Privacy Policy

Written By
Khatu Shyam Chalisa Team
Published:

Last Updated: November 25, 2025

Introduction

Welcome to Shyamchalisa.com (the “Website”), operated by Shyam Chalisa (hereinafter referred to as “we,” “us,” or “our”). We are committed to protecting your privacy and ensuring the security of your personal data in compliance with the Digital Personal Data Protection Act, 2023 (“DPDP Act”), the Information Technology Act, 2000 (“IT Act”), and other applicable laws in India. This Privacy Policy (“Policy”) explains how we collect, use, disclose, store, and protect your personal data when you visit our Website, interact with our services, or contact us.

As a devotional platform dedicated to Lord Shyam (Krishna), our Website provides spiritual content, including Chalisa recitations, prayers, articles, and community resources. We process personal data as a Data Fiduciary under the DPDP Act, meaning we determine the purpose and means of processing your data. This Policy applies to all users (“you” or “Data Principals”) who are individuals in India or whose data is processed within India.

By using our Website, you consent to the practices described in this Policy. If you do not agree, please do not use our services. We may update this Policy periodically; changes will be posted here with the updated date. Continued use after changes constitutes acceptance.

For questions, contact our Data Protection Officer (DPO) at the details provided in the “Contact Us” section below.

Definitions

To ensure clarity, key terms used in this Policy are defined as per the DPDP Act:

  • Personal Data: Any data about an individual who is identifiable by or in relation to such data, including name, email, phone, address, or online identifiers.
  • Sensitive Personal Data: A subset of personal data revealing racial or ethnic origin, religious beliefs, health, or biometric data (if applicable to our services).
  • Processing: Any operation on personal data, such as collection, storage, use, disclosure, or deletion.
  • Data Principal: You, the individual whose personal data we process.
  • Data Fiduciary: Us, as we decide the purpose and means of processing.
  • Consent: Your free, specific, informed, unconditional, and unambiguous agreement to our processing of your personal data.

Scope of This Policy

This Policy covers personal data processed:

  • Through our Website (Shyamchalisa.com).
  • Via contact forms, email subscriptions, or donations (if enabled).
  • By us or our service providers in India or abroad (with safeguards for cross-border transfers).

It does not cover data made publicly available by you or processed for personal/domestic purposes. Non-digital data digitized post-collection is included.

Information We Collect

We collect only the minimum personal data necessary (“data minimization”) for legitimate purposes. Categories include:

1. Information You Provide Directly

  • Contact Information: Name, email address, phone number, and postal address submitted via our contact form (Visit Contact Us Page) or email (KSChalisa@proton.me).
  • Subscription Data: Email for newsletters or devotional updates.
  • Donation/Payment Data (if applicable): Bank details, UPI ID, or card information for offerings (processed via secure third-party gateways; we do not store full payment details).
  • Feedback/Suggestions: Messages, comments, or queries shared with us.

2. Information Collected Automatically

  • Device and Usage Data: IP address, browser type, operating system, device ID, pages visited, time spent, and referral sources.
  • Location Data: Approximate location via IP (not precise GPS unless consented).
  • Religious/Spiritual Preferences (if shared): Indications of interest in specific Chalisa or prayers, which may qualify as sensitive data.

3. Information from Third Parties

  • Analytics from tools like Google Analytics (anonymized where possible).
  • Social media interactions if you link accounts (e.g., sharing prayers).

We do not collect sensitive data like health or biometric information unless explicitly required for a service (e.g., accessibility features) and only with your explicit consent.

How We Collect Information

  • Directly from You: Forms, emails, or account registrations.
  • Automatically: Cookies, web beacons, server logs, and tracking pixels.
  • From Partners: Service providers (e.g., email platforms) or public sources (e.g., if you publicly share your devotion on social media).

Before collecting, we provide notice of what data, why, and how to withdraw consent.

How We Use Your Information

We process your personal data for lawful, specified, and legitimate purposes only. Under the DPDP Act, this includes with your consent or for “legitimate uses” like:

  1. Providing Services: Delivering devotional content, responding to queries, sending newsletters, or processing donations.
  2. Improving the Website: Analyzing usage to enhance user experience (e.g., popular prayers).
  3. Communication: Notifying you of updates, events, or spiritual reminders.
  4. Compliance and Security: Preventing fraud, complying with laws, or resolving disputes.
  5. Marketing (with consent): Sharing personalized devotional resources.
  6. Research: Aggregated, anonymized data for spiritual trends (no individual identification).

