ltd. ("Puresol", "we", "us", "our") respects your privacy and is committed to protecting the personal data you share with us. This Privacy Policy explains what information we collect on puresol.in ("Website"), how we use it, with whom we share it, and the rights you have over your data. It is published in compliance with the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023 ("DPDP Act").

1. Scope of this Policy

This Policy applies to all personal data we collect about you when you visit the Website, subscribe to our newsletter, submit a contact enquiry, place an order, or otherwise interact with our online services. It does not apply to data collected by third parties whose websites or services you may access through links on the Website — please review their respective privacy policies separately.

2. Personal Data We Collect

We collect only the data necessary to provide and improve our services. Specifically:

Category	Examples	Source
Identification	Full name, email address, phone number	Contact form, newsletter signup, order checkout
Communication	Subject line, message content, enquiry type	Contact form submissions
Transaction	Shipping address, order details, billing information	Checkout (when applicable)
Technical	IP address, browser type, device type, referring URL, pages visited, time spent	Server logs, analytics, cookies
Usage	Click events, scroll depth, form interactions	Google Analytics

We do not intentionally collect any sensitive personal data such as financial account details (full card numbers are handled directly by PCI-DSS compliant payment gateways and never stored on our servers), biometric data, sexual orientation, religious or political beliefs.

3. How We Collect Data

• Directly from you — when you submit a contact form, subscribe to the newsletter, or place an order.
• Automatically — through cookies, server access logs, and analytics scripts when you browse the Website.
• From third parties — such as payment gateways (for transaction confirmation) and shipping partners (for delivery status).

4. Why We Collect and Process Data

We use the data we collect for the following purposes:

• To respond to your enquiries, partnership requests, or bulk/wholesale orders;
• To deliver, package, ship, and invoice products you have ordered;
• To send you newsletter updates and product information (only if you have opted in);
• To send transactional emails such as order confirmations, dispatch notifications, and customer-service responses;
• To enforce rate limits and prevent spam, fraud, or abuse of our services;
• To analyse and improve the Website experience and product offerings;
• To comply with applicable Indian laws, court orders, and lawful requests from authorities.

5. Legal Basis for Processing

Under the DPDP Act, 2023, we process personal data on the following lawful bases:

• Consent — You have voluntarily provided your data through a form or subscription.
• Legitimate use — Processing is necessary for performance of a contract (e.g., fulfilling an order) or to take steps at your request prior to entering into a contract (e.g., responding to an enquiry).
• Legal obligation — Processing is required to comply with Indian tax, accounting, or regulatory law (e.g., GST invoicing, FSSAI traceability).
• Legitimate business interest — Such as fraud prevention, security, and rate limiting, balanced against your rights.

6. Sharing & Disclosure

We do not sell or rent your personal data to anyone. We share data only with the following categories of recipients, and only to the minimum extent necessary:

• Service providers — web hosting (Hostinger), email delivery (Hostinger SMTP / domain mailbox provider), payment gateways, shipping and courier partners, GST/accounting software, and analytics providers, all bound by data-protection obligations.
• Legal and regulatory authorities — where disclosure is required by law, court order, or to protect our rights, property, or safety, or those of others.
• Successors in interest — in the event of a merger, acquisition, restructuring, or sale of business assets, subject to the same privacy protections set out in this Policy.

7. Cookies & Tracking Technologies

The Website uses cookies and similar tracking technologies to remember preferences, maintain session state (for example, the admin panel), and gather usage statistics. The types of cookies we use include:

• Strictly necessary cookies — session cookies for authentication and security (CSRF tokens). These cannot be disabled.
• Analytics cookies — set by Google Analytics to measure visits, sources, and on-site behaviour in aggregate.
• Functionality cookies — remember your preferences (such as form inputs) within a single browsing session.

You can control or delete cookies through your browser settings. Disabling cookies may impair some features of the Website, including form submission.

8. Google Analytics & Third-Party Services

We use Google Analytics (GA4) to understand aggregate usage patterns. Google may process your data in accordance with its own privacy policy at policies.google.com/privacy. You may opt out of Google Analytics tracking using the official browser add-on available at tools.google.com/dlpage/gaoptout.

We may also embed content from third-party platforms (such as Vimeo videos and Google Fonts). When you view such embedded content, the relevant third party may set its own cookies and process your data under its policies.

9. Data Retention

We retain personal data only for as long as necessary to fulfil the purpose for which it was collected, or as required by applicable Indian law. Indicative retention periods:

• Contact enquiries — up to 24 months from last contact, then archived or deleted.
• Newsletter subscribers — until you unsubscribe.
• Order & tax records — minimum 8 years, as required by Indian tax law.
• Server & security logs — up to 12 months for security and audit purposes.
• Rate-limit tracking — rolling 1-hour windows; permanent records are not kept.

10. Security Measures

We follow industry-standard practices to protect your personal data, including:

• HTTPS (TLS) encryption across the entire Website, with HSTS enforced;
• Session cookies marked HttpOnly, Secure, and SameSite=Lax;
• Password hashing for administrative accounts;
• CSRF token validation on sensitive endpoints;
• Rate limiting on contact and authentication endpoints;
• Restricted server access and least-privilege principles;
• Regular software updates and security patches.

However, no method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. If we become aware of a personal data breach that is likely to result in risk to your rights, we will notify you and the Data Protection Board of India in accordance with the DPDP Act.

11. Your Rights as a Data Principal

Under the DPDP Act, 2023, you have the following rights in respect of your personal data:

• Right to access — Request a summary of the personal data we process about you.
• Right to correction & erasure — Request correction of inaccurate data or deletion of data that is no longer needed.
• Right to grievance redressal — Lodge a complaint with our Grievance Officer (see below).
• Right to nominate — Designate another individual to exercise your rights in the event of your death or incapacity.
• Right to withdraw consent — Withdraw any consent previously given, at any time, without affecting the lawfulness of prior processing.

To exercise any of these rights, write to us at info@puresol.in with sufficient information to verify your identity. We will respond within a reasonable period and, in any case, within the statutory timelines.

12. Children's Privacy

The Website is not directed at children under 18 years of age. We do not knowingly collect personal data from minors. If you believe a child has provided us personal data, please contact us and we will delete it promptly. For users identified as children, we will not process data in a manner detrimental to their well-being, nor undertake tracking or behavioural monitoring or targeted advertising directed at them, as required under the DPDP Act.

13. International Transfers

Some of our service providers (such as Google Analytics, Hostinger CDN nodes, and email delivery services) may process data on servers located outside India. Where this occurs, we ensure that the recipient is subject to appropriate safeguards as required by the DPDP Act and applicable Indian law. Currently, our primary hosting server is located in Asia (Singapore), with backup storage in India (Mumbai).

14. Changes to this Policy

We may update this Privacy Policy from time to time to reflect changes in law, our practices, or our services. The "Last updated" date at the top of this page indicates when the latest revision was made. Significant changes will be brought to your attention through a notice on the Website or by email where applicable. Your continued use of the Website following any update constitutes acceptance of the revised Policy.

15. Grievance Officer & Contact

In accordance with the Information Technology Act, 2000 and the rules made thereunder, the contact details of our Grievance Officer are provided below. You may write to the Officer for any concerns or complaints regarding the processing of your personal data:

Grievance Officer
Agrigore Ventures Pvt. Ltd.
Email: info@puresol.in
Phone: +91 85868 91913
Website: puresol.in

We aim to acknowledge grievances within 48 hours of receipt and resolve them within 30 days. If you are not satisfied with our response, you may approach the Data Protection Board of India for further redressal.