We ensure processing is fair, transparent, and limited to these purposes. If purposes change, we seek fresh consent.

Sharing Your Information

We do not sell your personal data. Sharing occurs only when necessary and with safeguards:

  1. Service Providers: Third parties like email hosts (e.g., ProtonMail), payment gateways (e.g., Razorpay), or analytics tools (e.g., Google). They act as Data Processors under contracts ensuring DPDP compliance.
  2. Legal Requirements: Disclosure to authorities if required by law, court order, or to protect rights/safety.
  3. Business Transfers: In mergers/acquisitions, with notice to you.
  4. With Consent: For specific sharing (e.g., community features).

For cross-border transfers (e.g., cloud servers abroad), we ensure adequacy decisions or equivalent safeguards like Standard Contractual Clauses.

Cookies and Similar Technologies

We use cookies for functionality, analytics, and preferences. Types:

  • Essential Cookies: For site navigation (e.g., session management). No consent needed.
  • Analytics Cookies: Track usage (e.g., Google Analytics). You can opt-out via browser settings.
  • Marketing Cookies: Personalize content (with consent).

Manage cookies via our Cookie Consent Banner or browser (e.g., delete/disable). Note: Disabling may affect site functionality. For details, see our Cookie Policy (if separate; otherwise integrated here).

Data Security

We implement reasonable technical, organizational, and physical safeguards:

  • Encryption: Data in transit (SSL/TLS) and at rest.
  • Access Controls: Role-based access, multi-factor authentication.
  • Audits and Training: Regular vulnerability scans, employee training on DPDP.
  • Breach Response: If a breach occurs, we notify affected users and the Data Protection Board within 72 hours (or sooner if high risk).

No system is 100% secure; we cannot guarantee absolute protection but strive for proportionality to risk.

Your Rights as a Data Principal

Under the DPDP Act, you have rights over your data. Contact our DPO to exercise them (free, within 30 days):

  1. Right to Access/Transparency: Know what data we hold and why.
  2. Right to Correction: Update inaccurate/incomplete data.
  3. Right to Erasure: Delete data when no longer needed (subject to legal retention).
  4. Right to Restrict Processing: Limit use during disputes.
  5. Right to Object: Oppose processing for marketing or legitimate interests.
  6. Right to Portability: Receive data in structured format.
  7. Right to Withdraw Consent: Anytime, via easy mechanism (e.g., unsubscribe link). Processing stops immediately.
  8. Right to Grievance Redressal: Complain to us or the Data Protection Board.

For children’s data (under 18), parents/guardians have these rights plus verifiable consent requirements.

Children’s Privacy

Our services are not directed at children under 18. We do not knowingly collect data from children without parental/guardian consent. If we discover such data, we delete it promptly. Parents can contact us to exercise rights on behalf of minors. We prohibit tracking or targeted ads for children.

Data Retention and Deletion

We retain data only as long as necessary:

  • Contact/Subscription: Until unsubscribe or 2 years inactivity.
  • Logs: 6 months for security.
  • Legal: As required (e.g., 7 years for financial records).

Post-retention, data is securely deleted or anonymized. Upon withdrawal or request, deletion occurs ASAP unless legally obligated.

Changes to This Privacy Policy

We may update this Policy for legal, operational, or service changes. Posted version governs; material changes notified via email or site notice. Review periodically.

Contact Us

For privacy queries, rights exercise, or complaints:

Shyam Chalisa (Address)
Shyam Darshan Marg, Near Old Shobha Mandir,
Ward No. 3, Khatu Village,
Tehsil – Danta Ramgarh,
District – Sikar, Rajasthan 332402, India

Email: KSChalisa@proton.me
Website Contact Form: Visit Contact Us Page

We aim to respond within 7 business days. Thank you for being part of our devotional community. Om Shyam!

Thank you for trusting Shyamchalisa.com with your spiritual journey. Om Shyam!